Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/9WeSebPD7TZ9Fw_OkbvxB3292xY.roa
File: 9WeSebPD7TZ9Fw_OkbvxB3292xY.roa (raw, json)
Hash identifier: /nCkfB4VRHBL0S5HWNSwxM8UBPvcmgm8EjEMsJWQa0w=
Subject key identifier: F5:67:92:79:B3:C3:ED:36:7D:17:0F:CE:91:BB:F1:07:7D:BD:DB:16
Certificate issuer: /CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Certificate serial: 018B70300201F1B03F35AA0C42ED0C8A0407
Authority key identifier: 08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/9WeSebPD7TZ9Fw_OkbvxB3292xY.roa
Signing time: Fri 27 Oct 2023 08:11:16 +0000
ROA not before: Fri 27 Oct 2023 08:11:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48715
IP address blocks: 78.110.120.0/22 maxlen: 24
185.36.228.0/24 maxlen: 24
185.141.105.0/24 maxlen: 24
185.141.104.0/24 maxlen: 24
185.141.104.0/22 maxlen: 22
185.141.107.0/24 maxlen: 24
185.141.106.0/24 maxlen: 24
185.18.212.0/24 maxlen: 24
185.18.213.0/24 maxlen: 24
185.18.212.0/22 maxlen: 22
185.18.214.0/24 maxlen: 24
185.18.215.0/24 maxlen: 24
185.173.129.0/24 maxlen: 24
185.173.130.0/24 maxlen: 24
91.247.171.0/24 maxlen: 24
195.211.44.0/22 maxlen: 22
195.211.44.0/24 maxlen: 24
195.211.47.0/24 maxlen: 24
195.211.45.0/24 maxlen: 24
195.211.46.0/24 maxlen: 24
195.110.38.0/23 maxlen: 23
185.233.131.0/24 maxlen: 24
80.71.149.0/24 maxlen: 24
91.236.168.0/24 maxlen: 24
91.236.169.0/24 maxlen: 24
91.236.168.0/23 maxlen: 23
185.213.195.0/24 maxlen: 24
152.89.44.0/24 maxlen: 24
152.89.44.0/22 maxlen: 22
152.89.47.0/24 maxlen: 24
185.170.8.0/24 maxlen: 24
152.89.46.0/24 maxlen: 24
152.89.45.0/24 maxlen: 24
185.234.14.0/24 maxlen: 24
185.58.240.0/22 maxlen: 24
185.51.200.0/24 maxlen: 24
185.51.203.0/24 maxlen: 24
185.51.201.0/24 maxlen: 24
185.51.202.0/24 maxlen: 24
185.51.200.0/22 maxlen: 22
185.112.150.0/23 maxlen: 23
185.112.150.0/24 maxlen: 24
185.206.231.0/24 maxlen: 24
185.112.151.0/24 maxlen: 24
185.112.149.0/24 maxlen: 24
185.121.131.0/24 maxlen: 24
185.121.130.0/24 maxlen: 24
185.121.130.0/23 maxlen: 23
88.135.36.0/22 maxlen: 22
88.135.38.0/24 maxlen: 24
88.135.36.0/24 maxlen: 24
88.135.37.0/24 maxlen: 24
185.141.132.0/22 maxlen: 22
185.141.132.0/24 maxlen: 24
185.141.134.0/24 maxlen: 24
185.141.135.0/24 maxlen: 24
185.141.133.0/24 maxlen: 24
185.252.200.0/24 maxlen: 24
185.235.245.0/24 maxlen: 24
188.209.152.0/24 maxlen: 24
188.209.152.0/23 maxlen: 23
188.209.153.0/24 maxlen: 24
88.135.39.0/24 maxlen: 24
185.128.136.0/22 maxlen: 22
