Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qtO4ZI7BMeXcz5rHamLAFIm3Tm4.roa
File: qtO4ZI7BMeXcz5rHamLAFIm3Tm4.roa (raw, json)
Hash identifier: vkznMsmqdTXlMO0sAz3hn4BuIZ5jTcafJoyPa6ata/A=
Subject key identifier: AA:D3:B8:64:8E:C1:31:E5:DC:CF:9A:C7:6A:62:C0:14:89:B7:4E:6E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0184F63023D183625226564084F33595ED89
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qtO4ZI7BMeXcz5rHamLAFIm3Tm4.roa
Signing time: Fri 09 Dec 2022 09:21:00 +0000
ROA not before: Fri 09 Dec 2022 09:21:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
194.87.137.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
212.193.14.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.207.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
194.135.30.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
194.87.149.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.164.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
212.192.210.0/24 maxlen: 24
212.192.208.0/24 maxlen: 24
212.192.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f6:30:23:d1:83:62:52:26:56:40:84:f3:35:95:ed:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 9 09:21:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aad3b8648ec131e5dccf9ac76a62c01489b74e6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e7:67:78:a6:02:3f:15:57:a9:1a:15:84:20:
ae:fe:58:ac:2b:b5:cc:0e:41:37:41:ee:1c:f0:c4:
e6:0f:ab:98:3e:aa:cd:58:96:8f:5a:b7:9a:65:1b:
58:22:16:b4:cf:e7:9d:c4:73:d0:86:c0:0f:94:a9:
80:66:d3:d5:35:26:cc:73:d2:d0:36:78:bf:50:17:
16:3c:c3:d7:1e:fb:4b:71:cc:59:5a:0b:5f:56:3c:
6b:1a:73:cc:0b:3a:22:53:a1:73:da:8a:b4:66:89:
16:18:62:64:95:92:f0:84:13:72:71:a7:ed:2f:bc:
b3:07:a8:9d:18:a3:d6:7a:b1:d7:6f:c7:60:a9:d9:
cc:01:03:2a:97:ff:da:73:cc:81:b5:57:8e:d5:b1:
95:00:82:73:90:96:79:be:ef:78:61:bd:43:c8:34:
bc:5f:26:e3:7d:17:cc:b5:91:25:16:9b:b8:92:b3:
dd:18:50:23:51:f9:4b:bc:a4:79:12:96:09:f4:87:
91:f7:44:48:e2:2a:39:f4:2c:d9:b0:cf:a3:a9:ba:
f1:0a:5d:a6:b4:b5:5c:05:46:68:c1:af:ec:6a:ad:
de:18:6a:af:7b:51:95:77:96:f7:6a:39:9e:ce:bf:
e4:ac:3e:2e:cd:f4:63:32:cd:2c:ff:78:6f:de:ef:
75:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D3:B8:64:8E:C1:31:E5:DC:CF:9A:C7:6A:62:C0:14:89:B7:4E:6E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qtO4ZI7BMeXcz5rHamLAFIm3Tm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.9.0/24
193.124.18.0/24
193.124.201.0/24
193.124.203.0/24
193.124.205.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/23
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.7.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.108.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/23
194.87.149.0/24
194.87.160.0/23
194.87.163.0-194.87.165.255
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.198.0/23
194.87.202.0/24
194.87.207.0-194.87.209.255
194.87.222.0/23
194.87.233.0/24
