Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/JsJesYTb7WgVa1svlk88Hgswr88.roa
File: JsJesYTb7WgVa1svlk88Hgswr88.roa (raw, json)
Hash identifier: YXWRcFS0EDYFjijlc/TbpzL4psY2S5cQGEen6YqkIqI=
Subject key identifier: 26:C2:5E:B1:84:DB:ED:68:15:6B:5B:2F:96:4F:3C:1E:0B:30:AF:CF
Certificate issuer: /CN=49e44eeea26569d0ddbd0e8637f12cf505a4ede9
Certificate serial: 018A60C48596AA02E141630E79343307F09C
Authority key identifier: 49:E4:4E:EE:A2:65:69:D0:DD:BD:0E:86:37:F1:2C:F5:05:A4:ED:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeRO7qJladDdvQ6GN_Es9QWk7ek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/JsJesYTb7WgVa1svlk88Hgswr88.roa
Signing time: Mon 04 Sep 2023 15:16:46 +0000
ROA not before: Mon 04 Sep 2023 15:16:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35676
IP address blocks: 178.213.68.0/22 maxlen: 24
178.213.64.0/22 maxlen: 24
193.105.186.0/24 maxlen: 24
194.5.88.0/23 maxlen: 24
195.234.36.0/24 maxlen: 24
185.16.252.0/22 maxlen: 24
2a03:6f82:100::/40 maxlen: 40
2a03:6f82::/32 maxlen: 33
2a03:6f81::/32 maxlen: 33
2a03:6f81:500::/40 maxlen: 40
2a03:6f82:300::/40 maxlen: 40
2a03:6f82:200::/40 maxlen: 40
2a03:6f81:200::/40 maxlen: 40
2a03:6f81:700::/40 maxlen: 40
2a03:6f81:100::/40 maxlen: 40
2a03:6f81:400::/40 maxlen: 40
2a03:6f81:300::/40 maxlen: 40
2a03:6f81:600::/40 maxlen: 40
2a03:6f81::/40 maxlen: 40
2a03:6f80:200::/40 maxlen: 40
2a03:6f80:400::/40 maxlen: 40
2a03:6f80:900::/40 maxlen: 40
2a03:6f80:800::/40 maxlen: 40
2a03:6f80:300::/40 maxlen: 40
2a03:6f80:100::/40 maxlen: 40
2a03:6f80:500::/40 maxlen: 40
2a03:6f80:600::/40 maxlen: 40
2a03:6f80:700::/40 maxlen: 40
2a03:6f80::/32 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:60:c4:85:96:aa:02:e1:41:63:0e:79:34:33:07:f0:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e44eeea26569d0ddbd0e8637f12cf505a4ede9
Validity
Not Before: Sep 4 15:16:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26c25eb184dbed68156b5b2f964f3c1e0b30afcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:3d:42:15:b7:8f:a4:27:13:e4:0b:75:c6:d9:
0a:34:1d:c8:ba:a3:b3:58:ba:72:60:66:f3:5d:cf:
c5:05:dc:82:7c:8b:29:20:57:68:cd:54:51:f1:61:
31:8d:b3:60:32:47:58:5f:16:cc:f1:1b:5d:85:91:
7a:1f:69:f3:7b:80:a9:59:2c:15:6f:19:11:56:62:
0b:bd:70:f1:f9:e9:4b:ef:ca:a9:c7:7f:4e:fd:aa:
c4:59:b5:de:65:32:79:62:1f:d2:41:6b:7d:01:5b:
8f:c7:fd:ea:64:08:9c:5c:8f:4a:fc:98:8e:93:f6:
e5:fb:ea:50:55:fd:20:b8:04:e1:df:e9:cd:46:6c:
81:4d:36:80:4b:38:16:3a:35:0a:50:de:12:1b:69:
9e:79:79:ea:58:50:66:fb:1c:d8:25:b1:59:d7:d8:
59:fd:3c:71:f8:cc:e5:29:28:98:4d:c2:65:d4:b7:
5f:c9:4e:a3:ed:bc:24:3a:6c:f0:51:3e:19:fd:c8:
0c:05:bb:df:3c:89:eb:3f:5b:52:b1:e2:99:04:ac:
7f:0c:28:20:b8:ab:54:06:07:70:f8:76:f5:8c:3e:
73:1d:4d:c9:e2:75:19:36:1c:db:73:d0:5c:67:33:
fd:df:fb:b7:21:cb:3b:0e:a8:78:49:cd:00:0c:36:
fc:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C2:5E:B1:84:DB:ED:68:15:6B:5B:2F:96:4F:3C:1E:0B:30:AF:CF
X509v3 Authority Key Identifier:
