Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/uDmNoDabwik3triAq87xndvIAnM.roa
File: uDmNoDabwik3triAq87xndvIAnM.roa (raw, json)
Hash identifier: uJToxHCyWQvPexFnb5VfZ53lj5FbnovOuCuZKcv8ki4=
Subject key identifier: B8:39:8D:A0:36:9B:C2:29:37:B6:B8:80:AB:CE:F1:9D:DB:C8:02:73
Certificate issuer: /CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Certificate serial: 35A0DECB
Authority key identifier: 01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/uDmNoDabwik3triAq87xndvIAnM.roa
Signing time: Tue 01 Feb 2022 07:41:10 +0000
ROA not before: Tue 01 Feb 2022 07:41:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35699
IP address blocks: 45.145.244.0/22 maxlen: 24
62.56.192.0/20 maxlen: 24
216.147.96.0/20 maxlen: 24
87.236.180.0/22 maxlen: 24
45.230.12.0/22 maxlen: 24
91.126.32.0/19 maxlen: 24
91.126.64.0/19 maxlen: 24
185.239.36.0/22 maxlen: 24
147.161.64.0/18 maxlen: 24
91.126.16.0/20 maxlen: 24
91.126.160.0/19 maxlen: 24
74.126.176.0/20 maxlen: 24
143.131.192.0/18 maxlen: 24
110.93.8.0/22 maxlen: 24
185.203.208.0/22 maxlen: 24
91.126.96.0/19 maxlen: 24
64.190.114.0/23 maxlen: 24
91.126.128.0/19 maxlen: 24
135.129.224.0/20 maxlen: 24
98.96.184.0/21 maxlen: 24
103.202.232.0/22 maxlen: 24
45.130.132.0/22 maxlen: 24
91.126.192.0/19 maxlen: 24
45.133.138.0/23 maxlen: 24
91.126.224.0/19 maxlen: 24
91.126.232.0/21 maxlen: 24
173.243.32.0/20 maxlen: 24
2a00:1af4::/32 maxlen: 32
2a00:1af4:1000::/48 maxlen: 48
2a00:1af0::/29 maxlen: 29
2a00:1af4:1003::/48 maxlen: 48
2a00:1af1::/32 maxlen: 32
2a00:1af1::/36 maxlen: 36
2a00:1af2::/32 maxlen: 32
2a00:1af3::/32 maxlen: 32
2a00:1af0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 899735243 (0x35a0decb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Validity
Not Before: Feb 1 07:41:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8398da0369bc22937b6b880abcef19ddbc80273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:98:1a:d9:c1:7a:5d:a8:c9:63:87:ad:4f:77:
b3:d1:70:c6:f7:4b:bf:d2:08:b2:0f:ef:fa:24:11:
00:df:4e:44:c9:a9:99:c5:ad:2b:2a:a6:d9:da:d3:
4b:5a:be:aa:f4:5c:c4:33:39:b2:d5:86:c8:91:63:
81:1f:39:78:35:74:f6:8b:bd:45:6f:26:1c:14:37:
29:44:5d:96:ac:4f:fe:61:c9:06:01:99:8b:c6:bc:
71:48:9b:83:0a:03:66:40:d0:1a:da:59:63:7e:01:
c1:b6:f3:29:95:d0:c1:d1:eb:8a:23:3e:2b:ed:25:
7f:7a:00:1d:49:6c:1c:de:c2:f8:75:88:0f:02:7d:
0f:4e:61:df:34:ff:fa:37:61:e8:34:af:4e:ed:c5:
7f:a3:3b:11:1d:ce:4e:76:16:9e:a1:13:61:3e:ab:
c9:c1:b7:5d:28:2e:66:cd:c5:a6:99:f1:47:f9:95:
55:c3:21:76:ac:bf:a6:c7:2c:a9:21:31:2b:c4:c5:
80:eb:ce:50:d5:b6:44:4e:6e:78:68:5c:0a:2b:7a:
15:e0:85:3f:1c:ba:1f:df:e6:c3:d4:d8:2d:4b:2c:
9d:c0:9e:72:a8:02:16:1c:12:4d:1f:a3:5c:34:c9:
e5:5c:ef:d8:ee:e0:fd:cc:06:63:35:fe:3f:59:78:
d4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:39:8D:A0:36:9B:C2:29:37:B6:B8:80:AB:CE:F1:9D:DB:C8:02:73
X509v3 Authority Key Identifier:
keyid:01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/uDmNoDabwik3triAq87xndvIAnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/AXChabbNQRAiJ56f-ZfxNP9Uqxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.132.0/22
