Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jcEVMM4kcK2ujSyzXroYg5hDT0w.roa
File: jcEVMM4kcK2ujSyzXroYg5hDT0w.roa (raw, json)
Hash identifier: EMg6ZIsN26ijrGOgY40cb7NJYpma3LBm6zw9ctr03rw=
Subject key identifier: 8D:C1:15:30:CE:24:70:AD:AE:8D:2C:B3:5E:BA:18:83:98:43:4F:4C
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0184BE8869B8F48CF998F382897928004A62
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jcEVMM4kcK2ujSyzXroYg5hDT0w.roa
Signing time: Mon 28 Nov 2022 13:58:41 +0000
ROA not before: Mon 28 Nov 2022 13:58:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.32.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
194.87.137.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.64.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.6.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.207.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.30.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.6.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.164.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.170.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.191.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
193.108.112.0/24 maxlen: 24
212.192.210.0/24 maxlen: 24
212.192.208.0/24 maxlen: 24
212.192.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:be:88:69:b8:f4:8c:f9:98:f3:82:89:79:28:00:4a:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 28 13:58:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8dc11530ce2470adae8d2cb35eba188398434f4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:88:74:bf:f8:57:40:c9:20:89:d2:b1:5c:ae:
84:16:76:27:cd:fa:53:aa:c2:0c:af:5d:4f:13:36:
4e:63:c2:48:b3:07:e9:7b:62:79:97:46:d9:cc:e9:
67:c3:06:99:03:ab:cc:03:66:51:f8:ac:d0:fc:88:
72:36:97:67:e7:ae:01:ef:89:21:c5:e3:ba:4c:64:
a5:55:f4:a8:3f:00:6b:0b:d1:6c:26:e9:e2:c5:46:
40:e4:f4:43:cd:0a:3c:3f:71:03:2b:d2:55:b0:99:
06:b8:c8:6e:7c:28:21:df:b8:fd:41:6a:8f:e0:8d:
77:fc:61:5a:32:23:4e:a5:08:25:13:65:c7:0b:da:
0a:37:a3:64:f0:0f:6e:c2:f5:92:ad:ee:e1:24:2c:
3c:5e:54:ec:98:6b:36:3d:f4:90:18:56:3f:da:30:
f6:92:b2:f6:a3:28:89:3f:f2:fd:98:06:b1:7c:77:
2a:85:dc:23:69:03:49:cd:de:7b:3c:a7:ea:e6:f7:
7b:78:2d:0e:71:a0:fb:96:ff:45:e0:11:03:15:3b:
80:ed:f1:7d:ca:96:de:0d:92:e4:b1:c4:c1:e2:13:
20:5f:f3:c3:fa:94:9a:26:5b:61:1e:42:ee:ac:e2:
cd:23:15:16:6c:38:60:0b:91:30:39:58:d1:7e:04:
8c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:C1:15:30:CE:24:70:AD:AE:8D:2C:B3:5E:BA:18:83:98:43:4F:4C
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jcEVMM4kcK2ujSyzXroYg5hDT0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/23
192.124.178.0/24
192.124.180.0/22
192.124.209.0/24
193.108.112.0/24
193.124.3.0/24
193.124.9.0/24
193.124.16.0/24
193.124.18.0/24
193.124.45.0/24
193.124.201.0/24
193.124.203.0/24
193.124.205.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/23
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.7.0/24
194.87.24.0/22
194.87.32.0/24
194.87.36.0/24
194.87.56.0/24
194.87.64.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.108.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/23
194.87.160.0/24
