Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/vijyqEkHqK1WLDZHaoxjF-x2pzw.roa
File: vijyqEkHqK1WLDZHaoxjF-x2pzw.roa (raw, json)
Hash identifier: 8QjW6x4e2PuMOfx2keoQCP4nomBzkVYNGgbXbu0imUs=
Subject key identifier: BE:28:F2:A8:49:07:A8:AD:56:2C:36:47:6A:8C:63:17:EC:76:A7:3C
Certificate issuer: /CN=da6525de4aa6d0ca1ae7bd8ee1e35bfd269649bb
Certificate serial: 01866EAFC2093A3B6694E337C2159621B504
Authority key identifier: DA:65:25:DE:4A:A6:D0:CA:1A:E7:BD:8E:E1:E3:5B:FD:26:96:49:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2mUl3kqm0Moa572O4eNb_SaWSbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/vijyqEkHqK1WLDZHaoxjF-x2pzw.roa
Signing time: Mon 20 Feb 2023 11:57:37 +0000
ROA not before: Mon 20 Feb 2023 11:57:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49273
IP address blocks: 188.113.227.0/24 maxlen: 24
188.113.230.0/24 maxlen: 24
188.113.231.0/24 maxlen: 24
188.113.228.0/24 maxlen: 24
188.113.229.0/24 maxlen: 24
188.113.233.0/24 maxlen: 24
188.113.232.0/24 maxlen: 24
188.113.234.0/24 maxlen: 24
188.113.237.0/24 maxlen: 24
188.113.238.0/24 maxlen: 24
188.113.235.0/24 maxlen: 24
188.113.236.0/24 maxlen: 24
188.113.240.0/24 maxlen: 24
188.113.239.0/24 maxlen: 24
188.113.241.0/24 maxlen: 24
188.113.247.0/24 maxlen: 24
188.113.248.0/24 maxlen: 24
188.113.192.0/24 maxlen: 24
188.113.195.0/24 maxlen: 24
188.113.196.0/24 maxlen: 24
188.113.193.0/24 maxlen: 24
188.113.194.0/24 maxlen: 24
188.113.199.0/24 maxlen: 24
188.113.197.0/24 maxlen: 24
188.113.198.0/24 maxlen: 24
188.113.202.0/24 maxlen: 24
188.113.203.0/24 maxlen: 24
188.113.200.0/24 maxlen: 24
188.113.201.0/24 maxlen: 24
188.113.206.0/24 maxlen: 24
188.113.204.0/24 maxlen: 24
188.113.205.0/24 maxlen: 24
188.113.209.0/24 maxlen: 24
188.113.210.0/24 maxlen: 24
188.113.207.0/24 maxlen: 24
188.113.208.0/24 maxlen: 24
188.113.213.0/24 maxlen: 24
188.113.211.0/24 maxlen: 24
188.113.212.0/24 maxlen: 24
188.113.218.0/24 maxlen: 24
188.113.219.0/24 maxlen: 24
188.113.216.0/24 maxlen: 24
188.113.217.0/24 maxlen: 24
188.113.214.0/24 maxlen: 24
188.113.215.0/24 maxlen: 24
188.113.224.0/24 maxlen: 24
188.113.221.0/24 maxlen: 24
188.113.222.0/24 maxlen: 24
188.113.226.0/24 maxlen: 24
188.113.225.0/24 maxlen: 24
185.208.179.0/24 maxlen: 24
2a02:f7c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6e:af:c2:09:3a:3b:66:94:e3:37:c2:15:96:21:b5:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da6525de4aa6d0ca1ae7bd8ee1e35bfd269649bb
Validity
Not Before: Feb 20 11:57:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be28f2a84907a8ad562c36476a8c6317ec76a73c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d7:ab:e0:8e:18:ea:7a:cf:b0:17:82:cd:f2:
f4:b5:95:54:68:ae:3f:6f:5b:21:ba:68:05:f9:3c:
53:ab:da:db:df:e3:ac:17:a6:fd:aa:0a:18:d0:28:
a0:fd:6f:36:27:7b:02:5f:68:e8:35:e3:9b:f9:57:
00:43:fb:81:2c:bf:11:44:28:2e:71:72:54:07:2d:
82:4e:3a:45:90:97:55:f4:a7:8c:8f:6d:f1:b8:f7:
ec:7c:b6:21:ed:95:f6:19:94:35:6e:60:57:09:e3:
f5:44:9a:93:12:10:f2:d0:62:47:06:00:a8:b4:e8:
56:89:81:75:bc:3e:a5:d8:0a:0f:bd:c5:75:c2:ec:
a4:7f:a4:e2:44:55:91:36:a0:c3:5e:7f:b7:4d:f0:
e7:74:e3:3a:68:7a:89:c5:c9:f2:99:4b:6c:8f:95:
ec:23:75:cd:14:a4:50:e8:c5:fa:e9:8c:29:5d:78:
11:f2:7b:03:d9:89:f4:8e:db:93:76:d6:c0:f9:a0:
af:53:e9:69:d9:13:78:2f:07:4a:5d:f2:e6:66:a7:
34:91:2f:47:e2:33:88:76:f6:96:93:39:7e:19:65:
df:f1:fe:c7:45:6e:cd:b6:d3:21:7a:1f:52:0c:11:
