Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GLiMEHzZBH6Ytbo4MtwFQ017mwk.roa
File: GLiMEHzZBH6Ytbo4MtwFQ017mwk.roa (raw, json)
Hash identifier: zsnZ0V+lwV3Q3Mvc8oRfTHIwQfZvZkJOcGM+b5NYUlU=
Subject key identifier: 18:B8:8C:10:7C:D9:04:7E:98:B5:BA:38:32:DC:05:43:4D:7B:9B:09
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 10791367
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GLiMEHzZBH6Ytbo4MtwFQ017mwk.roa
Signing time: Tue 21 Jun 2022 10:52:45 +0000
ROA not before: Tue 21 Jun 2022 10:52:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.4.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
194.87.30.0/24 maxlen: 24
194.58.41.0/24 maxlen: 24
195.58.52.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.124.0/23 maxlen: 23
194.87.56.0/24 maxlen: 24
194.87.64.0/24 maxlen: 24
194.87.77.0/24 maxlen: 24
193.124.95.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.75.0/24 maxlen: 24
195.133.74.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.166.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/23 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.180.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.188.0/22 maxlen: 22
194.87.179.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
194.135.124.0/24 maxlen: 24
194.87.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276370279 (0x10791367)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 21 10:52:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18b88c107cd9047e98b5ba3832dc05434d7b9b09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:12:c0:45:fa:ab:49:1e:47:0d:05:e6:7c:36:
9a:3c:4e:9e:a5:8f:53:40:3f:9f:7d:b6:b9:21:74:
16:54:ac:69:f0:83:81:94:d8:d9:0d:d8:ad:98:97:
5d:88:79:4a:d4:5c:bb:be:e0:df:17:24:bc:b1:a9:
46:37:a2:28:d7:0e:1f:7d:04:07:ee:4e:d4:de:d9:
10:1a:41:41:28:55:77:33:d4:d3:4e:cb:a7:2a:c6:
f7:d5:99:cb:8f:40:f0:d0:44:03:cf:b0:7e:3e:d5:
3c:e3:7a:20:ca:47:fd:22:5b:9d:bc:4e:d3:86:66:
8f:56:36:9a:ef:b2:92:ab:9d:34:f4:9a:81:8a:0d:
80:87:ff:d4:2b:40:67:10:5e:09:2c:59:9a:c5:5e:
bd:d4:6c:f7:fb:bb:d5:47:e5:01:0a:03:a2:13:14:
8f:8e:fb:ec:63:62:0b:d7:9f:a1:9e:14:ad:46:90:
0f:11:6e:6a:08:7b:5b:b1:ce:f8:12:ec:1a:12:ec:
21:d3:18:ad:c2:f8:b5:14:9f:fe:03:c0:39:52:0f:
d1:56:a9:d9:6e:2b:5d:88:a6:c7:c8:53:80:6a:ea:
d8:6a:29:31:64:4f:2e:11:fb:ec:1e:77:0b:36:bb:
1d:86:d5:67:ed:e7:3d:e3:81:c3:8e:0d:a0:f7:41:
48:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:B8:8C:10:7C:D9:04:7E:98:B5:BA:38:32:DC:05:43:4D:7B:9B:09
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GLiMEHzZBH6Ytbo4MtwFQ017mwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.173.0/24
192.124.178.0/24
192.124.180.0/22
192.124.188.0/22
192.124.209.0/24
193.124.4.0/24
193.124.41.0/24
193.124.93.0/24
193.124.95.0/24
193.124.124.0/23
193.124.202.0/23
194.58.41.0/24
194.58.60.0/24
194.58.67.0/24
194.87.1.0/24
194.87.7.0/24
194.87.16.0/24
194.87.30.0/24
194.87.56.0/24
194.87.64.0/24
194.87.77.0/24
194.87.104.0/24
194.87.166.0/24
194.87.172.0/24
194.87.179.0/24
194.87.226.0/24
194.87.254.0/24
194.135.23.0/24
194.135.124.0/24
195.58.52.0/24
195.133.73.0-195.133.75.255
Signature Algorithm: sha256WithRSAEncryption
8a:14:46:7f:a0:5a:8e:dd:ff:c7:d0:97:bf:1a:fb:52:8d:55:
ba:29:8a:ca:c5:c6:c6:2f:7d:17:e5:0e:19:06:bd:e7:d4:3e:
19:0e:e4:1d:63:48:4d:16:3f:a7:7d:38:fc:2a:52:9d:3f:06:
6f:b2:69:76:dc:0a:a3:c1:55:d5:41:fe:db:9e:2e:e8:71:d4:
eb:69:b7:fc:65:df:39:9b:73:a1:00:60:e4:5d:b4:53:b7:51:
36:d2:9e:df:fc:eb:17:fc:57:59:b5:aa:e4:6f:30:21:94:5f:
d2:bb:14:c1:72:f5:08:6c:d7:7b:cf:a9:7e:e9:23:db:80:10:
eb:43:d3:4f:02:4a:37:a9:e1:61:92:44:55:7f:28:11:df:48:
d5:7c:03:b1:cc:9f:be:61:19:84:5e:49:b3:d5:d2:d0:44:96:
f9:68:78:de:ab:53:19:0b:06:8e:86:52:8e:6e:77:5d:c2:78:
b8:b6:6b:5b:01:2a:ee:0f:f2:82:08:36:d1:7a:2b:f9:1d:5f:
a5:71:74:95:b6:34:a9:51:37:34:04:c5:87:e8:90:59:4b:21:
c7:f1:c6:fd:7a:44:d4:95:13:48:ff:c4:07:ee:cf:25:94:c1:
d3:e5:25:e0:1c:72:10:a4:de:a3:13:3c:b9:fa:36:3e:47:01:
df:bc:99:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:54 2023 by rpki-client on console-ams.rpki-client.org