185.128.138.0/24 maxlen: 24
185.128.139.0/24 maxlen: 24
185.128.137.0/24 maxlen: 24
185.128.136.0/24 maxlen: 24
2a0a:5e80::/48 maxlen: 48
2a0a:5e80::/64 maxlen: 64
2a0a:5e80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:70:30:02:01:f1:b0:3f:35:aa:0c:42:ed:0c:8a:04:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Validity
Not Before: Oct 27 08:11:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5679279b3c3ed367d170fce91bbf1077dbddb16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7a:2d:37:3a:4c:0b:a1:af:79:80:df:c2:10:
69:eb:b2:82:ce:7d:07:79:1f:51:4f:6a:f1:c8:1c:
30:df:86:39:89:7f:17:ad:a7:04:67:f9:9e:8f:7d:
d6:8c:e0:2d:a9:52:35:54:3d:69:a5:dc:44:58:94:
a1:49:b9:9c:f4:b3:9e:e7:61:1e:a3:c4:62:26:b7:
03:59:5f:4d:5d:12:6d:b6:b4:54:b0:d4:b5:08:13:
73:d7:a1:6a:dc:21:88:5d:4b:e6:d5:9a:9f:ff:9d:
8a:50:f9:c7:0f:4c:9a:92:8a:f9:fd:e0:2c:a7:e1:
3c:0a:c3:bd:6f:b6:a2:06:96:1c:f0:ac:b9:a3:72:
ec:06:0d:52:65:54:42:cb:8a:1d:16:bc:59:a7:7b:
7f:62:24:c9:fd:86:4c:6e:0d:a5:bf:05:af:49:c7:
95:5c:46:2a:3a:d8:2b:6b:50:3b:0d:14:db:62:8b:
79:92:b4:be:fa:0b:76:e2:48:bf:54:96:b4:c1:62:
da:eb:99:ce:a8:19:8a:f8:3f:d5:8b:c7:2a:41:43:
6e:32:1a:da:d4:3e:a7:f3:f0:ce:44:70:11:1a:9d:
0c:20:cd:c1:fc:f7:55:75:38:4e:7f:d1:e2:25:b7:
d7:5f:cc:4b:2d:2b:5e:83:a0:ef:d6:2f:88:5c:65:
a1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:67:92:79:B3:C3:ED:36:7D:17:0F:CE:91:BB:F1:07:7D:BD:DB:16
X509v3 Authority Key Identifier:
keyid:08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/9WeSebPD7TZ9Fw_OkbvxB3292xY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.110.120.0/22
80.71.149.0/24
88.135.36.0/22
91.236.168.0/23
91.247.171.0/24
152.89.44.0/22
185.18.212.0/22
185.36.228.0/24
185.51.200.0/22
185.58.240.0/22
185.112.149.0-185.112.151.255
185.121.130.0/23
185.128.136.0/22
185.141.104.0/22
185.141.132.0/22
185.170.8.0/24
185.173.129.0-185.173.130.255
185.206.231.0/24
185.213.195.0/24
185.233.131.0/24
185.234.14.0/24
185.235.245.0/24
185.252.200.0/24
188.209.152.0/23
195.110.38.0/23
195.211.44.0/22
IPv6:
2a0a:5e80::/29
Signature Algorithm: sha256WithRSAEncryption
71:83:e5:7f:e3:a0:bf:46:ff:7e:e1:bf:6c:20:ad:fd:67:f6:
ca:12:0c:c3:20:f6:85:d5:4e:cb:45:56:f1:53:2a:3e:ca:53:
23:b0:e4:d9:8b:c8:2c:9a:12:fc:38:2b:3e:e7:76:a3:98:4f:
3a:f2:9f:f9:bf:b9:0e:b4:32:ba:81:be:83:9d:71:b5:07:08:
a1:6c:31:ea:b1:ba:2a:7e:c8:2b:4b:b6:04:c4:ec:d1:4b:12:
12:57:01:04:1d:cf:c8:a7:31:d1:7c:6f:d5:74:b9:8b:d0:cc:
