Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/2mdIq0KNQQqmQH6EV3xmvjl660E.roa
File: 2mdIq0KNQQqmQH6EV3xmvjl660E.roa (raw, json)
Hash identifier: JZh4EQ1GFn3bhqPgiCTZVyeiAdO+wGAlx3U/i5icPCU=
Subject key identifier: DA:67:48:AB:42:8D:41:0A:A6:40:7E:84:57:7C:66:BE:39:7A:EB:41
Certificate issuer: /CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Certificate serial: 018571D7C0131A6E7CBC7943D05E82BCE596
Authority key identifier: 08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/2mdIq0KNQQqmQH6EV3xmvjl660E.roa
Signing time: Mon 02 Jan 2023 09:37:22 +0000
ROA not before: Mon 02 Jan 2023 09:37:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48715
IP address blocks: 185.141.105.0/24 maxlen: 24
185.141.104.0/24 maxlen: 24
185.141.104.0/22 maxlen: 22
185.141.107.0/24 maxlen: 24
185.141.106.0/24 maxlen: 24
185.18.212.0/22 maxlen: 22
185.18.212.0/24 maxlen: 24
185.18.213.0/24 maxlen: 24
185.18.214.0/24 maxlen: 24
185.18.215.0/24 maxlen: 24
195.211.44.0/24 maxlen: 24
195.211.44.0/22 maxlen: 22
195.211.47.0/24 maxlen: 24
195.211.45.0/24 maxlen: 24
195.211.46.0/24 maxlen: 24
195.110.38.0/23 maxlen: 23
91.236.168.0/24 maxlen: 24
91.236.168.0/23 maxlen: 23
91.236.169.0/24 maxlen: 24
152.89.44.0/24 maxlen: 24
152.89.44.0/22 maxlen: 22
152.89.47.0/24 maxlen: 24
152.89.46.0/24 maxlen: 24
152.89.45.0/24 maxlen: 24
185.51.200.0/22 maxlen: 22
185.51.200.0/24 maxlen: 24
185.51.203.0/24 maxlen: 24
185.51.201.0/24 maxlen: 24
185.51.202.0/24 maxlen: 24
185.112.150.0/23 maxlen: 23
185.112.150.0/24 maxlen: 24
185.112.151.0/24 maxlen: 24
185.112.149.0/24 maxlen: 24
185.121.131.0/24 maxlen: 24
185.121.130.0/24 maxlen: 24
185.121.130.0/23 maxlen: 23
88.135.38.0/24 maxlen: 24
88.135.36.0/22 maxlen: 22
88.135.36.0/24 maxlen: 24
88.135.37.0/24 maxlen: 24
185.141.132.0/24 maxlen: 24
185.141.132.0/22 maxlen: 22
185.141.134.0/24 maxlen: 24
185.141.135.0/24 maxlen: 24
185.141.133.0/24 maxlen: 24
188.209.152.0/24 maxlen: 24
188.209.152.0/23 maxlen: 23
188.209.153.0/24 maxlen: 24
88.135.39.0/24 maxlen: 24
185.128.138.0/24 maxlen: 24
185.128.139.0/24 maxlen: 24
185.128.136.0/22 maxlen: 22
185.128.137.0/24 maxlen: 24
185.128.136.0/24 maxlen: 24
2a0a:5e80::/48 maxlen: 48
2a0a:5e80::/64 maxlen: 64
2a0a:5e80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:c0:13:1a:6e:7c:bc:79:43:d0:5e:82:bc:e5:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Validity
Not Before: Jan 2 09:37:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da6748ab428d410aa6407e84577c66be397aeb41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:43:6b:0c:05:c3:5a:13:9b:cb:20:1f:89:90:
b1:11:d1:d7:6f:9d:a9:ba:58:27:07:05:c3:28:3d:
04:25:bc:e3:fa:23:ae:42:ce:23:1f:a8:1d:2c:2c:
81:e7:89:b2:52:14:c3:5f:7b:7b:33:83:2b:95:16:
f4:22:07:78:ec:57:a2:a4:13:f6:05:b9:06:19:f7:
78:fc:ba:4c:e1:d1:dc:e6:9c:13:76:92:df:07:df:
a1:24:1d:1e:15:4d:18:58:3c:74:84:fa:1e:fb:d1:
49:cf:e2:a4:e2:ef:32:5f:05:88:b7:fe:af:31:29:
6b:ee:54:5f:7a:3a:97:e2:dc:f6:b2:0f:63:39:92:
76:51:9f:cc:44:53:5f:9d:66:67:f1:dd:dd:c0:1f:
14:ba:bc:59:5a:1a:01:da:47:63:ef:8b:9f:05:ba:
bd:e7:e8:5e:53:f6:ed:f9:fa:24:6c:99:75:79:1f:
0d:7f:1b:e5:a4:21:79:46:c5:0a:bd:99:7e:35:f8:
88:8f:f2:11:cd:84:47:94:30:9d:05:ca:81:16:80:
1f:cc:83:f1:d6:3a:14:c8:72:3b:3c:ce:34:c6:25:
8f:29:61:44:69:e9:2b:4a:f0:33:bc:5a:51:be:86:
e8:c1:32:77:f2:18:ce:99:cd:d4:fd:a3:90:c4:b3:
bf:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:67:48:AB:42:8D:41:0A:A6:40:7E:84:57:7C:66:BE:39:7A:EB:41
X509v3 Authority Key Identifier:
keyid:08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/2mdIq0KNQQqmQH6EV3xmvjl660E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.36.0/22
91.236.168.0/23
152.89.44.0/22
185.18.212.0/22
185.51.200.0/22
185.112.149.0-185.112.151.255
185.121.130.0/23
185.128.136.0/22
185.141.104.0/22
185.141.132.0/22
188.209.152.0/23
195.110.38.0/23
195.211.44.0/22
IPv6:
2a0a:5e80::/29
Signature Algorithm: sha256WithRSAEncryption
58:14:87:9f:8c:16:6e:1d:eb:84:2f:93:74:98:ed:43:b5:83:
25:d2:5b:8e:3f:c7:3e:85:f2:ce:fc:67:91:5a:3f:1d:e1:96:
8f:31:40:db:12:16:a1:ae:ce:71:23:0e:f8:fe:5e:c2:47:a6:
7a:b5:fb:82:19:5b:32:d1:51:9e:07:e1:b2:3a:8d:28:83:e8:
ee:c4:07:df:d0:0d:56:4d:76:af:a6:61:3d:6f:a8:18:bb:b4:
2f:c5:c1:76:f3:08:21:06:58:85:8a:51:f5:57:75:91:f9:82:
03:b2:8e:ac:ee:6f:35:2f:8b:7a:6d:34:ec:31:c6:eb:9c:bc:
36:ad:cf:33:7d:c7:4c:34:8d:c0:ab:d0:c0:f0:83:4c:dc:fb:
33:11:50:2a:12:ab:45:bd:26:10:48:35:86:1c:9e:70:cf:6d:
01:ec:07:95:1f:84:c5:4b:2a:99:d7:0c:8e:7b:64:75:f2:c1:
fe:aa:20:b7:c3:b1:b9:ab:74:0c:eb:9a:16:29:cf:8f:c4:55:
94:41:62:5c:c4:ab:b1:29:92:ec:ad:6a:c1:58:75:12:f8:76:
38:87:0d:26:8c:cb:2b:bb:1d:e8:0f:8c:01:ed:a3:b5:48:88:
89:f7:fb:3a:f2:7c:06:99:41:93:6e:80:cb:e8:39:fe:6e:3a:
c7:9d:69:67
-----BEGIN CERTIFICATE-----
MIIFXDCCBESgAwIBAgISAYVx18ATGm58vHlD0F6CvOWWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4MWI3YTIyZTUxY2ZiOWNmODQyMDVlNDQ0OTk5OGFkNTVk
OGYwNjUwHhcNMjMwMTAyMDkzNzIyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYTY3NDhhYjQyOGQ0MTBhYTY0MDdlODQ1NzdjNjZiZTM5N2FlYjQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh0NrDAXDWhObyyAfiZCxEdHXb52p
ulgnBwXDKD0EJbzj+iOuQs4jH6gdLCyB54myUhTDX3t7M4MrlRb0Igd47FeipBP2
BbkGGfd4/LpM4dHc5pwTdpLfB9+hJB0eFU0YWDx0hPoe+9FJz+Kk4u8yXwWIt/6v
MSlr7lRfejqX4tz2sg9jOZJ2UZ/MRFNfnWZn8d3dwB8UurxZWhoB2kdj74ufBbq9
5+heU/bt+fokbJl1eR8NfxvlpCF5RsUKvZl+NfiIj/IRzYRHlDCdBcqBFoAfzIPx
1joUyHI7PM40xiWPKWFEaekrSvAzvFpRvobowTJ38hjOmc3U/aOQxLO/yQIDAQAB
o4ICaDCCAmQwHQYDVR0OBBYEFNpnSKtCjUEKpkB+hFd8Zr45eutBMB8GA1UdIwQY
MBaAFAgbeiLlHPuc+EIF5ESZmK1V2PBlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0J0Nkl1VWMtNXo0UWdYa1JKbVlyVlhZOEdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9jNTE1YzktZGYwOC00MjZjLTgwZTYt
MDM2NzI2OGZmODcxLzEvMm1kSXEwS05RUXFtUUg2RVYzeG12amw2NjBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9jNTE1YzktZGYwOC00MjZjLTgwZTYtMDM2NzI2OGZmODcx
LzEvQ0J0Nkl1VWMtNXo0UWdYa1JKbVlyVlhZOEdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH4GCCsGAQUFBwEHAQH/BG8wbTBcBAIAATBWAwQCWIckAwQB
W+yoAwQCmFksAwQCuRLUAwQCuTPIMAwDBAC5cJUDBAO5cJADBAG5eYIDBAK5gIgD
BAK5jWgDBAK5jYQDBAG80ZgDBAHDbiYDBALD0ywwDQQCAAIwBwMFAyoKXoAwDQYJ
KoZIhvcNAQELBQADggEBAFgUh5+MFm4d64Qvk3SY7UO1gyXSW44/xz6F8s78Z5Fa
Px3hlo8xQNsSFqGuznEjDvj+XsJHpnq1+4IZWzLRUZ4H4bI6jSiD6O7EB9/QDVZN
dq+mYT1vqBi7tC/FwXbzCCEGWIWKUfVXdZH5ggOyjqzubzUvi3ptNOwxxuucvDat
zzN9x0w0jcCr0MDwg0zc+zMRUCoSq0W9JhBINYYcnnDPbQHsB5UfhMVLKpnXDI57
ZHXywf6qILfDsbmrdAzrmhYpz4/EVZRBYlzEq7EpkuytasFYdRL4djiHDSaMyyu7
HegPjAHto7VIiIn3+zryfAaZQZNugMvoOf5uOsedaWc=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:20 2025 by rpki-client