Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/698f5e-58c2-4a43-9c6a-155c72c1a723/1/EJxRIyNDnczUxdO5Xyc7iIdSeyo.roa
File: EJxRIyNDnczUxdO5Xyc7iIdSeyo.roa (raw, json)
Hash identifier: 1B0trlFTsUsr28h0c9UXNRT8ElMirPMLV3xCxp1Fwrs=
Subject key identifier: 10:9C:51:23:23:43:9D:CC:D4:C5:D3:B9:5F:27:3B:88:87:52:7B:2A
Certificate issuer: /CN=527ad19786dd54b35a4b96ad3fbc5793278e4474
Certificate serial: 04E3C975
Authority key identifier: 52:7A:D1:97:86:DD:54:B3:5A:4B:96:AD:3F:BC:57:93:27:8E:44:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnrRl4bdVLNaS5atP7xXkyeORHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/698f5e-58c2-4a43-9c6a-155c72c1a723/1/EJxRIyNDnczUxdO5Xyc7iIdSeyo.roa
Signing time: Sat 01 Jan 2022 13:56:13 +0000
ROA not before: Sat 01 Jan 2022 13:56:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59816
IP address blocks: 185.251.224.0/22 maxlen: 22
185.251.226.0/24 maxlen: 24
185.251.225.0/24 maxlen: 24
194.147.121.0/24 maxlen: 24
194.147.123.0/24 maxlen: 24
194.147.122.0/24 maxlen: 24
194.147.120.0/24 maxlen: 24
194.147.120.0/22 maxlen: 22
185.251.227.0/24 maxlen: 24
185.70.134.0/24 maxlen: 24
185.70.133.0/24 maxlen: 24
185.70.135.0/24 maxlen: 24
185.70.132.0/22 maxlen: 22
185.70.132.0/24 maxlen: 24
185.241.38.0/24 maxlen: 24
185.241.37.0/24 maxlen: 24
185.241.36.0/22 maxlen: 22
185.241.36.0/24 maxlen: 24
185.241.39.0/24 maxlen: 24
185.254.91.0/24 maxlen: 24
185.254.90.0/24 maxlen: 24
185.254.89.0/24 maxlen: 24
185.254.88.0/24 maxlen: 24
185.254.88.0/22 maxlen: 22
2a05:2a00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82037109 (0x4e3c975)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=527ad19786dd54b35a4b96ad3fbc5793278e4474
Validity
Not Before: Jan 1 13:56:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=109c512323439dccd4c5d3b95f273b8887527b2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b1:6b:b1:e5:81:4c:f5:72:8c:1b:16:65:d2:
3d:8b:4d:8a:99:49:15:b7:33:07:9d:be:e7:59:c2:
b6:c0:99:12:f1:fb:4b:95:9a:64:60:0d:0f:dc:03:
50:57:24:f3:0e:11:2a:bf:25:b4:1d:b4:5a:8f:6e:
30:ac:e7:07:30:fb:c3:1c:c9:fa:8b:fb:12:ed:d9:
ef:93:85:1f:39:a0:6c:b7:7d:b8:0f:56:b7:57:e6:
a2:35:97:77:96:b7:39:e1:e2:b4:5d:7c:77:c7:35:
dd:7f:d9:83:77:ea:01:d3:71:d4:f8:af:ee:f2:55:
ce:14:14:f9:9b:45:64:98:8c:2e:d9:85:fa:b8:c4:
eb:0a:8c:f5:91:47:40:89:9b:e2:6d:f1:14:9d:87:
b6:b9:8a:6d:1b:17:8f:38:3e:ed:e8:e0:99:fa:4f:
63:46:40:18:31:05:d8:99:8c:29:1d:bd:df:78:e0:
f3:f8:b6:33:4f:47:a5:17:bb:f5:42:07:ea:80:60:
e8:cc:2c:a6:00:c4:67:b1:7c:52:cd:72:37:5d:e4:
8b:a6:cd:be:8c:84:e3:16:81:5a:2b:92:bc:ff:27:
b1:93:15:ef:85:2f:38:3c:9b:03:1e:07:21:49:92:
c6:36:96:28:91:4d:49:59:77:29:54:97:d9:6d:9b:
ac:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:9C:51:23:23:43:9D:CC:D4:C5:D3:B9:5F:27:3B:88:87:52:7B:2A
X509v3 Authority Key Identifier:
