Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/NpE-0yV6QLs3LNXCqo8X622v2XY.roa
File: NpE-0yV6QLs3LNXCqo8X622v2XY.roa (raw, json)
Hash identifier: sVoeouD+s8IgXZcMDl3rni+nnW4Ik9x6enhV3O0Esw8=
Subject key identifier: 36:91:3E:D3:25:7A:40:BB:37:2C:D5:C2:AA:8F:17:EB:6D:AF:D9:76
Certificate issuer: /CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Certificate serial: 03A6174B
Authority key identifier: 52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/NpE-0yV6QLs3LNXCqo8X622v2XY.roa
Signing time: Sat 01 Jan 2022 10:56:03 +0000
ROA not before: Sat 01 Jan 2022 10:56:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15895
IP address blocks: 109.162.0.0/17 maxlen: 17
81.23.16.0/24 maxlen: 24
81.23.16.0/20 maxlen: 20
94.153.164.0/22 maxlen: 22
46.118.0.0/15 maxlen: 15
37.229.0.0/16 maxlen: 16
193.41.60.0/22 maxlen: 22
193.41.60.0/23 maxlen: 23
193.41.62.0/23 maxlen: 23
5.248.0.0/16 maxlen: 16
176.8.0.0/16 maxlen: 16
188.163.0.0/17 maxlen: 17
37.115.0.0/16 maxlen: 16
46.211.0.0/16 maxlen: 16
46.185.0.0/17 maxlen: 17
94.153.0.0/16 maxlen: 16
134.249.0.0/16 maxlen: 16
178.137.0.0/16 maxlen: 16
2a02:2378::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61216587 (0x3a6174b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Validity
Not Before: Jan 1 10:56:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36913ed3257a40bb372cd5c2aa8f17eb6dafd976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:10:e9:91:0c:a4:79:3f:ec:af:97:53:c3:6d:
ee:91:24:8f:c1:f7:21:37:4e:dc:2e:d0:6f:f0:cd:
44:4d:3b:aa:dc:f2:c2:5f:c2:5d:af:14:52:28:ff:
f6:1d:48:ff:fd:14:81:30:8d:6a:1c:be:be:f6:e5:
b4:8e:80:27:b3:9d:ce:c7:05:1d:ad:b3:54:a6:d2:
af:43:f9:38:38:d4:82:55:f3:e8:96:31:52:7a:b6:
e3:1b:0a:68:47:42:33:b4:bf:70:ef:30:79:05:73:
57:7f:19:ab:28:67:9b:82:35:56:48:8f:6e:52:31:
30:66:72:b8:94:09:e7:e5:b9:93:d5:ec:b5:3e:fa:
a0:0b:38:55:e7:d3:04:9f:90:35:d1:1f:d8:b4:ba:
a4:2d:5e:82:c0:94:f1:92:b5:e5:c0:6e:fc:4d:2b:
09:95:c7:25:e3:61:1d:f4:dd:48:4d:dd:0a:2d:14:
9a:fe:97:3e:74:be:d2:d6:7a:cf:3f:91:0e:a0:bb:
c5:50:f8:6f:75:44:7b:c9:cc:03:32:ff:87:8c:0d:
26:6e:bb:62:eb:e4:03:28:17:78:9b:2b:ed:cd:0e:
37:72:b6:86:10:f4:bf:d7:c2:8c:d9:00:9e:08:11:
c7:41:77:e8:de:d6:d9:73:a9:b7:20:2f:f4:c7:d1:
e3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:91:3E:D3:25:7A:40:BB:37:2C:D5:C2:AA:8F:17:EB:6D:AF:D9:76
X509v3 Authority Key Identifier:
keyid:52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/NpE-0yV6QLs3LNXCqo8X622v2XY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Urm54lZYDENEuyQURbTVLlT91Qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.248.0.0/16
37.115.0.0/16
37.229.0.0/16
46.118.0.0/15
46.185.0.0/17
46.211.0.0/16
81.23.16.0/20
94.153.0.0/16
109.162.0.0/17
134.249.0.0/16
