Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/brS4-H95ti4CAMBYEMQR8Mywv2Q.roa
File: brS4-H95ti4CAMBYEMQR8Mywv2Q.roa (raw, json)
Hash identifier: lp4lWbKWNIfdnDnwJ+Ax+jKseysmK/A5c7jOkShleDU=
Subject key identifier: 6E:B4:B8:F8:7F:79:B6:2E:02:00:C0:58:10:C4:11:F0:CC:B0:BF:64
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 156174B1
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/brS4-H95ti4CAMBYEMQR8Mywv2Q.roa
Signing time: Sat 01 Jan 2022 11:55:36 +0000
ROA not before: Sat 01 Jan 2022 11:55:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15440
IP address blocks: 195.14.160.0/19 maxlen: 19
185.65.48.0/22 maxlen: 22
185.65.48.0/24 maxlen: 24
185.216.209.0/24 maxlen: 24
217.117.16.0/20 maxlen: 20
77.241.192.0/20 maxlen: 20
79.142.112.0/20 maxlen: 20
185.11.27.0/24 maxlen: 24
185.11.26.0/24 maxlen: 24
45.82.32.0/22 maxlen: 24
5.133.66.0/24 maxlen: 24
5.133.65.0/24 maxlen: 24
92.62.139.0/24 maxlen: 24
92.62.138.0/24 maxlen: 24
92.62.137.0/24 maxlen: 24
92.62.136.0/24 maxlen: 24
92.62.135.0/24 maxlen: 24
92.62.143.0/24 maxlen: 24
92.62.142.0/24 maxlen: 24
92.62.141.0/24 maxlen: 24
92.62.140.0/24 maxlen: 24
89.249.80.0/20 maxlen: 20
92.62.132.0/23 maxlen: 23
92.62.131.0/24 maxlen: 24
92.62.130.0/24 maxlen: 24
92.62.128.0/20 maxlen: 20
92.62.129.0/24 maxlen: 24
92.62.128.0/24 maxlen: 24
213.197.128.0/18 maxlen: 18
2a0d:5000:2::/48 maxlen: 48
2001:1ab8::/32 maxlen: 32
2001:1ab9::/32 maxlen: 32
2001:1ab8::/31 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358708401 (0x156174b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 1 11:55:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6eb4b8f87f79b62e0200c05810c411f0ccb0bf64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:0f:1c:3e:d1:22:df:ed:b1:a2:8d:38:75:52:
32:b7:01:41:d4:a1:fc:37:6a:bd:17:3f:31:fd:73:
6b:16:23:ef:ec:73:a2:81:c0:5f:98:db:6e:17:65:
c1:45:7a:9a:8b:56:e0:3b:d0:d8:c7:0f:23:9a:f7:
cd:c7:22:10:4d:c2:64:3e:47:e9:af:09:a9:2d:bb:
17:b7:4f:83:49:e1:be:2f:5d:44:81:5b:47:ed:7a:
af:ab:6f:9d:04:22:90:4e:6d:c5:79:9a:fe:fa:bd:
70:9d:93:dc:4f:6b:55:47:45:16:9e:26:b3:86:b7:
6a:9b:72:1d:00:ce:51:2f:83:8e:51:30:e6:0a:b1:
66:a6:6b:de:20:95:c8:65:ed:2f:8c:29:39:9a:4a:
50:6c:c5:66:d3:18:a6:b9:62:4d:4f:5c:ec:d0:ac:
5c:63:26:56:ef:97:77:27:8e:7b:fa:d5:52:0e:66:
39:9b:47:70:99:f1:a0:21:3a:84:a0:23:90:3d:d5:
76:db:85:38:a9:84:0a:d2:d0:b2:7f:d2:25:2e:f0:
5a:45:08:3d:26:38:63:f5:61:0f:e3:d7:ea:0e:4b:
09:c0:b1:7e:4f:21:84:f5:7e:83:9c:c2:4d:14:e6:
6e:61:21:0e:32:4e:ce:75:23:9a:1e:da:85:2f:4f:
b8:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:B4:B8:F8:7F:79:B6:2E:02:00:C0:58:10:C4:11:F0:CC:B0:BF:64
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/brS4-H95ti4CAMBYEMQR8Mywv2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.65.0-5.133.66.255
45.82.32.0/22
77.241.192.0/20
79.142.112.0/20
