Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/L2mMweje-R6l9QJWhlFczT9ZXxk.roa
File: L2mMweje-R6l9QJWhlFczT9ZXxk.roa (raw, json)
Hash identifier: 71BvQrL/d9o06CF1Wk0A73FwcHRAggRumzpE6bCzuZw=
Subject key identifier: 2F:69:8C:C1:E8:DE:F9:1E:A5:F5:02:56:86:51:5C:CD:3F:59:5F:19
Certificate issuer: /CN=d3cb5cecc213b9f86dbba518521e8546ec93861c
Certificate serial: 02D18BBA
Authority key identifier: D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/L2mMweje-R6l9QJWhlFczT9ZXxk.roa
Signing time: Sat 01 Jan 2022 16:06:22 +0000
ROA not before: Sat 01 Jan 2022 16:06:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31034
IP address blocks: 5.249.128.0/19 maxlen: 24
195.231.0.0/17 maxlen: 24
185.58.116.0/22 maxlen: 24
185.58.120.0/22 maxlen: 24
217.61.0.0/18 maxlen: 24
94.177.192.0/18 maxlen: 24
89.46.104.0/21 maxlen: 24
95.110.128.0/17 maxlen: 24
31.14.128.0/20 maxlen: 24
31.11.32.0/21 maxlen: 24
77.81.224.0/20 maxlen: 24
89.46.64.0/20 maxlen: 24
46.37.0.0/19 maxlen: 24
94.177.160.0/19 maxlen: 24
89.46.192.0/21 maxlen: 24
62.149.128.0/17 maxlen: 24
185.56.8.0/22 maxlen: 24
80.211.0.0/16 maxlen: 24
194.182.110.0/23 maxlen: 24
188.213.160.0/20 maxlen: 24
176.107.144.0/20 maxlen: 24
80.73.224.0/20 maxlen: 24
89.36.208.0/22 maxlen: 24
2a00:6d40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47287226 (0x2d18bba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cb5cecc213b9f86dbba518521e8546ec93861c
Validity
Not Before: Jan 1 16:06:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f698cc1e8def91ea5f5025686515ccd3f595f19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d6:6f:6d:fd:be:98:b2:b4:ba:87:5e:69:4b:
5c:b6:15:50:d2:ca:ca:61:b1:32:e6:0b:34:0b:bd:
29:91:cb:c9:76:bc:f1:53:24:3d:d0:b5:9f:44:c6:
11:18:0a:9c:d2:66:be:b7:9d:be:44:21:86:09:44:
c1:6a:69:a0:30:3b:2a:71:91:ed:e9:35:50:fd:86:
3d:c1:d5:96:71:5d:49:13:fa:3c:83:0b:e4:aa:60:
8d:f1:7a:bc:3f:d1:bf:e9:d5:04:6f:21:4f:c6:39:
8c:0b:ab:cd:c9:17:98:1b:f5:f7:a1:66:55:ff:a1:
32:d1:ef:d5:40:fd:67:a2:37:a8:66:6f:c5:f0:62:
52:d9:1d:b5:37:85:c8:87:35:5e:09:dd:46:e0:30:
65:90:ec:73:b8:f3:75:77:f0:3e:f8:85:33:f0:0b:
99:3f:59:32:0c:2e:86:67:a8:4c:6c:4e:e2:d4:26:
de:d7:35:4c:9a:64:06:bb:55:98:a4:ba:56:6c:35:
7a:83:b9:e8:16:8f:8c:7f:9a:5e:ab:43:83:4a:d6:
80:45:db:1f:59:63:86:25:97:28:db:18:a1:f7:4f:
66:5b:58:68:9f:40:9b:aa:c4:94:d2:5d:24:a2:9f:
3d:0f:ca:e6:a9:86:c3:bb:3a:ce:2e:1d:8f:97:f6:
71:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:69:8C:C1:E8:DE:F9:1E:A5:F5:02:56:86:51:5C:CD:3F:59:5F:19
X509v3 Authority Key Identifier:
keyid:D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/L2mMweje-R6l9QJWhlFczT9ZXxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/08tc7MITufhtu6UYUh6FRuyThhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.128.0/19
31.11.32.0/21
31.14.128.0/20
46.37.0.0/19
62.149.128.0/17
77.81.224.0/20
80.73.224.0/20
80.211.0.0/16
89.36.208.0/22
89.46.64.0/20
89.46.104.0/21
89.46.192.0/21
