Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/5-RpuLSz1jqduE64_JhYAPmnTvs.roa
File: 5-RpuLSz1jqduE64_JhYAPmnTvs.roa (raw, json)
Hash identifier: otdh0nK9JTrdZXD9tkBW+8pMsT4Zzx8ndS+96hx1jS4=
Subject key identifier: E7:E4:69:B8:B4:B3:D6:3A:9D:B8:4E:B8:FC:98:58:00:F9:A7:4E:FB
Certificate issuer: /CN=e0c8a390dde5e1519a4bd3da754a93e988492d67
Certificate serial: 0185F8757FEE1F7A39D99089CAF65511876D
Authority key identifier: E0:C8:A3:90:DD:E5:E1:51:9A:4B:D3:DA:75:4A:93:E9:88:49:2D:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4MijkN3l4VGaS9PadUqT6YhJLWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/5-RpuLSz1jqduE64_JhYAPmnTvs.roa
Signing time: Sat 28 Jan 2023 12:58:48 +0000
ROA not before: Sat 28 Jan 2023 12:58:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61323
IP address blocks: 81.201.128.0/20 maxlen: 20
80.66.200.0/22 maxlen: 22
185.241.248.0/22 maxlen: 24
185.221.204.0/22 maxlen: 22
193.39.252.0/22 maxlen: 22
194.39.164.0/22 maxlen: 22
185.160.252.0/22 maxlen: 24
78.137.112.0/20 maxlen: 20
178.238.128.0/20 maxlen: 20
45.84.20.0/22 maxlen: 24
185.181.196.0/22 maxlen: 22
176.124.52.0/22 maxlen: 24
185.210.196.0/22 maxlen: 22
185.207.108.0/22 maxlen: 22
195.69.102.0/24 maxlen: 24
185.234.36.0/22 maxlen: 22
78.109.160.0/20 maxlen: 20
185.197.60.0/22 maxlen: 22
185.160.180.0/22 maxlen: 22
80.244.176.0/20 maxlen: 20
45.157.40.0/22 maxlen: 22
192.166.44.0/24 maxlen: 24
192.166.45.0/24 maxlen: 24
192.166.46.0/23 maxlen: 23
159.253.208.0/21 maxlen: 21
185.226.220.0/22 maxlen: 22
185.162.224.0/22 maxlen: 22
31.193.0.0/20 maxlen: 20
185.217.40.0/22 maxlen: 22
185.220.60.0/22 maxlen: 22
185.156.64.0/24 maxlen: 24
185.156.65.0/24 maxlen: 24
185.156.66.0/23 maxlen: 23
37.220.88.0/21 maxlen: 21
185.55.78.0/23 maxlen: 23
185.55.77.0/24 maxlen: 24
185.166.128.0/22 maxlen: 22
45.131.136.0/22 maxlen: 22
109.108.128.0/19 maxlen: 19
185.216.76.0/22 maxlen: 22
78.24.89.0/24 maxlen: 24
78.24.90.0/23 maxlen: 23
78.24.88.0/24 maxlen: 24
185.182.88.0/22 maxlen: 22
45.145.100.0/22 maxlen: 22
46.37.160.0/19 maxlen: 19
94.229.160.0/20 maxlen: 20
2a02:22d0::/32 maxlen: 32
2a09:b600:5::/48 maxlen: 48
2a09:ba00:4::/48 maxlen: 48
2a02:22d0:c::/48 maxlen: 48
2a09:b200:6::/48 maxlen: 48
2a0c:3dc0::/29 maxlen: 29
2a02:21a8::/48 maxlen: 48
2a02:21a8:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f8:75:7f:ee:1f:7a:39:d9:90:89:ca:f6:55:11:87:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0c8a390dde5e1519a4bd3da754a93e988492d67
Validity
