Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/HvKsTdNWV86C3wL3JY0lZXko7Ls.roa
File: HvKsTdNWV86C3wL3JY0lZXko7Ls.roa (raw, json)
Hash identifier: UlP/hD1V76e/ISBrg84+txBjwIkBxZUIInEqZ2XpFYE=
Subject key identifier: 1E:F2:AC:4D:D3:56:57:CE:82:DF:02:F7:25:8D:25:65:79:28:EC:BB
Certificate issuer: /CN=13932782ee7758990404fa1ccfb09ec23a86123f
Certificate serial: 0184EE92F9F81376622ABAEC44D55E8BC679
Authority key identifier: 13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/HvKsTdNWV86C3wL3JY0lZXko7Ls.roa
Signing time: Wed 07 Dec 2022 21:52:00 +0000
ROA not before: Wed 07 Dec 2022 21:52:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2856
IP address blocks: 46.248.106.0/23 maxlen: 23
46.248.124.0/23 maxlen: 23
46.248.126.0/23 maxlen: 23
82.136.52.0/24 maxlen: 24
85.116.0.0/23 maxlen: 23
85.116.2.0/23 maxlen: 23
85.116.4.0/23 maxlen: 23
85.116.11.0/24 maxlen: 24
85.116.6.0/23 maxlen: 23
85.116.16.0/21 maxlen: 21
85.116.24.0/24 maxlen: 24
85.116.26.0/24 maxlen: 24
85.116.25.0/24 maxlen: 24
85.116.28.0/24 maxlen: 24
85.116.27.0/24 maxlen: 24
85.116.30.0/24 maxlen: 24
85.116.29.0/24 maxlen: 24
85.116.31.0/24 maxlen: 24
46.248.96.0/22 maxlen: 22
82.136.26.0/24 maxlen: 24
82.136.43.0/24 maxlen: 24
82.136.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ee:92:f9:f8:13:76:62:2a:ba:ec:44:d5:5e:8b:c6:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13932782ee7758990404fa1ccfb09ec23a86123f
Validity
Not Before: Dec 7 21:52:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ef2ac4dd35657ce82df02f7258d25657928ecbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a3:39:f9:78:b4:8f:9c:d6:8f:fc:13:77:b1:
f1:d5:f6:26:ca:4a:35:a5:e9:4c:2b:0e:30:7b:a7:
db:7b:62:cf:3d:7b:b9:90:77:a0:4b:db:3e:fd:5c:
c5:82:b6:f6:46:68:a1:f2:48:36:33:72:e0:3a:57:
19:17:56:51:8e:ca:44:9a:e9:03:5b:8a:ad:99:2b:
f7:da:96:48:4e:da:0d:65:95:4f:67:37:e5:e8:1e:
f8:46:e8:d3:7a:c0:3e:ec:b0:56:bb:9f:ef:76:36:
df:96:8e:e8:32:70:f4:39:7e:68:6f:0f:cc:42:0d:
79:0f:be:90:68:2f:f2:94:2d:b4:8f:2b:9a:19:a9:
6a:17:cb:80:42:fd:8d:1d:e9:7e:68:6b:45:01:37:
80:15:6f:d4:29:a2:c0:88:59:09:e4:7d:36:7c:b2:
e0:2c:9d:17:47:2f:8b:2d:ce:0d:4f:f8:8f:db:05:
c1:a8:9a:36:7c:96:74:65:13:26:dc:c1:68:0c:17:
df:c2:af:8d:ad:08:30:42:dd:8a:08:5d:f3:2c:7e:
f4:69:be:7b:b9:0a:fc:96:a1:05:6b:de:66:ca:f8:
2a:e4:c4:54:31:ca:94:e6:b9:7d:9c:de:45:50:bf:
3c:08:c3:43:42:a8:72:33:73:64:94:93:0d:3b:78:
ed:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:F2:AC:4D:D3:56:57:CE:82:DF:02:F7:25:8D:25:65:79:28:EC:BB
X509v3 Authority Key Identifier:
keyid:13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/HvKsTdNWV86C3wL3JY0lZXko7Ls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/E5Mngu53WJkEBPocz7CewjqGEj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.248.96.0/22