45.133.138.0/23
45.145.244.0/22
45.230.12.0/22
62.56.192.0/20
64.190.114.0/23
74.126.176.0/20
87.236.180.0/22
91.126.16.0-91.126.255.255
98.96.184.0/21
103.202.232.0/22
110.93.8.0/22
135.129.224.0/20
143.131.192.0/18
147.161.64.0/18
173.243.32.0/20
185.203.208.0/22
185.239.36.0/22
216.147.96.0/20
IPv6:
2a00:1af0::/29
Signature Algorithm: sha256WithRSAEncryption
49:bd:0f:c6:2a:93:92:ec:89:a0:24:fe:16:5c:b7:5a:65:3b:
27:16:29:1d:36:d7:32:82:76:97:b6:9b:06:3f:30:a6:01:9b:
92:a4:24:bc:08:d0:60:4d:07:b4:e6:66:59:ef:34:9e:05:0a:
7b:30:40:6e:89:a0:de:99:6d:19:67:a1:2b:af:e4:ad:fd:34:
c5:b5:44:97:5e:32:8f:99:ba:8d:28:a3:45:7f:c6:49:6b:d7:
33:55:df:70:46:82:ff:8c:c2:d4:86:2a:dd:c5:c1:c5:79:d0:
5d:de:23:45:8e:6d:2a:d6:a8:35:fb:61:49:d7:05:fb:b7:d9:
87:51:71:79:82:d6:ef:ad:12:20:9b:7a:95:ec:a2:d2:1a:85:
56:10:c6:1b:19:33:5c:60:16:19:61:5c:76:b1:aa:c8:f4:58:
9d:98:8a:36:3f:9f:9e:6a:58:2c:4e:dc:d5:35:c3:0b:26:9f:
cd:de:69:e2:d6:b7:f4:a6:16:54:34:88:17:eb:24:25:cd:1f:
3d:61:de:b3:6c:5f:a3:c5:27:80:6b:cf:19:ac:17:e8:54:6e:
b1:5d:f0:cd:3f:88:fb:91:55:30:25:df:14:a0:0f:8f:11:c3:
6b:0b:d3:93:ae:2c:6e:5f:5c:8c:34:03:ad:c2:74:8f:aa:27:
1e:7e:3a:cb
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgIENaDeyzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MTcwYTE2OWI2Y2Q0MTEwMjIyNzllOWZmOTk3ZjEzNGZmNTRhYjFjMB4XDTIyMDIw
MTA3NDExMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjgzOThkYTAzNjli
YzIyOTM3YjZiODgwYWJjZWYxOWRkYmM4MDI3MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJmYGtnBel2oyWOHrU93s9FwxvdLv9IIsg/v+iQRAN9ORMmp
mcWtKyqm2drTS1q+qvRcxDM5stWGyJFjgR85eDV09ou9RW8mHBQ3KURdlqxP/mHJ
BgGZi8a8cUibgwoDZkDQGtpZY34BwbbzKZXQwdHriiM+K+0lf3oAHUlsHN7C+HWI
DwJ9D05h3zT/+jdh6DSvTu3Ff6M7ER3OTnYWnqETYT6rycG3XSguZs3FppnxR/mV
VcMhdqy/pscsqSExK8TFgOvOUNW2RE5ueGhcCit6FeCFPxy6H9/mw9TYLUssncCe
cqgCFhwSTR+jXDTJ5Vzv2O7g/cwGYzX+P1l41P0CAwEAAaOCAo4wggKKMB0GA1Ud
DgQWBBS4OY2gNpvCKTe2uICrzvGd28gCczAfBgNVHSMEGDAWgBQBcKFpts1BECIn
np/5l/E0/1SrHDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FYQ2hhYmJOUVJBaUo1NmYtWmZ4TlA5VXF4dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2QvMWU3NzdmLTk4NmItNGUzNC04ZDgxLTdkNGJiMjM4MDQ4Ny8x
L3VEbU5vRGFid2lrM3RyaUFxODd4bmR2SUFuTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Qv
MWU3NzdmLTk4NmItNGUzNC04ZDgxLTdkNGJiMjM4MDQ4Ny8xL0FYQ2hhYmJOUVJB
aUo1NmYtWmZ4TlA5VXF4dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
owYIKwYBBQUHAQcBAf8EgZMwgZAwfwQCAAEweQMEAi2ChAMEAS2FigMEAi2R9AME
Ai3mDAMEBD44wAMEAUC+cgMEBEp+sAMEAlfstDALAwQEW34QAwMAW34DBANiYLgD
BAJnyugDBAJuXQgDBASHgeADBAaPg8ADBAaToUADBASt8yADBAK5y9ADBAK57yQD
BATYk2AwDQQCAAIwBwMFAyoAGvAwDQYJKoZIhvcNAQELBQADggEBAEm9D8Yqk5Ls
iaAk/hZct1plOycWKR021zKCdpe2mwY/MKYBm5KkJLwI0GBNB7TmZlnvNJ4FCnsw
QG6JoN6ZbRlnoSuv5K39NMW1RJdeMo+Zuo0oo0V/xklr1zNV33BGgv+MwtSGKt3F
wcV50F3eI0WObSrWqDX7YUnXBfu32YdRcXmC1u+tEiCbepXsotIahVYQxhsZM1xg
FhlhXHaxqsj0WJ2YijY/n55qWCxO3NU1wwsmn83eaeLWt/SmFlQ0iBfrJCXNHz1h
3rNsX6PFJ4BrzxmsF+hUbrFd8M0/iPuRVTAl3xSgD48Rw2sL05OuLG5fXIw0A63C
dI+qJx5+Oss=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-ams.rpki-client.org