Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/mRli8DHPWaHMCEKjBv7NctnZQHE.roa
File: mRli8DHPWaHMCEKjBv7NctnZQHE.roa (raw, json)
Hash identifier: ND5JIFEd+2kIP4N8UJMTVC94fBlLTesgdqKx1O7Rdfg=
Subject key identifier: 99:19:62:F0:31:CF:59:A1:CC:08:42:A3:06:FE:CD:72:D9:D9:40:71
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01849EFA52B6400544B18FB28277909C0E6F
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/mRli8DHPWaHMCEKjBv7NctnZQHE.roa
Signing time: Tue 22 Nov 2022 10:55:16 +0000
ROA not before: Tue 22 Nov 2022 10:55:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.32.0/24 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
194.87.137.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
212.193.3.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.6.0/24 maxlen: 24
194.87.207.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.30.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.6.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.170.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.191.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
193.108.112.0/24 maxlen: 24
212.192.208.0/24 maxlen: 24
212.192.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9e:fa:52:b6:40:05:44:b1:8f:b2:82:77:90:9c:0e:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 22 10:55:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=991962f031cf59a1cc0842a306fecd72d9d94071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:88:8b:2c:31:66:59:96:12:8c:fa:0a:d6:77:
29:10:7e:d3:d0:b1:a2:34:a1:2f:23:76:ae:62:1b:
d7:81:5a:b0:98:cc:ca:d3:6b:60:09:df:65:a5:01:
4a:e3:98:c1:0f:e3:1a:8e:51:19:8b:54:20:1d:cc:
23:b0:3c:da:81:c1:33:05:3f:b3:1b:3c:c8:ef:74:
63:f8:be:18:9a:10:c8:af:5d:d8:4f:40:1e:de:61:
68:91:ca:d5:47:12:73:07:78:49:e9:48:ec:b7:71:
4f:8f:45:05:21:80:b0:fd:f0:e2:12:11:64:e6:93:
5d:1c:47:47:f5:9c:f5:15:62:57:aa:94:c4:ba:df:
14:e9:b8:ce:ad:75:54:cb:8c:c5:5b:86:be:56:2b:
83:a6:96:76:ac:73:5b:9e:a5:fd:1d:3b:32:e1:fc:
d9:4b:1c:17:5d:76:dd:da:33:84:62:db:1a:59:a6:
e9:e7:9a:90:b0:77:54:1a:ab:f7:f5:7b:13:d1:b0:
ec:a9:4d:63:9a:29:8b:67:5c:a0:37:a0:09:65:62:
82:cb:ee:2a:b5:66:33:24:7c:1b:29:38:ed:fe:6c:
e5:a2:df:6d:90:9f:dd:d8:6c:c3:c0:94:7a:d6:8b:
d2:be:b7:32:cb:ed:64:78:b9:e8:ca:f5:92:88:39:
9e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:19:62:F0:31:CF:59:A1:CC:08:42:A3:06:FE:CD:72:D9:D9:40:71
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/mRli8DHPWaHMCEKjBv7NctnZQHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/23
192.124.180.0/22
192.124.209.0/24
193.108.112.0/24
193.124.3.0/24
193.124.9.0/24
193.124.16.0/24
193.124.18.0/24
193.124.45.0/24
193.124.201.0/24
193.124.203.0/24
193.124.205.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/23
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.7.0/24
194.87.24.0/22
194.87.32.0/24
194.87.36.0/24
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.108.0/24
194.87.118.0/24
194.87.123.0/24
194.87.137.0/24
194.87.160.0/24
194.87.163.0/24
194.87.165.0/24
194.87.170.0/23
194.87.191.0/24
194.87.198.0/23
194.87.207.0-194.87.209.255
194.87.222.0/23
194.87.233.0/24
194.87.250.0/24
194.135.18.0/24
194.135.30.0/24
195.58.50.0/24
195.58.56.0/21
195.133.12.0/24
195.133.30.0/24
195.133.55.0/24
212.192.6.0/24
212.192.10.0/24
212.192.208.0/23
212.192.222.0/24
212.193.0.0/24
212.193.3.0/24
212.193.6.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
83:2b:4b:eb:0a:67:1f:35:57:10:7f:1b:c7:09:d6:34:2b:ad:
6e:92:07:e5:d9:82:ac:cf:87:fd:c8:f1:17:c1:7e:a0:c5:82:
a6:57:45:21:5a:70:f4:1b:a6:6c:d1:b1:03:aa:0c:22:b9:1a:
a2:9c:47:9a:e2:05:83:96:9d:2e:10:c3:48:b3:0b:86:01:dd:
f5:30:b6:2c:4c:ab:bc:20:61:11:e0:a6:e0:61:e4:db:09:00:
5f:4d:19:8a:80:35:d4:11:54:8f:04:51:d8:b9:32:4d:3b:26:
b5:88:7b:f9:ff:44:b9:5e:dd:eb:f7:17:ed:d1:38:e1:8b:2b:
31:4c:fe:76:df:20:18:64:e1:97:fe:5e:d7:06:77:7a:4e:20:
a3:39:ff:5d:d0:be:e5:48:84:ed:29:af:d3:81:6d:15:e1:34:
b9:f4:c8:71:03:3c:ff:16:36:9e:9e:2f:89:62:87:23:be:59:
4a:8a:89:49:f3:da:9d:e1:c5:7d:d5:4a:dc:68:84:8a:fe:da:
c4:f4:72:17:dc:4d:9c:08:10:62:4d:b9:cc:2f:ac:e0:3a:9c:
46:6b:a7:a9:e9:eb:1e:c1:ac:97:7e:fe:dc:d7:5e:39:1b:77:
b8:61:e6:88:a4:19:65:9d:a0:01:c9:dc:8c:10:10:ce:04:2f:
a5:18:e8:33
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:25 2024 by rpki-client on console-fra.rpki-client.org