Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/UM7Kwg5nviv9Kt3n_Kmf82COL50.roa
File: UM7Kwg5nviv9Kt3n_Kmf82COL50.roa (raw, json)
Hash identifier: HujBI8pZ8TOfYFqKB93DcZeEXTsvIDNLbSSX8z8nyQo=
Subject key identifier: 50:CE:CA:C2:0E:67:BE:2B:FD:2A:DD:E7:FC:A9:9F:F3:60:8E:2F:9D
Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129
Certificate serial: 0185718322E947D4451F4A1800F5E214DD4D
Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/UM7Kwg5nviv9Kt3n_Kmf82COL50.roa
Signing time: Mon 02 Jan 2023 08:04:57 +0000
ROA not before: Mon 02 Jan 2023 08:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12880
IP address blocks: 185.105.102.0/23 maxlen: 23
185.105.100.0/23 maxlen: 23
5.232.0.0/13 maxlen: 13
5.239.0.0/16 maxlen: 16
185.72.82.0/24 maxlen: 24
185.72.81.0/24 maxlen: 24
185.72.80.0/24 maxlen: 24
185.72.83.0/24 maxlen: 24
80.210.48.0/20 maxlen: 20
80.210.48.0/22 maxlen: 22
151.235.128.0/18 maxlen: 18
5.232.160.0/20 maxlen: 20
188.209.16.0/21 maxlen: 21
188.209.24.0/22 maxlen: 22
188.209.28.0/23 maxlen: 23
188.209.30.0/23 maxlen: 23
5.74.128.0/17 maxlen: 17
188.215.160.0/20 maxlen: 20
185.18.159.0/24 maxlen: 24
185.18.156.0/24 maxlen: 24
185.18.157.0/24 maxlen: 24
185.18.158.0/24 maxlen: 24
212.33.208.0/23 maxlen: 23
212.33.212.0/23 maxlen: 23
185.111.80.0/24 maxlen: 24
212.33.214.0/23 maxlen: 23
185.111.83.0/24 maxlen: 24
185.111.82.0/24 maxlen: 24
185.111.81.0/24 maxlen: 24
178.236.110.0/24 maxlen: 24
46.100.0.0/16 maxlen: 16
46.100.6.0/23 maxlen: 23
77.81.144.0/21 maxlen: 21
77.81.152.0/21 maxlen: 21
93.118.168.0/21 maxlen: 21
5.239.244.0/23 maxlen: 23
46.100.43.0/24 maxlen: 24
46.100.44.0/24 maxlen: 24
188.212.160.0/19 maxlen: 19
93.118.96.0/19 maxlen: 19
5.238.0.0/16 maxlen: 16
178.236.97.0/24 maxlen: 24
178.236.96.0/24 maxlen: 24
185.88.48.0/22 maxlen: 22
178.236.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:22:e9:47:d4:45:1f:4a:18:00:f5:e2:14:dd:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129
Validity
Not Before: Jan 2 08:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50cecac20e67be2bfd2adde7fca99ff3608e2f9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:08:be:8e:29:b1:6f:75:60:12:92:cb:b2:f7:
96:bc:31:9e:20:09:f5:d2:2c:56:1f:f7:c6:7d:db:
cb:69:96:11:bf:2e:e3:b4:c8:39:dc:71:05:40:09:
0e:ba:b0:2e:16:c6:d0:a7:1c:8f:40:1e:54:63:b1:
34:6b:d9:cf:95:6e:e1:a9:33:10:dc:26:79:e2:91:
a3:5a:8c:27:57:51:42:df:81:cd:2b:60:ea:e1:5a:
2a:0f:74:f7:0c:a8:cf:c7:d7:89:b7:8b:77:a1:45:
32:fe:9a:40:2b:af:4d:5f:12:37:ad:9b:9b:a4:68:
2e:48:28:48:7f:a4:6a:71:cc:b3:bf:f6:60:6b:8c:
d3:f1:78:dc:54:bb:60:85:1e:e7:15:4c:b1:f6:6e:
69:03:ba:eb:74:77:56:ce:05:a5:ec:53:43:66:08:
bf:a2:3f:87:de:c5:2f:7e:78:2f:34:8e:ed:de:ac:
7a:b1:b0:17:51:85:5e:8d:b5:50:8b:46:1f:fc:0c:
bf:cc:d8:6c:fd:d0:ae:09:ca:75:38:04:07:70:57:
31:ad:54:02:58:d8:0c:a6:92:81:5c:0a:dc:02:73:
3e:ac:5f:99:8a:50:cc:01:84:8a:6a:43:d9:6f:2d:
18:96:64:b9:6d:64:c4:04:a5:f6:c7:e0:b3:27:b1:
85:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:CE:CA:C2:0E:67:BE:2B:FD:2A:DD:E7:FC:A9:9F:F3:60:8E:2F:9D
