Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/S6uPtrqNw8pIu4NXvJyHRvvU5AU.roa
File: S6uPtrqNw8pIu4NXvJyHRvvU5AU.roa (raw, json)
Hash identifier: mdiZ+4vzbkS1mrjfKfmAj/M1+SAyZzlNwLipnHpu6mU=
Subject key identifier: 4B:AB:8F:B6:BA:8D:C3:CA:48:BB:83:57:BC:9C:87:46:FB:D4:E4:05
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01831D044852F8EEEBA5C906BF6DA7122DD0
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/S6uPtrqNw8pIu4NXvJyHRvvU5AU.roa
Signing time: Thu 08 Sep 2022 12:12:43 +0000
ROA not before: Thu 08 Sep 2022 12:12:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
194.87.219.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
195.133.80.0/24 maxlen: 24
194.87.222.0/23 maxlen: 24
194.135.23.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.45.0/24 maxlen: 24
195.133.12.0/22 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
192.124.180.0/24 maxlen: 24
192.124.188.0/22 maxlen: 22
194.87.179.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
193.124.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1d:04:48:52:f8:ee:eb:a5:c9:06:bf:6d:a7:12:2d:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 8 12:12:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bab8fb6ba8dc3ca48bb8357bc9c8746fbd4e405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6c:41:aa:20:32:e6:2c:da:b2:7c:a7:4a:f5:
dc:27:8d:c0:4c:38:04:af:af:b1:95:74:6d:1c:9b:
3f:14:40:08:a9:a3:71:2e:a3:d4:c2:99:a6:d2:73:
6f:a5:26:8d:48:45:80:0d:a4:40:7e:a8:15:e9:6c:
7b:e7:2b:ba:2a:89:ad:6f:68:f8:76:b9:be:a9:a4:
5c:9d:16:42:65:84:77:23:f5:c8:f5:01:a9:9c:9f:
0a:44:ca:1a:5e:8a:70:6d:1d:79:dc:cf:d8:91:cd:
bc:69:eb:dc:d5:c1:1a:c7:c3:fb:9a:52:ea:4d:43:
19:e6:cf:52:df:e0:83:ec:4b:00:1b:db:aa:48:b9:
89:5c:4b:e0:b2:a2:a7:f3:b2:06:4d:f2:6b:93:5a:
d3:d7:02:4c:3f:e4:96:a1:5f:62:6b:f8:b9:c2:cc:
5d:df:76:86:c7:87:ed:ea:19:a6:47:a6:71:64:fc:
5b:e7:e1:bd:f9:9b:bd:cf:a5:d0:aa:50:fc:ef:48:
dc:07:f6:4f:5b:fe:e7:d0:5d:af:d4:4c:35:b1:ba:
13:9e:fc:90:86:b0:f7:d5:e1:68:9e:d2:fd:70:5d:
57:40:56:d4:c9:d0:1c:b3:e4:8e:e8:cb:7a:1f:3c:
11:be:7c:ce:fb:6f:75:62:29:cd:2d:9f:06:9c:4a:
46:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:AB:8F:B6:BA:8D:C3:CA:48:BB:83:57:BC:9C:87:46:FB:D4:E4:05
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/S6uPtrqNw8pIu4NXvJyHRvvU5AU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.173.0/24
192.124.178.0/24
192.124.180.0/22
192.124.188.0/22
192.124.209.0/24
193.124.3.0/24
193.124.45.0/24
193.124.90.0/24
193.124.203.0/24
194.58.45.0/24
194.87.1.0/24
194.87.24.0/22
194.87.179.0/24
194.87.198.0/24
194.87.219.0/24
194.87.222.0/23
194.135.23.0/24
195.133.12.0/22
195.133.80.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:1e:56:86:eb:34:d3:c7:30:12:fd:1d:5e:1d:3d:db:07:32:
ed:52:4c:bf:92:8d:4a:27:54:61:8c:cb:d8:5f:83:9e:db:33:
0e:16:c4:69:b4:c3:d6:f3:8f:0a:1c:22:61:fc:5a:84:74:89:
d9:82:35:16:02:e8:5f:42:2d:70:b6:c8:8e:85:d4:39:a5:e3:
55:36:f6:2f:ac:4e:e5:b4:42:08:83:95:62:0e:ee:ad:ee:2f:
67:e6:03:c0:a4:a2:e6:fb:9d:e9:c6:5a:e9:05:f1:33:f6:60:
d9:7f:45:57:c3:43:bd:43:73:bd:c2:24:86:19:8c:05:08:39:
2c:70:96:e7:a7:1e:71:be:a1:4b:4c:40:b3:36:19:40:87:1a:
47:a3:de:3e:df:bb:a5:20:96:9f:a0:50:ad:2b:76:1b:67:86:
45:61:6b:af:4a:00:a4:6a:e8:62:21:93:f6:6a:51:1f:7e:89:
d4:a1:3d:af:48:63:54:d1:c2:58:ea:83:89:2a:ac:91:48:79:
bd:e8:f6:ce:1a:8b:28:48:56:27:d9:9e:a4:af:0c:12:44:20:
8a:87:bb:38:4d:7e:a5:1e:b2:07:55:c3:64:53:4e:6a:e2:fd:
03:c2:c2:60:f2:9d:f0:9a:d4:5e:2a:7e:b6:5c:a1:4e:79:cf:
0b:3c:ba:be
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:16 2024 by rpki-client on console-fra.rpki-client.org