Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Y_9KlSBl39M0P_YMYlK0pa8mxZc.roa
File: Y_9KlSBl39M0P_YMYlK0pa8mxZc.roa (raw, json)
Hash identifier: 45bdrZ8SVFbg4yHvhmF2Nbu3K6g/y6/PehySwlZTRs8=
Subject key identifier: 63:FF:4A:95:20:65:DF:D3:34:3F:F6:0C:62:52:B4:A5:AF:26:C5:97
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0181F7527DBA5C9B7438B5071DCFA861B4FF
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Y_9KlSBl39M0P_YMYlK0pa8mxZc.roa
Signing time: Wed 13 Jul 2022 11:29:47 +0000
ROA not before: Wed 13 Jul 2022 11:29:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 212.193.24.0/22 maxlen: 24
193.124.224.0/23 maxlen: 23
193.124.226.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
195.133.22.0/24 maxlen: 24
212.192.16.0/21 maxlen: 24
195.58.56.0/21 maxlen: 24
194.87.192.0/22 maxlen: 22
212.193.4.0/22 maxlen: 24
212.193.8.0/22 maxlen: 24
194.87.124.0/22 maxlen: 24
194.87.120.0/22 maxlen: 24
193.124.133.0/24 maxlen: 24
212.192.208.0/22 maxlen: 24
194.87.41.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
194.87.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f7:52:7d:ba:5c:9b:74:38:b5:07:1d:cf:a8:61:b4:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 13 11:29:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63ff4a952065dfd3343ff60c6252b4a5af26c597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:b4:77:c3:97:c6:a2:f0:c7:85:64:53:84:cd:
77:b6:f5:66:00:08:e1:53:e4:54:48:2b:e9:70:2e:
5a:ed:da:04:87:06:cc:37:8e:4f:a3:b6:e3:83:59:
89:69:e0:37:e0:9f:24:f2:97:4e:46:92:cc:61:ac:
b1:49:96:ca:05:dd:ce:9a:26:73:5f:f7:33:91:25:
ca:84:b6:78:d2:5a:8e:66:1a:db:eb:7d:61:e8:0f:
11:6a:2e:8a:f7:77:4a:3f:1a:e5:53:88:92:40:58:
b8:ba:f1:54:bc:5b:63:7c:3d:d0:9e:ca:7e:c0:60:
be:d8:40:9c:fd:17:a8:45:a9:93:64:ae:eb:23:be:
d8:db:95:76:9e:45:00:b2:80:23:a0:11:0e:10:e3:
54:e7:c6:3b:81:8a:bf:3a:11:be:40:a0:db:27:8c:
68:d3:3f:a6:7c:be:85:0f:c2:4e:9e:2d:ca:35:0d:
2d:6c:f5:62:d8:10:10:b9:d3:f5:9d:4c:ec:ff:48:
5f:e2:f5:ef:f2:64:47:6c:b0:4b:88:10:93:e0:f1:
bc:fa:29:41:fa:ce:14:d2:19:a1:3a:d1:d0:61:89:
14:ca:d9:49:38:da:70:dc:fe:8e:5f:94:9a:77:49:
8c:33:33:cc:42:12:a1:4f:82:ad:ab:9e:df:31:d3:
05:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:FF:4A:95:20:65:DF:D3:34:3F:F6:0C:62:52:B4:A5:AF:26:C5:97
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Y_9KlSBl39M0P_YMYlK0pa8mxZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.49.0/24
193.124.133.0/24
193.124.224.0-193.124.226.255
194.87.41.0/24
194.87.61.0/24
