Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/Uu-AXA6sk3F1acvo-aknk_QL1Do.roa
File: Uu-AXA6sk3F1acvo-aknk_QL1Do.roa (raw, json)
Hash identifier: cTUbtDhn0CWovWfMphNYWCoMm18oWpOcEPr8Y41cE8I=
Subject key identifier: 52:EF:80:5C:0E:AC:93:71:75:69:CB:E8:F9:A9:27:93:F4:0B:D4:3A
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 0181FBC883252BD0B5CF5D84CA275B6B6E2D
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/Uu-AXA6sk3F1acvo-aknk_QL1Do.roa
Signing time: Thu 14 Jul 2022 08:17:10 +0000
ROA not before: Thu 14 Jul 2022 08:17:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15440
IP address blocks: 195.14.160.0/19 maxlen: 19
185.65.48.0/24 maxlen: 24
185.216.209.0/24 maxlen: 24
217.117.16.0/20 maxlen: 20
77.241.192.0/20 maxlen: 20
79.142.112.0/20 maxlen: 20
185.11.26.0/24 maxlen: 24
45.82.32.0/22 maxlen: 24
5.133.66.0/24 maxlen: 24
5.133.65.0/24 maxlen: 24
92.62.139.0/24 maxlen: 24
92.62.138.0/24 maxlen: 24
92.62.137.0/24 maxlen: 24
92.62.136.0/24 maxlen: 24
92.62.135.0/24 maxlen: 24
92.62.143.0/24 maxlen: 24
92.62.142.0/24 maxlen: 24
92.62.141.0/24 maxlen: 24
92.62.140.0/24 maxlen: 24
89.249.80.0/20 maxlen: 20
92.62.132.0/23 maxlen: 23
92.62.131.0/24 maxlen: 24
92.62.130.0/24 maxlen: 24
92.62.128.0/20 maxlen: 20
92.62.129.0/24 maxlen: 24
92.62.128.0/24 maxlen: 24
213.197.128.0/18 maxlen: 18
2a0d:5000:2::/48 maxlen: 48
2001:1ab8::/32 maxlen: 32
2001:1ab9::/32 maxlen: 32
2001:1ab8::/31 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fb:c8:83:25:2b:d0:b5:cf:5d:84:ca:27:5b:6b:6e:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jul 14 08:17:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52ef805c0eac93717569cbe8f9a92793f40bd43a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:88:2f:62:f8:72:ba:95:49:32:5b:dd:a9:9d:
56:92:4a:23:40:e2:84:3e:90:7f:cb:1f:61:fc:c2:
df:d7:3b:80:e0:a7:ca:bd:76:dc:46:7f:1a:02:7c:
fa:bc:ba:2f:00:f2:27:bb:8a:26:09:bc:80:e8:aa:
c1:4d:ba:5e:36:6c:d2:fa:b0:b3:0a:ae:c2:ad:81:
23:f0:aa:b3:6b:26:61:9e:30:1f:6d:80:3d:f8:04:
c2:f8:d7:5a:43:4a:5a:b3:dd:1f:1a:b4:79:e4:7d:
6c:a5:82:04:9d:92:7e:fe:35:3b:8d:82:dc:27:79:
1c:60:1a:35:c3:0c:b0:e5:7b:60:ca:7c:78:fd:a1:
bb:2c:4f:51:40:ca:d0:db:68:ca:b6:87:93:c5:3c:
02:09:0a:8d:e7:6f:5a:30:bd:84:9e:e6:1c:77:19:
d4:34:89:f5:ff:3a:bd:dd:85:57:64:de:3b:15:52:
9a:bc:00:36:07:94:de:1b:73:a9:a7:6b:48:02:6f:
24:03:d8:da:5a:a7:ba:d0:71:2d:42:b7:56:e5:72:
a8:fa:a7:0b:4c:0c:2d:45:43:a3:59:95:34:27:b3:
5c:95:02:9e:a0:d9:c6:ae:84:5e:5a:a0:48:e5:20:
aa:b6:07:2b:e9:37:e8:9a:1e:38:cb:5f:2d:47:85:
c5:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:EF:80:5C:0E:AC:93:71:75:69:CB:E8:F9:A9:27:93:F4:0B:D4:3A
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/Uu-AXA6sk3F1acvo-aknk_QL1Do.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.65.0-5.133.66.255
45.82.32.0/22
77.241.192.0/20
79.142.112.0/20
89.249.80.0/20
92.62.128.0/20
