Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jeuo9RNGYzL67cg7r7tKbBf75ko.roa
File: jeuo9RNGYzL67cg7r7tKbBf75ko.roa (raw, json)
Hash identifier: f6gOxEBg0L6WJs2vNSXjwIfIXMwkWC7C2RpDEoTM9bQ=
Subject key identifier: 8D:EB:A8:F5:13:46:63:32:FA:ED:C8:3B:AF:BB:4A:6C:17:FB:E6:4A
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0F1C6471
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jeuo9RNGYzL67cg7r7tKbBf75ko.roa
Signing time: Wed 16 Mar 2022 21:10:52 +0000
ROA not before: Wed 16 Mar 2022 21:10:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 212.193.24.0/22 maxlen: 24
193.124.224.0/23 maxlen: 23
193.124.226.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
194.87.32.0/22 maxlen: 24
212.192.16.0/21 maxlen: 24
194.87.192.0/22 maxlen: 22
212.193.4.0/22 maxlen: 24
212.193.8.0/22 maxlen: 24
194.87.116.0/22 maxlen: 24
194.87.124.0/22 maxlen: 24
194.87.120.0/22 maxlen: 24
212.192.208.0/22 maxlen: 24
194.87.41.0/24 maxlen: 24
194.135.46.0/24 maxlen: 24
194.87.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 253518961 (0xf1c6471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 16 21:10:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8deba8f513466332faedc83bafbb4a6c17fbe64a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:64:0e:32:b4:f9:76:76:f1:91:24:c4:4d:f8:
77:18:e4:7a:49:b5:a2:b9:70:a2:fe:04:00:de:64:
c8:d3:e2:8c:f3:1f:c1:34:c3:6c:36:6f:26:44:e7:
f9:75:57:6d:0a:4a:69:c4:5c:23:72:81:ec:fe:c5:
26:51:4c:a0:99:20:9c:57:4b:46:e2:ae:6b:80:ed:
9e:7c:b2:22:9e:b5:12:c8:7e:5f:dd:58:da:89:c4:
10:8b:97:dd:06:56:a1:c3:24:a8:ec:ed:be:be:64:
c8:b6:74:2b:55:aa:43:10:9c:03:cd:33:35:d7:54:
72:5b:19:9f:a9:af:ca:9f:fd:41:01:91:3d:99:e5:
64:7e:b6:53:e7:2e:93:61:59:3b:45:ae:10:e6:4c:
79:98:e5:c3:41:bb:2a:54:00:60:06:52:7c:90:f2:
f5:b9:1a:47:a7:f1:32:a5:05:92:de:70:4a:37:5d:
ae:17:db:a0:84:cc:93:c4:9e:ea:a4:1a:5f:46:54:
5b:4c:45:68:b4:2e:84:b2:f2:92:5a:28:ab:c8:c1:
45:de:be:be:76:ec:78:ce:68:ff:68:6f:46:05:60:
a1:31:bf:7e:12:ea:f9:25:1c:64:46:78:a5:a6:57:
a7:ac:1f:80:c9:ea:e9:dd:10:72:1e:f4:fc:63:57:
26:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:EB:A8:F5:13:46:63:32:FA:ED:C8:3B:AF:BB:4A:6C:17:FB:E6:4A
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jeuo9RNGYzL67cg7r7tKbBf75ko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.49.0/24
193.124.224.0-193.124.226.255
194.87.32.0/22
194.87.41.0/24
194.87.61.0/24
194.87.116.0-194.87.127.255
194.87.192.0/22
194.135.46.0/24
212.192.16.0/21
212.192.208.0/22
212.193.4.0-212.193.11.255
212.193.24.0/22
Signature Algorithm: sha256WithRSAEncryption
33:f3:59:6c:c8:f9:df:c5:d0:82:a7:cc:35:0e:ad:89:a8:01:
d7:e2:fc:5c:13:67:89:18:48:f2:14:f4:37:31:93:9f:59:83:
fd:5d:57:8e:47:7e:50:83:60:80:4b:cc:79:88:47:b3:f5:38:
9b:ed:a5:12:21:a5:c0:9e:99:22:fa:8c:5b:e4:ad:dd:83:83:
9f:c1:e4:ce:31:3a:24:6a:75:3b:d2:79:6f:18:e8:12:2d:87:
13:b3:e4:61:0f:7b:e7:5a:ec:48:21:d8:c4:1d:b5:8a:66:ac:
78:2b:5f:9b:14:ce:fb:18:da:ca:18:c3:44:16:25:ef:75:65:
0f:b6:dd:16:b2:c1:6b:3f:79:28:c0:a6:c3:f7:f3:22:9b:de:
03:a1:95:9e:46:c7:db:23:1c:23:fc:9b:7c:0b:07:f0:11:47:
72:17:a7:0f:5c:8b:6f:db:1b:5d:53:c3:bc:5f:64:7b:e0:f6:
ff:82:ab:c3:c1:2c:02:fd:9c:7c:fb:66:63:4d:c2:4e:66:6a:
90:6c:63:55:b8:cc:db:8a:ad:97:dc:97:aa:2f:1b:7a:be:28:
e2:94:c0:51:fa:1e:0e:98:d6:38:d7:6d:33:a3:52:cd:64:3e:
74:c5:cd:37:25:d8:bc:e6:3a:98:92:ea:f9:72:03:50:41:71:
b7:71:52:fe
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIEDxxkcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NTY5MGY1ZTMyZDVjODZhZjFlMTM0OWRmZDRlOGNlZWI3MGUxYWM3MB4XDTIyMDMx
NjIxMTA1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGRlYmE4ZjUxMzQ2
NjMzMmZhZWRjODNiYWZiYjRhNmMxN2ZiZTY0YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL1kDjK0+XZ28ZEkxE34dxjkekm1orlwov4EAN5kyNPijPMf
wTTDbDZvJkTn+XVXbQpKacRcI3KB7P7FJlFMoJkgnFdLRuKua4DtnnyyIp61Esh+
X91Y2onEEIuX3QZWocMkqOztvr5kyLZ0K1WqQxCcA80zNddUclsZn6mvyp/9QQGR
PZnlZH62U+cuk2FZO0WuEOZMeZjlw0G7KlQAYAZSfJDy9bkaR6fxMqUFkt5wSjdd
rhfboITMk8Se6qQaX0ZUW0xFaLQuhLLyklooq8jBRd6+vnbseM5o/2hvRgVgoTG/
fhLq+SUcZEZ4paZXp6wfgMnq6d0Qch70/GNXJuMCAwEAAaOCAmMwggJfMB0GA1Ud
DgQWBBSN66j1E0ZjMvrtyDuvu0psF/vmSjAfBgNVHSMEGDAWgBQ1aQ9eMtXIavHh
NJ39Tozutw4axzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05Xa1BYakxWeUdyeDRUU2RfVTZNN3JjT0dzYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDAvZTE0NDdhLThmMTgtNGE4MC1hNDIyLTVhNDI0MjhmMTE0My8x
L2pldW85Uk5HWXpMNjdjZzdyN3RLYkJmNzVrby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDAv
ZTE0NDdhLThmMTgtNGE4MC1hNDIyLTVhNDI0MjhmMTE0My8xL05Xa1BYakxWeUdy
eDRUU2RfVTZNN3JjT0dzYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjB5
BggrBgEFBQcBBwEB/wRqMGgwZgQCAAEwYAMEAMF8MTAMAwQFwXzgAwQAwXziAwQC
wlcgAwQAwlcpAwQAwlc9MAwDBALCV3QDBAfCVwADBALCV8ADBADChy4DBAPUwBAD
BALUwNAwDAMEAtTBBAMEAtTBCAMEAtTBGDANBgkqhkiG9w0BAQsFAAOCAQEAM/NZ
bMj538XQgqfMNQ6tiagB1+L8XBNniRhI8hT0NzGTn1mD/V1Xjkd+UINggEvMeYhH
s/U4m+2lEiGlwJ6ZIvqMW+St3YODn8HkzjE6JGp1O9J5bxjoEi2HE7PkYQ9751rs
SCHYxB21imaseCtfmxTO+xjayhjDRBYl73VlD7bdFrLBaz95KMCmw/fzIpveA6GV
nkbH2yMcI/ybfAsH8BFHchenD1yLb9sbXVPDvF9ke+D2/4Krw8EsAv2cfPtmY03C
TmZqkGxjVbjM24qtl9yXqi8ber4o4pTAUfoeDpjWONdtM6NSzWQ+dMXNNyXYvOY6
mJLq+XIDUEFxt3FS/g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:04 2023 by rpki-client on console-ams.rpki-client.org