ac:7d:e2:83:bb:4f:9d:d6:08:b2:80:ae:fb:28:ec:
36:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:28:F2:A8:49:07:A8:AD:56:2C:36:47:6A:8C:63:17:EC:76:A7:3C
X509v3 Authority Key Identifier:
keyid:DA:65:25:DE:4A:A6:D0:CA:1A:E7:BD:8E:E1:E3:5B:FD:26:96:49:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2mUl3kqm0Moa572O4eNb_SaWSbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/vijyqEkHqK1WLDZHaoxjF-x2pzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/2mUl3kqm0Moa572O4eNb_SaWSbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.179.0/24
188.113.192.0-188.113.219.255
188.113.221.0-188.113.222.255
188.113.224.0-188.113.241.255
188.113.247.0-188.113.248.255
IPv6:
2a02:f7c0::/32
Signature Algorithm: sha256WithRSAEncryption
96:46:03:c4:42:62:d7:8e:65:14:b7:74:16:ba:c4:54:cb:8c:
dc:4a:65:5e:e5:9f:bb:a1:c6:a6:f2:ba:aa:f3:38:f2:24:3e:
e1:a3:7d:33:93:a3:23:bb:68:e0:f3:77:f1:92:d7:2b:40:bf:
ce:27:e7:52:4c:42:02:15:2e:74:0c:11:ac:54:98:b1:7c:30:
81:b0:0f:a4:be:86:34:75:89:c6:98:52:49:6d:f5:01:af:3f:
03:b8:b0:14:d7:d3:ad:a2:c6:cc:8c:8e:1c:72:a8:29:45:9f:
0c:dc:50:20:10:50:57:c9:19:5f:ff:ec:c5:ee:cf:c7:5e:e1:
18:a8:20:f7:00:82:3e:8d:9a:bf:a7:ad:4b:ae:aa:95:d7:21:
2c:fe:00:c1:ee:d1:20:16:ab:d1:af:f6:d6:0f:a5:09:bb:63:
e1:41:09:58:1d:ca:3e:12:f0:73:da:ad:f5:af:30:03:eb:83:
e1:c7:25:fd:dd:4e:d2:8d:2a:7d:1b:31:76:0e:1e:68:62:76:
3a:f0:45:16:d8:e0:e8:f4:69:58:ec:0a:82:d9:20:f1:fc:13:
27:94:c6:c6:b7:bd:39:97:50:92:ec:5a:23:6b:5a:14:72:c8:
b1:cd:a3:9a:16:b2:0a:e2:da:63:55:48:60:2b:55:62:1b:3e:
9b:ec:c0:d4
-----BEGIN CERTIFICATE-----
MIIFRDCCBCygAwIBAgISAYZur8IJOjtmlOM3whWWIbUEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhNjUyNWRlNGFhNmQwY2ExYWU3YmQ4ZWUxZTM1YmZkMjY5
NjQ5YmIwHhcNMjMwMjIwMTE1NzM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZTI4ZjJhODQ5MDdhOGFkNTYyYzM2NDc2YThjNjMxN2VjNzZhNzNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwder4I4Y6nrPsBeCzfL0tZVUaK4/
b1shumgF+TxTq9rb3+OsF6b9qgoY0Cig/W82J3sCX2joNeOb+VcAQ/uBLL8RRCgu
cXJUBy2CTjpFkJdV9KeMj23xuPfsfLYh7ZX2GZQ1bmBXCeP1RJqTEhDy0GJHBgCo
tOhWiYF1vD6l2AoPvcV1wuykf6TiRFWRNqDDXn+3TfDndOM6aHqJxcnymUtsj5Xs
I3XNFKRQ6MX66YwpXXgR8nsD2Yn0jtuTdtbA+aCvU+lp2RN4LwdKXfLmZqc0kS9H
4jOIdvaWkzl+GWXf8f7HRW7NttMheh9SDBGsfeKDu0+d1giygK77KOw2/QIDAQAB
o4ICUDCCAkwwHQYDVR0OBBYEFL4o8qhJB6itViw2R2qMYxfsdqc8MB8GA1UdIwQY
MBaAFNplJd5KptDKGue9juHjW/0mlkm7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMm1VbDNrcW0wTW9hNTcyTzRlTmJfU2FXU2JzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9hYzU2N2QtNDZkMi00MDgxLTk0ZWYt
ZWVkZjc2MDc3ZjA5LzEvdmlqeXFFa0hxSzFXTERaSGFveGpGLXgycHp3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy9hYzU2N2QtNDZkMi00MDgxLTk0ZWYtZWVkZjc2MDc3ZjA5
LzEvMm1VbDNrcW0wTW9hNTcyTzRlTmJfU2FXU2JzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGYGCCsGAQUFBwEHAQH/BFcwVTBEBAIAATA+AwQAudCzMAwD
BAa8ccADBAK8cdgwDAMEALxx3QMEALxx3jAMAwQFvHHgAwQBvHHwMAwDBAC8cfcD
BAC8cfgwDQQCAAIwBwMFACoC98AwDQYJKoZIhvcNAQELBQADggEBAJZGA8RCYteO
ZRS3dBa6xFTLjNxKZV7ln7uhxqbyuqrzOPIkPuGjfTOToyO7aODzd/GS1ytAv84n
51JMQgIVLnQMEaxUmLF8MIGwD6S+hjR1icaYUklt9QGvPwO4sBTX062ixsyMjhxy
qClFnwzcUCAQUFfJGV//7MXuz8de4RioIPcAgj6Nmr+nrUuuqpXXISz+AMHu0SAW
q9Gv9tYPpQm7Y+FBCVgdyj4S8HParfWvMAPrg+HHJf3dTtKNKn0bMXYOHmhidjrw
RRbY4Oj0aVjsCoLZIPH8EyeUxsa3vTmXUJLsWiNrWhRyyLHNo5oWsgri2mNVSGAr
VWIbPpvswNQ=
-----END CERTIFICATE-----
Generated at Tue Apr 29 01:52:28 2025 by rpki-client