Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ATOdtkFzXkWxTjpEDOcXG4RhcR0.roa
File: ATOdtkFzXkWxTjpEDOcXG4RhcR0.roa (raw, json)
Hash identifier: CBhHpQzCfR07r+gkd/8g4DWE0UIl/jR4OZoHhV98arU=
Subject key identifier: 01:33:9D:B6:41:73:5E:45:B1:4E:3A:44:0C:E7:17:1B:84:61:71:1D
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0184A4940E4784B177BCECD731DC89B20F42
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ATOdtkFzXkWxTjpEDOcXG4RhcR0.roa
Signing time: Wed 23 Nov 2022 13:01:17 +0000
ROA not before: Wed 23 Nov 2022 13:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.32.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
194.87.137.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.64.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
212.193.3.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.6.0/24 maxlen: 24
194.87.207.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.30.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.6.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.164.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.170.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.191.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
193.108.112.0/24 maxlen: 24
212.192.208.0/24 maxlen: 24
212.192.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a4:94:0e:47:84:b1:77:bc:ec:d7:31:dc:89:b2:0f:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 23 13:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01339db641735e45b14e3a440ce7171b8461711d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ef:62:7f:b9:27:21:27:cf:a9:6e:42:9c:9b:
cc:9a:20:75:00:47:80:9d:a1:1b:eb:3b:84:93:65:
2c:ca:61:61:69:6f:b1:55:84:fb:0f:6b:25:ea:fc:
fd:a8:2c:05:a4:3d:2e:6a:67:33:12:82:a7:04:58:
24:28:d7:87:19:9f:3a:77:28:58:10:9a:c9:8e:1e:
dc:b1:0b:bb:d1:9a:9c:87:e2:ce:d8:45:72:96:04:
84:c8:e5:86:23:8d:28:47:95:63:9c:51:56:a7:64:
35:fe:ac:1e:ba:d9:ce:e3:37:62:bf:ea:7e:0b:e5:
08:e1:45:22:d2:07:d8:23:0a:61:8c:9b:10:ca:21:
0e:4f:7f:21:b4:fc:8c:52:29:ca:fb:da:49:05:fc:
c6:b2:4e:f4:dd:a1:f7:d5:88:87:46:23:e3:3f:b0:
ac:d9:2c:6b:e2:40:26:f9:8b:0a:fc:64:e4:29:4e:
ad:d2:15:75:00:0d:f3:41:a6:11:17:3e:4d:28:a2:
c1:1b:89:d0:49:49:b5:5d:66:e9:1b:86:d6:c5:11:
e2:1a:d3:8a:d3:5c:36:93:65:92:00:12:61:43:c2:
4b:33:c8:ed:9a:5f:11:23:37:81:16:39:ad:71:3c:
3e:77:c9:64:09:b1:9a:af:ad:d1:be:07:d6:26:41:
2f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:33:9D:B6:41:73:5E:45:B1:4E:3A:44:0C:E7:17:1B:84:61:71:1D
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ATOdtkFzXkWxTjpEDOcXG4RhcR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/23
192.124.180.0/22
192.124.209.0/24
193.108.112.0/24
193.124.3.0/24
193.124.9.0/24
193.124.16.0/24
193.124.18.0/24
193.124.45.0/24
193.124.201.0/24
193.124.203.0/24
193.124.205.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/23
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.7.0/24
194.87.24.0/22
194.87.32.0/24
194.87.36.0/24
194.87.56.0/24
194.87.64.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.108.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/23
194.87.160.0/24
194.87.163.0-194.87.165.255
194.87.170.0/23
194.87.191.0/24
194.87.198.0/23
194.87.207.0-194.87.209.255
194.87.222.0/23
194.87.233.0/24
194.87.250.0/24
194.135.18.0/24
194.135.30.0/24
195.58.50.0/24
195.58.56.0/21
195.133.12.0/24
195.133.30.0/24
195.133.55.0/24
212.192.6.0/24
212.192.10.0/24
212.192.208.0/23
212.192.222.0/24
212.193.0.0/24
212.193.3.0/24
212.193.6.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
81:9e:ff:06:91:a5:9d:82:7c:4a:a3:b6:c5:2b:ba:6b:87:10:
ae:25:10:44:81:15:c9:21:9c:31:4e:19:fa:89:b3:04:03:34:
d8:8b:9a:ed:f5:3b:7e:2a:2c:e5:19:3b:93:73:90:d5:6a:2d:
6d:cc:72:f2:06:94:2b:ca:ad:c2:3c:49:d7:c5:b3:38:97:6f:
65:c3:18:fd:58:85:d5:a1:85:36:57:06:07:1d:6b:01:c2:2b:
36:31:11:c3:da:58:66:33:92:1e:35:a4:e4:3b:9c:d4:a8:f2:
4d:c3:be:4a:83:2d:f5:57:93:7a:63:de:00:25:fa:a5:b8:a7:
ed:56:02:49:f5:3b:de:fe:82:85:63:dc:fc:d4:08:57:a7:36:
d6:30:c3:4c:ae:7b:99:f6:06:79:d8:19:e2:00:88:a5:cb:57:
36:03:0c:2b:2c:22:ee:ac:f2:0b:df:d4:ab:19:ff:8d:9f:68:
7a:4d:19:53:3a:43:fb:45:4b:d4:27:e2:73:53:23:29:3c:a6:
02:cb:97:8d:9d:d8:0f:36:75:74:83:ee:21:61:a5:7b:e3:1b:
e3:1b:cf:c1:77:5f:89:08:7c:1f:44:2c:9b:20:de:1f:f8:53:
6e:c3:ac:ef:a4:be:b8:36:cd:74:59:19:9b:9f:a6:53:bd:2f:
cf:eb:c5:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:08 2024 by rpki-client on console-fra.rpki-client.org