Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GRgFks0WPHEgs5kjoMS-6u0YEPc.roa
File: GRgFks0WPHEgs5kjoMS-6u0YEPc.roa (raw, json)
Hash identifier: cTdxES6YxpVLsUCQlFrCFYlZf/r6dkEpdOelq9HvAec=
Subject key identifier: 19:18:05:92:CD:16:3C:71:20:B3:99:23:A0:C4:BE:EA:ED:18:10:F7
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018506133C1FF9E34096BC6174DECA0F109F
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GRgFks0WPHEgs5kjoMS-6u0YEPc.roa
Signing time: Mon 12 Dec 2022 11:23:21 +0000
ROA not before: Mon 12 Dec 2022 11:23:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
194.87.137.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
212.193.14.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.207.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
194.135.30.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.164.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
212.192.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:06:13:3c:1f:f9:e3:40:96:bc:61:74:de:ca:0f:10:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 12 11:23:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19180592cd163c7120b39923a0c4beeaed1810f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:bb:fe:a2:4b:f1:87:92:c5:5d:14:6a:59:01:
2f:13:a3:2e:3f:22:83:5d:ee:8f:33:f8:a3:b3:47:
5c:a6:fc:72:15:eb:a0:91:35:1e:b1:ef:c2:e5:30:
89:1f:51:48:c1:2a:77:c2:a8:39:eb:6c:c5:3b:b4:
55:72:76:bd:b8:34:1f:e6:0c:db:2d:41:9f:f9:65:
0a:fe:d6:c5:c3:31:aa:31:1d:8b:25:08:d3:2d:df:
ac:f6:8f:6f:54:d2:fd:23:4f:e4:10:08:db:0b:28:
bb:7e:e6:78:30:e1:fc:7f:f6:f6:56:74:ec:b9:20:
e4:7b:84:b0:9c:1a:df:53:b2:ef:81:8d:4a:28:0d:
ad:69:92:1a:ee:d6:db:01:1a:ff:c4:d7:17:b5:9c:
78:20:17:8c:8d:b7:5c:1a:25:5d:a9:9c:ac:a0:99:
92:a5:09:05:42:b5:5d:a3:5f:09:0c:6c:01:18:db:
6b:9b:dc:97:80:66:1f:ba:7f:a3:09:8c:c2:e3:71:
21:22:ed:50:b7:93:94:98:d1:92:11:68:23:b6:df:
52:91:2e:5c:24:0f:8e:86:46:0c:09:6c:98:a9:e1:
09:81:de:9f:94:a4:14:04:c3:46:6d:25:89:22:7d:
5f:ad:36:24:3d:0b:2d:75:74:9d:7b:20:91:5c:51:
7a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:18:05:92:CD:16:3C:71:20:B3:99:23:A0:C4:BE:EA:ED:18:10:F7
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GRgFks0WPHEgs5kjoMS-6u0YEPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.9.0/24
193.124.18.0/24
193.124.201.0/24
193.124.203.0/24
193.124.205.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/23
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.7.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.108.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/23
194.87.149.0/24
194.87.160.0/23
194.87.163.0-194.87.165.255
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.198.0/23
194.87.202.0/24
194.87.207.0-194.87.209.255
194.87.222.0/23
194.87.233.0/24
194.87.250.0/24
194.135.30.0/24
195.58.50.0/24
195.58.56.0/21
195.133.12.0/24
195.133.30.0/24
195.133.55.0/24
195.133.195.0/24
212.192.10.0/24
212.192.210.0/24
212.192.222.0/24
212.193.0.0/24
212.193.12.0/24
212.193.14.0/24
Signature Algorithm: sha256WithRSAEncryption
52:12:e6:e7:bf:85:0e:39:a3:c4:ef:89:e3:53:25:4c:2f:f7:
53:14:17:8d:00:71:2a:94:52:f0:a8:91:ce:b0:9d:1f:82:8c:
8a:bb:ca:c8:2a:85:59:11:36:11:a9:07:ec:92:a6:d3:58:c2:
29:2c:84:2a:46:5a:70:da:6e:ef:34:5d:8b:c3:ae:09:3b:b7:
8b:0b:89:d1:fb:57:bd:e1:d6:91:50:92:68:4f:31:40:56:ce:
a6:cd:0c:49:31:0d:cd:cb:35:19:3b:83:0f:9c:60:e0:81:eb:
53:04:f9:89:ad:a7:c5:ba:a2:03:60:10:4d:71:c4:01:e8:04:
a8:15:11:72:5f:9b:8c:a0:f9:30:a7:51:5f:9e:e7:84:e5:78:
2d:e6:af:91:c3:3b:d0:3e:18:09:05:08:f8:ab:e2:f1:0c:31:
b3:91:02:05:b9:e4:56:54:f4:85:77:25:ed:bf:e7:ec:2e:1c:
c4:5f:48:8b:0f:7e:54:8e:ad:ee:e4:f2:53:1c:58:87:04:4d:
3e:9e:d5:58:7c:69:0f:99:fe:4b:72:3f:95:ff:14:79:e4:77:
5a:68:2c:2b:76:22:5d:c8:ab:f3:bc:82:25:2c:d5:a7:df:bb:
6c:a3:6d:d7:f6:44:8b:af:27:e0:d2:39:19:2c:62:46:87:88:
a4:6c:9f:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:54 2023 by rpki-client on console-ams.rpki-client.org