194.87.120.0/21
194.87.192.0/22
194.135.46.0/24
195.58.56.0/21
195.133.22.0/24
212.192.16.0/21
212.192.208.0/22
212.193.4.0-212.193.11.255
212.193.24.0/22
Signature Algorithm: sha256WithRSAEncryption
75:37:ac:c2:77:24:40:8a:2a:99:73:30:28:04:74:17:28:3a:
52:5e:f7:56:36:82:a6:e0:48:59:f9:66:ec:83:d5:a8:a0:e7:
d0:65:95:0f:4d:98:db:2d:ec:cf:d3:5d:05:5b:3b:36:f6:d2:
40:7d:62:0b:7d:26:bf:13:c5:1b:02:fa:90:b5:cc:c1:83:9a:
54:53:ce:06:19:cb:bb:88:69:99:2c:b5:a6:5f:8d:f0:f8:d4:
a7:6e:c8:38:9e:32:df:48:8c:e2:67:34:22:ab:5a:ed:00:0d:
50:32:73:32:67:02:e8:bd:f3:26:ba:cb:ce:f5:93:da:d1:a1:
ae:51:c5:a7:0e:10:bd:a3:82:39:28:83:a7:30:ff:85:70:22:
5b:88:53:ab:23:4d:5a:c8:07:31:7a:6f:6e:43:02:87:82:e7:
be:6a:72:8e:2e:28:0f:75:92:64:99:47:d8:fc:a2:14:05:23:
97:4c:81:a9:4a:fa:2e:0a:50:11:03:ee:49:2c:61:c1:fa:d4:
56:35:fa:95:d9:20:21:91:27:a1:a1:77:d1:15:91:57:2d:4b:
05:e9:28:5b:69:a4:db:2a:a0:9e:57:54:67:6f:0e:d5:c1:28:
e9:1e:a6:40:31:ef:a3:ff:26:90:e2:8a:75:2c:ce:cb:4f:e5:
d4:82:d1:6a
-----BEGIN CERTIFICATE-----
MIIFWzCCBEOgAwIBAgISAYH3Un26XJt0OLUHHc+oYbT/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjIwNzEzMTEyOTQ3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2M2ZmNGE5NTIwNjVkZmQzMzQzZmY2MGM2MjUyYjRhNWFmMjZjNTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi7R3w5fGovDHhWRThM13tvVmAAjh
U+RUSCvpcC5a7doEhwbMN45Po7bjg1mJaeA34J8k8pdORpLMYayxSZbKBd3OmiZz
X/czkSXKhLZ40lqOZhrb631h6A8Rai6K93dKPxrlU4iSQFi4uvFUvFtjfD3Qnsp+
wGC+2ECc/ReoRamTZK7rI77Y25V2nkUAsoAjoBEOEONU58Y7gYq/OhG+QKDbJ4xo
0z+mfL6FD8JOni3KNQ0tbPVi2BAQudP1nUzs/0hf4vXv8mRHbLBLiBCT4PG8+ilB
+s4U0hmhOtHQYYkUytlJONpw3P6OX5Sad0mMMzPMQhKhT4Ktq57fMdMFFwIDAQAB
o4ICZzCCAmMwHQYDVR0OBBYEFGP/SpUgZd/TND/2DGJStKWvJsWXMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvWV85S2xTQmwzOU0wUF9ZTVlsSzBwYThteFpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH0GCCsGAQUFBwEHAQH/BG4wbDBqBAIAATBkAwQAwXwxAwQA
wXyFMAwDBAXBfOADBADBfOIDBADCVykDBADCVz0DBAPCV3gDBALCV8ADBADChy4D
BAPDOjgDBADDhRYDBAPUwBADBALUwNAwDAMEAtTBBAMEAtTBCAMEAtTBGDANBgkq
hkiG9w0BAQsFAAOCAQEAdTeswnckQIoqmXMwKAR0Fyg6Ul73VjaCpuBIWflm7IPV
qKDn0GWVD02Y2y3sz9NdBVs7NvbSQH1iC30mvxPFGwL6kLXMwYOaVFPOBhnLu4hp
mSy1pl+N8PjUp27IOJ4y30iM4mc0Iqta7QANUDJzMmcC6L3zJrrLzvWT2tGhrlHF
pw4QvaOCOSiDpzD/hXAiW4hTqyNNWsgHMXpvbkMCh4Lnvmpyji4oD3WSZJlH2Pyi
FAUjl0yBqUr6LgpQEQPuSSxhwfrUVjX6ldkgIZEnoaF30RWRVy1LBekoW2mk2yqg
nldUZ28O1cEo6R6mQDHvo/8mkOKKdSzOy0/l1ILRag==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:19 2024 by rpki-client on console-fra.rpki-client.org