Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Fgl2VqoEBuK8h8n3O6PXxyx1Zdc.roa
File: Fgl2VqoEBuK8h8n3O6PXxyx1Zdc.roa (raw, json)
Hash identifier: UcuCQw+mBuOfI2372cq28gQqq/8vc6Y29qiVaA48lJE=
Subject key identifier: 16:09:76:56:AA:04:06:E2:BC:87:C9:F7:3B:A3:D7:C7:2C:75:65:D7
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0FE06136
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Fgl2VqoEBuK8h8n3O6PXxyx1Zdc.roa
Signing time: Fri 13 May 2022 13:46:41 +0000
ROA not before: Fri 13 May 2022 13:46:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 62.76.232.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
62.76.235.0/24 maxlen: 24
194.87.10.0/23 maxlen: 24
194.87.22.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.51.0/24 maxlen: 24
195.58.54.0/23 maxlen: 24
195.58.55.0/24 maxlen: 24
195.58.52.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
212.193.0.0/22 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.64.0/24 maxlen: 24
194.87.67.0/24 maxlen: 24
193.124.89.0/24 maxlen: 24
193.124.91.0/24 maxlen: 24
193.124.95.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
212.192.10.0/23 maxlen: 24
194.87.166.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/23 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.180.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.188.0/22 maxlen: 22
194.87.179.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266363190 (0xfe06136)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 13 13:46:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16097656aa0406e2bc87c9f73ba3d7c72c7565d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:09:ed:16:47:76:56:1f:2d:5d:0d:a7:49:08:
71:85:0b:6f:c1:66:ba:23:81:85:1d:63:57:82:87:
91:be:a3:5b:da:4e:e3:e9:98:0a:fc:ad:28:6b:a9:
bf:df:29:7f:9a:8e:36:21:ec:8c:ed:67:b6:2c:62:
29:ba:1b:cc:e8:0a:7c:06:fd:e6:b6:a3:88:4b:f9:
16:de:ad:c8:17:66:db:e9:8c:33:59:ee:12:f5:61:
63:19:bc:1c:e4:8f:5b:84:af:27:a2:ad:b8:5a:0a:
59:e3:c0:3a:ce:ee:ca:f7:6a:60:7f:9b:84:86:fd:
94:3a:4c:38:84:dd:fc:c6:5b:6e:94:f3:1f:0e:05:
f5:02:ac:5c:34:66:31:c8:17:5a:d7:16:3d:f8:b9:
52:cb:43:ee:d5:8d:95:5d:f3:71:e4:84:41:ed:b4:
00:39:78:15:5d:d6:5a:12:ce:db:6f:ef:41:40:07:
91:80:63:d3:96:af:7f:90:3d:04:2b:c9:3a:51:87:
14:74:c2:71:18:94:0d:b1:3e:ba:31:5c:08:bd:53:
bc:98:18:93:87:f6:ae:ae:0d:74:86:d3:03:42:d8:
75:4b:5a:c6:c1:d6:e7:25:d7:a6:c0:58:03:2a:85:
23:67:4b:de:df:08:c9:16:a1:e3:06:ee:0a:3e:97:
59:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:09:76:56:AA:04:06:E2:BC:87:C9:F7:3B:A3:D7:C7:2C:75:65:D7
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Fgl2VqoEBuK8h8n3O6PXxyx1Zdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.232.0/24
62.76.235.0/24
192.124.173.0/24
192.124.178.0/24
192.124.180.0/22
192.124.188.0/22
192.124.209.0/24
193.124.89.0/24
193.124.91.0/24
193.124.93.0/24
193.124.95.0/24
193.124.202.0/23
193.124.205.0/24
193.124.207.0/24
194.58.60.0/24
194.87.2.0/24
194.87.10.0/23
194.87.22.0/24
194.87.64.0/24
194.87.67.0/24
194.87.104.0/24
194.87.166.0/24
194.87.172.0/24
194.87.179.0/24
194.87.200.0/24
194.87.226.0/24
194.135.23.0/24
195.58.35.0/24
195.58.50.0-195.58.52.255
195.58.54.0/23
195.133.81.0/24
212.192.10.0/23
212.193.0.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:0d:e8:6c:66:f0:56:b2:1a:0e:33:f6:d6:6f:a5:a7:4a:c7:
f7:fb:a6:bc:77:c1:99:a2:0f:ab:03:49:b7:3b:6b:10:54:0c:
53:b5:68:ac:2a:b2:40:13:d7:f5:22:86:0a:20:b9:fb:9a:95:
22:e4:d6:d7:02:ab:f8:8f:ae:f7:cd:f3:77:95:3d:86:9c:ae:
c2:d7:dd:fe:72:9b:d1:d4:0a:53:d6:d4:c5:e0:2b:43:c1:a1:
79:d2:17:9d:c7:d3:04:42:00:d5:83:9d:92:aa:a9:6d:2f:27:
61:ad:8b:75:ce:b3:37:6f:2d:bb:af:ea:2a:19:8f:d2:5e:13:
72:68:6d:df:89:06:50:16:7a:20:bf:6e:c1:ce:a2:1a:0b:ff:
b0:38:9b:fe:0e:a2:0f:ee:cb:f9:6f:15:73:8e:59:fc:f5:ae:
0f:e9:dd:eb:f7:79:27:3e:34:c1:b9:1f:1f:39:42:86:68:04:
7c:8b:06:ae:4a:95:69:0d:31:49:29:74:b9:f3:29:03:93:97:
b6:12:ea:b0:4b:7f:25:91:39:42:70:45:48:0b:6d:ee:9a:70:
00:90:3b:40:5a:ea:ca:f2:d8:44:93:93:07:9f:a4:66:1b:a3:
89:7e:20:82:e4:e3:31:f6:20:6f:cf:b8:4f:6d:d1:ac:2f:af:
70:2a:7e:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:11 2024 by rpki-client on console-fra.rpki-client.org