Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/l5jXhRL72z3OJ09Xsoxxv_tfT-M.roa
File: l5jXhRL72z3OJ09Xsoxxv_tfT-M.roa (raw, json)
Hash identifier: G8BVUNrRScZ17MobCeb0ZS3wYuZH0zfkIZcQGJNa+NU=
Subject key identifier: 97:98:D7:85:12:FB:DB:3D:CE:27:4F:57:B2:8C:71:BF:FB:5F:4F:E3
Certificate issuer: /CN=a79bba2805a988954e4fec42570530f16f9e7093
Certificate serial: 06A1A813
Authority key identifier: A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/l5jXhRL72z3OJ09Xsoxxv_tfT-M.roa
Signing time: Sat 01 Jan 2022 13:59:32 +0000
ROA not before: Sat 01 Jan 2022 13:59:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33438
IP address blocks: 81.171.61.0/24 maxlen: 24
81.171.62.0/23 maxlen: 24
81.171.68.0/24 maxlen: 24
81.171.66.0/24 maxlen: 24
81.171.70.0/23 maxlen: 23
81.171.70.64/26 maxlen: 26
81.171.105.0/24 maxlen: 24
81.171.106.0/24 maxlen: 24
81.171.116.0/24 maxlen: 24
2001:4de0:2105::/48 maxlen: 48
2001:4de0:4000::/40 maxlen: 40
2001:4de0:400::/40 maxlen: 40
2001:4de0:2300::/40 maxlen: 40
2001:4de0:2200::/40 maxlen: 40
2001:4de0:3000::/40 maxlen: 40
2001:4de0:500::/40 maxlen: 40
2001:4de0:4100::/40 maxlen: 40
2001:4de0:6300::/40 maxlen: 40
2001:4de0:2100::/40 maxlen: 40
2001:4de0:4300::/40 maxlen: 40
2001:4de0:200::/40 maxlen: 40
2001:4de0:6000::/40 maxlen: 40
2001:4de0:6200::/40 maxlen: 40
2001:4de0:700::/40 maxlen: 40
2001:4de0:3100::/40 maxlen: 40
2001:4de0:600::/40 maxlen: 40
2001:4de0:2000::/40 maxlen: 40
2001:4de0:1000::/48 maxlen: 48
2001:4de0:7003::/48 maxlen: 48
2001:4de0:402::/48 maxlen: 48
2001:4de0:2202::/48 maxlen: 48
2001:4de0:6102::/48 maxlen: 48
2001:4de0:7002::/48 maxlen: 48
2001:4de0:5010::/48 maxlen: 48
2001:4de0:ac13::/48 maxlen: 48
2001:4de0:3004::/48 maxlen: 48
2001:4de0:7001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111257619 (0x6a1a813)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a79bba2805a988954e4fec42570530f16f9e7093
Validity
Not Before: Jan 1 13:59:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9798d78512fbdb3dce274f57b28c71bffb5f4fe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c4:66:e3:9c:76:89:1e:fe:de:50:15:45:a1:
b1:81:31:72:56:8a:17:81:60:3d:50:44:30:dd:cc:
5c:d3:a4:39:e2:3f:54:4d:54:06:0b:df:dc:89:d5:
cd:88:5a:fb:57:4f:3a:8e:a9:94:db:90:7c:9e:fa:
c1:93:fc:b3:2f:16:32:29:ba:3e:7d:12:2b:db:a1:
c8:d3:16:61:0d:ad:cb:8a:d7:6b:25:c5:ea:aa:40:
37:8b:ca:2d:22:99:95:1f:0d:e8:76:ab:bb:12:07:
12:ab:3d:ee:8a:d8:ec:6e:e3:e5:62:43:82:81:9a:
e7:f2:2f:fe:ef:04:4b:3b:4b:83:27:c2:9e:fe:9f:
ff:e1:5f:9b:8a:31:48:12:9d:98:00:76:39:30:35:
09:17:29:c7:1d:32:c4:69:89:13:c5:1a:b8:aa:5b:
c0:16:b7:eb:e1:6d:db:14:7e:27:a0:4b:ff:e8:8e:
46:05:fd:ec:70:7a:5f:bb:e1:01:c0:56:64:36:a8:
c2:b9:28:44:2b:76:b1:d3:9e:ea:90:85:ca:97:97:
71:f2:ae:3b:6a:71:0b:7e:80:4a:07:8c:c4:2f:aa:
67:15:e5:0f:9f:7b:b6:37:f1:24:31:ab:a8:7d:c1:
8d:89:07:4e:34:19:a6:63:e8:f3:8b:55:29:ce:59:
e9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:98:D7:85:12:FB:DB:3D:CE:27:4F:57:B2:8C:71:BF:FB:5F:4F:E3
X509v3 Authority Key Identifier:
keyid:A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/l5jXhRL72z3OJ09Xsoxxv_tfT-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/p5u6KAWpiJVOT-xCVwUw8W-ecJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.171.61.0-81.171.63.255
