Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NoE-zrBu0p4QC2q3HKxNuOKDUoI.roa
File: NoE-zrBu0p4QC2q3HKxNuOKDUoI.roa (raw, json)
Hash identifier: oizSMTn01/zcG5DWKM2wDql/WnjLqdf7ey/WclNQnOA=
Subject key identifier: 36:81:3E:CE:B0:6E:D2:9E:10:0B:6A:B7:1C:AC:4D:B8:E2:83:52:82
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0184ECE438BA261308C1AEFD3E39691BC631
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NoE-zrBu0p4QC2q3HKxNuOKDUoI.roa
Signing time: Wed 07 Dec 2022 14:01:30 +0000
ROA not before: Wed 07 Dec 2022 14:01:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 62.76.226.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
194.58.59.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
194.87.125.0/24 maxlen: 24
194.87.122.0/24 maxlen: 24
193.124.90.0/24 maxlen: 24
194.87.200.0/24 maxlen: 24
194.87.205.0/24 maxlen: 24
195.133.76.0/24 maxlen: 24
194.87.223.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.233.0/24 maxlen: 24
194.87.252.0/24 maxlen: 24
212.192.5.0/24 maxlen: 24
212.192.9.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
194.87.170.0/24 maxlen: 24
192.124.180.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
195.133.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ec:e4:38:ba:26:13:08:c1:ae:fd:3e:39:69:1b:c6:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 7 14:01:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36813eceb06ed29e100b6ab71cac4db8e2835282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:71:7d:b1:b5:bd:1c:64:b6:16:c9:02:28:98:
7d:97:a8:87:19:e2:a8:97:3e:a7:91:90:6a:3e:47:
58:63:a6:d8:09:00:37:da:74:80:0a:e0:d9:9f:96:
c4:80:33:32:31:ff:13:6a:f6:15:e5:00:01:7c:3e:
d2:1e:5d:44:17:27:97:1d:d9:d2:7a:c9:2e:40:4a:
75:4b:94:ff:02:ee:c5:f3:7b:61:6d:12:5a:cc:e5:
2b:f9:ea:5c:9f:3b:15:e3:8b:2a:0f:3c:66:9d:82:
78:64:e0:75:45:4c:e4:3f:21:dd:9c:9f:6d:5b:93:
88:d2:d4:f1:e6:40:8a:c2:ab:d3:3b:b6:cd:93:db:
db:64:ef:c9:78:4c:63:ff:d5:e9:39:59:47:2c:b7:
93:9a:00:27:fe:59:97:52:72:b2:cd:77:c0:1b:10:
5a:12:4d:e5:8e:cf:64:d2:be:7e:44:cb:27:26:a0:
a5:81:bb:28:0a:2d:b7:27:8d:77:1a:9c:42:07:29:
8a:d6:5b:f4:dc:60:3f:c7:05:4d:ff:35:51:75:66:
a1:e0:5d:b3:e1:6a:91:0a:bf:85:fa:7a:21:d0:60:
a4:d2:48:53:45:39:86:57:13:4d:f5:88:88:cc:d3:
de:7f:c4:b4:c5:34:0b:85:63:30:81:76:78:39:55:
89:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:81:3E:CE:B0:6E:D2:9E:10:0B:6A:B7:1C:AC:4D:B8:E2:83:52:82
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NoE-zrBu0p4QC2q3HKxNuOKDUoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0-62.76.226.255
192.124.173.0/24
192.124.180.0/24
192.124.183.0/24
193.124.18.0/24
193.124.45.0/24
193.124.90.0/24
193.124.133.0/24
193.124.200.0/24
194.58.40.0/24
194.58.46.0/24
194.58.59.0/24
194.87.122.0/24
194.87.124.0/23
194.87.170.0/24
194.87.200.0/24
194.87.205.0/24
194.87.223.0/24
194.87.226.0/24
194.87.233.0/24
194.87.252.0/24
195.133.76.0/24
195.133.193.0/24
212.192.5.0/24
212.192.9.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:08:3e:0c:c3:2d:8d:c9:75:8c:fe:e6:83:95:d7:45:5c:8b:
2c:1f:40:f2:20:7b:aa:13:69:ea:b0:77:99:81:c5:92:e5:6c:
5c:58:0d:99:30:6d:30:71:fb:5a:b6:e2:63:8b:24:95:18:f7:
97:5a:51:b6:ad:48:ae:f6:d9:2d:a8:8a:a6:05:ff:86:8e:48:
be:75:78:fe:9a:fa:7d:8f:24:ff:90:d0:07:4f:18:13:fa:28:
d7:f9:40:bf:5b:9e:f5:35:51:62:93:c9:da:53:b5:2b:fa:dc:
e9:29:af:cd:66:d1:5d:97:66:93:58:fa:56:f0:8b:a0:31:ec:
f9:d8:f0:da:23:74:1c:9b:36:48:a4:d1:76:36:1d:55:56:de:
1e:7f:4d:f0:cf:4c:ee:2d:77:ba:bc:ef:21:a9:6e:cd:bc:0c:
d7:3b:d0:80:40:e3:8a:95:e5:9f:58:e9:e4:d5:d4:d8:18:39:
3b:36:23:6c:c8:7a:eb:68:7b:49:17:0a:ed:27:72:77:f9:b4:
01:63:c1:14:01:e1:8e:cd:c1:e6:f7:7a:75:65:b5:7e:9f:32:
aa:e0:21:ce:d7:9a:28:1b:8d:c9:07:2a:b4:08:0c:97:12:2b:
bb:89:bb:bf:fa:a1:53:4f:81:70:33:aa:80:12:26:bc:c7:4b:
1b:82:6f:bb
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:14 2024 by rpki-client on console-fra.rpki-client.org