Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5VLt_0QdSAbFcjcmAMPxSWsQxCA.roa
File: 5VLt_0QdSAbFcjcmAMPxSWsQxCA.roa (raw, json)
Hash identifier: 7XTmn2QD5isselSMq41YHpiE841jLRR9XuxslPs7+1c=
Subject key identifier: E5:52:ED:FF:44:1D:48:06:C5:72:37:26:00:C3:F1:49:6B:10:C4:20
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018510DAD005AB7CD5BBB99B0240D65211D8
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5VLt_0QdSAbFcjcmAMPxSWsQxCA.roa
Signing time: Wed 14 Dec 2022 13:37:33 +0000
ROA not before: Wed 14 Dec 2022 13:37:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.207.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
194.135.30.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.164.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
212.192.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:10:da:d0:05:ab:7c:d5:bb:b9:9b:02:40:d6:52:11:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 14 13:37:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e552edff441d4806c572372600c3f1496b10c420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:61:6d:a1:9c:68:ee:d4:b4:5f:7b:d0:40:41:
26:9e:34:00:49:f3:7f:09:84:2d:ee:94:cd:4c:ba:
31:e6:bd:6a:12:e3:cc:37:05:84:89:4d:43:16:26:
f2:53:81:ca:31:2c:05:31:3f:4e:35:4d:54:56:f0:
5e:81:15:b7:a2:15:df:dc:58:9b:00:35:b3:8b:a1:
77:f0:21:c4:a3:31:b3:b2:29:c6:9d:01:9d:df:dd:
70:b7:c0:b0:a9:02:cc:84:15:d3:80:16:f1:52:a7:
8b:3f:10:68:07:13:dc:72:b5:0c:a2:ec:b4:9e:46:
ac:ac:90:e1:2f:ec:45:07:72:47:ea:8e:8f:5f:a9:
71:2b:a7:44:b4:e9:f0:41:fb:c9:cd:09:34:25:39:
cd:dc:ed:5f:b4:0d:b2:27:3a:3b:23:bc:dc:10:ec:
c4:ff:f3:99:5b:38:cc:4f:b3:aa:b6:31:1f:65:d4:
63:a9:f7:87:4c:7d:6f:b8:ca:d1:59:6f:a4:1a:53:
b5:bf:bf:6b:26:b3:98:b2:a3:6f:6c:92:18:13:c0:
54:b2:be:b2:4b:b7:9d:19:af:2c:c8:63:b2:14:b4:
04:87:a4:25:26:20:7a:39:1e:ed:57:ca:10:a6:25:
13:b5:9a:9c:62:46:55:e7:82:ec:88:ea:c4:1c:2b:
f4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:52:ED:FF:44:1D:48:06:C5:72:37:26:00:C3:F1:49:6B:10:C4:20
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5VLt_0QdSAbFcjcmAMPxSWsQxCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.9.0/24
193.124.18.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/23
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.2.0/24
194.87.7.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.108.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.149.0/24
194.87.160.0/23
194.87.163.0-194.87.165.255
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.182.0/24
194.87.198.0/23
194.87.202.0/24
194.87.207.0-194.87.209.255
194.87.222.0/23
194.87.233.0/24
194.135.30.0/24
195.58.50.0/24
195.58.56.0/21
195.133.12.0/24
195.133.15.0/24
195.133.55.0/24
195.133.195.0/24
212.192.0.0/23
212.192.10.0/24
212.192.210.0/24
212.192.222.0/24
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
81:35:a0:59:e8:11:3e:bb:fc:46:be:9b:bb:44:73:d9:71:71:
55:36:c2:61:49:fe:db:e2:a4:ed:74:2b:7f:b5:82:fb:e4:0a:
4d:e6:6e:46:41:bb:74:ea:80:fd:ed:49:f7:4c:75:cd:7f:a0:
2e:03:80:26:b2:12:28:cb:2b:63:dc:cc:90:ed:29:ba:ea:2f:
02:fc:c7:9d:a5:b4:d1:53:61:bf:68:a6:c6:f8:72:7d:7d:37:
52:ea:1f:42:9a:f2:0f:07:e0:e4:ee:fb:6d:9e:36:ea:54:bb:
b2:6b:1e:84:d0:14:ca:07:fa:e6:73:32:60:b3:83:d9:1d:25:
ef:7f:4b:83:41:ce:0d:84:41:7c:fa:96:98:0d:86:8f:b7:7f:
9d:70:4c:4a:ee:94:b9:65:1e:21:3d:89:ff:98:44:47:d2:ad:
49:df:a9:22:43:b4:7c:c2:89:5d:2e:17:62:a1:cc:4c:d0:e4:
7f:fd:80:86:92:83:bd:77:a1:ba:e3:94:81:60:ee:dc:c4:3c:
52:ab:50:c0:42:ac:14:15:d8:1b:fb:d9:ed:8a:0d:2a:47:bb:
bc:88:77:09:b6:58:0b:2f:70:a0:c5:df:b5:96:09:ae:5b:b1:
37:ba:46:ae:8b:62:99:9b:30:18:3f:4f:b4:76:a2:ac:76:d2:
07:cc:7e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:50 2023 by rpki-client on console-ams.rpki-client.org