Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/uhx_MDrLitYJ5zbxAgy8oI5HFn0.roa
File: uhx_MDrLitYJ5zbxAgy8oI5HFn0.roa (raw, json)
Hash identifier: 5dx6tEbKyLFckHnTunBg7qNjz8+4jECpIgwS/XWUW7k=
Subject key identifier: BA:1C:7F:30:3A:CB:8A:D6:09:E7:36:F1:02:0C:BC:A0:8E:47:16:7D
Certificate issuer: /CN=f071f4d119d0b74fb66e37a7ef878d449d54ddc8
Certificate serial: 1017E70E
Authority key identifier: F0:71:F4:D1:19:D0:B7:4F:B6:6E:37:A7:EF:87:8D:44:9D:54:DD:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HH00RnQt0-2bjen74eNRJ1U3cg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/uhx_MDrLitYJ5zbxAgy8oI5HFn0.roa
Signing time: Fri 04 Mar 2022 13:58:33 +0000
ROA not before: Fri 04 Mar 2022 13:58:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12874
IP address blocks: 81.208.64.0/18 maxlen: 18
93.60.0.0/15 maxlen: 15
81.208.0.0/18 maxlen: 18
93.43.0.0/16 maxlen: 16
93.33.0.0/16 maxlen: 16
89.97.0.0/16 maxlen: 16
93.40.0.0/13 maxlen: 13
2.232.0.0/13 maxlen: 13
93.37.0.0/17 maxlen: 17
93.40.0.0/15 maxlen: 15
93.40.0.0/14 maxlen: 14
93.32.0.0/13 maxlen: 13
2.224.0.0/13 maxlen: 13
213.140.0.0/20 maxlen: 20
83.103.0.0/18 maxlen: 18
213.140.16.0/20 maxlen: 20
83.103.0.0/17 maxlen: 17
93.39.0.0/16 maxlen: 16
89.96.0.0/16 maxlen: 16
89.96.0.0/15 maxlen: 15
93.32.0.0/15 maxlen: 15
93.32.0.0/14 maxlen: 14
93.36.0.0/15 maxlen: 15
93.36.0.0/14 maxlen: 14
93.32.0.0/12 maxlen: 12
93.56.0.0/14 maxlen: 14
83.103.64.0/18 maxlen: 18
93.46.0.0/15 maxlen: 15
93.48.0.0/13 maxlen: 13
85.18.0.0/17 maxlen: 17
92.223.128.0/17 maxlen: 17
213.156.32.0/20 maxlen: 20
85.18.0.0/16 maxlen: 16
213.156.48.0/20 maxlen: 20
93.38.0.0/15 maxlen: 15
37.186.192.0/18 maxlen: 18
93.42.0.0/16 maxlen: 16
93.42.0.0/15 maxlen: 15
85.18.128.0/17 maxlen: 17
93.62.0.0/15 maxlen: 15
93.44.0.0/15 maxlen: 15
62.101.96.0/19 maxlen: 19
93.44.0.0/14 maxlen: 14
93.40.192.0/18 maxlen: 18
93.34.0.0/15 maxlen: 15
93.40.128.0/18 maxlen: 18
62.101.64.0/19 maxlen: 19
185.7.112.0/22 maxlen: 22
62.101.124.0/22 maxlen: 22
93.37.128.0/17 maxlen: 17
151.0.128.0/17 maxlen: 17
93.41.0.0/16 maxlen: 16
2001:b00::/29 maxlen: 29
2001:b00:ffff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 270001934 (0x1017e70e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071f4d119d0b74fb66e37a7ef878d449d54ddc8
Validity
Not Before: Mar 4 13:58:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba1c7f303acb8ad609e736f1020cbca08e47167d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5b:d0:54:fa:6a:c8:cc:2d:ad:c2:41:9a:54:
b2:9e:c2:60:5d:31:1f:b2:76:0d:69:44:93:5f:03:
17:78:c5:26:cd:90:67:a4:7f:da:0a:63:63:81:04:
fe:98:6f:38:df:26:b7:a9:75:62:0b:fa:ab:a8:85:
bf:c0:35:d3:e7:12:11:ec:69:1f:55:78:fe:07:14:
5b:53:b9:2d:63:ea:2d:7e:e9:0e:41:9a:d7:02:65:
41:ff:25:ed:84:33:03:33:4f:b1:3d:68:9a:4e:30:
b3:04:ee:ba:a2:90:12:37:8e:0e:03:ca:e1:77:1b:
28:65:4e:65:20:08:b1:9b:f3:34:8a:c5:a8:ef:1a:
87:12:37:64:15:0c:b2:8b:c1:7e:1b:71:21:06:e1:
86:14:93:8d:db:b7:82:be:d5:a0:41:23:5c:c4:f3:
ae:b9:b3:80:27:77:47:98:9e:65:7f:cb:14:e9:96:
76:93:77:d6:6f:50:19:41:77:36:93:8a:d5:f7:2e:
54:34:0c:ba:5c:20:ef:b7:55:83:6e:e9:bf:ce:2f:
96:7a:f9:ed:ef:1a:e0:90:03:69:01:41:96:25:39:
50:b1:2c:f1:a2:25:69:44:be:7d:7a:80:96:96:f7:
c3:83:9d:da:88:6a:61:77:62:84:ff:28:5d:0d:be:
db:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:1C:7F:30:3A:CB:8A:D6:09:E7:36:F1:02:0C:BC:A0:8E:47:16:7D
X509v3 Authority Key Identifier:
keyid:F0:71:F4:D1:19:D0:B7:4F:B6:6E:37:A7:EF:87:8D:44:9D:54:DD:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HH00RnQt0-2bjen74eNRJ1U3cg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/uhx_MDrLitYJ5zbxAgy8oI5HFn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.224.0.0/12
37.186.192.0/18
62.101.64.0/18
81.208.0.0/17
83.103.0.0/17
85.18.0.0/16
89.96.0.0/15
92.223.128.0/17
93.32.0.0/11
151.0.128.0/17
185.7.112.0/22
213.140.0.0/19
213.156.32.0/19
IPv6:
2001:b00::/29
Signature Algorithm: sha256WithRSAEncryption
37:50:d2:d3:2e:c9:bf:a8:6e:00:21:83:ac:5a:ac:a2:40:71:
98:7b:f8:9e:c1:d9:7f:33:68:e7:f1:f5:25:a4:db:7f:a1:e8:
da:a1:5a:c7:8e:0a:9b:25:76:57:77:84:a9:2e:d9:db:e2:ff:
b7:f3:9b:b1:e5:d2:08:7b:01:f8:43:7d:ff:b6:70:32:06:4e:
04:7e:e3:0a:03:17:28:96:5c:44:58:d2:9d:ea:78:2a:9e:e7:
f4:32:ce:c1:0a:33:6f:c7:99:cd:c5:40:e5:fc:ed:0f:df:50:
25:f2:e4:95:44:62:34:00:ef:3c:1c:51:2a:34:b2:07:6f:b1:
b1:32:69:6c:ff:4e:f8:25:1a:29:52:26:8d:c4:e8:93:54:16:
f7:4c:98:2f:be:34:bf:fc:8c:94:e5:ae:bf:d4:e3:42:0e:d5:
97:6c:cb:d8:a6:24:ba:bf:c3:93:eb:82:a3:cc:41:d9:b2:b0:
6b:67:d1:35:47:7f:65:0a:4f:3a:d1:a5:86:6c:90:a1:6f:3e:
75:56:11:b2:f0:22:73:88:34:0f:74:47:46:8f:23:a0:01:d4:
1e:89:b8:9b:ad:e5:62:e1:a8:82:5c:71:ed:f4:f4:8a:d8:51:
e8:06:47:6a:af:a7:0f:4a:80:f7:89:c4:cc:d6:04:8a:a1:c5:
6d:4c:b0:06
-----BEGIN CERTIFICATE-----
MIIFQjCCBCqgAwIBAgIEEBfnDjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
MDcxZjRkMTE5ZDBiNzRmYjY2ZTM3YTdlZjg3OGQ0NDlkNTRkZGM4MB4XDTIyMDMw
NDEzNTgzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmExYzdmMzAzYWNi
OGFkNjA5ZTczNmYxMDIwY2JjYTA4ZTQ3MTY3ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL1b0FT6asjMLa3CQZpUsp7CYF0xH7J2DWlEk18DF3jFJs2Q
Z6R/2gpjY4EE/phvON8mt6l1Ygv6q6iFv8A10+cSEexpH1V4/gcUW1O5LWPqLX7p
DkGa1wJlQf8l7YQzAzNPsT1omk4wswTuuqKQEjeODgPK4XcbKGVOZSAIsZvzNIrF
qO8ahxI3ZBUMsovBfhtxIQbhhhSTjdu3gr7VoEEjXMTzrrmzgCd3R5ieZX/LFOmW
dpN31m9QGUF3NpOK1fcuVDQMulwg77dVg27pv84vlnr57e8a4JADaQFBliU5ULEs
8aIlaUS+fXqAlpb3w4Od2ohqYXdihP8oXQ2+230CAwEAAaOCAlwwggJYMB0GA1Ud
DgQWBBS6HH8wOsuK1gnnNvECDLygjkcWfTAfBgNVHSMEGDAWgBTwcfTRGdC3T7Zu
N6fvh41EnVTdyDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzhISDAwUm5RdDAtMmJqZW43NGVOUkoxVTNjZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTcvNmE5NjgyLTIwMWItNGUwMS1iYTA5LTA3NDc0NTI0ZWY5YS8x
L3VoeF9NRHJMaXRZSjV6YnhBZ3k4b0k1SEZuMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTcv
NmE5NjgyLTIwMWItNGUwMS1iYTA5LTA3NDc0NTI0ZWY5YS8xLzhISDAwUm5RdDAt
MmJqZW43NGVOUkoxVTNjZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBy
BggrBgEFBQcBBwEB/wRjMGEwUAQCAAEwSgMDBALgAwQGJbrAAwQGPmVAAwQHUdAA
AwQHU2cAAwMAVRIDAwFZYAMEB1zfgAMDBV0gAwQHlwCAAwQCuQdwAwQF1YwAAwQF
1ZwgMA0EAgACMAcDBQMgAQsAMA0GCSqGSIb3DQEBCwUAA4IBAQA3UNLTLsm/qG4A
IYOsWqyiQHGYe/iewdl/M2jn8fUlpNt/oejaoVrHjgqbJXZXd4SpLtnb4v+385ux
5dIIewH4Q33/tnAyBk4EfuMKAxcollxEWNKd6ngqnuf0Ms7BCjNvx5nNxUDl/O0P
31Al8uSVRGI0AO88HFEqNLIHb7GxMmls/074JRopUiaNxOiTVBb3TJgvvjS//IyU
5a6/1ONCDtWXbMvYpiS6v8OT64KjzEHZsrBrZ9E1R39lCk860aWGbJChbz51VhGy
8CJziDQPdEdGjyOgAdQeibibreVi4aiCXHHt9PSK2FHoBkdqr6cPSoD3icTM1gSK
ocVtTLAG
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:30 2024 by rpki-client on console-fra.rpki-client.org