Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/N1FAxty_JoUwb3GKqogEyq1z52k.roa
File: N1FAxty_JoUwb3GKqogEyq1z52k.roa (raw, json)
Hash identifier: hB7JfYlvzy3X0GMLJohh9fDt9hJl44WkqGmpYos0nO8=
Subject key identifier: 37:51:40:C6:DC:BF:26:85:30:6F:71:8A:AA:88:04:CA:AD:73:E7:69
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 102B3279
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/N1FAxty_JoUwb3GKqogEyq1z52k.roa
Signing time: Mon 30 May 2022 16:02:13 +0000
ROA not before: Mon 30 May 2022 16:02:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.4.0/24 maxlen: 24
62.76.232.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
62.76.235.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
194.58.41.0/24 maxlen: 24
195.58.52.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.124.0/23 maxlen: 23
194.87.64.0/24 maxlen: 24
193.124.89.0/24 maxlen: 24
193.124.95.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.75.0/24 maxlen: 24
195.133.74.0/24 maxlen: 24
195.133.77.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
212.192.10.0/23 maxlen: 24
194.87.166.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/23 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.180.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.188.0/22 maxlen: 22
194.87.179.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
194.135.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 271266425 (0x102b3279)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 30 16:02:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=375140c6dcbf2685306f718aaa8804caad73e769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:77:03:2d:ad:4e:59:96:56:5e:20:21:e3:c1:
b4:26:af:66:14:03:ad:a7:b9:b3:eb:43:f6:16:a0:
a0:21:68:41:a6:e6:23:b5:fb:8b:18:35:91:7e:9b:
6e:e5:71:84:9c:64:f0:06:d0:69:15:23:ad:66:30:
9b:b2:fc:7e:47:47:18:08:da:7b:ea:89:aa:e5:e2:
40:33:e7:5a:39:11:c8:67:37:ab:a9:bd:98:8d:ce:
c1:e9:04:aa:9e:49:04:e3:d5:1c:b0:d4:72:09:ab:
fc:d0:3b:6f:b6:39:4d:05:25:5d:63:f2:aa:b0:27:
18:08:07:4f:1d:ca:37:9b:6b:85:04:12:1d:94:3d:
ad:8f:f3:a5:93:74:cb:2e:bd:77:88:e8:8f:af:6d:
93:2d:78:a0:b4:d6:cd:19:a2:52:ac:4f:57:e5:b4:
22:3d:d0:a6:b7:71:75:9a:03:2d:94:8c:cd:ed:bd:
a4:56:e7:15:9d:54:1a:3d:a3:68:8d:e7:39:24:5b:
c5:d5:14:d2:5a:17:73:6a:69:e7:99:3e:10:69:05:
d0:b6:5a:6a:b0:cf:8d:4c:de:c1:77:71:bb:99:71:
6b:0f:18:ed:6e:f2:dd:a0:7a:3c:38:1b:b5:e6:bd:
3f:5e:74:24:d0:35:9b:84:fb:ae:8b:12:f2:ee:89:
58:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:51:40:C6:DC:BF:26:85:30:6F:71:8A:AA:88:04:CA:AD:73:E7:69
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/N1FAxty_JoUwb3GKqogEyq1z52k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.232.0/24
62.76.235.0/24
192.124.173.0/24
192.124.178.0/24
192.124.180.0/22
192.124.188.0/22
192.124.209.0/24
193.124.4.0/24
193.124.41.0/24
193.124.89.0/24
193.124.93.0/24
193.124.95.0/24
193.124.124.0/23
193.124.202.0/23
194.58.41.0/24
194.58.60.0/24
194.58.67.0/24
194.87.1.0/24
194.87.7.0/24
194.87.16.0/24
194.87.64.0/24
194.87.104.0/24
194.87.166.0/24
194.87.172.0/24
194.87.179.0/24
194.87.226.0/24
194.135.23.0/24
194.135.124.0/24
195.58.52.0/24
195.133.73.0-195.133.75.255
195.133.77.0/24
195.133.81.0/24
212.192.10.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:d9:48:fc:05:69:b8:56:91:b7:48:95:89:90:0c:d5:25:49:
55:7f:f5:f4:40:fc:c4:aa:9b:0e:55:b7:52:27:dd:6d:f5:ca:
26:ed:f1:8a:96:61:70:a6:ac:b9:e2:c3:c0:f4:51:49:8b:16:
43:14:dd:15:b0:12:50:31:da:48:34:6c:a0:4e:03:f4:2b:67:
d5:6e:04:c5:33:ae:94:1f:78:4a:3f:3d:a9:b0:5b:e5:ee:26:
85:e4:c9:92:2b:1f:57:01:5f:39:bf:9c:8c:65:db:04:b0:4f:
10:28:49:81:9c:b8:84:a6:23:a5:03:d7:cf:55:65:3c:6e:53:
1f:39:20:60:c6:b1:c9:35:bd:bc:f4:64:b4:bc:e4:07:ea:7f:
c7:bd:81:e8:91:f8:34:55:b9:37:e7:cd:3c:f0:f2:c5:ed:c2:
1e:36:64:91:60:72:5c:51:78:6d:37:83:15:4c:69:85:2a:3b:
2a:6c:35:1f:98:8c:76:e0:09:a9:d9:3c:5b:1a:a9:23:4a:20:
97:4c:01:27:f2:75:b7:eb:84:26:03:51:63:31:30:3b:41:42:
4a:9e:e3:32:f5:d8:08:83:9a:f3:59:24:b0:84:70:a8:6b:ea:
af:e4:da:1b:f8:a9:53:02:f7:ae:93:80:3b:1c:42:89:38:d1:
a1:0c:a9:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:56 2023 by rpki-client on console-ams.rpki-client.org