keyid:49:E4:4E:EE:A2:65:69:D0:DD:BD:0E:86:37:F1:2C:F5:05:A4:ED:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeRO7qJladDdvQ6GN_Es9QWk7ek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/JsJesYTb7WgVa1svlk88Hgswr88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/SeRO7qJladDdvQ6GN_Es9QWk7ek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.213.64.0/21
185.16.252.0/22
193.105.186.0/24
194.5.88.0/23
195.234.36.0/24
IPv6:
2a03:6f80::-2a03:6f82:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
0f:b4:52:b6:2c:83:78:ca:ca:40:96:3d:2a:0f:8f:f8:78:c7:
3f:e7:00:ad:55:82:af:be:d1:86:bb:a6:c2:b8:aa:75:ea:d8:
34:16:f8:85:b2:eb:b9:d4:f4:90:13:3d:0c:2f:89:ee:d8:9d:
ba:ff:98:32:87:ef:de:c5:2e:c6:53:e2:11:31:7e:99:3a:af:
c7:b5:38:f0:a4:19:f2:12:71:20:9c:2a:c9:57:37:13:7c:c7:
9c:13:4b:1d:cb:d6:9d:f9:6b:12:3c:f9:66:5b:8e:0e:27:da:
6c:b3:b4:94:08:36:8f:10:a7:64:75:d0:d9:00:e9:0a:e2:37:
02:11:53:c0:30:7d:ef:85:0e:71:f2:fd:95:a9:10:7b:57:72:
ec:89:b6:1d:ec:1b:5c:46:30:fb:1a:7a:2c:77:40:2f:a2:53:
4a:21:99:24:81:3f:c7:87:4e:2d:70:4f:57:02:91:9d:4b:1a:
a8:ee:3f:7b:1d:30:6d:f4:89:bd:cd:aa:2c:9a:8b:2e:a9:94:
d8:f1:49:68:52:03:a1:02:9b:01:ca:14:33:e0:15:dd:6a:49:
5e:0c:8d:da:52:a3:eb:76:9f:00:a4:64:d3:32:6d:28:64:1e:
1a:e9:69:dc:68:d6:64:cc:51:80:66:aa:39:74:fe:c2:25:86:
b4:f6:61:e6
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgISAYpgxIWWqgLhQWMOeTQzB/CcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTQ0ZWVlYTI2NTY5ZDBkZGJkMGU4NjM3ZjEyY2Y1MDVh
NGVkZTkwHhcNMjMwOTA0MTUxNjQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNmMyNWViMTg0ZGJlZDY4MTU2YjViMmY5NjRmM2MxZTBiMzBhZmNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgD1CFbePpCcT5At1xtkKNB3IuqOz
WLpyYGbzXc/FBdyCfIspIFdozVRR8WExjbNgMkdYXxbM8RtdhZF6H2nze4CpWSwV
bxkRVmILvXDx+elL78qpx39O/arEWbXeZTJ5Yh/SQWt9AVuPx/3qZAicXI9K/JiO
k/bl++pQVf0guATh3+nNRmyBTTaASzgWOjUKUN4SG2meeXnqWFBm+xzYJbFZ19hZ
/Txx+MzlKSiYTcJl1LdfyU6j7bwkOmzwUT4Z/cgMBbvfPInrP1tSseKZBKx/DCgg
uKtUBgdw+Hb1jD5zHU3J4nUZNhzbc9BcZzP93/u3Ics7Dqh4Sc0ADDb8zwIDAQAB
o4ICOTCCAjUwHQYDVR0OBBYEFCbCXrGE2+1oFWtbL5ZPPB4LMK/PMB8GA1UdIwQY
MBaAFEnkTu6iZWnQ3b0OhjfxLPUFpO3pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VSTzdxSmxhZERkdlE2R05fRXM5UVdrN2VrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS9jM2RjMWItZDFlZS00ZmYyLWE1YWEt
ZjBjNGJlOGUyNDBhLzEvSnNKZXNZVGI3V2dWYTFzdmxrODhIZ3N3cjg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS9jM2RjMWItZDFlZS00ZmYyLWE1YWEtZjBjNGJlOGUyNDBh
LzEvU2VSTzdxSmxhZERkdlE2R05fRXM5UVdrN2VrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjAkBAIAATAeAwQDstVAAwQC
uRD8AwQAwWm6AwQBwgVYAwQAw+okMBYEAgACMBAwDgMFByoDb4ADBQAqA2+CMA0G
CSqGSIb3DQEBCwUAA4IBAQAPtFK2LIN4yspAlj0qD4/4eMc/5wCtVYKvvtGGu6bC
uKp16tg0FviFsuu51PSQEz0ML4nu2J26/5gyh+/exS7GU+IRMX6ZOq/HtTjwpBny
EnEgnCrJVzcTfMecE0sdy9ad+WsSPPlmW44OJ9pss7SUCDaPEKdkddDZAOkK4jcC
EVPAMH3vhQ5x8v2VqRB7V3LsibYd7BtcRjD7Gnosd0AvolNKIZkkgT/Hh04tcE9X
ApGdSxqo7j97HTBt9Im9zaosmosuqZTY8UloUgOhApsByhQz4BXdakleDI3aUqPr
dp8ApGTTMm0oZB4a6WncaNZkzFGAZqo5dP7CJYa09mHm
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:24 2025 by rpki-client