94.177.160.0-94.177.255.255
95.110.128.0/17
176.107.144.0/20
185.56.8.0/22
185.58.116.0-185.58.123.255
188.213.160.0/20
194.182.110.0/23
195.231.0.0/17
217.61.0.0/18
IPv6:
2a00:6d40::/29
Signature Algorithm: sha256WithRSAEncryption
1b:d9:1a:10:d1:96:29:c2:ac:1a:76:5d:e5:98:c4:30:82:d2:
28:fd:65:84:d1:1e:7c:4a:e3:26:39:09:f4:86:3d:6b:56:14:
7f:c6:bc:11:4d:62:e2:35:f3:2e:da:5f:e2:8a:a6:55:63:64:
53:25:0a:3d:37:c2:f6:67:fe:ab:ac:92:8d:2e:0c:18:5e:98:
bb:8d:5f:24:9d:f6:41:1c:25:78:da:ad:72:e4:4d:77:6a:ac:
88:9f:29:b6:13:1d:05:d7:5d:41:71:67:f0:b2:01:e5:5b:6a:
e9:56:04:44:56:4e:d1:52:1c:7f:86:b3:15:83:1c:10:6a:1d:
62:85:f6:75:66:56:d5:3e:49:f8:86:a0:be:20:af:25:2e:14:
00:39:fd:ce:d3:0d:e5:6c:6c:eb:4f:6d:c7:48:0f:f2:0b:8f:
11:8c:9f:ff:1f:70:7e:72:9f:14:a8:9f:a2:ec:83:7b:bf:3c:
25:fc:bb:74:3a:e8:95:3d:73:d6:99:7b:50:d2:07:03:10:b4:
b7:6c:d2:26:ab:50:58:75:b5:b3:a8:2a:1e:58:45:9b:f1:76:
93:c4:e1:db:a9:c7:9d:d7:e7:17:26:3f:3a:ef:c3:c1:3a:1d:
8f:1c:4f:47:b9:bf:42:d9:48:2d:ea:2a:19:0f:fe:69:fb:d1:
ca:cf:ea:f2
-----BEGIN CERTIFICATE-----
MIIFiTCCBHGgAwIBAgIEAtGLujANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
M2NiNWNlY2MyMTNiOWY4NmRiYmE1MTg1MjFlODU0NmVjOTM4NjFjMB4XDTIyMDEw
MTE2MDYyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmY2OThjYzFlOGRl
ZjkxZWE1ZjUwMjU2ODY1MTVjY2QzZjU5NWYxOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALjWb239vpiytLqHXmlLXLYVUNLKymGxMuYLNAu9KZHLyXa8
8VMkPdC1n0TGERgKnNJmvredvkQhhglEwWppoDA7KnGR7ek1UP2GPcHVlnFdSRP6
PIML5KpgjfF6vD/Rv+nVBG8hT8Y5jAurzckXmBv196FmVf+hMtHv1UD9Z6I3qGZv
xfBiUtkdtTeFyIc1XgndRuAwZZDsc7jzdXfwPviFM/ALmT9ZMgwuhmeoTGxO4tQm
3tc1TJpkBrtVmKS6Vmw1eoO56BaPjH+aXqtDg0rWgEXbH1ljhiWXKNsYofdPZltY
aJ9Am6rElNJdJKKfPQ/K5qmGw7s6zi4dj5f2cecCAwEAAaOCAqMwggKfMB0GA1Ud
DgQWBBQvaYzB6N75HqX1AlaGUVzNP1lfGTAfBgNVHSMEGDAWgBTTy1zswhO5+G27
pRhSHoVG7JOGHDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzA4dGM3TUlUdWZodHU2VVlVaDZGUnV5VGhody5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWMvZTExN2ZlLWM5ZTctNGQ0MS05NGRmLTg0MjY5NDEyZDU2MS8x
L0wybU13ZWplLVI2bDlRSldobEZjelQ5Wlh4ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWMv
ZTExN2ZlLWM5ZTctNGQ0MS05NGRmLTg0MjY5NDEyZDU2MS8xLzA4dGM3TUlUdWZo
dHU2VVlVaDZGUnV5VGhody5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
uAYIKwYBBQUHAQcBAf8EgagwgaUwgZMEAgABMIGMAwQFBfmAAwQDHwsgAwQEHw6A
AwQFLiUAAwQHPpWAAwQETVHgAwQEUEngAwMAUNMDBAJZJNADBARZLkADBANZLmgD
BANZLsAwCwMEBV6xoAMDAV6wAwQHX26AAwQEsGuQAwQCuTgIMAwDBAK5OnQDBAK5
OngDBAS81aADBAHCtm4DBAfD5wADBAbZPQAwDQQCAAIwBwMFAyoAbUAwDQYJKoZI
hvcNAQELBQADggEBABvZGhDRlinCrBp2XeWYxDCC0ij9ZYTRHnxK4yY5CfSGPWtW
FH/GvBFNYuI18y7aX+KKplVjZFMlCj03wvZn/qusko0uDBhemLuNXySd9kEcJXja
rXLkTXdqrIifKbYTHQXXXUFxZ/CyAeVbaulWBERWTtFSHH+GsxWDHBBqHWKF9nVm
VtU+SfiGoL4gryUuFAA5/c7TDeVsbOtPbcdID/ILjxGMn/8fcH5ynxSon6Lsg3u/
PCX8u3Q66JU9c9aZe1DSBwMQtLds0iarUFh1tbOoKh5YRZvxdpPE4dupx53X5xcm
Pzrvw8E6HY8cT0e5v0LZSC3qKhkP/mn70crP6vI=
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:56:17 2025 by rpki-client