Not Before: Jan 28 12:58:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7e469b8b4b3d63a9db84eb8fc985800f9a74efb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:85:b0:c4:02:c0:49:11:3b:20:68:f0:bb:0f:
88:f5:f5:49:4a:da:dc:3c:07:e9:b6:e3:1a:00:c7:
cc:cc:6c:ad:ad:cc:2d:22:f0:fa:8b:17:d5:8d:67:
07:2b:18:7b:0a:bb:eb:73:65:c9:66:99:9d:36:f2:
60:c9:f6:ee:52:00:a3:b5:b1:94:06:76:ee:85:07:
f9:fd:a8:72:e8:5d:5c:0b:8b:76:cd:aa:63:58:15:
70:fc:ad:ba:07:fe:f3:62:22:b6:92:10:63:84:ad:
8e:26:a1:01:3a:80:16:ae:d5:81:2b:49:0b:15:13:
4f:b1:e0:ab:b2:89:ca:3c:2a:e6:e7:2c:09:46:54:
5f:df:cc:a6:25:ff:e6:29:da:67:6f:b0:ee:27:87:
d6:20:31:1d:35:94:82:93:10:24:73:fd:70:a1:5e:
dc:7b:31:11:84:e2:0e:d9:48:77:5b:9b:18:56:c1:
27:98:31:6d:9a:2d:5e:52:eb:fe:f3:b5:ae:b1:d0:
d7:6a:a6:cc:2f:42:d5:3a:59:e7:19:4a:b0:2e:4b:
0d:d8:00:72:5f:7c:2b:89:f9:22:cd:04:88:5f:bb:
0d:b6:e4:c7:ea:2f:40:1e:8a:68:0f:6f:50:7c:5d:
55:ec:97:0c:ff:03:88:d9:e4:6a:2f:e2:2a:61:45:
62:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:E4:69:B8:B4:B3:D6:3A:9D:B8:4E:B8:FC:98:58:00:F9:A7:4E:FB
X509v3 Authority Key Identifier:
keyid:E0:C8:A3:90:DD:E5:E1:51:9A:4B:D3:DA:75:4A:93:E9:88:49:2D:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4MijkN3l4VGaS9PadUqT6YhJLWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/5-RpuLSz1jqduE64_JhYAPmnTvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/4MijkN3l4VGaS9PadUqT6YhJLWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.0.0/20
37.220.88.0/21
45.84.20.0/22
45.131.136.0/22
45.145.100.0/22
45.157.40.0/22
46.37.160.0/19
78.24.88.0/22
78.109.160.0/20
78.137.112.0/20
80.66.200.0/22
80.244.176.0/20
81.201.128.0/20
94.229.160.0/20
109.108.128.0/19
159.253.208.0/21
176.124.52.0/22
178.238.128.0/20
185.55.77.0-185.55.79.255
185.156.64.0/22
185.160.180.0/22
185.160.252.0/22
185.162.224.0/22
185.166.128.0/22
185.181.196.0/22
185.182.88.0/22
185.197.60.0/22
185.207.108.0/22
185.210.196.0/22
185.216.76.0/22
185.217.40.0/22
185.220.60.0/22
185.221.204.0/22
185.226.220.0/22
185.234.36.0/22
185.241.248.0/22
192.166.44.0/22
193.39.252.0/22
194.39.164.0/22
195.69.102.0/24
IPv6:
2a02:21a8::/47
2a02:22d0::/32
2a09:b200:6::/48
2a09:b600:5::/48
2a09:ba00:4::/48
2a0c:3dc0::/29
Signature Algorithm: sha256WithRSAEncryption
81:f1:4a:f1:13:57:64:f2:eb:70:f5:94:ad:26:cf:10:4b:34:
68:0c:40:a0:e9:08:db:65:81:5f:31:b8:b5:be:76:d9:c5:9b:
25:c7:a0:60:d1:6f:e0:f1:2b:05:cd:f5:8e:3e:d1:66:77:7a:
03:d5:65:a8:c1:d8:6d:d4:f1:51:88:fa:28:f8:df:47:2c:0a:
ee:1e:38:2b:f8:3b:36:db:b7:5d:33:76:fe:92:44:e8:eb:00:
b6:c2:f1:ef:b3:d0:16:fe:b4:94:4b:79:bb:10:5b:c1:28:0e:
d6:13:ed:f8:0d:40:c7:fd:33:07:94:8f:56:11:b5:0c:4f:20:
