Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gn1favly-tfByVjweHY5t57XUNI.roa
File: gn1favly-tfByVjweHY5t57XUNI.roa (raw, json)
Hash identifier: FLuIpTxUbufpQDSrqoeArU+kBo7ajrpFAXUbPpk0mDg=
Subject key identifier: 82:7D:5F:6A:F9:72:FA:D7:C1:C9:58:F0:78:76:39:B7:9E:D7:50:D2
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018510B0B3B5398ED22F17D77A50A7B0EF04
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gn1favly-tfByVjweHY5t57XUNI.roa
Signing time: Wed 14 Dec 2022 12:51:33 +0000
ROA not before: Wed 14 Dec 2022 12:51:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.2.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.207.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
194.135.30.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.164.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
212.192.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:10:b0:b3:b5:39:8e:d2:2f:17:d7:7a:50:a7:b0:ef:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 14 12:51:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=827d5f6af972fad7c1c958f0787639b79ed750d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f3:99:82:7a:3e:a4:4e:2a:72:cc:1f:09:5a:
8d:e5:56:70:d3:81:b0:79:53:ff:77:ce:28:fa:54:
c9:3a:5b:2d:03:12:d0:a3:99:57:04:d5:bd:ac:ee:
5d:ae:4f:75:25:06:55:de:9d:2d:1d:41:d9:d9:db:
6e:0d:7e:ad:c0:a2:19:cd:3c:ad:21:77:ba:0a:5c:
d6:0b:30:74:da:c7:f1:c1:fa:7a:be:f5:1f:ef:bf:
ba:ae:1d:96:95:a9:ab:a6:9f:bc:97:7f:73:30:7c:
d9:f3:7f:dd:df:e7:df:e5:72:d3:27:11:70:bd:ae:
ee:23:f1:4f:6d:08:ef:43:fb:65:57:50:b1:04:f3:
7b:8d:ac:00:49:05:8b:8f:1e:54:5a:64:7a:a7:b6:
48:67:8f:31:82:1e:24:32:e6:07:f6:5c:fd:20:9c:
a1:3b:30:f7:cc:c1:ed:5b:0b:9b:06:24:0a:ff:b4:
7c:1e:1e:de:46:4b:b4:a9:50:67:14:17:c8:cb:8b:
0c:7a:07:4c:c8:5b:e2:08:74:bc:8a:28:b2:5e:f4:
0a:ba:09:87:4a:c4:e8:05:b0:33:8e:3e:31:1a:fc:
6b:e4:b0:65:3a:5d:c8:52:68:dc:bf:57:9e:80:04:
e4:b0:86:09:b4:c7:10:a2:b8:66:5c:4b:c9:ac:0a:
f2:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:7D:5F:6A:F9:72:FA:D7:C1:C9:58:F0:78:76:39:B7:9E:D7:50:D2
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gn1favly-tfByVjweHY5t57XUNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.9.0/24
193.124.18.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/23
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.2.0/24
194.87.7.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.108.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.149.0/24
194.87.160.0/23
194.87.163.0-194.87.165.255
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.182.0/24
194.87.198.0/23
194.87.202.0/24
194.87.207.0-194.87.209.255
194.87.222.0/23
194.87.233.0/24
194.135.30.0/24
195.58.50.0/24
195.58.56.0/21
195.133.12.0/24
195.133.15.0/24
195.133.30.0/24
195.133.55.0/24
195.133.195.0/24
212.192.0.0/23
212.192.10.0/24
212.192.210.0/24
212.192.222.0/24
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:cf:e5:b8:d7:53:0e:6c:25:da:b5:79:74:ff:17:a3:15:53:
08:58:55:76:18:35:85:d6:bc:70:1a:e1:7e:f5:ee:62:85:c7:
40:5e:da:78:6b:8f:d3:72:d5:aa:c0:b6:55:9f:36:a8:85:96:
86:bf:5f:90:f4:39:7a:3e:0a:a7:5e:8a:d0:24:9b:d2:cd:f1:
86:6e:a6:06:f6:56:cd:87:02:33:de:c3:8e:94:90:d9:c6:1b:
34:f0:d5:08:ea:82:29:4f:08:7f:4c:b9:ed:2c:9f:92:1e:b2:
c5:c6:a7:b1:d7:fc:33:95:78:2a:af:63:93:37:04:92:fc:7a:
2c:dd:0b:0c:ba:8e:b3:06:bb:8d:35:73:05:1c:39:4c:dd:3e:
d9:83:9b:a0:65:6a:3c:ef:06:43:c3:fc:61:a9:8c:35:42:e2:
d5:14:8a:4e:7e:21:1e:41:87:65:db:11:80:ae:99:23:b8:47:
7d:bc:84:b6:56:80:c6:31:e8:6e:51:ac:e1:52:91:e1:f9:a3:
84:13:75:2a:29:f6:d3:09:b3:e5:17:f8:1c:35:ee:ad:15:4c:
27:97:e2:3a:17:b1:5a:1f:35:08:ee:24:a4:6c:1c:2e:27:e3:
39:40:54:0e:88:bd:fc:4b:81:a2:09:9a:f9:a8:6e:9d:5d:e3:
eb:2e:7a:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:03 2023 by rpki-client on console-ams.rpki-client.org