Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/uHaNC_eVLJp1Frr8kPiRiamx-tM.roa
File: uHaNC_eVLJp1Frr8kPiRiamx-tM.roa (raw, json)
Hash identifier: +bRFKvOoTSrIxaJLrLXuUExKzJZDd/lqpHx6wVn6sco=
Subject key identifier: B8:76:8D:0B:F7:95:2C:9A:75:16:BA:FC:90:F8:91:89:A9:B1:FA:D3
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 14C8EEF8
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/uHaNC_eVLJp1Frr8kPiRiamx-tM.roa
Signing time: Sun 22 May 2022 09:51:08 +0000
ROA not before: Sun 22 May 2022 09:51:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
139.28.96.0/22 maxlen: 24
2a10:cc46:100::/44 maxlen: 48
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 348712696 (0x14c8eef8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 22 09:51:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8768d0bf7952c9a7516bafc90f89189a9b1fad3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:85:a8:7b:4a:8c:34:39:b9:94:1a:0f:39:4f:
c0:27:2f:82:01:c2:85:35:ad:09:0f:5e:fd:cf:d3:
a8:41:93:a4:80:4c:30:85:ae:7a:bd:5d:b9:8c:e1:
61:e3:ea:7e:76:5b:fb:42:84:27:8c:b4:8f:16:32:
ea:3d:ab:2c:b8:f0:92:e4:37:f7:f8:ec:86:2f:df:
98:a7:27:30:de:c4:57:dc:97:af:18:fb:a4:b9:f1:
1d:9d:a8:90:24:0f:be:cd:fe:e1:a5:b8:c8:63:24:
a5:02:0d:f5:eb:84:a7:e1:f1:49:1b:27:92:05:e4:
b7:77:d2:2e:e8:7d:e6:60:c1:11:49:1d:a8:b3:3c:
e2:10:b3:5f:cc:94:22:1e:97:8e:96:8a:9e:6a:b5:
0d:9a:cb:8e:e2:c5:dd:2c:cc:d0:1a:74:ad:02:e9:
1b:a3:10:2f:ed:fb:7b:70:f4:06:ab:33:39:39:1e:
81:c7:37:b6:a6:82:f0:7c:1a:22:88:a6:cc:1c:f8:
0a:b8:ff:dc:bc:07:56:0b:f0:6e:94:91:8c:f9:ef:
31:dc:c9:61:63:3f:0e:9f:18:62:c3:51:72:7c:8f:
db:da:53:b6:a3:f2:cf:5f:9d:7e:a9:f4:c3:41:03:
ab:86:c7:bc:be:3f:a9:63:88:40:ee:f2:52:f5:8e:
bd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:76:8D:0B:F7:95:2C:9A:75:16:BA:FC:90:F8:91:89:A9:B1:FA:D3
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/uHaNC_eVLJp1Frr8kPiRiamx-tM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.68.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:cc46:100::/44
Signature Algorithm: sha256WithRSAEncryption
36:a8:be:a9:ce:b2:05:05:1d:de:48:bd:5a:15:20:35:a3:a9:
e4:9c:21:0e:4f:34:42:c8:e0:2f:2e:6f:b8:db:ff:3f:36:fe:
d0:b3:46:b8:67:19:9b:dc:7d:e5:6f:00:45:37:28:ee:93:99:
4c:7e:f0:6b:9d:0c:af:cc:65:0b:62:c9:f2:17:a7:a2:72:27:
77:04:6a:0a:e4:e6:8a:36:f6:21:1c:2a:b0:12:53:63:35:85:
8d:33:2a:ff:86:a3:a2:4e:3f:88:0b:4c:25:7e:cf:e5:27:8f:
c2:d3:16:65:65:69:44:34:bd:df:ad:b7:ba:52:3a:d2:03:46:
0b:4f:dc:6e:ab:ba:55:d5:cc:8c:bd:cd:14:d2:74:f0:2d:45:
06:e3:06:67:47:0b:f8:76:a9:ff:d9:e2:9d:23:21:1b:7e:c7:
42:cf:a4:9d:24:e5:85:3f:4d:2f:9d:ce:86:75:50:24:fc:13:
92:00:51:f1:a7:bb:d8:8f:ff:82:34:38:1b:01:0f:0c:af:4e:
b7:ae:bb:a3:c9:34:3e:ff:e3:c8:88:ae:3f:bd:e4:ed:9c:e3:
b6:5e:6a:7f:aa:36:04:fc:56:72:64:ed:ec:0f:4c:eb:f9:59:
53:23:ff:ea:1a:f3:2d:5f:6f:cb:46:48:4b:a2:12:c7:41:eb:
85:11:a2:a0
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgIEFMju+DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
M2U5MTY3MTdhYjExY2NjZjExZWYxZmI1YzEyZWU0MTk1MGZhZDliMB4XDTIyMDUy
MjA5NTEwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjg3NjhkMGJmNzk1
MmM5YTc1MTZiYWZjOTBmODkxODlhOWIxZmFkMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMGFqHtKjDQ5uZQaDzlPwCcvggHChTWtCQ9e/c/TqEGTpIBM
MIWuer1duYzhYePqfnZb+0KEJ4y0jxYy6j2rLLjwkuQ39/jshi/fmKcnMN7EV9yX
rxj7pLnxHZ2okCQPvs3+4aW4yGMkpQIN9euEp+HxSRsnkgXkt3fSLuh95mDBEUkd
qLM84hCzX8yUIh6XjpaKnmq1DZrLjuLF3SzM0Bp0rQLpG6MQL+37e3D0BqszOTke
gcc3tqaC8HwaIoimzBz4Crj/3LwHVgvwbpSRjPnvMdzJYWM/Dp8YYsNRcnyP29pT
tqPyz1+dfqn0w0EDq4bHvL4/qWOIQO7yUvWOvSECAwEAAaOCAoswggKHMB0GA1Ud
DgQWBBS4do0L95UsmnUWuvyQ+JGJqbH60zAfBgNVHSMEGDAWgBRj6RZxerEczPEe
8ftcEu5BlQ+tmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8x
L3VIYU5DX2VWTEpwMUZycjhrUGlSaWFteC10TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEv
NDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZhNS8xL1kta1djWHF4SE16
eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
oAYIKwYBBQUHAQcBAf8EgZAwgY0wNgQCAAEwMAMEAi0MRAMEAi2IiAMEAFXKywME
AF6xegMEAoscYAMEAMIyXAMEAMIyXgMEAMIybzBTBAIAAjBNAwcAIAEH+AEZAwUD
KgkEwAMFAyoMO4ADBwAqDpfAAXADBwQqDpfAAmADBwAqDrEHEWUDBwAqDrEHF4YD
BwAqD+QEAQIDBwQqEMxGAQAwDQYJKoZIhvcNAQELBQADggEBADaovqnOsgUFHd5I
vVoVIDWjqeScIQ5PNELI4C8ub7jb/z82/tCzRrhnGZvcfeVvAEU3KO6TmUx+8Gud
DK/MZQtiyfIXp6JyJ3cEagrk5oo29iEcKrASU2M1hY0zKv+Go6JOP4gLTCV+z+Un
j8LTFmVlaUQ0vd+tt7pSOtIDRgtP3G6rulXVzIy9zRTSdPAtRQbjBmdHC/h2qf/Z
4p0jIRt+x0LPpJ0k5YU/TS+dzoZ1UCT8E5IAUfGnu9iP/4I0OBsBDwyvTreuu6PJ
ND7/48iIrj+95O2c47Zean+qNgT8VnJk7ewPTOv5WVMj/+oa8y1fb8tGSEuiEsdB
64URoqA=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-fra.rpki-client.org