Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/RYhlt9W55Or84IplnT9CDpGaebE.roa
File: RYhlt9W55Or84IplnT9CDpGaebE.roa (raw, json)
Hash identifier: mAL7rNcVkOpmMutPwt8F01VEf1WXPxsmAHlaYgJCjxo=
Subject key identifier: 45:88:65:B7:D5:B9:E4:EA:FC:E0:8A:65:9D:3F:42:0E:91:9A:79:B1
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0182D43FF01D45096A76AF9EFA8AE696D26F
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/RYhlt9W55Or84IplnT9CDpGaebE.roa
Signing time: Thu 25 Aug 2022 09:05:36 +0000
ROA not before: Thu 25 Aug 2022 09:05:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.200.0/24 maxlen: 24
62.76.226.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
194.87.22.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
212.192.9.0/24 maxlen: 24
195.133.31.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
212.192.31.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.3.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
193.124.91.0/24 maxlen: 24
194.87.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d4:3f:f0:1d:45:09:6a:76:af:9e:fa:8a:e6:96:d2:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 25 09:05:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=458865b7d5b9e4eafce08a659d3f420e919a79b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:89:9b:c4:46:aa:6a:80:bb:05:70:97:bb:4c:
0f:3d:3e:b2:df:4e:2c:63:ba:08:0f:b3:46:8a:30:
d3:c9:2f:08:49:1a:b0:7e:41:56:96:d1:21:5b:f0:
03:0f:88:fb:c0:1e:b5:52:b1:6e:24:05:c2:ac:2a:
9b:97:b0:19:25:d8:53:0b:3b:39:fd:25:36:3a:5c:
ac:5a:71:53:57:2d:fb:c1:20:d6:e4:78:d0:de:97:
35:a6:cb:74:13:c7:f6:d9:e9:2f:75:0f:06:2f:82:
a9:fc:93:30:a9:90:08:c3:d2:9b:19:9b:e1:d0:0a:
1a:97:81:91:0f:26:54:ee:74:0b:c4:6b:f0:1b:71:
c2:c2:71:3e:f7:90:26:2e:50:01:66:4c:da:43:e1:
bd:5f:15:af:bd:7c:5d:40:13:d7:da:c8:03:a4:de:
01:d4:37:65:96:5f:f4:36:83:35:fa:0b:54:38:34:
46:87:6f:bc:ca:ce:a2:14:34:a1:ad:47:c8:cb:d0:
a9:dd:e4:b0:b0:32:1d:c1:b2:76:38:a9:c2:79:54:
2f:2d:93:6f:b7:1e:81:b8:a5:2a:7a:07:19:fb:6f:
41:ce:57:9c:0a:5d:ae:69:9b:78:bb:3b:69:9c:2c:
2f:12:2f:e0:20:b2:e3:b3:ae:0a:36:51:41:52:b2:
df:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:88:65:B7:D5:B9:E4:EA:FC:E0:8A:65:9D:3F:42:0E:91:9A:79:B1
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/RYhlt9W55Or84IplnT9CDpGaebE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
193.124.91.0/24
193.124.205.0/24
193.124.207.0/24
194.87.22.0/24
194.87.73.0/24
194.87.90.0/24
194.87.130.0/24
194.87.169.0/24
194.87.200.0/24
195.58.35.0/24
195.58.50.0/24
195.133.0.0/24
195.133.31.0/24
195.133.86.0/24
212.192.9.0/24
212.192.31.0/24
212.193.1.0/24
212.193.3.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:c2:69:0d:98:d1:b7:93:78:ad:56:b4:f6:3a:2a:bb:07:8d:
bd:68:ca:84:d5:2d:0c:af:75:dd:22:75:83:41:d1:1f:98:8f:
d4:36:24:85:e4:3d:b5:36:81:c7:d5:01:e5:64:b6:4e:5b:2c:
eb:05:e5:28:8d:f8:4f:ae:d0:7a:c7:a5:52:f9:8a:c0:f5:62:
bf:6b:0b:02:cb:3a:d3:e0:40:c6:16:e0:cf:a8:95:a4:a3:06:
90:23:72:e4:23:2c:81:2d:6c:51:ff:05:c2:17:d0:75:f9:03:
b0:7e:69:94:a8:b6:0a:db:b9:ab:e8:0d:f2:7d:41:76:da:62:
53:1c:f6:fd:3f:b0:8c:fa:1a:10:8f:75:9a:8d:6d:a4:8b:89:
a3:03:51:bd:01:80:8c:e5:73:88:c6:a0:8f:7f:b1:78:88:25:
6e:d8:55:4f:16:96:81:d4:05:b3:2c:97:c0:37:1b:7f:2d:de:
f1:f8:db:4b:47:2f:46:18:19:19:d3:6b:e5:be:19:ac:9a:90:
08:bd:15:0a:1e:a1:76:5f:49:00:4c:57:1b:a4:95:9c:af:7b:
fb:fa:a6:0c:dc:e0:b8:ac:d3:09:16:4d:d8:15:a6:94:ec:c1:
3c:a1:97:09:ca:a0:00:47:dd:e4:86:c0:48:f6:61:30:ea:60:
1c:9e:eb:be
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:16 2024 by rpki-client on console-fra.rpki-client.org