X509v3 Authority Key Identifier:
keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/UM7Kwg5nviv9Kt3n_Kmf82COL50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.74.128.0/17
5.232.0.0/13
46.100.0.0/16
77.81.144.0/20
80.210.48.0/20
93.118.96.0/19
93.118.168.0/21
151.235.128.0/18
178.236.96.0/23
178.236.104.0/24
178.236.110.0/24
185.18.156.0/22
185.72.80.0/22
185.88.48.0/22
185.105.100.0/22
185.111.80.0/22
188.209.16.0/20
188.212.160.0/19
188.215.160.0/20
212.33.208.0/23
212.33.212.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:3a:bc:39:3c:0b:4b:80:31:1c:bd:e8:15:e2:1d:0c:8d:98:
71:6c:99:42:26:f5:11:e3:74:b2:31:da:7e:04:5b:8d:f7:a4:
05:fa:a4:b0:91:de:ea:c8:8c:46:98:44:28:2f:bb:3c:26:ec:
8c:6b:d3:10:b6:3e:cb:7c:d4:d4:ad:62:e5:53:bf:c0:db:10:
ab:da:c3:48:49:96:b9:8a:0b:ee:de:e2:b3:e3:1b:a1:0c:2a:
fd:d6:4f:eb:dd:e1:5d:de:92:2c:eb:61:10:bd:b8:d7:01:10:
ce:04:fd:7c:2f:94:b2:11:6a:40:84:3f:3a:99:38:54:ba:a1:
1f:8a:e1:53:a8:2e:0f:be:e2:11:0e:18:c5:19:45:ad:a1:2b:
fb:c7:a5:b5:44:70:b0:c6:e2:cc:87:da:72:5a:0f:fa:1b:02:
14:64:67:f1:4c:b4:9a:ab:f5:8c:c2:cc:ac:81:e0:42:69:cb:
68:f9:10:9c:64:17:69:08:90:d5:2b:1c:a0:c8:1c:4c:f7:16:
c9:07:b6:ba:32:d6:19:d2:ce:78:8c:c9:fc:6f:c3:d7:2a:dc:
ed:f2:d9:0d:1d:78:e1:b1:20:86:91:13:ad:1a:c8:37:ae:36:
4b:74:f8:da:03:62:33:39:b4:2a:83:09:e4:57:6f:5f:0a:83:
63:d5:37:90
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgISAYVxgyLpR9RFH0oYAPXiFN1NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0
YjUxMjkwHhcNMjMwMTAyMDgwNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MGNlY2FjMjBlNjdiZTJiZmQyYWRkZTdmY2E5OWZmMzYwOGUyZjlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgi+jimxb3VgEpLLsveWvDGeIAn1
0ixWH/fGfdvLaZYRvy7jtMg53HEFQAkOurAuFsbQpxyPQB5UY7E0a9nPlW7hqTMQ
3CZ54pGjWownV1FC34HNK2Dq4VoqD3T3DKjPx9eJt4t3oUUy/ppAK69NXxI3rZub
pGguSChIf6Rqccyzv/Zga4zT8XjcVLtghR7nFUyx9m5pA7rrdHdWzgWl7FNDZgi/
oj+H3sUvfngvNI7t3qx6sbAXUYVejbVQi0Yf/Ay/zNhs/dCuCcp1OAQHcFcxrVQC
WNgMppKBXArcAnM+rF+ZilDMAYSKakPZby0YlmS5bWTEBKX2x+CzJ7GFzwIDAQAB
o4ICgzCCAn8wHQYDVR0OBBYEFFDOysIOZ74r/Srd5/ypn/Ngji+dMB8GA1UdIwQY
MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt
YmYzYjIxYTI3MGYyLzEvVU03S3dnNW52aXY5S3Qzbl9LbWY4MkNPTDUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy
LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGYBggrBgEFBQcBBwEB/wSBiDCBhTCBggQCAAEwfAMEBwVK
gAMDAwXoAwMALmQDBARNUZADBARQ0jADBAVddmADBANddqgDBAaX64ADBAGy7GAD
BACy7GgDBACy7G4DBAK5EpwDBAK5SFADBAK5WDADBAK5aWQDBAK5b1ADBAS80RAD
BAW81KADBAS816ADBAHUIdADBALUIdQwDQYJKoZIhvcNAQELBQADggEBALs6vDk8
C0uAMRy96BXiHQyNmHFsmUIm9RHjdLIx2n4EW433pAX6pLCR3urIjEaYRCgvuzwm
7Ixr0xC2Pst81NStYuVTv8DbEKvaw0hJlrmKC+7e4rPjG6EMKv3WT+vd4V3ekizr
YRC9uNcBEM4E/XwvlLIRakCEPzqZOFS6oR+K4VOoLg++4hEOGMUZRa2hK/vHpbVE
cLDG4syH2nJaD/obAhRkZ/FMtJqr9YzCzKyB4EJpy2j5EJxkF2kIkNUrHKDIHEz3
FskHtroy1hnSzniMyfxvw9cq3O3y2Q0deOGxIIaRE60ayDeuNkt0+NoDYjM5tCqD
CeRXb18Kg2PVN5A=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:07 2025 by rpki-client