89.249.80.0/20
92.62.128.0/20
185.11.26.0/23
185.65.48.0/22
185.216.209.0/24
195.14.160.0/19
213.197.128.0/18
217.117.16.0/20
IPv6:
2001:1ab8::/31
2a0d:5000:2::/48
Signature Algorithm: sha256WithRSAEncryption
c3:76:97:94:b6:09:cd:50:83:f3:48:fc:c4:f9:18:9a:e2:73:
13:28:41:66:ce:e1:26:50:ed:7a:6d:6e:ea:66:7e:c2:56:6c:
85:48:c2:5f:39:1e:44:29:16:15:88:c2:3e:9d:54:5b:34:1c:
93:22:8c:f4:3d:7b:26:90:12:4f:57:cc:1f:b0:0f:45:e4:20:
77:63:ad:ce:df:8e:db:63:ea:89:98:b9:92:f2:52:1a:9b:13:
0e:86:a8:22:69:f6:c5:83:c6:16:1e:b9:2f:f8:3a:65:0e:d3:
5e:c2:92:5e:ea:c5:f3:ad:c6:e2:05:a8:6c:60:a9:a2:27:38:
21:84:11:e9:de:1e:06:db:bb:5c:42:0e:03:47:c8:a5:38:21:
b7:66:11:b5:cc:fb:95:27:1f:6a:ab:f5:71:75:b2:f7:18:11:
f7:65:c9:4a:f5:02:a3:db:d5:21:c7:79:86:b7:72:6c:94:d4:
46:e3:e6:e1:0b:90:f3:1b:4b:5e:49:82:29:96:03:b0:82:fc:
98:b1:67:15:c9:fa:cf:20:c8:cb:06:8b:db:0f:97:97:a0:a6:
b0:9d:a6:f0:4b:e7:df:d1:1b:92:eb:1b:88:f8:fe:47:61:ad:
1d:75:00:ef:31:15:58:f3:3d:23:ba:61:d3:b0:08:84:b7:dd:
72:1e:c3:ee
-----BEGIN CERTIFICATE-----
MIIFUjCCBDqgAwIBAgIEFWF0sTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MjU0YTlmM2EyNjY1MTNkZGM2OTM1ZDhiZTAyMmU3ZTUyMzBlYTEwMB4XDTIyMDEw
MTExNTUzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmViNGI4Zjg3Zjc5
YjYyZTAyMDBjMDU4MTBjNDExZjBjY2IwYmY2NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOAPHD7RIt/tsaKNOHVSMrcBQdSh/DdqvRc/Mf1zaxYj7+xz
ooHAX5jbbhdlwUV6motW4DvQ2McPI5r3zcciEE3CZD5H6a8JqS27F7dPg0nhvi9d
RIFbR+16r6tvnQQikE5txXma/vq9cJ2T3E9rVUdFFp4ms4a3aptyHQDOUS+DjlEw
5gqxZqZr3iCVyGXtL4wpOZpKUGzFZtMYprliTU9c7NCsXGMmVu+XdyeOe/rVUg5m
OZtHcJnxoCE6hKAjkD3VdtuFOKmECtLQsn/SJS7wWkUIPSY4Y/VhD+PX6g5LCcCx
fk8hhPV+g5zCTRTmbmEhDjJOznUjmh7ahS9PuB8CAwEAAaOCAmwwggJoMB0GA1Ud
DgQWBBRutLj4f3m2LgIAwFgQxBHwzLC/ZDAfBgNVHSMEGDAWgBSiVKnzomZRPdxp
Ndi+Ai5+UjDqEDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L29sU3A4NkptVVQzY2FUWFl2Z0l1ZmxJdzZoQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTAvYjYwMzczLTgxOGUtNDBhOS05MzE5LWFkZGYwZTE4NDllYi8x
L2JyUzQtSDk1dGk0Q0FNQllFTVFSOE15d3YyUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTAv
YjYwMzczLTgxOGUtNDBhOS05MzE5LWFkZGYwZTE4NDllYi8xL29sU3A4NkptVVQz
Y2FUWFl2Z0l1ZmxJdzZoQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
gQYIKwYBBQUHAQcBAf8EcjBwMFYEAgABMFAwDAMEAAWFQQMEAAWFQgMEAi1SIAME
BE3xwAMEBE+OcAMEBFn5UAMEBFw+gAMEAbkLGgMEArlBMAMEALnY0QMEBcMOoAME
BtXFgAMEBNl1EDAWBAIAAjAQAwUBIAEauAMHACoNUAAAAjANBgkqhkiG9w0BAQsF
AAOCAQEAw3aXlLYJzVCD80j8xPkYmuJzEyhBZs7hJlDtem1u6mZ+wlZshUjCXzke
RCkWFYjCPp1UWzQckyKM9D17JpAST1fMH7APReQgd2Otzt+O22PqiZi5kvJSGpsT
DoaoImn2xYPGFh65L/g6ZQ7TXsKSXurF863G4gWobGCpoic4IYQR6d4eBtu7XEIO
A0fIpTght2YRtcz7lScfaqv1cXWy9xgR92XJSvUCo9vVIcd5hrdybJTURuPm4QuQ
8xtLXkmCKZYDsIL8mLFnFcn6zyDIywaL2w+Xl6CmsJ2m8Evn39EbkusbiPj+R2Gt
HXUA7zEVWPM9I7ph07AIhLfdch7D7g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org