46:95:c2:cf:9f:c8:da:6c:2d:de:bd:99:0c:6d:48:af:ef:67:
d7:79:4e:a8:17:02:08:9b:62:bc:48:b7:0b:9c:9c:8f:64:b0:
cf:6a:ad:0b:25:5e:21:5c:f2:a5:3d:8e:2e:98:1b:62:ce:76:
32:46:b3:81:f1:9c:89:81:da:07:3e:3f:ae:99:6d:da:ad:2c:
a0:66:fd:3a:8e:51:8a:48:71:a9:4d:97:f2:69:3f:ae:55:84:
72:ec:2e:79:29:1c:05:32:63:b6:c4:f7:66:d2:cd:8b:14:b0:
0a:c4:d5:7d:23:fa:3c:50:d5:14:92:57:df:a9:b2:7f:94:4b:
8f:7b:81:ac:64:c7:8b:24:cf:d8:15:7e:c8:98:96:0f:1d:fa:
22:4e:34:f0
-----BEGIN CERTIFICATE-----
MIIFtzCCBJ+gAwIBAgISAYtwMAIB8bA/NaoMQu0MigQHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4MWI3YTIyZTUxY2ZiOWNmODQyMDVlNDQ0OTk5OGFkNTVk
OGYwNjUwHhcNMjMxMDI3MDgxMTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNTY3OTI3OWIzYzNlZDM2N2QxNzBmY2U5MWJiZjEwNzdkYmRkYjE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHotNzpMC6GveYDfwhBp67KCzn0H
eR9RT2rxyBww34Y5iX8XracEZ/mej33WjOAtqVI1VD1ppdxEWJShSbmc9LOe52Ee
o8RiJrcDWV9NXRJttrRUsNS1CBNz16Fq3CGIXUvm1Zqf/52KUPnHD0yakor5/eAs
p+E8CsO9b7aiBpYc8Ky5o3LsBg1SZVRCy4odFrxZp3t/YiTJ/YZMbg2lvwWvSceV
XEYqOtgra1A7DRTbYot5krS++gt24ki/VJa0wWLa65nOqBmK+D/Vi8cqQUNuMhra
1D6n8/DORHARGp0MIM3B/PdVdThOf9HiJbfXX8xLLSteg6Dv1i+IXGWhqQIDAQAB
o4ICwzCCAr8wHQYDVR0OBBYEFPVnknmzw+02fRcPzpG78Qd9vdsWMB8GA1UdIwQY
MBaAFAgbeiLlHPuc+EIF5ESZmK1V2PBlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0J0Nkl1VWMtNXo0UWdYa1JKbVlyVlhZOEdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9jNTE1YzktZGYwOC00MjZjLTgwZTYt
MDM2NzI2OGZmODcxLzEvOVdlU2ViUEQ3VFo5RndfT2tidnhCMzI5MnhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9jNTE1YzktZGYwOC00MjZjLTgwZTYtMDM2NzI2OGZmODcx
LzEvQ0J0Nkl1VWMtNXo0UWdYa1JKbVlyVlhZOEdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHYBggrBgEFBQcBBwEB/wSByDCBxTCBswQCAAEwgawDBAJO
bngDBABQR5UDBAJYhyQDBAFb7KgDBABb96sDBAKYWSwDBAK5EtQDBAC5JOQDBAK5
M8gDBAK5OvAwDAMEALlwlQMEA7lwkAMEAbl5ggMEArmAiAMEArmNaAMEArmNhAME
ALmqCDAMAwQAua2BAwQAua2CAwQAuc7nAwQAudXDAwQAuemDAwQAueoOAwQAuev1
AwQAufzIAwQBvNGYAwQBw24mAwQCw9MsMA0EAgACMAcDBQMqCl6AMA0GCSqGSIb3
DQEBCwUAA4IBAQBxg+V/46C/Rv9+4b9sIK39Z/bKEgzDIPaF1U7LRVbxUyo+ylMj
sOTZi8gsmhL8OCs+53ajmE868p/5v7kOtDK6gb6DnXG1BwihbDHqsboqfsgrS7YE
xOzRSxISVwEEHc/IpzHRfG/VdLmL0MxGlcLPn8jabC3evZkMbUiv72fXeU6oFwII
m2K8SLcLnJyPZLDPaq0LJV4hXPKlPY4umBtiznYyRrOB8ZyJgdoHPj+umW3arSyg
Zv06jlGKSHGpTZfyaT+uVYRy7C55KRwFMmO2xPdm0s2LFLAKxNV9I/o8UNUUklff
qbJ/lEuPe4GsZMeLJM/YFX7ImJYPHfoiTjTw
-----END CERTIFICATE-----
Generated at Sat May 17 02:23:55 2025 by rpki-client