46.248.106.0/23
46.248.124.0/22
82.136.26.0/24
82.136.43.0/24
82.136.47.0/24
82.136.52.0/24
85.116.0.0/21
85.116.11.0/24
85.116.16.0/20
Signature Algorithm: sha256WithRSAEncryption
5d:fe:48:dd:f2:b9:f8:cc:02:f9:1c:8c:7a:09:1a:2f:27:b0:
5b:eb:bd:9e:2f:50:18:0b:11:44:fe:e6:64:8d:4a:64:9a:25:
bd:e4:4c:a7:f4:dd:a7:22:95:a4:3f:1b:2c:53:a0:03:08:14:
1e:3e:68:a4:b4:88:cf:db:f0:30:88:88:36:93:a7:11:f7:05:
ac:fc:13:b4:73:6d:6c:18:4f:c7:3f:1a:e6:c5:68:e8:53:ae:
ef:ed:93:4c:37:90:03:79:29:77:4c:b7:b5:92:a0:00:e9:2d:
17:ef:5e:1d:11:ca:82:36:d0:25:d6:4a:72:6a:7a:38:5d:3f:
e6:a4:29:e1:f9:c7:58:6c:d1:a7:18:ee:16:22:27:64:a8:f4:
dc:f8:9e:4c:02:d7:c3:5a:82:f2:6e:0c:cb:b9:03:a3:29:93:
c2:e0:90:15:a6:e1:b1:e5:22:c4:52:a2:12:af:b5:e1:7c:5f:
74:76:48:33:00:49:bf:3e:11:cd:22:b1:48:5a:80:5b:af:8e:
a7:b3:93:56:2c:43:d8:38:3a:45:a7:9b:9a:ed:c3:df:8d:5b:
1c:16:e4:a4:02:eb:69:9f:ab:01:b6:99:04:55:82:0e:a2:f6:
70:aa:8f:69:26:b9:8c:19:fa:e6:00:d3:17:78:02:ef:5e:7d:
83:40:f4:02
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgISAYTukvn4E3ZiKrrsRNVei8Z5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzOTMyNzgyZWU3NzU4OTkwNDA0ZmExY2NmYjA5ZWMyM2E4
NjEyM2YwHhcNMjIxMjA3MjE1MjAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZWYyYWM0ZGQzNTY1N2NlODJkZjAyZjcyNThkMjU2NTc5MjhlY2JiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhKM5+Xi0j5zWj/wTd7Hx1fYmyko1
pelMKw4we6fbe2LPPXu5kHegS9s+/VzFgrb2Rmih8kg2M3LgOlcZF1ZRjspEmukD
W4qtmSv32pZITtoNZZVPZzfl6B74RujTesA+7LBWu5/vdjbflo7oMnD0OX5obw/M
Qg15D76QaC/ylC20jyuaGalqF8uAQv2NHel+aGtFATeAFW/UKaLAiFkJ5H02fLLg
LJ0XRy+LLc4NT/iP2wXBqJo2fJZ0ZRMm3MFoDBffwq+NrQgwQt2KCF3zLH70ab57
uQr8lqEFa95myvgq5MRUMcqU5rl9nN5FUL88CMNDQqhyM3NklJMNO3jtlQIDAQAB
o4ICPzCCAjswHQYDVR0OBBYEFB7yrE3TVlfOgt8C9yWNJWV5KOy7MB8GA1UdIwQY
MBaAFBOTJ4Lud1iZBAT6HM+wnsI6hhI/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRTVNbmd1NTNXSmtFQlBvY3o3Q2V3anFHRWo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS84Mjg2NTItYWRkZi00ZmU4LTlmZTYt
NGIxZjYxNjUzZjNkLzEvSHZLc1RkTldWODZDM3dMM0pZMGxaWGtvN0xzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS84Mjg2NTItYWRkZi00ZmU4LTlmZTYtNGIxZjYxNjUzZjNk
LzEvRTVNbmd1NTNXSmtFQlBvY3o3Q2V3anFHRWo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8AwQCLvhgAwQB
LvhqAwQCLvh8AwQAUogaAwQAUogrAwQAUogvAwQAUog0AwQDVXQAAwQAVXQLAwQE
VXQQMA0GCSqGSIb3DQEBCwUAA4IBAQBd/kjd8rn4zAL5HIx6CRovJ7Bb672eL1AY
CxFE/uZkjUpkmiW95Eyn9N2nIpWkPxssU6ADCBQePmiktIjP2/AwiIg2k6cR9wWs
/BO0c21sGE/HPxrmxWjoU67v7ZNMN5ADeSl3TLe1kqAA6S0X714dEcqCNtAl1kpy
ano4XT/mpCnh+cdYbNGnGO4WIidkqPTc+J5MAtfDWoLybgzLuQOjKZPC4JAVpuGx
5SLEUqISr7XhfF90dkgzAEm/PhHNIrFIWoBbr46ns5NWLEPYODpFp5ua7cPfjVsc
FuSkAutpn6sBtpkEVYIOovZwqo9pJrmMGfrmANMXeALvXn2DQPQC
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:41:03 2025 by rpki-client