81.171.66.0/24
81.171.68.0/24
81.171.70.0/23
81.171.105.0-81.171.106.255
81.171.116.0/24
IPv6:
2001:4de0:200::/40
2001:4de0:400::/38
2001:4de0:1000::/48
2001:4de0:2000::/38
2001:4de0:3000::/39
2001:4de0:4000::/39
2001:4de0:4300::/40
2001:4de0:5010::/48
2001:4de0:6000::/40
2001:4de0:6102::/48
2001:4de0:6200::/39
2001:4de0:7001::-2001:4de0:7003:ffff:ffff:ffff:ffff:ffff
2001:4de0:ac13::/48
Signature Algorithm: sha256WithRSAEncryption
98:48:cd:d2:35:42:67:ea:61:28:f4:ae:12:6b:44:9f:0e:3d:
62:28:c0:64:26:24:77:26:42:f1:8a:72:13:55:04:88:52:19:
f4:c9:92:8f:4f:54:33:bd:73:0d:a5:b7:84:e0:a9:55:46:68:
69:cc:3b:d2:ad:26:1d:a2:a3:3d:4d:ba:0c:3d:8e:ce:db:71:
40:95:1a:21:2f:00:19:e3:83:f4:d5:ed:8e:37:1e:ce:08:c1:
6f:08:b5:f3:41:f7:03:8a:56:77:98:56:2a:d4:8e:5e:32:b6:
b4:68:ae:74:4d:fd:43:ac:61:51:74:2f:42:df:40:4d:f6:97:
19:77:68:61:93:f2:6c:f2:eb:70:4a:64:cf:42:fd:8b:6b:a3:
2e:86:55:ce:0e:43:5f:62:1d:2c:78:26:c7:bd:75:59:dd:65:
7c:bf:c1:0f:86:71:10:42:25:a1:ac:ca:1a:a5:43:06:13:f0:
91:bf:e0:5f:e1:f3:44:41:19:17:33:95:84:60:c3:2c:68:2c:
e6:90:aa:51:5b:e0:16:7f:c6:24:3c:63:65:5d:4e:25:42:de:
c4:c1:c0:9e:ec:3a:2f:38:62:c4:77:c7:39:93:fe:8c:3a:c7:
73:c7:f6:69:d1:a6:64:ef:81:ea:38:8b:c7:68:85:b2:72:9d:
21:f7:3e:e8
-----BEGIN CERTIFICATE-----
MIIFoDCCBIigAwIBAgIEBqGoEzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NzliYmEyODA1YTk4ODk1NGU0ZmVjNDI1NzA1MzBmMTZmOWU3MDkzMB4XDTIyMDEw
MTEzNTkzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTc5OGQ3ODUxMmZi
ZGIzZGNlMjc0ZjU3YjI4YzcxYmZmYjVmNGZlMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANDEZuOcdoke/t5QFUWhsYExclaKF4FgPVBEMN3MXNOkOeI/
VE1UBgvf3InVzYha+1dPOo6plNuQfJ76wZP8sy8WMim6Pn0SK9uhyNMWYQ2ty4rX
ayXF6qpAN4vKLSKZlR8N6HaruxIHEqs97orY7G7j5WJDgoGa5/Iv/u8ESztLgyfC
nv6f/+Ffm4oxSBKdmAB2OTA1CRcpxx0yxGmJE8UauKpbwBa36+Ft2xR+J6BL/+iO
RgX97HB6X7vhAcBWZDaowrkoRCt2sdOe6pCFypeXcfKuO2pxC36ASgeMxC+qZxXl
D597tjfxJDGrqH3BjYkHTjQZpmPo84tVKc5Z6dkCAwEAAaOCArowggK2MB0GA1Ud
DgQWBBSXmNeFEvvbPc4nT1eyjHG/+19P4zAfBgNVHSMEGDAWgBSnm7ooBamIlU5P
7EJXBTDxb55wkzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3A1dTZLQVdwaUpWT1QteENWd1V3OFctZWNKTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmMvZDE0MGZiLTAzYWUtNDVkOS04ZGRjLWUxZWQ5ZGQyYTAyYS8x
L2w1alhoUkw3MnozT0owOVhzb3h4dl90ZlQtTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMv
ZDE0MGZiLTAzYWUtNDVkOS04ZGRjLWUxZWQ5ZGQyYTAyYS8xL3A1dTZLQVdwaUpW
T1QteENWd1V3OFctZWNKTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
zwYIKwYBBQUHAQcBAf8Egb8wgbwwOgQCAAEwNDAMAwQAUas9AwQGUasAAwQAUatC
AwQAUatEAwQBUatGMAwDBABRq2kDBABRq2oDBABRq3QwfgQCAAIweAMGACABTeAC
AwYCIAFN4AQDBwAgAU3gEAADBgIgAU3gIAMGASABTeAwAwYBIAFN4EADBgAgAU3g
QwMHACABTeBQEAMGACABTeBgAwcAIAFN4GECAwYBIAFN4GIwEgMHACABTeBwAQMH
AiABTeBwAAMHACABTeCsEzANBgkqhkiG9w0BAQsFAAOCAQEAmEjN0jVCZ+phKPSu
EmtEnw49YijAZCYkdyZC8YpyE1UEiFIZ9MmSj09UM71zDaW3hOCpVUZoacw70q0m
HaKjPU26DD2OzttxQJUaIS8AGeOD9NXtjjcezgjBbwi180H3A4pWd5hWKtSOXjK2
tGiudE39Q6xhUXQvQt9ATfaXGXdoYZPybPLrcEpkz0L9i2ujLoZVzg5DX2IdLHgm
x711Wd1lfL/BD4ZxEEIloazKGqVDBhPwkb/gX+HzREEZFzOVhGDDLGgs5pCqUVvg
Fn/GJDxjZV1OJULexMHAnuw6LzhixHfHOZP+jDrHc8f2adGmZO+B6jiLx2iFsnKd
Ifc+6A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:17 2024 by rpki-client on console-ams.rpki-client.org