keyid:52:7A:D1:97:86:DD:54:B3:5A:4B:96:AD:3F:BC:57:93:27:8E:44:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnrRl4bdVLNaS5atP7xXkyeORHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/698f5e-58c2-4a43-9c6a-155c72c1a723/1/EJxRIyNDnczUxdO5Xyc7iIdSeyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/698f5e-58c2-4a43-9c6a-155c72c1a723/1/UnrRl4bdVLNaS5atP7xXkyeORHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.132.0/22
185.241.36.0/22
185.251.224.0/22
185.254.88.0/22
194.147.120.0/22
IPv6:
2a05:2a00::/29
Signature Algorithm: sha256WithRSAEncryption
5c:24:8a:8c:bf:26:ff:d9:65:c4:eb:0f:39:b8:79:71:d1:f7:
9f:f0:01:c3:a3:b4:3e:10:5a:90:e5:c2:01:08:6b:f8:42:3c:
c6:26:85:31:86:57:c8:7f:fe:ee:70:6c:65:40:ff:1b:24:e6:
cd:f0:a1:1a:14:30:58:64:95:56:1a:86:c4:93:4b:6d:89:b2:
76:64:f5:45:54:f5:ef:1a:e0:e2:4f:40:49:a9:84:31:fa:9f:
a9:38:ab:1e:f9:a1:00:66:0b:f5:f0:91:dd:44:eb:c3:57:ff:
55:ed:4a:f9:cf:a1:95:55:fa:71:35:66:67:14:1f:ee:bd:43:
4e:8f:91:d1:75:c2:6e:b8:61:28:f4:d2:80:85:70:f2:6c:b5:
38:2c:39:e6:cd:93:f4:28:f7:23:f3:f9:b2:03:21:63:57:10:
c2:a2:d5:4d:1a:d6:27:21:3f:0f:3b:67:2d:4e:2c:40:9d:de:
63:00:bc:05:c4:e6:4e:e8:bc:b8:4f:bd:2a:ea:6b:fa:90:e4:
79:9e:b4:0c:7e:34:11:2c:c4:bc:9e:8b:34:1c:17:d5:1a:97:
51:f7:f7:21:ec:ac:f9:19:23:6d:cb:f8:b0:72:03:9d:7c:54:
16:38:6f:67:8d:63:d3:cd:d7:92:3d:de:3a:9d:02:f2:3a:13:
2e:ed:27:cb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgIEBOPJdTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MjdhZDE5Nzg2ZGQ1NGIzNWE0Yjk2YWQzZmJjNTc5MzI3OGU0NDc0MB4XDTIyMDEw
MTEzNTYxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTA5YzUxMjMyMzQz
OWRjY2Q0YzVkM2I5NWYyNzNiODg4NzUyN2IyYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKCxa7HlgUz1cowbFmXSPYtNiplJFbczB52+51nCtsCZEvH7
S5WaZGAND9wDUFck8w4RKr8ltB20Wo9uMKznBzD7wxzJ+ov7Eu3Z75OFHzmgbLd9
uA9Wt1fmojWXd5a3OeHitF18d8c13X/Zg3fqAdNx1Piv7vJVzhQU+ZtFZJiMLtmF
+rjE6wqM9ZFHQImb4m3xFJ2HtrmKbRsXjzg+7ejgmfpPY0ZAGDEF2JmMKR2933jg
8/i2M09HpRe79UIH6oBg6MwspgDEZ7F8Us1yN13ki6bNvoyE4xaBWiuSvP8nsZMV
74UvODybAx4HIUmSxjaWKJFNSVl3KVSX2W2brGkCAwEAAaOCAjAwggIsMB0GA1Ud
DgQWBBQQnFEjI0OdzNTF07lfJzuIh1J7KjAfBgNVHSMEGDAWgBRSetGXht1Us1pL
lq0/vFeTJ45EdDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VuclJsNGJkVkxOYVM1YXRQN3hYa3llT1JIUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODgvNjk4ZjVlLTU4YzItNGE0My05YzZhLTE1NWM3MmMxYTcyMy8x
L0VKeFJJeU5EbmN6VXhkTzVYeWM3aUlkU2V5by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODgv
Njk4ZjVlLTU4YzItNGE0My05YzZhLTE1NWM3MmMxYTcyMy8xL1VuclJsNGJkVkxO
YVM1YXRQN3hYa3llT1JIUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBG
BggrBgEFBQcBBwEB/wQ3MDUwJAQCAAEwHgMEArlGhAMEArnxJAMEArn74AMEArn+
WAMEAsKTeDANBAIAAjAHAwUDKgUqADANBgkqhkiG9w0BAQsFAAOCAQEAXCSKjL8m
/9llxOsPObh5cdH3n/ABw6O0PhBakOXCAQhr+EI8xiaFMYZXyH/+7nBsZUD/GyTm
zfChGhQwWGSVVhqGxJNLbYmydmT1RVT17xrg4k9ASamEMfqfqTirHvmhAGYL9fCR
3UTrw1f/Ve1K+c+hlVX6cTVmZxQf7r1DTo+R0XXCbrhhKPTSgIVw8my1OCw55s2T
9Cj3I/P5sgMhY1cQwqLVTRrWJyE/DztnLU4sQJ3eYwC8BcTmTui8uE+9Kupr+pDk
eZ60DH40ESzEvJ6LNBwX1RqXUff3Ieys+Rkjbcv4sHIDnXxUFjhvZ41j083Xkj3e
Op0C8joTLu0nyw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:31 2025 by rpki-client