Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/HsC09aPY4qUzi-vc3Wi1UG1zJ_Y.roa
File: HsC09aPY4qUzi-vc3Wi1UG1zJ_Y.roa (raw, json)
Hash identifier: 89UNVqUylYC6Z9dkcdjToHFb8EuiVJZSac9sqpeFMkI=
Subject key identifier: 1E:C0:B4:F5:A3:D8:E2:A5:33:8B:EB:DC:DD:68:B5:50:6D:73:27:F6
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0184C8E599F75D229485370011ED4199AF60
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/HsC09aPY4qUzi-vc3Wi1UG1zJ_Y.roa
Signing time: Wed 30 Nov 2022 14:16:41 +0000
ROA not before: Wed 30 Nov 2022 14:16:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.32.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
194.87.137.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.64.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.6.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.207.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
194.135.30.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.6.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.164.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.170.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.191.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
193.108.112.0/24 maxlen: 24
212.192.210.0/24 maxlen: 24
212.192.208.0/24 maxlen: 24
212.192.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c8:e5:99:f7:5d:22:94:85:37:00:11:ed:41:99:af:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 30 14:16:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ec0b4f5a3d8e2a5338bebdcdd68b5506d7327f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b1:59:3d:d0:21:8d:3a:c3:f1:d9:05:23:13:
2e:35:1d:47:a1:ab:dc:b7:70:13:42:e6:d5:e4:4f:
3b:51:87:70:90:0a:0b:b2:05:61:e4:8b:06:04:0c:
2b:e9:cc:3d:9b:93:ad:64:7e:95:35:88:7e:0b:7c:
ff:47:a7:7c:d0:f3:fb:c6:e7:5f:3e:13:58:d7:74:
2a:fe:ae:04:63:5a:9f:f3:23:22:63:a3:71:cd:5c:
f2:03:f8:dc:0b:16:3c:e8:7c:12:9c:d8:e7:ec:bc:
8a:36:b7:e9:5c:8d:77:c0:5f:96:77:0c:b0:69:19:
3e:97:8e:a9:15:ae:7c:cf:53:c8:24:a9:08:7d:7e:
37:00:85:a9:03:ad:b5:9c:85:a3:f8:52:6f:42:c3:
b9:7a:04:f0:39:14:84:3c:ef:ad:70:c2:99:01:f6:
cb:56:a6:e7:91:23:43:ff:63:52:0a:9d:49:5e:1a:
dc:08:36:8d:8c:23:89:1e:22:12:d2:fb:4d:6f:3d:
7f:74:e4:25:cb:ad:8e:7d:07:11:33:57:49:fb:00:
e9:fd:45:e2:dd:b8:19:2d:f2:b8:ea:00:87:be:a7:
b8:9a:97:4c:d4:94:b8:25:fb:b3:00:35:54:f7:b7:
e2:85:58:e6:b0:75:89:df:ba:3e:e6:cd:9a:9c:38:
ee:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:C0:B4:F5:A3:D8:E2:A5:33:8B:EB:DC:DD:68:B5:50:6D:73:27:F6
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/HsC09aPY4qUzi-vc3Wi1UG1zJ_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/23
192.124.178.0/24
192.124.180.0/22
192.124.209.0/24
193.108.112.0/24
193.124.3.0/24
193.124.9.0/24
193.124.18.0/24
193.124.45.0/24
193.124.201.0/24
193.124.203.0/24
193.124.205.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/23
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.7.0/24
194.87.24.0/22
194.87.32.0/24
194.87.36.0/24
194.87.56.0/24
194.87.64.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.108.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/23
194.87.160.0/24
194.87.163.0-194.87.165.255
194.87.170.0/23
194.87.176.0/24
194.87.191.0/24
194.87.198.0/23
194.87.202.0/24
194.87.207.0-194.87.209.255
194.87.222.0/23
194.87.233.0/24
194.87.250.0/24
194.135.30.0/24
195.58.50.0/24
195.58.56.0/21
195.133.12.0/24
195.133.30.0/24
195.133.55.0/24
212.192.6.0/24
212.192.10.0/24
212.192.208.0-212.192.210.255
212.192.222.0/24
212.193.0.0/24
212.193.6.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
04:bf:3d:2d:4c:db:09:a8:e3:cc:d7:e7:c1:b1:77:c7:04:87:
66:33:67:85:27:35:4f:f0:b1:69:3e:5e:d1:7a:38:44:c7:eb:
fc:a0:e9:b9:08:c1:38:20:7d:ff:18:b9:46:cf:57:fe:13:92:
34:f5:40:e5:a7:db:6d:c6:32:a9:f0:b2:a4:ec:7c:f9:1d:06:
38:37:8d:f1:36:8c:3b:70:4e:a3:12:2a:84:8a:e1:d4:57:dc:
c7:7f:16:20:da:48:74:9a:5f:51:23:3a:b9:20:46:c3:49:be:
52:ea:d5:f3:cf:b4:81:77:8b:b6:5d:3f:16:95:28:f6:e7:d7:
2a:6b:a0:a4:fc:ef:a8:c9:b5:86:c5:c2:e3:b3:1f:84:a9:c6:
8f:99:b4:e4:d6:5a:91:a5:15:41:cd:b2:78:fb:58:9e:a2:23:
4d:51:e8:e6:15:fb:e5:d1:bb:ae:8a:67:a1:70:a2:c4:30:0d:
66:16:9f:5d:e0:81:8e:7a:af:98:6c:8f:9e:91:97:9a:bc:3f:
a1:0d:86:a8:23:6e:a7:a0:32:c8:55:41:48:b4:12:3d:1d:53:
76:d5:43:e0:0a:52:09:e9:93:c4:eb:6d:24:54:e4:b8:f4:75:
f3:e1:6c:6c:bf:e9:bb:ae:c3:18:ff:eb:fd:bc:eb:1d:2a:33:
c5:3c:a0:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:54 2023 by rpki-client on console-ams.rpki-client.org