Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/9VhsTuV-KK7hhk7wkvmZd_H2D6c.roa
File: 9VhsTuV-KK7hhk7wkvmZd_H2D6c.roa (raw, json)
Hash identifier: Y5VztfolwA/akxhrTbYqqmRk4DTaze4H0LIU0qLp8xA=
Subject key identifier: F5:58:6C:4E:E5:7E:28:AE:E1:86:4E:F0:92:F9:99:77:F1:F6:0F:A7
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0184C282A8318A3EDC975F6F546D898C0488
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/9VhsTuV-KK7hhk7wkvmZd_H2D6c.roa
Signing time: Tue 29 Nov 2022 08:30:53 +0000
ROA not before: Tue 29 Nov 2022 08:30:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.32.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
194.87.137.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.64.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.6.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.207.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.30.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.6.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.164.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.170.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.191.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
193.108.112.0/24 maxlen: 24
212.192.210.0/24 maxlen: 24
212.192.208.0/24 maxlen: 24
212.192.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c2:82:a8:31:8a:3e:dc:97:5f:6f:54:6d:89:8c:04:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 29 08:30:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5586c4ee57e28aee1864ef092f99977f1f60fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7e:1f:60:a8:86:d8:0d:fc:34:ed:3d:39:a3:
16:4b:7e:02:cb:20:b9:b5:43:3b:fd:ec:ab:f9:63:
fb:42:b8:75:06:c3:02:0a:a9:38:b6:80:0d:8d:ea:
8b:13:98:f4:02:cb:da:28:45:fe:d7:50:e4:77:d3:
b3:3d:df:8b:f0:19:29:b5:b2:42:b9:03:98:76:6a:
bf:65:c5:1c:4d:3d:59:65:7a:16:f0:fe:01:7e:d1:
d3:14:a4:7a:3a:eb:83:19:73:2b:dc:58:b1:0e:02:
d3:6f:2b:f3:79:2e:5d:68:9b:8f:0d:d2:57:12:c1:
7d:7a:70:c7:76:d2:ba:6c:5e:ef:b5:ef:b4:ff:48:
b7:88:db:7a:5c:c0:c4:4a:ba:e6:8c:6a:3d:fd:e1:
23:e6:a5:c7:a1:50:74:78:45:c5:f0:8f:82:9e:12:
b8:4c:47:34:97:79:0a:a3:61:80:9e:2d:87:7a:18:
e3:67:1a:b5:0f:53:87:80:42:e6:65:06:81:8e:1e:
ff:e9:c7:05:ab:7c:63:6b:3b:b4:29:8c:cb:84:1e:
67:a7:ce:01:b1:e5:fc:c3:6b:94:3f:be:76:62:3e:
7c:73:8a:aa:a0:f9:9e:37:07:1d:70:b4:30:7c:6a:
78:e0:9e:e2:b8:2c:25:17:35:85:92:d6:b8:9e:7e:
74:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:58:6C:4E:E5:7E:28:AE:E1:86:4E:F0:92:F9:99:77:F1:F6:0F:A7
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/9VhsTuV-KK7hhk7wkvmZd_H2D6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/23
192.124.178.0/24
192.124.180.0/22
192.124.209.0/24
193.108.112.0/24
193.124.3.0/24
193.124.9.0/24
193.124.18.0/24
193.124.45.0/24
193.124.201.0/24
193.124.203.0/24
193.124.205.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/23
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.7.0/24
194.87.24.0/22
194.87.32.0/24
194.87.36.0/24
194.87.56.0/24
194.87.64.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.108.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/23
194.87.160.0/24
194.87.163.0-194.87.165.255
194.87.170.0/23
194.87.176.0/24
194.87.191.0/24
194.87.198.0/23
194.87.202.0/24
194.87.207.0-194.87.209.255
194.87.222.0/23
194.87.233.0/24
194.87.250.0/24
194.135.18.0/24
194.135.30.0/24
195.58.50.0/24
195.58.56.0/21
195.133.12.0/24
195.133.30.0/24
195.133.55.0/24
212.192.6.0/24
212.192.10.0/24
212.192.208.0-212.192.210.255
212.192.222.0/24
212.193.0.0/24
212.193.6.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
01:65:2b:bb:e2:07:a6:6e:67:c1:5f:89:c9:eb:df:7a:58:25:
ea:a0:b6:cd:c2:43:c8:31:be:02:a9:19:ec:cc:38:5a:6d:3f:
bc:63:6a:7e:85:ad:0e:9c:5e:fe:7d:a5:45:eb:3a:5d:c4:3b:
f7:3f:c2:c1:63:b2:92:0b:c4:48:58:59:46:b0:15:38:3f:63:
46:7d:ac:af:f8:cc:01:d3:d0:a9:0d:18:55:7a:e5:1b:1a:58:
b6:e9:20:76:ca:23:9c:fa:31:fa:2d:59:cd:ae:ed:cb:cb:d2:
07:28:e5:b5:83:1c:cf:e4:77:8a:be:27:c3:ed:fb:87:fb:04:
d6:c3:be:41:1b:23:90:4d:53:ff:e9:d0:9b:7a:fd:28:c0:9f:
19:f3:a3:e0:28:07:9c:f2:03:21:aa:e4:28:d0:66:41:78:f2:
16:40:8e:10:96:03:24:20:e9:28:67:af:f0:6f:2a:7b:36:61:
80:e7:68:3f:96:90:9d:8a:65:b2:c0:e5:07:aa:4d:90:4b:18:
9d:2d:35:76:ee:d5:9c:48:73:1d:a0:c2:6c:2a:c9:a2:4a:70:
c1:93:55:cb:f3:20:d8:d3:38:d0:3d:7a:db:33:59:fe:a0:91:
60:dc:47:be:e2:e8:98:ba:31:66:f0:4b:40:3d:e7:8b:69:4e:
bd:fb:43:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:07 2024 by rpki-client on console-fra.rpki-client.org