176.8.0.0/16
178.137.0.0/16
188.163.0.0/17
193.41.60.0/22
IPv6:
2a02:2378::/32
Signature Algorithm: sha256WithRSAEncryption
8a:40:db:6c:e6:69:da:97:b1:c1:ef:25:8f:fd:40:57:fb:ef:
ac:0d:4b:32:d0:b1:3a:2e:28:49:9f:c7:a9:16:66:12:62:1b:
5e:0e:26:63:77:e0:4a:b1:ca:0c:33:61:64:e3:0a:68:12:f2:
06:cb:ed:c7:75:aa:b3:ce:58:ac:a6:25:10:54:32:fa:3e:48:
df:46:49:d0:c5:84:23:2a:39:ce:b8:64:c5:8d:fa:85:a2:d4:
03:9d:d9:31:73:e4:65:44:06:92:1f:b7:5e:4d:74:0d:49:25:
08:21:ba:a4:4f:7a:98:60:34:fd:3a:ed:b5:ea:a4:f6:54:94:
2f:41:71:e6:b0:6f:d7:03:a3:57:97:52:20:13:dd:d0:72:17:
53:eb:eb:1b:5f:47:73:7d:d4:c2:64:c0:ff:4a:e3:93:3a:37:
f9:87:e1:a8:3c:ef:cf:50:d6:2f:d7:70:dd:e9:4f:d4:81:f2:
e8:17:d1:b8:d1:77:c5:47:de:33:d7:34:da:07:a6:e2:e0:92:
74:bc:ab:dc:be:90:b2:b0:41:1a:8f:ae:5b:51:e6:eb:6c:e0:
be:48:4e:8d:f1:8c:ab:ea:a5:df:64:43:b8:24:f3:c1:d5:79:
b3:76:a3:d5:9f:a4:bf:f9:7c:ec:5b:5f:ef:7e:01:b3:7d:ff:
08:7d:d2:97
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgIEA6YXSzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MmI5YjllMjU2NTgwYzQzNDRiYjI0MTQ0NWI0ZDUyZTU0ZmRkNTBiMB4XDTIyMDEw
MTEwNTYwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzY5MTNlZDMyNTdh
NDBiYjM3MmNkNWMyYWE4ZjE3ZWI2ZGFmZDk3NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKsQ6ZEMpHk/7K+XU8Nt7pEkj8H3ITdO3C7Qb/DNRE07qtzy
wl/CXa8UUij/9h1I//0UgTCNahy+vvbltI6AJ7OdzscFHa2zVKbSr0P5ODjUglXz
6JYxUnq24xsKaEdCM7S/cO8weQVzV38Zqyhnm4I1VkiPblIxMGZyuJQJ5+W5k9Xs
tT76oAs4VefTBJ+QNdEf2LS6pC1egsCU8ZK15cBu/E0rCZXHJeNhHfTdSE3dCi0U
mv6XPnS+0tZ6zz+RDqC7xVD4b3VEe8nMAzL/h4wNJm67YuvkAygXeJsr7c0ON3K2
hhD0v9fCjNkAnggRx0F36N7W2XOptyAv9MfR47kCAwEAAaOCAl0wggJZMB0GA1Ud
DgQWBBQ2kT7TJXpAuzcs1cKqjxfrba/ZdjAfBgNVHSMEGDAWgBRSubniVlgMQ0S7
JBRFtNUuVP3VCzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VybTU0bFpZREVORXV5UVVSYlRWTGxUOTFRcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvZWFmODFkLWE5ZGYtNGE2YS1iNjEwLWRlMDVjNTQwNDViYi8x
L05wRS0weVY2UUxzM0xOWENxbzhYNjIydjJYWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
ZWFmODFkLWE5ZGYtNGE2YS1iNjEwLWRlMDVjNTQwNDViYi8xL1VybTU0bFpZREVO
RXV5UVVSYlRWTGxUOTFRcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBz
BggrBgEFBQcBBwEB/wRkMGIwUQQCAAEwSwMDAAX4AwMAJXMDAwAl5QMDAS52AwQH
LrkAAwMALtMDBARRFxADAwBemQMEB22iAAMDAIb5AwMAsAgDAwCyiQMEB7yjAAME
AsEpPDANBAIAAjAHAwUAKgIjeDANBgkqhkiG9w0BAQsFAAOCAQEAikDbbOZp2pex
we8lj/1AV/vvrA1LMtCxOi4oSZ/HqRZmEmIbXg4mY3fgSrHKDDNhZOMKaBLyBsvt
x3Wqs85YrKYlEFQy+j5I30ZJ0MWEIyo5zrhkxY36haLUA53ZMXPkZUQGkh+3Xk10
DUklCCG6pE96mGA0/Trtteqk9lSUL0Fx5rBv1wOjV5dSIBPd0HIXU+vrG19Hc33U
wmTA/0rjkzo3+YfhqDzvz1DWL9dw3elP1IHy6BfRuNF3xUfeM9c02gem4uCSdLyr
3L6QsrBBGo+uW1Hm62zgvkhOjfGMq+ql32RDuCTzwdV5s3aj1Z+kv/l87Ftf734B
s33/CH3Slw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org