Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_ZM4w4Bm37-MoAtdujA1kKVBitw.roa
File: _ZM4w4Bm37-MoAtdujA1kKVBitw.roa (raw, json)
Hash identifier: oiU1HE3nhF8qWqCXgkCWL3NX+OLveAwgaQjpZHTySUk=
Subject key identifier: FD:93:38:C3:80:66:DF:BF:8C:A0:0B:5D:BA:30:35:90:A5:41:8A:DC
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 106EEF7C
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_ZM4w4Bm37-MoAtdujA1kKVBitw.roa
Signing time: Mon 20 Jun 2022 07:04:46 +0000
ROA not before: Mon 20 Jun 2022 07:04:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.4.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
194.87.30.0/24 maxlen: 24
194.58.41.0/24 maxlen: 24
195.58.52.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.124.0/23 maxlen: 23
194.87.56.0/24 maxlen: 24
194.87.64.0/24 maxlen: 24
193.124.89.0/24 maxlen: 24
194.87.77.0/24 maxlen: 24
193.124.95.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.75.0/24 maxlen: 24
195.133.74.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
212.192.10.0/23 maxlen: 24
194.87.166.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/23 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.180.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.188.0/22 maxlen: 22
194.87.179.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
194.135.124.0/24 maxlen: 24
194.87.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 275705724 (0x106eef7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 20 07:04:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd9338c38066dfbf8ca00b5dba303590a5418adc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1a:6c:f5:29:55:f3:8a:81:39:a2:7e:67:f8:
59:c4:8b:84:27:de:23:e1:02:26:6e:90:08:70:80:
2f:b1:9a:cb:f4:65:69:fe:e3:6f:b7:78:37:7b:91:
15:9e:7b:7b:1a:89:ea:95:e3:ec:71:18:7a:21:d5:
c2:e7:89:ea:b7:b4:0c:b6:78:f9:62:99:7d:b7:98:
22:e8:39:d7:60:d1:7f:15:96:ce:0d:fd:77:94:08:
db:f4:8a:54:3f:11:ee:75:9f:6c:89:2b:01:a8:ee:
d9:5e:57:60:41:1d:19:02:bd:d8:7f:37:37:87:78:
f6:a1:46:fb:6f:01:b2:cf:ee:57:43:97:4d:dc:79:
c0:3b:0e:79:99:65:c0:7f:0c:6c:4e:ea:eb:1d:70:
3a:0a:b0:73:1b:92:c7:9b:6a:4a:0b:a6:b3:bb:fa:
56:14:ba:10:57:3c:01:06:7f:ef:60:89:c9:4d:0f:
f0:81:46:f0:62:59:02:bf:06:ba:58:47:3e:b8:26:
17:90:41:66:d2:ed:7e:c9:7e:1f:3a:48:15:71:ed:
02:1a:36:e5:47:36:e6:42:74:0c:1f:e5:97:7c:a9:
51:7a:dc:bb:07:09:f7:82:de:da:33:19:9b:b6:5a:
e8:38:e3:e9:5b:dc:ce:cb:51:fe:c7:7d:12:b6:74:
31:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:93:38:C3:80:66:DF:BF:8C:A0:0B:5D:BA:30:35:90:A5:41:8A:DC
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_ZM4w4Bm37-MoAtdujA1kKVBitw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.173.0/24
192.124.178.0/24
192.124.180.0/22
192.124.188.0/22
192.124.209.0/24
193.124.4.0/24
193.124.41.0/24
193.124.89.0/24
193.124.93.0/24
193.124.95.0/24
193.124.124.0/23
193.124.202.0/23
194.58.41.0/24
194.58.60.0/24
194.58.67.0/24
194.87.1.0/24
194.87.7.0/24
194.87.16.0/24
194.87.30.0/24
194.87.56.0/24
194.87.64.0/24
194.87.77.0/24
194.87.104.0/24
194.87.166.0/24
194.87.172.0/24
194.87.179.0/24
194.87.226.0/24
194.87.254.0/24
194.135.23.0/24
194.135.124.0/24
195.58.52.0/24
195.133.73.0-195.133.75.255
212.192.10.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:41:e4:9f:53:fa:26:5f:bd:fb:32:89:b1:60:6c:8c:cd:53:
7b:a9:9d:5a:33:67:76:33:e1:14:55:79:c4:1d:7b:bc:7c:91:
74:ba:77:1e:d5:53:e7:54:e9:2a:e8:bd:b8:36:8f:b1:c4:dd:
43:ac:8c:d6:cd:73:66:31:f5:ce:e3:b2:51:fa:67:5b:6f:a1:
20:d0:fe:05:ef:91:a2:c7:61:6c:6e:6b:e2:83:9b:cc:e1:3d:
90:8c:d1:d3:eb:7f:5c:ec:37:6c:b7:fb:02:80:dc:f5:7d:55:
4d:5b:bf:45:7f:fa:89:1e:a1:4d:39:17:89:39:5c:52:ba:6d:
5b:32:55:e7:c2:8d:ed:db:a1:06:9d:a1:f2:9b:53:a2:54:20:
13:1d:39:d8:0c:3d:7a:23:e6:6a:36:79:f1:53:31:89:4a:d6:
ca:4c:c0:66:2d:04:da:c3:99:44:63:46:15:3d:0b:8f:34:27:
54:db:4a:49:e8:f0:ef:bc:ca:fc:0a:9e:0a:db:69:29:05:ea:
37:c2:58:fa:f4:17:2d:51:4d:10:1b:bf:27:78:7a:c1:75:71:
63:c4:7c:47:c8:54:b6:a6:fb:fc:e4:c2:77:aa:0a:a6:44:73:
55:1d:88:fd:cb:21:fd:9c:6f:01:98:3a:1a:a1:a5:67:dc:8d:
50:d3:a6:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:01 2023 by rpki-client on console-ams.rpki-client.org