Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/EqXdRRoXDhGCl2lBfhpKiMZrXXs.roa
File: EqXdRRoXDhGCl2lBfhpKiMZrXXs.roa (raw, json)
Hash identifier: yX89MBzVjuFLSLJgEYMDRcpsKYZPkPisS/mfExsbpDg=
Subject key identifier: 12:A5:DD:45:1A:17:0E:11:82:97:69:41:7E:1A:4A:88:C6:6B:5D:7B
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0182F82B527A747938DB8A0292782E8D93AC
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/EqXdRRoXDhGCl2lBfhpKiMZrXXs.roa
Signing time: Thu 01 Sep 2022 08:29:24 +0000
ROA not before: Thu 01 Sep 2022 08:29:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
194.87.219.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
195.133.80.0/24 maxlen: 24
194.87.222.0/23 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
195.133.12.0/22 maxlen: 24
194.87.164.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
192.124.180.0/24 maxlen: 24
192.124.188.0/22 maxlen: 22
194.87.179.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f8:2b:52:7a:74:79:38:db:8a:02:92:78:2e:8d:93:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 1 08:29:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12a5dd451a170e11829769417e1a4a88c66b5d7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:0e:3c:8f:a8:72:1d:3d:4d:51:86:bd:b5:89:
04:fa:4f:fc:cf:c5:66:8b:86:db:13:48:e8:d0:4e:
e9:b6:27:2e:7f:6f:52:5c:52:85:ef:44:7d:1a:24:
d8:b7:f0:87:4f:10:ef:a5:fb:ea:6b:5d:48:d4:55:
09:26:e4:c6:54:99:09:35:19:64:d3:81:bf:7d:92:
61:41:81:18:30:88:5a:05:6c:0b:1c:6e:71:b2:ca:
4e:24:b7:c7:de:1d:d5:3e:3e:2b:60:f2:2e:7b:e7:
bd:29:49:b1:fd:e7:5e:d6:1a:87:aa:40:22:91:55:
7a:36:e8:06:f7:17:55:6d:59:fd:69:0e:84:83:ad:
63:c6:83:5e:30:7a:89:fc:14:b9:b6:af:50:00:b8:
62:1e:91:c6:13:dd:ee:fd:c1:7b:b8:44:5e:ad:91:
bf:a0:f9:be:32:78:30:0f:1f:09:93:3c:9f:1b:63:
74:b0:97:9d:81:08:3e:87:5a:cc:ee:e7:fc:69:10:
10:6b:7d:d9:3e:5c:56:31:11:a9:11:5e:a2:01:27:
07:7b:8e:74:56:b6:47:d4:cc:52:f0:90:9e:14:27:
7a:f3:b0:fd:27:6b:a3:10:bf:e7:5c:ed:8a:92:85:
ab:e9:15:55:66:56:d8:d1:80:8b:8f:f5:e4:57:2f:
d2:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A5:DD:45:1A:17:0E:11:82:97:69:41:7E:1A:4A:88:C6:6B:5D:7B
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/EqXdRRoXDhGCl2lBfhpKiMZrXXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.173.0/24
192.124.178.0/24
192.124.180.0/22
192.124.188.0/22
192.124.209.0/24
193.124.3.0/24
193.124.203.0/24
194.87.1.0/24
194.87.24.0/22
194.87.164.0/24
194.87.179.0/24