194.87.163.0-194.87.165.255
194.87.170.0/23
194.87.176.0/24
194.87.191.0/24
194.87.198.0/23
194.87.202.0/24
194.87.207.0-194.87.209.255
194.87.222.0/23
194.87.233.0/24
194.87.250.0/24
194.135.18.0/24
194.135.30.0/24
195.58.50.0/24
195.58.56.0/21
195.133.12.0/24
195.133.30.0/24
195.133.55.0/24
212.192.6.0/24
212.192.10.0/24
212.192.208.0-212.192.210.255
212.192.222.0/24
212.193.0.0/24
212.193.6.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
71:b7:9b:91:a2:06:87:fd:7a:43:14:02:a4:3f:1c:2a:2c:f0:
81:a8:1a:ed:56:16:e9:ae:2c:8a:44:b8:a6:52:92:1a:73:b8:
20:96:b8:c8:db:6b:95:e3:a1:14:7d:29:45:9d:ca:bc:84:10:
80:4a:e8:b4:99:f5:57:2a:fe:81:7a:92:c0:01:97:d4:13:30:
a2:c1:8e:47:29:ec:6c:bf:f7:21:88:2f:44:63:bf:ce:34:60:
a5:15:a6:94:fb:6e:56:b4:ca:dc:d9:d3:da:56:1f:3a:89:3e:
d8:d4:af:a0:82:6d:38:67:5b:24:06:71:37:c7:38:c1:c5:f5:
10:f8:9b:b8:93:77:e0:cd:b7:20:f9:f7:cf:d5:a7:cf:16:1f:
5d:28:85:c6:17:b8:3e:ea:12:c1:37:84:a3:c7:83:86:e5:29:
f9:5f:39:ec:e8:c3:19:40:27:2a:3c:99:ab:3f:e0:6c:9c:86:
8e:b4:03:88:a1:cd:1a:81:14:48:a5:16:5c:19:3b:bd:c7:ce:
ba:be:ce:04:b2:a5:3c:8d:86:6c:30:89:d2:9c:98:ae:01:31:
80:4a:27:c0:56:aa:00:d1:8d:83:71:a3:84:0e:78:51:c8:c7:
3a:d0:ad:8e:0b:37:02:e0:7b:01:e7:6b:44:12:c1:9e:7e:cd:
9d:3e:3d:a0
-----BEGIN CERTIFICATE-----
MIIGdzCCBV+gAwIBAgISAYS+iGm49Iz5mPOCiXkoAEpiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjIxMTI4MTM1ODQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZGMxMTUzMGNlMjQ3MGFkYWU4ZDJjYjM1ZWJhMTg4Mzk4NDM0ZjRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIh0v/hXQMkgidKxXK6EFnYnzfpT
qsIMr11PEzZOY8JIswfpe2J5l0bZzOlnwwaZA6vMA2ZR+KzQ/IhyNpdn564B74kh
xeO6TGSlVfSoPwBrC9FsJunixUZA5PRDzQo8P3EDK9JVsJkGuMhufCgh37j9QWqP
4I13/GFaMiNOpQglE2XHC9oKN6Nk8A9uwvWSre7hJCw8XlTsmGs2PfSQGFY/2jD2
krL2oyiJP/L9mAaxfHcqhdwjaQNJzd57PKfq5vd7eC0OcaD7lv9F4BEDFTuA7fF9
ypbeDZLkscTB4hMgX/PD+pSaJlthHkLurOLNIxUWbDhgC5EwOVjRfgSMVQIDAQAB
o4IDgzCCA38wHQYDVR0OBBYEFI3BFTDOJHCtro0ss166GIOYQ09MMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvamNFVk1NNGtjSzJ1alN5elhyb1lnNWhEVDB3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBlwYIKwYBBQUHAQcBAf8EggGGMIIBgjCCAX4EAgABMIIB
dgMEAD5M5wMEAcB8rAMEAMB8sgMEAsB8tAMEAMB80QMEAMFscAMEAMF8AwMEAMF8
CQMEAMF8EAMEAMF8EgMEAMF8LQMEAMF8yQMEAMF8ywMEAMF8zQMEAMF8zwMEAMI6
JgMEAcI6KjAMAwQAwjotAwQEwjogAwQAwjo7AwQAwlcHAwQCwlcYAwQAwlcgAwQA
wlckAwQAwlc4AwQAwldAAwQAwldMAwQBwldSAwQAwldoAwQAwldsAwQAwld2AwQA
wld7AwQBwleIAwQAwlegMAwDBADCV6MDBAHCV6QDBAHCV6oDBADCV7ADBADCV78D
BAHCV8YDBADCV8owDAMEAMJXzwMEAcJX0AMEAcJX3gMEAMJX6QMEAMJX+gMEAMKH
EgMEAMKHHgMEAMM6MgMEA8M6OAMEAMOFDAMEAMOFHgMEAMOFNwMEANTABgMEANTA
CjAMAwQE1MDQAwQA1MDSAwQA1MDeAwQA1MEAAwQA1MEGAwQA1MEMMA0GCSqGSIb3
DQEBCwUAA4IBAQBxt5uRogaH/XpDFAKkPxwqLPCBqBrtVhbpriyKRLimUpIac7gg
lrjI22uV46EUfSlFncq8hBCASui0mfVXKv6BepLAAZfUEzCiwY5HKexsv/chiC9E
Y7/ONGClFaaU+25WtMrc2dPaVh86iT7Y1K+ggm04Z1skBnE3xzjBxfUQ+Ju4k3fg
zbcg+ffP1afPFh9dKIXGF7g+6hLBN4Sjx4OG5Sn5Xzns6MMZQCcqPJmrP+BsnIaO
tAOIoc0agRRIpRZcGTu9x866vs4EsqU8jYZsMInSnJiuATGASifAVqoA0Y2DcaOE
DnhRyMc60K2OCzcC4HsB52tEEsGefs2dPj2g
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:24 2024 by rpki-client on console-fra.rpki-client.org