Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SxO47Q4XUe2o4W4vc6M4gZb-Muc.roa
File: SxO47Q4XUe2o4W4vc6M4gZb-Muc.roa (raw, json)
Hash identifier: pAWE8cF0AoSAKMdELgoD9AzYziBqrPI7ykG5EDvJmfM=
Subject key identifier: 4B:13:B8:ED:0E:17:51:ED:A8:E1:6E:2F:73:A3:38:81:96:FE:32:E7
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0183D0D143ED5A272BA5039EB012116C7981
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SxO47Q4XUe2o4W4vc6M4gZb-Muc.roa
Signing time: Thu 13 Oct 2022 10:08:38 +0000
ROA not before: Thu 13 Oct 2022 10:08:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 212.193.12.0/24 maxlen: 24
193.124.3.0/24 maxlen: 24
212.193.15.0/24 maxlen: 24
62.76.225.0/24 maxlen: 24
62.76.229.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
193.124.45.0/24 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.54.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
193.124.90.0/24 maxlen: 24
193.124.95.0/24 maxlen: 24
194.87.207.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
195.133.76.0/24 maxlen: 24
195.133.82.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.87.222.0/23 maxlen: 24
194.135.23.0/24 maxlen: 24
194.135.30.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
192.124.180.0/24 maxlen: 24
194.87.170.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.191.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d0:d1:43:ed:5a:27:2b:a5:03:9e:b0:12:11:6c:79:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 13 10:08:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b13b8ed0e1751eda8e16e2f73a3388196fe32e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a1:86:c2:2c:22:6c:d6:60:5c:8c:cf:7e:81:
82:57:9c:bf:cf:b0:d2:7f:62:08:70:1e:bf:5f:12:
7d:81:12:53:2e:35:25:2b:fa:8c:2e:f9:a3:8f:e8:
5f:f0:af:bd:44:03:a2:51:b0:78:89:34:df:2e:5e:
78:80:4c:73:86:b0:a3:85:2e:23:e4:b8:e9:0b:39:
57:8f:3b:14:e0:68:e0:a2:9e:1e:b5:19:19:f2:b7:
73:32:32:99:bd:b2:46:c7:dc:ac:66:8f:4f:0a:2d:
5f:33:ed:c1:50:a2:ec:13:24:55:46:84:df:75:6e:
e5:f6:a1:b9:12:97:d8:3b:f9:5b:83:0b:be:08:2f:
8b:05:36:49:9a:26:54:bf:0c:6b:2d:99:25:93:eb:
7f:e5:94:41:72:20:4d:9b:a5:27:b3:42:d6:15:b5:
c8:0d:37:ca:7c:af:59:ab:fb:98:c9:0a:40:d0:d2:
c1:2a:ef:78:37:40:55:36:aa:b5:6e:0c:a0:4e:bd:
1e:33:4d:83:06:1e:fc:4f:cd:e8:4d:04:19:fb:66:
23:ef:80:89:6e:78:5a:63:74:8e:e1:61:44:59:c7:
1a:56:da:ae:90:7f:7d:96:5c:3c:37:de:c3:94:a7:
ef:f4:81:32:0e:5f:7e:91:8c:29:cb:c9:0b:d5:1b:
9f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:13:B8:ED:0E:17:51:ED:A8:E1:6E:2F:73:A3:38:81:96:FE:32:E7
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SxO47Q4XUe2o4W4vc6M4gZb-Muc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.225.0/24
62.76.229.0/24
62.76.231.0/24
192.124.173.0/24
192.124.178.0/24
192.124.180.0/22
192.124.209.0/24
193.124.3.0/24
193.124.45.0/24
193.124.90.0/24
193.124.95.0/24
193.124.203.0/24
194.58.45.0/24
194.58.60.0/24
194.87.1.0/24
194.87.24.0/22
194.87.165.0/24
194.87.170.0/24
194.87.179.0/24
194.87.191.0/24
194.87.198.0/24
194.87.207.0-194.87.209.255
194.87.222.0/23
194.87.226.0/24
194.135.23.0/24
194.135.30.0/24
195.58.54.0/24
195.133.76.0/24
195.133.82.0/24
212.193.12.0/24
212.193.15.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:39:c3:2f:13:8c:14:62:df:1e:7e:41:d7:c5:4b:e2:78:cb:
0e:50:b8:fd:08:19:72:89:6f:a5:2e:00:fa:4b:c5:c3:84:18:
11:1c:f5:c8:51:0f:a6:81:4b:a1:b8:93:0f:8f:ed:be:8a:2f:
b5:e6:31:2c:30:c2:62:d9:a7:a1:5e:21:e7:d0:da:e2:79:0f:
a9:0b:66:26:45:8e:bb:38:cf:16:2f:0f:00:6a:ee:91:34:3c:
57:2d:65:67:54:e2:7e:5c:9c:de:1a:d9:45:14:11:62:2a:79:
3b:31:09:12:ce:bb:e2:17:ba:8c:10:12:55:4d:af:0b:b9:cc:
27:73:6e:1d:8f:a7:6d:72:67:c6:85:45:b7:df:a3:51:72:4f:
3e:32:43:1c:3b:53:87:40:17:98:4d:15:3a:ef:4d:50:32:71:
99:6a:38:dd:bb:c9:f1:61:7c:d5:94:7b:08:38:58:c2:9a:52:
f9:82:c3:4c:03:5e:0c:d4:0c:12:89:c1:09:24:93:4f:01:69:
85:ed:00:a1:a7:12:05:b4:5a:f7:17:6d:5f:50:87:94:ba:97:
d2:2a:9c:b6:71:40:d0:7c:18:16:69:0f:79:85:12:ae:f6:0b:
8f:0b:3e:93:13:e7:f4:66:7c:90:23:56:4d:17:14:45:80:7a:
63:4d:74:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:04 2023 by rpki-client on console-fra.rpki-client.org