Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/q9uBQM5ms2U2eKeYaKEjBlrWsuA.roa
File: q9uBQM5ms2U2eKeYaKEjBlrWsuA.roa (raw, json)
Hash identifier: FwWOZKeURog34cQgiVrVR8fR0PYUwPrk5qVkPBj23/Y=
Subject key identifier: AB:DB:81:40:CE:66:B3:65:36:78:A7:98:68:A1:23:06:5A:D6:B2:E0
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 101AEB6F
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/q9uBQM5ms2U2eKeYaKEjBlrWsuA.roa
Signing time: Fri 27 May 2022 14:09:13 +0000
ROA not before: Fri 27 May 2022 14:09:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.4.0/24 maxlen: 24
62.76.232.0/24 maxlen: 24
62.76.235.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.16.0/24 maxlen: 24
195.58.52.0/24 maxlen: 24
194.58.60.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.64.0/24 maxlen: 24
193.124.89.0/24 maxlen: 24
193.124.95.0/24 maxlen: 24
193.124.93.0/24 maxlen: 24
195.133.81.0/24 maxlen: 24
194.87.226.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
212.192.10.0/23 maxlen: 24
194.87.166.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.182.0/23 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.180.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
192.124.188.0/22 maxlen: 22
194.87.179.0/24 maxlen: 24
193.124.202.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 270199663 (0x101aeb6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 27 14:09:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abdb8140ce66b3653678a79868a123065ad6b2e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d3:0d:c0:ad:03:58:85:f3:ad:71:f4:04:cb:
99:1f:c0:72:74:92:e9:6b:10:00:d9:86:03:74:cb:
61:a9:e5:d4:ad:07:dd:8d:7b:03:9b:71:0c:bf:6b:
5c:a6:0a:51:8d:12:2b:be:a7:69:f8:96:20:e4:79:
bb:f7:8c:01:98:ae:4e:39:85:34:05:14:e2:fc:4b:
41:9c:f6:e1:9a:80:63:4a:49:86:26:70:b4:74:d5:
17:6c:77:73:9d:51:f3:e8:56:c7:bf:95:3c:6a:27:
db:42:2c:35:48:ad:ac:9e:a8:92:1d:96:ec:22:71:
ec:34:0b:02:0f:64:71:cd:9e:9d:c4:0b:48:a4:ae:
4c:a4:67:42:82:4f:b0:17:a8:08:1e:8c:ce:8a:9c:
56:cb:bd:e3:7c:3b:b9:48:9f:93:ca:76:95:09:53:
b0:8e:1b:a4:71:5c:3c:16:44:c7:91:e4:cc:07:e7:
29:bc:51:31:58:d0:ff:dc:fa:ce:d9:16:ef:f7:44:
51:01:9b:ef:20:b8:5e:3c:c6:03:a8:84:37:b7:2b:
50:ec:79:05:ab:cc:88:bb:c7:b3:8d:dc:27:86:6d:
08:5b:f5:76:cf:87:04:ec:24:8f:8b:42:bd:77:e6:
3f:79:fb:d4:32:7e:cd:0e:2c:65:b2:6b:6a:bf:32:
46:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:DB:81:40:CE:66:B3:65:36:78:A7:98:68:A1:23:06:5A:D6:B2:E0
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/q9uBQM5ms2U2eKeYaKEjBlrWsuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.232.0/24
62.76.235.0/24
192.124.173.0/24
192.124.178.0/24
192.124.180.0/22
192.124.188.0/22
192.124.209.0/24
193.124.4.0/24
193.124.89.0/24
193.124.93.0/24
193.124.95.0/24
193.124.202.0/23
194.58.60.0/24
194.58.67.0/24
194.87.7.0/24
194.87.16.0/24
194.87.64.0/24
194.87.104.0/24
194.87.166.0/24
194.87.172.0/24
194.87.179.0/24
194.87.226.0/24
194.135.23.0/24
195.58.52.0/24
195.133.81.0/24
212.192.10.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:d9:e1:76:e1:d1:a6:80:8b:59:fd:ff:ad:64:35:e6:67:2d:
35:4c:1b:20:18:6d:54:f7:84:cf:d6:37:c1:02:1c:12:19:67:
be:97:23:73:63:9f:28:c1:6c:9a:cd:ce:5f:4d:37:55:b4:9a:
58:9e:a5:9d:28:5b:01:30:e5:cb:51:af:b1:62:25:06:c9:8b:
f8:f2:e3:f3:83:92:88:da:65:7e:9b:40:f9:af:4e:a9:a6:34:
04:f6:c3:2d:49:27:e4:90:42:63:16:dc:08:a5:77:3c:1f:c5:
a2:fa:92:0e:40:93:35:75:b8:c7:3d:fe:64:af:ce:17:ac:c6:
30:b5:9c:6d:91:2e:be:64:cf:e8:b1:20:a6:3c:a1:c7:45:cf:
a3:80:ae:22:a9:f3:86:f8:fa:70:8a:3b:ce:ca:f0:ed:b0:c9:
3a:cb:72:a3:08:e2:3e:c0:39:fc:f5:fb:b9:0d:75:22:e6:1f:
09:cf:f8:21:e4:0b:b5:94:76:ff:8a:68:16:26:41:4d:82:9d:
9b:13:fe:ad:2f:f2:ff:32:43:c2:1b:88:79:19:7d:3f:21:fb:
2a:c6:76:86:88:8d:b1:41:94:de:f4:ac:cc:d8:0c:2a:11:19:
6b:56:40:6d:f5:8b:fc:83:f6:00:aa:a9:4d:7e:8d:79:52:00:
80:ed:d4:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:47 2024 by rpki-client on console-ams.rpki-client.org