Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/BIPOTsM4Hpcrtsypoo3AmQAYOQQ.roa
File: BIPOTsM4Hpcrtsypoo3AmQAYOQQ.roa (raw, json)
Hash identifier: CUV9hNBage+A1QOgqdO6IDT6/FhLlsAmee63mu9XcyU=
Subject key identifier: 04:83:CE:4E:C3:38:1E:97:2B:B6:CC:A9:A2:8D:C0:99:00:18:39:04
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0182B3644189ACDE2B2588C94514821C8AE0
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/BIPOTsM4Hpcrtsypoo3AmQAYOQQ.roa
Signing time: Thu 18 Aug 2022 23:57:48 +0000
ROA not before: Thu 18 Aug 2022 23:57:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
194.87.219.0/24 maxlen: 24
195.133.80.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.222.0/23 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
195.133.12.0/22 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/23 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.180.0/24 maxlen: 24
192.124.188.0/22 maxlen: 22
212.192.241.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b3:64:41:89:ac:de:2b:25:88:c9:45:14:82:1c:8a:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 18 23:57:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0483ce4ec3381e972bb6cca9a28dc09900183904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:0f:d6:46:a7:c3:81:60:13:2b:7b:16:46:71:
0c:71:0a:42:6c:c4:b8:fc:e7:be:10:37:55:88:fd:
92:5f:b4:11:db:b8:ae:d1:93:1d:4f:d8:67:89:c0:
b5:3f:e3:ac:8e:b3:86:2d:cd:73:8f:0a:ce:0b:96:
c7:d3:0a:08:bc:2b:17:6f:6f:d4:29:b3:9b:bc:df:
0b:43:60:89:d9:a2:0b:02:2f:85:79:84:e6:24:ba:
d2:7a:4e:46:b3:3d:5e:61:aa:60:fb:c4:24:7d:f6:
b9:3a:17:5c:ba:e2:72:2b:48:7d:9e:02:44:f3:c1:
76:4f:98:8c:f2:66:0d:f9:f2:b0:8a:12:2d:2e:9e:
30:18:21:04:33:cb:1d:3f:01:66:49:fd:ea:3d:01:
02:82:ae:f6:fd:fe:2d:1f:a7:7f:3e:60:8f:bd:ab:
a9:54:a4:96:5b:3e:87:29:e7:8c:a7:46:46:47:39:
c3:6f:7d:41:1a:91:c5:df:ba:11:27:32:70:61:52:
15:2d:94:09:94:2d:d6:e2:ac:a7:29:fe:d5:12:bc:
48:b3:a1:bb:86:e5:e2:f2:82:a1:c8:95:80:d0:d1:
ff:85:6a:33:18:2b:99:1b:09:51:9a:33:02:b9:6a:
5e:80:e4:6f:18:69:6e:6d:8f:da:6a:96:5d:88:c3:
a2:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:83:CE:4E:C3:38:1E:97:2B:B6:CC:A9:A2:8D:C0:99:00:18:39:04
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/BIPOTsM4Hpcrtsypoo3AmQAYOQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.173.0/24
192.124.178.0/24
192.124.180.0/22
192.124.188.0/22
192.124.209.0/24
193.124.3.0/24
193.124.203.0/24
194.87.1.0/24
194.87.24.0/22
194.87.179.0/24
194.87.219.0/24
194.87.222.0/23
194.135.23.0/24
195.133.12.0/22
195.133.80.0/24
212.192.241.0/24
212.193.0.0/24
Signature Algorithm: sha256WithRSAEncryption
84:08:65:b4:69:cb:3e:63:c6:82:bc:b9:51:77:b8:60:03:7f:
e6:f6:39:cf:47:7c:27:e8:70:e0:e7:1a:ae:54:6c:91:05:86:
1e:4a:c3:2a:36:dc:46:62:02:17:29:0e:80:8d:94:e5:3f:89:
2d:a3:c6:81:b6:7c:f4:cb:28:92:01:2f:00:1f:95:37:b5:d3:
e2:e7:47:23:7e:bf:9b:dd:e9:ec:cc:61:5f:5b:dc:66:3b:6f:
8c:1c:27:b8:32:ae:e4:9c:bb:ec:61:5c:09:d8:2a:27:f1:17:
bb:f7:e0:b7:d0:d6:84:8a:84:8b:c8:c4:96:67:b4:eb:79:42:
e1:51:3c:23:59:3a:1a:13:08:11:78:f4:82:4c:eb:2e:40:d1:
e8:89:c2:f8:43:1e:37:db:19:a0:d2:13:17:4e:40:01:97:04:
fb:7b:1d:70:64:87:e7:31:82:93:76:dd:89:e0:fe:9b:b1:40:
21:5f:00:6d:e4:0d:2e:84:45:45:fc:fd:4b:97:5f:98:cb:6d:
bd:18:e6:84:21:fb:b4:eb:bd:9f:5f:f4:88:95:55:b7:f0:f7:
cb:e1:b2:b8:5e:7a:da:55:c3:85:38:ee:07:0c:89:de:86:5b:
c0:3d:5a:76:e3:ab:ae:7d:56:09:84:8e:9c:29:6c:ce:d0:f8:
07:6b:4a:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:08 2024 by rpki-client on console-fra.rpki-client.org