Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/drwCdAf-k2b0Qyq24xiik8DsgXY.roa
File: drwCdAf-k2b0Qyq24xiik8DsgXY.roa (raw, json)
Hash identifier: daMAS0rS1uNo4c7nESJ7Bj7u5uAPuk0c5waXmdPGD+M=
Subject key identifier: 76:BC:02:74:07:FE:93:66:F4:43:2A:B6:E3:18:A2:93:C0:EC:81:76
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 104F8261
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/drwCdAf-k2b0Qyq24xiik8DsgXY.roa
Signing time: Thu 09 Jun 2022 12:24:02 +0000
ROA not before: Thu 09 Jun 2022 12:24:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.4.0/24 maxlen: 24
62.76.232.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
194.87.30.0/24 maxlen: 24
194.58.41.0/24 maxlen: 24
195.58.52.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
193.124.124.0/23 maxlen: 23
194.87.56.0/24 maxlen: 24
194.87.64.0/24 maxlen: 24
193.124.89.0/24 maxlen: 24
194.87.77.0/24 maxlen: 24
193.124.95.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.73.0/24 maxlen: 24
195.133.75.0/24 maxlen: 24
195.133.74.0/24 maxlen: 24
195.133.77.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
212.192.10.0/23 maxlen: 24
194.87.166.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/23 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.180.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.188.0/22 maxlen: 22
194.87.179.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
194.135.124.0/24 maxlen: 24
194.87.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273646177 (0x104f8261)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 9 12:24:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76bc027407fe9366f4432ab6e318a293c0ec8176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f3:cd:cb:5b:b9:15:0b:97:49:a1:a2:8f:d7:
54:57:e3:16:35:da:14:18:99:ea:e0:d5:bd:6f:c0:
80:13:64:da:8d:79:1c:58:da:76:8c:d2:f9:38:d2:
75:3c:97:cd:e7:c9:9f:2e:70:b4:cb:d0:f1:aa:e9:
8c:68:dc:b2:38:9b:6c:ea:b5:1b:72:f1:20:f1:14:
81:44:fb:e8:09:2d:04:5d:72:20:19:bd:aa:ef:d6:
b5:75:dc:30:e6:ab:6d:cb:3d:0e:f9:bb:2b:aa:42:
27:53:5e:e6:ab:99:9b:41:c6:a4:b8:b6:31:43:b4:
b0:fe:8b:ec:54:1f:d1:14:5e:79:6c:87:d3:19:ac:
e7:8f:86:37:b8:62:b7:5f:06:d2:ec:c3:d9:91:91:
38:df:a8:12:8d:82:90:5e:ab:e3:c7:e0:a3:cf:60:
7d:76:de:a6:5b:12:8a:b4:25:0c:5e:32:b0:dc:fc:
23:d8:bb:16:e6:07:a2:36:39:f6:75:4d:85:59:9a:
37:71:7a:c7:0a:e9:f3:2f:92:00:df:a1:fa:20:a1:
43:a9:09:80:99:ec:a7:6b:70:72:07:85:67:e9:3b:
84:21:7c:55:80:bc:c0:c8:50:44:cc:06:a6:c0:e3:
4a:cf:a1:4f:7d:8c:a1:25:09:72:b6:ee:9c:1e:60:
1c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BC:02:74:07:FE:93:66:F4:43:2A:B6:E3:18:A2:93:C0:EC:81:76
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/drwCdAf-k2b0Qyq24xiik8DsgXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.232.0/24
192.124.173.0/24
192.124.178.0/24
192.124.180.0/22
192.124.188.0/22
192.124.209.0/24
193.124.4.0/24
193.124.41.0/24
193.124.89.0/24
193.124.93.0/24
193.124.95.0/24
193.124.124.0/23
193.124.202.0/23
194.58.41.0/24
194.58.60.0/24
194.58.67.0/24
194.87.1.0/24
194.87.7.0/24
194.87.16.0/24
194.87.30.0/24
194.87.56.0/24
194.87.64.0/24
194.87.77.0/24
194.87.104.0/24
194.87.166.0/24
194.87.172.0/24
194.87.179.0/24
194.87.226.0/24
194.87.254.0/24
194.135.23.0/24
194.135.124.0/24
195.58.52.0/24
195.133.73.0-195.133.75.255
195.133.77.0/24
212.192.10.0/23
Signature Algorithm: sha256WithRSAEncryption
69:a6:c7:f3:69:b8:68:f3:81:4a:8b:37:6d:da:73:51:40:48:
77:b6:68:ac:a5:a6:d7:a4:05:76:be:98:89:d5:e5:4d:93:fe:
db:25:59:db:dc:16:23:7f:ca:5a:4a:9e:9f:ff:82:5d:88:d0:
20:b2:0a:e5:08:f3:30:a3:9b:78:4d:49:1d:8a:21:97:70:bc:
61:f6:82:d5:71:b8:0c:12:11:00:51:1d:79:52:e9:b9:98:04:
ce:a2:90:3b:05:65:f0:17:df:5c:f5:60:25:e6:a1:d0:04:21:
65:87:ec:3c:d1:a8:8c:c6:64:a4:92:53:cc:72:74:f2:39:8c:
3d:bd:98:43:c2:6f:5c:71:1e:82:16:40:71:09:93:c2:9a:30:
d9:00:79:91:3f:a7:97:8e:9b:55:d5:86:a9:91:09:19:d6:f8:
21:fa:83:e4:3d:36:dd:f5:b4:40:93:d6:e1:a3:83:88:d3:b3:
2f:19:a2:f2:c6:ba:34:e3:a9:cb:d0:2b:a8:1e:6a:8f:c2:4d:
7f:06:ef:a8:1b:6b:16:70:34:75:fa:cc:71:a8:02:4d:0d:23:
98:47:67:d6:d2:93:b2:12:c1:5d:21:2a:07:15:89:df:95:89:
6c:b2:53:08:95:f1:19:0b:27:81:03:54:20:a6:48:aa:fe:8a:
f4:77:94:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:02 2023 by rpki-client on console-ams.rpki-client.org