Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/ge-uD1k55XTkXUZZS7AlanAepLo.roa
File: ge-uD1k55XTkXUZZS7AlanAepLo.roa (raw, json)
Hash identifier: mwc/saz/dW3xFV+VMl8xbVtQCloo/IppMZMz4CDa+qk=
Subject key identifier: 81:EF:AE:0F:59:39:E5:74:E4:5D:46:59:4B:B0:25:6A:70:1E:A4:BA
Certificate issuer: /CN=de2e917315f0a878b21fc139d49a821aaddc3c97
Certificate serial: 126F64D5
Authority key identifier: DE:2E:91:73:15:F0:A8:78:B2:1F:C1:39:D4:9A:82:1A:AD:DC:3C:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3i6RcxXwqHiyH8E51JqCGq3cPJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/ge-uD1k55XTkXUZZS7AlanAepLo.roa
Signing time: Sat 26 Mar 2022 22:56:59 +0000
ROA not before: Sat 26 Mar 2022 22:56:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39351
IP address blocks: 45.129.56.0/24 maxlen: 24
185.209.196.0/24 maxlen: 24
185.209.197.0/24 maxlen: 24
193.32.249.0/24 maxlen: 24
185.65.132.0/24 maxlen: 24
185.65.134.0/24 maxlen: 24
185.65.133.0/24 maxlen: 24
185.65.135.0/24 maxlen: 24
141.98.252.0/24 maxlen: 24
141.98.255.0/24 maxlen: 24
141.98.254.0/24 maxlen: 24
45.83.220.0/24 maxlen: 24
45.83.221.0/24 maxlen: 24
185.213.152.0/24 maxlen: 24
185.213.153.0/24 maxlen: 24
185.213.155.0/24 maxlen: 24
185.213.154.0/24 maxlen: 24
193.138.216.0/22 maxlen: 22
193.32.127.0/24 maxlen: 24
193.32.126.0/24 maxlen: 24
185.195.232.0/24 maxlen: 24
185.195.233.0/24 maxlen: 24
2a03:1b20:8::/48 maxlen: 48
2a03:1b20:3::/48 maxlen: 48
2a03:1b20:6::/48 maxlen: 48
2a03:1b20:1::/48 maxlen: 48
2a03:1b20:a::/48 maxlen: 48
2a03:1b20:5::/48 maxlen: 48
2a03:1b20:beef::/48 maxlen: 48
2a03:1b20:2::/48 maxlen: 48
2a03:1b20:7::/48 maxlen: 48
2a03:1b20:9::/48 maxlen: 48
2a03:1b20:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 309290197 (0x126f64d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2e917315f0a878b21fc139d49a821aaddc3c97
Validity
Not Before: Mar 26 22:56:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81efae0f5939e574e45d46594bb0256a701ea4ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:98:dc:69:5a:97:d5:27:0f:40:55:d1:09:55:
32:70:b8:55:fc:69:2d:3b:f4:cf:73:4c:51:bf:ba:
88:b3:b2:0b:5b:46:16:ba:50:58:a5:3f:36:b2:26:
bd:13:30:f9:88:e9:4b:61:68:8b:c6:4c:ce:c8:c2:
d9:89:ac:9e:b0:d3:a1:8b:5f:ef:06:8a:21:3d:fa:
c5:9c:d3:06:87:da:d8:c5:eb:da:aa:fe:a7:fd:de:
5c:cf:8d:5e:e7:b5:57:74:c2:38:99:42:ba:c2:3e:
29:9b:61:f2:da:74:1d:70:81:90:3e:e1:b8:86:19:
d1:e9:eb:05:50:8b:95:70:66:62:94:28:72:28:ad:
c0:78:12:82:06:cf:13:c7:a0:fa:4e:ca:c4:6b:97:
43:2a:ea:50:36:b4:e4:b3:a2:46:a0:97:d6:88:35:
ae:a3:f9:be:a7:92:f0:47:10:4e:fa:82:8b:d8:3d:
33:db:b4:cb:a2:8c:01:48:c1:dc:ca:a9:2f:9e:68:
8e:e7:f2:b9:a5:e9:31:ee:9b:f3:37:6a:68:16:42:
a0:a0:70:d9:a2:58:9b:26:75:d7:07:6d:60:0c:3a:
9e:d7:0f:a5:eb:b4:d0:1f:0a:54:48:a2:27:f0:03:
7f:e6:6f:0d:45:d1:d7:85:b7:83:2c:3b:01:b2:05:
d3:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:EF:AE:0F:59:39:E5:74:E4:5D:46:59:4B:B0:25:6A:70:1E:A4:BA
X509v3 Authority Key Identifier:
keyid:DE:2E:91:73:15:F0:A8:78:B2:1F:C1:39:D4:9A:82:1A:AD:DC:3C:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3i6RcxXwqHiyH8E51JqCGq3cPJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/ge-uD1k55XTkXUZZS7AlanAepLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/3i6RcxXwqHiyH8E51JqCGq3cPJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.220.0/23
45.129.56.0/24
141.98.252.0/24
141.98.254.0/23
185.65.132.0/22
185.195.232.0/23
185.209.196.0/23
185.213.152.0/22
193.32.126.0/23
193.32.249.0/24
193.138.216.0/22
IPv6:
2a03:1b20:1::-2a03:1b20:a:ffff:ffff:ffff:ffff:ffff
2a03:1b20:beef::/48
Signature Algorithm: sha256WithRSAEncryption
74:b5:4f:77:64:1d:04:2c:21:98:13:30:f5:8a:95:1b:bd:a0:
c7:ee:ba:d7:ee:5b:c8:31:bb:6a:74:3c:59:d6:55:6e:f7:3f:
02:bb:ea:3f:d2:ee:4c:3f:7c:c7:4e:db:78:8e:8d:45:67:0e:
a6:a3:8a:77:98:53:b9:06:e7:e1:32:99:a6:68:a0:b8:c7:e1:
f0:aa:a8:8e:28:56:bd:a3:16:51:bc:4c:5c:fd:46:5b:79:39:
da:2c:63:85:99:78:e6:db:11:80:d7:a3:6c:ca:8a:34:1a:fa:
f7:5a:9c:77:a9:6f:7c:25:26:4c:2e:bf:3c:06:12:fb:9f:5f:
68:e7:fb:73:05:bb:25:df:c7:fb:cf:3c:45:22:f2:25:19:26:
9b:f5:8d:a4:72:79:35:28:cb:37:4c:e9:9c:56:8f:aa:88:e5:
ac:b9:e6:a4:21:da:df:47:ee:dd:61:ac:b8:da:f3:3c:9d:76:
7d:c9:7b:fc:2f:ec:7c:ab:ae:72:80:4e:2b:4f:40:2d:11:b6:
03:49:f7:76:3c:ab:50:88:23:0d:75:cf:45:d1:32:f8:0d:eb:
b5:10:25:75:3b:89:8a:57:45:65:23:3a:96:0c:d8:6c:14:e1:
2c:ad:b3:ca:62:b2:44:0a:01:14:97:c0:32:7c:f1:d5:4b:0c:
a4:a1:1f:58
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgIEEm9k1TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ZTJlOTE3MzE1ZjBhODc4YjIxZmMxMzlkNDlhODIxYWFkZGMzYzk3MB4XDTIyMDMy
NjIyNTY1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODFlZmFlMGY1OTM5
ZTU3NGU0NWQ0NjU5NGJiMDI1NmE3MDFlYTRiYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALeY3Glal9UnD0BV0QlVMnC4VfxpLTv0z3NMUb+6iLOyC1tG
FrpQWKU/NrImvRMw+YjpS2Foi8ZMzsjC2YmsnrDToYtf7waKIT36xZzTBofa2MXr
2qr+p/3eXM+NXue1V3TCOJlCusI+KZth8tp0HXCBkD7huIYZ0enrBVCLlXBmYpQo
ciitwHgSggbPE8eg+k7KxGuXQyrqUDa05LOiRqCX1og1rqP5vqeS8EcQTvqCi9g9
M9u0y6KMAUjB3MqpL55ojufyuaXpMe6b8zdqaBZCoKBw2aJYmyZ11wdtYAw6ntcP
peu00B8KVEiiJ/ADf+ZvDUXR14W3gyw7AbIF00cCAwEAAaOCAmswggJnMB0GA1Ud
DgQWBBSB764PWTnldORdRllLsCVqcB6kujAfBgNVHSMEGDAWgBTeLpFzFfCoeLIf
wTnUmoIardw8lzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNpNlJjeFh3cUhpeUg4RTUxSnFDR3EzY1BKYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzcvMmQ1YmM4LTVkOTMtNGIwYS1hOGI2LWY4ZDY1Yzk4Mzc0NC8x
L2dlLXVEMWs1NVhUa1hVWlpTN0FsYW5BZXBMby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcv
MmQ1YmM4LTVkOTMtNGIwYS1hOGI2LWY4ZDY1Yzk4Mzc0NC8xLzNpNlJjeFh3cUhp
eUg4RTUxSnFDR3EzY1BKYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
gAYIKwYBBQUHAQcBAf8EcTBvMEgEAgABMEIDBAEtU9wDBAAtgTgDBACNYvwDBAGN
Yv4DBAK5QYQDBAG5w+gDBAG50cQDBAK51ZgDBAHBIH4DBADBIPkDBALBitgwIwQC
AAIwHTASAwcAKgMbIAABAwcAKgMbIAAKAwcAKgMbIL7vMA0GCSqGSIb3DQEBCwUA
A4IBAQB0tU93ZB0ELCGYEzD1ipUbvaDH7rrX7lvIMbtqdDxZ1lVu9z8Cu+o/0u5M
P3zHTtt4jo1FZw6mo4p3mFO5BufhMpmmaKC4x+HwqqiOKFa9oxZRvExc/UZbeTna
LGOFmXjm2xGA16Nsyoo0Gvr3Wpx3qW98JSZMLr88BhL7n19o5/tzBbsl38f7zzxF
IvIlGSab9Y2kcnk1KMs3TOmcVo+qiOWsueakIdrfR+7dYay42vM8nXZ9yXv8L+x8
q65ygE4rT0AtEbYDSfd2PKtQiCMNdc9F0TL4Deu1ECV1O4mKV0VlIzqWDNhsFOEs
rbPKYrJECgEUl8AyfPHVSwykoR9Y
-----END CERTIFICATE-----
Generated at Tue Apr 15 09:37:16 2025 by rpki-client