Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jACKdu0DCRD9evHGotuuuTq7Hn0.roa
File: jACKdu0DCRD9evHGotuuuTq7Hn0.roa (raw, json)
Hash identifier: OBJeNh3yIYBRu5194jdoM+9OI7pqdeitDOlozBFvEzg=
Subject key identifier: 8C:00:8A:76:ED:03:09:10:FD:7A:F1:C6:A2:DB:AE:B9:3A:BB:1E:7D
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01852A2771DD444BA7B6D36D9DCEAAFD4C04
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jACKdu0DCRD9evHGotuuuTq7Hn0.roa
Signing time: Mon 19 Dec 2022 11:31:46 +0000
ROA not before: Mon 19 Dec 2022 11:31:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.74.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
194.135.30.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.164.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:27:71:dd:44:4b:a7:b6:d3:6d:9d:ce:aa:fd:4c:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 19 11:31:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c008a76ed030910fd7af1c6a2dbaeb93abb1e7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a9:49:ff:23:4b:17:b0:d3:ba:de:fc:85:7d:
ff:0a:8e:6e:2a:97:c5:04:ce:aa:af:68:9c:48:22:
5f:62:78:d8:d8:af:96:ae:09:5f:7b:2e:8b:30:f4:
b7:3c:21:d8:90:ac:42:6a:4c:24:cb:ec:92:3a:5c:
83:f9:1b:1f:06:5b:c1:03:10:e0:82:25:48:22:64:
f9:6f:aa:89:4d:99:7a:b1:e2:80:ce:8e:68:db:32:
29:f0:a2:e5:0a:a4:c9:5f:61:d5:71:e7:e8:a7:1d:
d2:99:cf:4e:fb:cd:f2:c8:25:88:92:54:2b:fc:6d:
3c:69:98:bd:19:d9:56:05:43:77:ee:c9:49:35:c2:
81:40:6b:6c:92:59:20:c0:63:d3:a7:13:f3:01:bf:
e0:b1:82:cf:a1:ca:c4:a3:f2:70:26:1d:1b:d7:0d:
ee:a3:ed:af:82:c7:23:d5:46:40:78:5e:99:b6:be:
47:aa:1f:77:84:ee:59:c0:5d:10:ab:f8:0d:d2:4d:
16:b6:ab:37:09:70:9a:53:b5:ea:da:e7:f4:5f:36:
8a:47:e2:5b:b0:f5:f2:2a:32:8a:22:cd:40:b8:12:
f3:da:d5:b2:a0:d7:0a:08:e4:e4:40:f2:dc:37:90:
f4:01:d0:80:12:40:e7:ad:6d:54:27:bb:40:5d:d6:
5b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:00:8A:76:ED:03:09:10:FD:7A:F1:C6:A2:DB:AE:B9:3A:BB:1E:7D
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jACKdu0DCRD9evHGotuuuTq7Hn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.9.0/24
193.124.18.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/23
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.7.0/24
194.87.24.0/22
194.87.56.0/24
194.87.74.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.108.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.149.0/24
194.87.160.0/23
194.87.163.0-194.87.165.255
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.182.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
194.135.30.0/24
195.58.50.0/24
195.58.56.0/21
195.133.12.0/24
195.133.15.0/24
195.133.55.0/24
195.133.195.0/24
212.192.0.0/23
212.192.10.0/24
212.192.222.0/24
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
74:c3:6a:1e:fb:08:0f:ae:e7:36:ed:5c:f0:76:e4:97:c2:b6:
8e:27:0b:ca:68:a3:e9:9a:1c:76:0a:52:7a:02:d7:78:1c:34:
d1:a8:91:26:fc:80:ea:85:ff:8c:ea:5e:47:74:db:71:dd:af:
0e:ec:79:20:92:f5:30:74:ba:94:21:8a:a2:34:25:a5:3e:94:
86:d8:1a:8b:23:99:4c:ff:09:b8:aa:cb:46:f0:03:e1:9b:9d:
7c:89:65:1c:12:96:56:b2:5b:fc:11:34:a3:1b:26:17:43:0d:
72:cf:5c:b0:09:aa:c0:8c:a4:2b:50:cf:3b:b5:b9:a9:35:a7:
ec:37:d1:41:cc:47:1a:69:f8:b1:f2:0f:8c:a2:86:ba:60:36:
7c:1c:db:00:df:29:e9:59:91:dd:e8:1f:50:82:e8:80:7b:78:
b8:fc:52:1a:99:87:11:8f:36:11:7f:2d:57:67:4b:fa:48:a1:
d7:73:37:16:36:7c:46:e1:f3:42:53:30:5a:f7:d1:ba:f6:44:
3e:ad:e0:03:89:58:aa:50:35:bf:9a:f9:e6:b2:51:13:ff:be:
76:9b:8d:8e:e8:da:dd:4d:d5:1b:33:92:bc:18:68:80:30:82:
25:0d:e9:f1:0e:2f:e2:79:92:52:64:e2:3a:99:26:cd:ca:60:
ec:e8:72:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:24 2024 by rpki-client on console-fra.rpki-client.org