185.11.26.0/24
185.65.48.0/24
185.216.209.0/24
195.14.160.0/19
213.197.128.0/18
217.117.16.0/20
IPv6:
2001:1ab8::/31
2a0d:5000:2::/48
Signature Algorithm: sha256WithRSAEncryption
a1:30:57:90:70:5d:e8:6b:ba:de:f2:39:fc:b1:01:a1:57:5a:
3d:ca:bb:6f:8f:c2:91:d9:3c:cd:e3:24:4c:f6:4d:18:07:5f:
c2:fa:c1:fc:35:b3:ca:d3:0d:66:a7:e2:c5:e1:d2:ab:20:16:
6c:05:ac:8e:43:03:89:b1:da:f6:cb:a3:35:c3:07:ab:38:d8:
a4:c2:b8:30:81:9e:38:4b:ca:de:4c:03:8a:ac:6e:c8:aa:bc:
23:b3:62:db:36:90:53:6b:ac:2a:a8:8b:ab:1f:c6:32:5f:ac:
74:f1:f6:55:09:bb:47:c2:2e:03:87:93:24:5d:11:8e:96:27:
12:97:4b:43:2a:3d:f2:68:0d:84:9f:9f:c2:cb:da:1e:c8:be:
13:44:fc:ad:dc:f8:2f:0a:04:1b:07:8a:4c:cb:e1:39:35:a0:
af:83:13:74:8e:68:ab:3b:01:aa:40:7f:5f:36:c7:06:9e:7e:
5f:fd:d4:c6:76:68:d1:38:5a:6a:70:3e:b8:59:0e:35:22:60:
bc:9f:97:a6:d9:4d:13:2c:70:4f:52:66:b8:1a:8d:41:14:54:
6f:a5:e0:3f:0f:65:21:fd:3f:35:5f:82:95:c9:29:0f:fe:6e:
75:c9:59:0b:8f:3b:db:46:8c:2f:5e:7e:2a:af:22:dd:5a:45:
8d:5c:35:84
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgISAYH7yIMlK9C1z12Eyidba24tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyNTRhOWYzYTI2NjUxM2RkYzY5MzVkOGJlMDIyZTdlNTIz
MGVhMTAwHhcNMjIwNzE0MDgxNzEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmVmODA1YzBlYWM5MzcxNzU2OWNiZThmOWE5Mjc5M2Y0MGJkNDNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnYgvYvhyupVJMlvdqZ1WkkojQOKE
PpB/yx9h/MLf1zuA4KfKvXbcRn8aAnz6vLovAPInu4omCbyA6KrBTbpeNmzS+rCz
Cq7CrYEj8KqzayZhnjAfbYA9+ATC+NdaQ0pas90fGrR55H1spYIEnZJ+/jU7jYLc
J3kcYBo1wwyw5Xtgynx4/aG7LE9RQMrQ22jKtoeTxTwCCQqN529aML2EnuYcdxnU
NIn1/zq93YVXZN47FVKavAA2B5TeG3Opp2tIAm8kA9jaWqe60HEtQrdW5XKo+qcL
TAwtRUOjWZU0J7NclQKeoNnGroReWqBI5SCqtgcr6Tfomh44y18tR4XFtQIDAQAB
o4ICbDCCAmgwHQYDVR0OBBYEFFLvgFwOrJNxdWnL6PmpJ5P0C9Q6MB8GA1UdIwQY
MBaAFKJUqfOiZlE93Gk12L4CLn5SMOoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2xTcDg2Sm1VVDNjYVRYWXZnSXVmbEl3NmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iNjAzNzMtODE4ZS00MGE5LTkzMTkt
YWRkZjBlMTg0OWViLzEvVXUtQVhBNnNrM0YxYWN2by1ha25rX1FMMURvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9iNjAzNzMtODE4ZS00MGE5LTkzMTktYWRkZjBlMTg0OWVi
LzEvb2xTcDg2Sm1VVDNjYVRYWXZnSXVmbEl3NmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGBBggrBgEFBQcBBwEB/wRyMHAwVgQCAAEwUDAMAwQABYVB
AwQABYVCAwQCLVIgAwQETfHAAwQET45wAwQEWflQAwQEXD6AAwQAuQsaAwQAuUEw
AwQAudjRAwQFww6gAwQG1cWAAwQE2XUQMBYEAgACMBADBQEgARq4AwcAKg1QAAAC
MA0GCSqGSIb3DQEBCwUAA4IBAQChMFeQcF3oa7re8jn8sQGhV1o9yrtvj8KR2TzN
4yRM9k0YB1/C+sH8NbPK0w1mp+LF4dKrIBZsBayOQwOJsdr2y6M1wwerONikwrgw
gZ44S8reTAOKrG7Iqrwjs2LbNpBTa6wqqIurH8YyX6x08fZVCbtHwi4Dh5MkXRGO
licSl0tDKj3yaA2En5/Cy9oeyL4TRPyt3PgvCgQbB4pMy+E5NaCvgxN0jmirOwGq
QH9fNscGnn5f/dTGdmjROFpqcD64WQ41ImC8n5em2U0TLHBPUma4Go1BFFRvpeA/
D2Uh/T81X4KVySkP/m51yVkLjzvbRowvXn4qryLdWkWNXDWE
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:49 2024 by rpki-client on console-ams.rpki-client.org