Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/_ebpUetbDJbOQDBwibm2qDSPiPI.roa
File: _ebpUetbDJbOQDBwibm2qDSPiPI.roa (raw, json)
Hash identifier: 42BpvJcsdQj5xpCVUhZZxLfEupJHdALnaiqMi2AggUM=
Subject key identifier: FD:E6:E9:51:EB:5B:0C:96:CE:40:30:70:89:B9:B6:A8:34:8F:88:F2
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 0829EF0F
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/_ebpUetbDJbOQDBwibm2qDSPiPI.roa
Signing time: Tue 17 May 2022 16:07:46 +0000
ROA not before: Tue 17 May 2022 16:07:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203120
IP address blocks: 89.37.96.0/24 maxlen: 24
89.33.254.0/24 maxlen: 24
89.36.141.0/24 maxlen: 24
188.172.160.0/19 maxlen: 19
188.209.120.0/23 maxlen: 23
89.34.102.0/24 maxlen: 24
93.115.59.0/24 maxlen: 24
93.119.120.0/23 maxlen: 23
86.106.10.0/24 maxlen: 24
46.102.180.0/24 maxlen: 24
185.80.112.0/22 maxlen: 22
185.80.112.0/23 maxlen: 24
86.105.176.0/24 maxlen: 24
185.80.114.0/23 maxlen: 24
89.37.130.0/23 maxlen: 23
89.41.190.0/23 maxlen: 23
89.37.134.0/24 maxlen: 24
77.81.90.0/23 maxlen: 23
86.105.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136965903 (0x829ef0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: May 17 16:07:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fde6e951eb5b0c96ce40307089b9b6a8348f88f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:52:4e:eb:6d:f1:a0:14:95:25:46:60:15:5e:
dc:77:0d:c3:3d:7f:cb:73:05:87:04:6a:71:43:0b:
d6:69:10:60:65:b4:4a:58:01:cd:da:e2:29:00:b1:
52:1e:d9:5c:7f:0e:8b:93:83:08:e2:5f:37:75:63:
81:1e:38:db:75:45:eb:06:9f:35:58:98:0f:fc:73:
35:79:15:52:3c:80:98:8f:73:01:71:0b:ef:70:01:
c5:ec:b2:54:c0:28:b8:a9:14:76:fb:4e:ac:0a:f5:
9f:a9:a3:78:0f:2d:e6:c4:07:7f:ca:2b:75:7a:90:
7b:21:af:cb:65:7f:e4:bc:b0:d0:56:75:c1:17:06:
3f:6c:36:e5:22:0a:39:fc:f4:29:0f:91:bd:37:ab:
6e:a8:8b:d5:51:c9:a7:7c:c6:fc:e4:dc:25:29:da:
80:a7:ca:7a:f6:bd:37:97:8b:e2:c1:38:14:69:19:
a8:93:8a:c5:b9:b4:44:ca:f0:62:51:19:8b:37:2e:
5f:eb:c4:2e:5f:d9:75:85:10:b8:77:ab:71:59:8a:
2a:85:06:97:0e:eb:3a:bb:5c:80:9f:7d:61:cb:ea:
74:99:08:b4:9b:57:66:79:66:cf:9e:4a:18:2e:ff:
96:8f:c0:f2:ad:64:0a:ab:77:69:dd:44:1b:fa:c4:
9e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:E6:E9:51:EB:5B:0C:96:CE:40:30:70:89:B9:B6:A8:34:8F:88:F2
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/_ebpUetbDJbOQDBwibm2qDSPiPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.180.0/24
77.81.90.0/23
86.105.6.0/24
86.105.176.0/24
86.106.10.0/24
89.33.254.0/24
89.34.102.0/24
89.36.141.0/24
89.37.96.0/24
89.37.130.0/23
89.37.134.0/24
89.41.190.0/23
93.115.59.0/24
93.119.120.0/23
185.80.112.0/22
188.172.160.0/19
188.209.120.0/23