2f:fb:53:89:71:6f:21:bc:62:5d:64:39:2b:f6:91:dd:ce:0d:
89:41:88:ce:88:c7:d1:14:7a:46:b0:b6:d1:94:59:a7:6a:f2:
8b:c0:85:22:a7:5d:ed:9a:9d:a4:9f:04:24:65:f1:9a:84:b7:
6d:1a:4e:b5:34:e2:8e:35:90:81:6c:e0:39:38:48:1b:f5:d8:
4b:d6:db:24:44:51:25:d2:69:2d:4d:ff:d4:d9:6c:14:4c:eb:
34:81:26:52:64:a7:cd:c5:39:fc:3e:6e:8b:9b:5b:94:5c:78:
e0:7d:52:94:d4:fe:fe:3d:10:0e:63:ec:ca:2e:3c:73:24:2b:
fd:6a:2d:e6
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgISAYX4dX/uH3o52ZCJyvZVEYdtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwYzhhMzkwZGRlNWUxNTE5YTRiZDNkYTc1NGE5M2U5ODg0
OTJkNjcwHhcNMjMwMTI4MTI1ODQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlN2U0NjliOGI0YjNkNjNhOWRiODRlYjhmYzk4NTgwMGY5YTc0ZWZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyIWwxALASRE7IGjwuw+I9fVJStrc
PAfptuMaAMfMzGytrcwtIvD6ixfVjWcHKxh7Crvrc2XJZpmdNvJgyfbuUgCjtbGU
BnbuhQf5/ahy6F1cC4t2zapjWBVw/K26B/7zYiK2khBjhK2OJqEBOoAWrtWBK0kL
FRNPseCrsonKPCrm5ywJRlRf38ymJf/mKdpnb7DuJ4fWIDEdNZSCkxAkc/1woV7c
ezERhOIO2Uh3W5sYVsEnmDFtmi1eUuv+87WusdDXaqbML0LVOlnnGUqwLksN2ABy
X3wrifkizQSIX7sNtuTH6i9AHopoD29QfF1V7JcM/wOI2eRqL+IqYUVikwIDAQAB
o4IDPTCCAzkwHQYDVR0OBBYEFOfkabi0s9Y6nbhOuPyYWAD5p077MB8GA1UdIwQY
MBaAFODIo5Dd5eFRmkvT2nVKk+mISS1nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNE1pamtOM2w0VkdhUzlQYWRVcVQ2WWhKTFdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS84NjliMzAtZmNkNi00OGRmLThkMjUt
YmVmM2JhMjFjNzE1LzEvNS1ScHVMU3oxanFkdUU2NF9KaFlBUG1uVHZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS84NjliMzAtZmNkNi00OGRmLThkMjUtYmVmM2JhMjFjNzE1
LzEvNE1pamtOM2w0VkdhUzlQYWRVcVQ2WWhKTFdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBUQYIKwYBBQUHAQcBAf8EggFAMIIBPDCB/wQCAAEwgfgD
BAQfwQADBAMl3FgDBAItVBQDBAItg4gDBAItkWQDBAItnSgDBAUuJaADBAJOGFgD
BARObaADBAROiXADBAJQQsgDBARQ9LADBARRyYADBARe5aADBAVtbIADBAOf/dAD
BAKwfDQDBASy7oAwDAMEALk3TQMEBLk3QAMEArmcQAMEArmgtAMEArmg/AMEArmi
4AMEArmmgAMEArm1xAMEArm2WAMEArnFPAMEArnPbAMEArnSxAMEArnYTAMEArnZ
KAMEArncPAMEArndzAMEArni3AMEArnqJAMEArnx+AMEAsCmLAMEAsEn/AMEAsIn
pAMEAMNFZjA4BAIAAjAyAwcBKgIhqAAAAwUAKgIi0AMHACoJsgAABgMHACoJtgAA
BQMHACoJugAABAMFAyoMPcAwDQYJKoZIhvcNAQELBQADggEBAIHxSvETV2Ty63D1
lK0mzxBLNGgMQKDpCNtlgV8xuLW+dtnFmyXHoGDRb+DxKwXN9Y4+0WZ3egPVZajB
2G3U8VGI+ij430csCu4eOCv4Ozbbt10zdv6SROjrALbC8e+z0Bb+tJRLebsQW8Eo
DtYT7fgNQMf9MweUj1YRtQxPIC/7U4lxbyG8Yl1kOSv2kd3ODYlBiM6Ix9EUekaw
ttGUWadq8ovAhSKnXe2anaSfBCRl8ZqEt20aTrU04o41kIFs4Dk4SBv12EvW2yRE
USXSaS1N/9TZbBRM6zSBJlJkp83FOfw+boubW5RceOB9UpTU/v49EA5j7MouPHMk
K/1qLeY=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:48 2025 by rpki-client