194.87.219.0/24
194.87.222.0/23
194.135.23.0/24
195.133.12.0/22
195.133.80.0/24
Signature Algorithm: sha256WithRSAEncryption
15:29:e4:55:f2:b9:ce:e4:8b:bf:57:64:5f:40:b4:b5:f8:62:
71:7d:92:02:0c:9a:01:d7:8a:af:02:eb:73:25:21:a4:6e:28:
0e:db:af:b2:31:1e:e6:cf:b2:ed:d2:49:82:e0:01:c3:cb:28:
23:67:cd:07:6c:92:bc:ec:29:04:2a:c2:4f:c0:96:5a:eb:01:
35:86:d4:cc:0e:08:03:f7:22:26:b8:70:92:f6:c9:8a:c6:31:
93:72:53:b6:89:37:ad:43:98:52:e1:51:d6:23:11:58:38:59:
9c:e4:8e:03:de:56:3f:ac:b1:f6:13:30:12:d1:fb:d6:ea:1c:
17:ad:85:b1:2d:88:cf:ef:a9:40:e7:4b:78:d1:ba:f4:45:61:
9f:a2:34:a5:4e:d6:16:7c:21:41:38:e7:5d:f3:3d:56:c1:d8:
8b:3d:90:68:0f:e7:aa:62:d5:d1:67:e6:09:18:f5:e7:a6:ff:
8a:69:3c:4f:01:1e:61:79:d7:e9:37:34:9c:a5:ad:2b:6b:1f:
dc:ab:a5:7b:81:69:21:95:bb:ff:12:a4:2b:bd:e0:81:18:fe:
93:2a:e8:bc:9b:7d:0a:80:25:bf:5c:aa:70:92:9a:e5:69:db:
ac:37:2a:ba:93:4f:23:ec:5b:7e:4d:cf:73:36:26:c7:c6:36:
08:18:9a:6b
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgISAYL4K1J6dHk424oCkngujZOsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjIwOTAxMDgyOTI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMmE1ZGQ0NTFhMTcwZTExODI5NzY5NDE3ZTFhNGE4OGM2NmI1ZDdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjg48j6hyHT1NUYa9tYkE+k/8z8Vm
i4bbE0jo0E7pticuf29SXFKF70R9GiTYt/CHTxDvpfvqa11I1FUJJuTGVJkJNRlk
04G/fZJhQYEYMIhaBWwLHG5xsspOJLfH3h3VPj4rYPIue+e9KUmx/ede1hqHqkAi
kVV6NugG9xdVbVn9aQ6Eg61jxoNeMHqJ/BS5tq9QALhiHpHGE93u/cF7uERerZG/
oPm+MngwDx8JkzyfG2N0sJedgQg+h1rM7uf8aRAQa33ZPlxWMRGpEV6iAScHe450
VrZH1MxS8JCeFCd687D9J2ujEL/nXO2KkoWr6RVVZlbY0YCLj/XkVy/SSwIDAQAB
o4ICYzCCAl8wHQYDVR0OBBYEFBKl3UUaFw4RgpdpQX4aSojGa117MB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvRXFYZFJSb1hEaEdDbDJsQmZocEtpTVpyWFhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHkGCCsGAQUFBwEHAQH/BGowaDBmBAIAATBgAwQAwHytAwQA
wHyyAwQCwHy0AwQCwHy8AwQAwHzRAwQAwXwDAwQAwXzLAwQAwlcBAwQCwlcYAwQA
wlekAwQAwlezAwQAwlfbAwQBwlfeAwQAwocXAwQCw4UMAwQAw4VQMA0GCSqGSIb3
DQEBCwUAA4IBAQAVKeRV8rnO5Iu/V2RfQLS1+GJxfZICDJoB14qvAutzJSGkbigO
26+yMR7mz7Lt0kmC4AHDyygjZ80HbJK87CkEKsJPwJZa6wE1htTMDggD9yImuHCS
9smKxjGTclO2iTetQ5hS4VHWIxFYOFmc5I4D3lY/rLH2EzAS0fvW6hwXrYWxLYjP
76lA50t40br0RWGfojSlTtYWfCFBOOdd8z1WwdiLPZBoD+eqYtXRZ+YJGPXnpv+K
aTxPAR5hedfpNzScpa0rax/cq6V7gWkhlbv/EqQrveCBGP6TKui8m30KgCW/XKpw
kprladusNyq6k08j7Ft+Tc9zNibHxjYIGJpr
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:53 2023 by rpki-client on console-ams.rpki-client.org