Signature Algorithm: sha256WithRSAEncryption
02:9e:ae:6b:43:34:16:b3:30:87:66:f5:4f:af:1a:83:22:1b:
86:b3:60:58:99:39:a2:0c:9f:93:1a:23:6b:27:32:93:ff:0f:
2c:b9:01:ef:d0:00:c3:eb:fa:31:54:0e:c6:6d:74:d5:74:8c:
8c:9d:51:d2:87:ff:f4:c6:4f:2d:34:de:4c:2f:d9:fc:24:57:
81:de:b0:19:cd:7b:ad:10:05:a3:34:20:7d:b3:86:fd:c9:35:
f7:12:5b:03:2f:93:44:7b:ee:7e:71:55:33:b2:69:6c:2f:9c:
65:74:b7:13:ef:b3:d8:92:8e:6b:cd:a0:b9:33:9f:c6:17:c8:
56:0b:6e:1f:93:95:67:9f:fc:59:eb:7a:4f:84:81:77:02:b0:
5a:2d:dc:d6:fb:cd:e5:1e:eb:9a:44:bc:17:82:36:b9:23:59:
d4:35:85:f2:9d:6b:13:25:1b:f6:47:fc:17:3b:c6:70:4d:02:
88:46:49:ce:9b:2a:d0:86:06:1e:0c:6a:b6:1d:9d:44:b4:45:
5c:2e:49:d8:6a:39:e0:e6:43:46:3c:96:04:10:14:be:4a:be:
8a:36:06:bf:9f:2e:06:1f:fa:46:87:6e:89:e9:26:f4:05:df:
67:7e:4c:14:cd:2a:b8:ec:8a:29:d1:f3:a9:c7:1a:83:b2:0b:
89:2a:29:50
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgIECCnvDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NGY4MjRkMzJkZjFhNTExM2Q4MjEwMTM0NWQ3ODVhMzhhZGRiZGU1MB4XDTIyMDUx
NzE2MDc0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmRlNmU5NTFlYjVi
MGM5NmNlNDAzMDcwODliOWI2YTgzNDhmODhmMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKpSTutt8aAUlSVGYBVe3HcNwz1/y3MFhwRqcUML1mkQYGW0
SlgBzdriKQCxUh7ZXH8Oi5ODCOJfN3VjgR4423VF6wafNViYD/xzNXkVUjyAmI9z
AXEL73ABxeyyVMAouKkUdvtOrAr1n6mjeA8t5sQHf8ordXqQeyGvy2V/5Lyw0FZ1
wRcGP2w25SIKOfz0KQ+RvTerbqiL1VHJp3zG/OTcJSnagKfKeva9N5eL4sE4FGkZ
qJOKxbm0RMrwYlEZizcuX+vELl/ZdYUQuHercVmKKoUGlw7rOrtcgJ99YcvqdJkI
tJtXZnlmz55KGC7/lo/A8q1kCqt3ad1EG/rEnoMCAwEAAaOCAmkwggJlMB0GA1Ud
DgQWBBT95ulR61sMls5AMHCJubaoNI+I8jAfBgNVHSMEGDAWgBSE+CTTLfGlET2C
EBNF14Wjit295TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hQZ2sweTN4cFJFOWdoQVRSZGVGbzRyZHZlVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTEvOWQ2NWJiLWFiNGYtNDNhYS1iYmE4LTQzNzM5NDkzOGM1Mi8x
L19lYnBVZXRiREpiT1FEQndpYm0ycURTUGlQSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEv
OWQ2NWJiLWFiNGYtNDNhYS1iYmE4LTQzNzM5NDkzOGM1Mi8xL2hQZ2sweTN4cFJF
OWdoQVRSZGVGbzRyZHZlVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjB/
BggrBgEFBQcBBwEB/wRwMG4wbAQCAAEwZgMEAC5mtAMEAU1RWgMEAFZpBgMEAFZp
sAMEAFZqCgMEAFkh/gMEAFkiZgMEAFkkjQMEAFklYAMEAVklggMEAFklhgMEAVkp
vgMEAF1zOwMEAV13eAMEArlQcAMEBbysoAMEAbzReDANBgkqhkiG9w0BAQsFAAOC
AQEAAp6ua0M0FrMwh2b1T68agyIbhrNgWJk5ogyfkxojaycyk/8PLLkB79AAw+v6
MVQOxm101XSMjJ1R0of/9MZPLTTeTC/Z/CRXgd6wGc17rRAFozQgfbOG/ck19xJb
Ay+TRHvufnFVM7JpbC+cZXS3E++z2JKOa82guTOfxhfIVgtuH5OVZ5/8Wet6T4SB
dwKwWi3c1vvN5R7rmkS8F4I2uSNZ1DWF8p1rEyUb9kf8FzvGcE0CiEZJzpsq0IYG
Hgxqth2dRLRFXC5J2Go54OZDRjyWBBAUvkq+ijYGv58uBh/6Roduiekm9AXfZ35M
FM0quOyKKdHzqccag7ILiSopUA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org