Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SMaDeDT4ZHbvSY_bG8aUS7F9Yp8.roa
File: SMaDeDT4ZHbvSY_bG8aUS7F9Yp8.roa (raw, json)
Hash identifier: YIX6TXgnCYu/iAy3+SDiH7g1YLl9g2wXFXsjXfngT5o=
Subject key identifier: 48:C6:83:78:34:F8:64:76:EF:49:8F:DB:1B:C6:94:4B:B1:7D:62:9F
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01837F4EE36A012162EE4ADE634082AE11CB
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SMaDeDT4ZHbvSY_bG8aUS7F9Yp8.roa
Signing time: Tue 27 Sep 2022 14:16:59 +0000
ROA not before: Tue 27 Sep 2022 14:16:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 212.193.12.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
212.193.15.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.45.0/24 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
194.87.64.0/24 maxlen: 24
193.124.90.0/24 maxlen: 24
193.124.95.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
195.133.76.0/24 maxlen: 24
194.87.219.0/24 maxlen: 24
195.133.80.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.222.0/23 maxlen: 24
194.135.23.0/24 maxlen: 24
195.133.12.0/22 maxlen: 24
194.87.165.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
192.124.180.0/24 maxlen: 24
192.124.188.0/22 maxlen: 22
194.87.179.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7f:4e:e3:6a:01:21:62:ee:4a:de:63:40:82:ae:11:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 27 14:16:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48c6837834f86476ef498fdb1bc6944bb17d629f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3a:2f:9b:12:1f:33:d6:d8:96:5b:c8:3c:10:
31:ce:3d:06:22:d4:dd:92:01:f5:57:6f:98:10:d6:
13:a6:f9:c5:77:55:dc:3e:40:a1:61:45:93:1f:0e:
bb:93:f8:e0:37:b6:d8:57:ba:24:77:76:9c:25:5e:
2a:a8:36:d6:b5:f3:45:0a:20:c7:ec:be:2d:45:70:
2f:19:5f:b3:10:f8:89:3a:00:d6:81:61:b4:3c:33:
52:60:35:0c:31:c3:b1:d4:9f:3c:49:b0:74:ee:4e:
d7:57:f5:7d:dd:b2:23:bc:ff:87:82:63:62:93:3c:
03:3b:94:76:87:5e:93:a8:e8:9b:c3:9f:cb:54:50:
df:02:2a:bf:94:cb:de:c6:ca:ed:18:ba:65:ff:4a:
36:ba:8d:8d:dc:56:92:62:c3:28:ab:43:f1:ee:f7:
6f:63:c8:9d:c9:70:2e:84:e4:ca:c0:ca:96:15:9d:
69:c7:94:5e:4e:ab:04:a7:64:d8:76:78:de:44:e4:
4e:67:1d:ed:00:f8:e8:36:f5:f1:81:5c:4d:ec:b5:
62:ab:ba:65:68:63:01:19:5f:87:71:88:e1:d1:89:
46:38:61:7b:d7:ed:31:39:09:04:70:6c:ee:1a:4a:
4f:73:7a:42:a7:21:fc:07:92:98:10:b3:10:26:86:
bf:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:C6:83:78:34:F8:64:76:EF:49:8F:DB:1B:C6:94:4B:B1:7D:62:9F
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SMaDeDT4ZHbvSY_bG8aUS7F9Yp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.173.0/24
192.124.178.0/24
192.124.180.0/22
192.124.188.0/22
192.124.209.0/24
193.124.3.0/24
193.124.45.0/24
193.124.90.0/24
193.124.95.0/24
193.124.203.0/24
194.58.45.0/24
194.58.60.0/24
194.87.1.0/24
194.87.24.0/22
194.87.64.0/24
194.87.165.0/24
194.87.179.0/24
194.87.198.0/24
194.87.208.0/23
194.87.219.0/24
194.87.222.0/23
194.87.226.0/24
194.135.23.0/24
195.58.54.0/24
195.133.12.0/22
195.133.76.0/24
195.133.80.0/24
212.193.12.0/24
212.193.15.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:db:5b:b9:d5:6d:75:ea:19:bb:49:08:e3:71:3a:53:56:18:
47:dc:2b:25:46:ba:ce:46:eb:64:fc:67:ca:09:53:40:d7:55:
8f:85:f5:a3:36:0a:9f:74:9e:9f:6e:f8:23:70:62:6c:ca:45:
05:71:c5:21:7f:5d:92:39:cc:33:88:61:1a:dd:c3:32:f8:49:
1b:cf:04:bf:a6:81:69:d8:55:5b:05:45:9c:4b:ab:74:5b:b7:
60:73:76:b8:97:04:85:90:15:63:33:86:14:dd:fb:fc:50:df:
1f:0b:0f:0a:56:c8:c5:a7:1d:f7:25:6b:88:e6:b3:76:64:3e:
9b:c9:d9:ce:69:10:1b:82:5b:18:57:6c:ae:3b:24:7f:71:d6:
65:d6:15:4a:06:8e:bc:05:f9:bb:bb:70:cf:87:8b:92:46:3e:
a5:35:86:c0:5c:2e:cb:dc:cf:62:4a:6d:a3:bf:7a:93:e2:f2:
16:45:fd:2c:fa:21:e3:8e:f6:16:85:5b:ea:e7:fc:ea:53:0c:
50:fe:41:cd:d3:71:5c:fd:53:a5:8b:de:be:9a:a7:ad:18:7f:
03:5b:40:e5:bb:a3:32:99:ef:40:0d:58:c8:8d:83:85:e7:ce:
86:cb:f1:35:e5:d8:b2:75:5a:73:86:58:98:b7:ec:3c:ae:46:
ca:24:ac:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:16 2024 by rpki-client on console-fra.rpki-client.org