Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/DerQEs8Lp-DlANlTxmz0CPKZ83o.roa
File: DerQEs8Lp-DlANlTxmz0CPKZ83o.roa (raw, json)
Hash identifier: 1EaCCCNPyDy699GvWBXU3TjyfrpyaPyLb9m2o2hUnyc=
Subject key identifier: 0D:EA:D0:12:CF:0B:A7:E0:E5:00:D9:53:C6:6C:F4:08:F2:99:F3:7A
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01829384B00754FDEF6C45B7B556035B4906
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/DerQEs8Lp-DlANlTxmz0CPKZ83o.roa
Signing time: Fri 12 Aug 2022 19:25:22 +0000
ROA not before: Fri 12 Aug 2022 19:25:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
212.193.14.0/24 maxlen: 24
194.87.219.0/24 maxlen: 24
195.133.80.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.222.0/23 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
195.133.12.0/22 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/23 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.180.0/24 maxlen: 24
192.124.188.0/22 maxlen: 22
194.87.179.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.187.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:93:84:b0:07:54:fd:ef:6c:45:b7:b5:56:03:5b:49:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 12 19:25:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0dead012cf0ba7e0e500d953c66cf408f299f37a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:31:37:8a:49:47:32:e4:0a:26:7c:35:3c:bb:
2e:ff:c2:69:ab:cc:e3:d0:2b:95:10:5e:f5:d0:f3:
c7:27:35:eb:d7:92:d1:15:ff:bf:fd:13:5d:c1:52:
2b:17:df:e4:1a:ca:56:81:65:c2:4d:71:ed:8c:93:
72:7a:15:df:26:cf:3a:06:8b:cf:2e:79:51:27:4e:
83:c0:9a:b4:bc:c2:9f:4a:c4:05:83:7b:2c:c1:0e:
b5:95:a7:11:98:24:e2:f6:cd:97:bd:21:8a:90:2f:
eb:24:66:5e:a6:ae:72:3b:02:d2:fd:d9:ae:c5:0a:
1b:7b:e5:e8:a2:45:e2:38:b2:a8:e0:0a:ac:c0:2e:
ec:fe:2d:b5:90:01:1b:40:05:a3:9a:90:5c:5f:7c:
f9:d8:b1:44:7b:03:a5:4f:83:fd:36:80:5d:1e:d7:
44:c3:b7:de:b5:09:96:6e:09:2d:f0:d2:a7:6f:e6:
19:d1:a0:2e:13:0c:30:c7:76:42:f0:68:35:9d:5d:
ab:4f:37:57:96:7a:bb:69:1a:cb:38:ce:00:48:c5:
cc:41:e3:45:0d:b8:8c:27:5d:4b:c7:54:85:9b:7d:
77:07:81:b0:6f:ab:b3:77:d7:fc:97:71:c8:c6:ad:
de:ec:56:6e:d3:54:35:b3:bb:da:23:02:18:19:ca:
2f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:EA:D0:12:CF:0B:A7:E0:E5:00:D9:53:C6:6C:F4:08:F2:99:F3:7A
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/DerQEs8Lp-DlANlTxmz0CPKZ83o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.173.0/24
192.124.178.0/24
192.124.180.0/22
192.124.188.0/22
192.124.209.0/24
193.124.3.0/24
193.124.203.0/24
194.87.1.0/24
194.87.24.0/22
194.87.179.0/24
194.87.187.0/24
194.87.219.0/24
194.87.222.0/23
194.135.23.0/24
195.133.12.0/22
195.133.80.0/24
212.193.14.0/24
Signature Algorithm: sha256WithRSAEncryption
95:4e:a7:cf:73:54:48:c4:a8:d7:f4:ba:35:05:f2:58:be:e1:
9a:d8:b8:e5:87:0d:a4:0d:59:99:d4:3b:0b:3f:e8:19:2d:1e:
30:de:33:78:02:27:04:b5:10:9d:e1:c6:56:4f:e8:e9:d9:8c:
bd:52:6a:2f:93:18:bb:f1:4a:81:16:4b:30:16:17:9c:e7:5b:
2d:b9:41:48:a2:97:34:9c:de:0d:ed:5d:c4:44:7d:11:5b:da:
e6:b4:42:1e:6f:f2:20:9b:6d:ce:32:5b:3a:bc:1b:4f:68:fc:
98:33:40:cd:e4:fd:1d:89:a5:61:2b:7f:9b:4c:a4:00:6e:94:
58:32:25:74:f5:43:68:0c:f9:70:f4:ba:65:cb:94:fb:ae:3c:
17:91:2f:be:34:19:f9:12:17:57:67:31:f5:aa:ec:ca:70:f7:
4b:ee:a1:fe:7d:60:b5:01:9e:e2:ca:ee:ea:4c:da:db:44:60:
3f:f0:54:26:4f:43:51:9e:20:05:0f:55:78:df:98:19:9f:2f:
ef:05:1d:b3:b4:b0:56:bb:b7:8a:e3:de:ae:0c:f5:08:b9:7b:
01:e8:6a:a9:29:f4:83:2e:b4:8a:13:68:5b:c0:00:32:c1:d4:
94:17:34:f9:e8:a8:d7:47:7c:55:5f:9f:53:4d:ce:96:3f:c6:
95:d8:dd:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:58 2023 by rpki-client on console-fra.rpki-client.org