194.87.250.0/24
194.135.30.0/24
195.58.50.0/24
195.58.56.0/21
195.133.12.0/24
195.133.30.0/24
195.133.55.0/24
212.192.10.0/24
212.192.208.0-212.192.210.255
212.192.222.0/24
212.193.0.0/24
212.193.12.0/24
212.193.14.0/24
Signature Algorithm: sha256WithRSAEncryption
23:c2:43:de:e7:a5:8c:dc:4f:9b:23:fc:fa:b5:40:37:85:da:
72:0e:80:9a:16:6f:f8:dd:d9:4e:42:2e:1b:1d:08:54:1e:1b:
e1:6e:04:b6:4f:18:10:b4:07:ae:d3:9b:a8:a5:3b:57:a4:76:
92:a2:f0:76:1e:c8:7f:80:0e:ff:77:59:53:44:27:81:83:7f:
03:39:9a:5b:f4:18:62:f1:e3:e2:68:24:d3:54:19:de:cd:fc:
1f:1f:05:a4:95:f0:72:93:1d:da:fa:d4:90:a8:f4:c1:41:c8:
f6:d8:4a:06:07:24:82:09:d3:c9:7a:ea:4e:9d:33:ef:03:7a:
e1:8d:48:b6:96:ce:7d:6c:d3:f7:03:7d:e3:d1:86:ff:b0:bc:
b9:00:38:ec:7f:c5:5b:2d:fe:f0:1e:47:18:1d:51:b7:02:56:
76:5f:00:5f:36:1d:69:ce:9d:20:cb:a3:16:70:28:fc:c8:46:
f2:5c:7a:0e:b5:5d:e2:38:b9:85:d1:d3:c0:5e:52:e0:d3:4d:
83:d6:2e:42:7f:26:ee:bb:19:1a:78:b0:5f:bc:5f:22:af:c0:
d9:64:94:f4:bd:9a:01:97:25:f1:00:b3:b3:99:ad:07:bf:a8:
a6:9b:6a:a5:41:59:6e:78:a6:70:60:72:bf:d6:d4:53:c7:24:
e1:1b:9d:e7
-----BEGIN CERTIFICATE-----
MIIGSTCCBTGgAwIBAgISAYT2MCPRg2JSJlZAhPM1le2JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjIxMjA5MDkyMTAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYWQzYjg2NDhlYzEzMWU1ZGNjZjlhYzc2YTYyYzAxNDg5Yjc0ZTZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2udneKYCPxVXqRoVhCCu/lisK7XM
DkE3Qe4c8MTmD6uYPqrNWJaPWreaZRtYIha0z+edxHPQhsAPlKmAZtPVNSbMc9LQ
Nni/UBcWPMPXHvtLccxZWgtfVjxrGnPMCzoiU6Fz2oq0ZokWGGJklZLwhBNycaft
L7yzB6idGKPWerHXb8dgqdnMAQMql//ac8yBtVeO1bGVAIJzkJZ5vu94Yb1DyDS8
XybjfRfMtZElFpu4krPdGFAjUflLvKR5EpYJ9IeR90RI4io59CzZsM+jqbrxCl2m
tLVcBUZowa/saq3eGGqve1GVd5b3ajmezr/krD4uzfRjMs0s/3hv3u91VQIDAQAB
o4IDVTCCA1EwHQYDVR0OBBYEFKrTuGSOwTHl3M+ax2piwBSJt05uMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvcXRPNFpJN0JNZVhjejVySGFtTEFGSW0zVG00LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBaQYIKwYBBQUHAQcBAf8EggFYMIIBVDCCAVAEAgABMIIB
SAMEAD5M5wMEAMB8rAMEAMB8sgMEAsB8tAMEAMF8AwMEAMF8CQMEAMF8EgMEAMF8
yQMEAMF8ywMEAMF8zQMEAMF8zwMEAMI6JgMEAcI6KjAMAwQAwjotAwQEwjogAwQA
wjo7AwQAwlcHAwQCwlcYAwQAwlc4AwQAwldMAwQBwldSAwQAwldoAwQAwldsAwQA
wld2AwQAwld7AwQBwleIAwQAwleVAwQBwlegMAwDBADCV6MDBAHCV6QwDAMEAMJX
qwMEAMJXrAMEAMJXsAMEAcJXxgMEAMJXyjAMAwQAwlfPAwQBwlfQAwQBwlfeAwQA
wlfpAwQAwlf6AwQAwoceAwQAwzoyAwQDwzo4AwQAw4UMAwQAw4UeAwQAw4U3AwQA
1MAKMAwDBATUwNADBADUwNIDBADUwN4DBADUwQADBADUwQwDBADUwQ4wDQYJKoZI
hvcNAQELBQADggEBACPCQ97npYzcT5sj/Pq1QDeF2nIOgJoWb/jd2U5CLhsdCFQe
G+FuBLZPGBC0B67Tm6ilO1ekdpKi8HYeyH+ADv93WVNEJ4GDfwM5mlv0GGLx4+Jo
JNNUGd7N/B8fBaSV8HKTHdr61JCo9MFByPbYSgYHJIIJ08l66k6dM+8DeuGNSLaW
zn1s0/cDfePRhv+wvLkAOOx/xVst/vAeRxgdUbcCVnZfAF82HWnOnSDLoxZwKPzI
RvJceg61XeI4uYXR08BeUuDTTYPWLkJ/Ju67GRp4sF+8XyKvwNlklPS9mgGXJfEA
s7OZrQe/qKabaqVBWW54pnBgcr/W1FPHJOEbnec=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:27 2024 by rpki-client on console-fra.rpki-client.org