Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/uWZPMr0sZ93zAyrb3okaD70lgxM.roa
File: uWZPMr0sZ93zAyrb3okaD70lgxM.roa (raw, json)
Hash identifier: RbyKdZI7TJoR2B7fDC/ADfECEvFuEKuW6bAtWcIzv98=
Subject key identifier: B9:66:4F:32:BD:2C:67:DD:F3:03:2A:DB:DE:89:1A:0F:BD:25:83:13
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0182CF6AC4521044C592E7B79E188F031DB8
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/uWZPMr0sZ93zAyrb3okaD70lgxM.roa
Signing time: Wed 24 Aug 2022 10:34:16 +0000
ROA not before: Wed 24 Aug 2022 10:34:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15731
IP address blocks: 62.76.226.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
212.192.9.0/24 maxlen: 24
195.133.31.0/24 maxlen: 24
194.87.169.0/24 maxlen: 24
212.192.31.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
194.87.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:cf:6a:c4:52:10:44:c5:92:e7:b7:9e:18:8f:03:1d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 24 10:34:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b9664f32bd2c67ddf3032adbde891a0fbd258313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b3:a1:d7:dc:b9:72:14:48:65:c6:9f:3a:b4:
65:91:d3:7d:24:07:26:0f:1e:39:17:34:a5:95:a9:
14:11:ca:55:82:7e:6a:fa:58:2c:cc:3e:2a:ed:db:
30:9a:a7:ed:53:e2:06:06:02:9d:9b:8a:66:6d:09:
68:51:76:f6:0d:b4:95:76:dd:dd:56:84:62:3f:4e:
0d:04:16:6c:68:a3:8a:2d:f3:62:94:8d:fb:37:fe:
08:6a:7c:ea:5d:3f:ed:12:f6:80:28:ff:ee:74:05:
b1:ec:9f:61:18:ca:9e:86:25:d8:1b:ac:4a:bc:cc:
ca:1b:20:14:be:9e:f1:23:59:68:30:a9:7b:df:8a:
37:05:fa:3c:bf:6e:0b:cd:fd:a0:a7:ce:5c:9d:60:
f8:c1:68:26:0a:8a:80:5c:75:68:ff:2d:80:4b:52:
8d:ad:94:ad:cc:f1:b0:08:dc:79:ad:d4:e4:0b:58:
cc:4e:f7:33:84:03:f2:96:2b:4a:5d:f2:a6:61:6f:
36:4b:e9:a3:67:d9:2c:b0:54:40:55:b2:92:62:38:
7c:7e:7f:ea:a9:db:2f:37:29:79:21:16:6d:cd:ee:
7b:47:9b:33:91:08:76:3e:18:b3:3c:31:e4:3a:2b:
4c:96:a7:e8:eb:d5:22:c9:a2:00:ba:b8:47:96:c2:
aa:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:66:4F:32:BD:2C:67:DD:F3:03:2A:DB:DE:89:1A:0F:BD:25:83:13
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/uWZPMr0sZ93zAyrb3okaD70lgxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
193.124.205.0/24
193.124.207.0/24
194.87.73.0/24
194.87.90.0/24
194.87.130.0/24
194.87.169.0/24
195.58.35.0/24
195.133.0.0/24
195.133.31.0/24
195.133.86.0/24
212.192.9.0/24
212.192.31.0/24
212.193.1.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:4e:09:c2:ad:be:e4:d0:78:a8:28:71:c6:5f:73:fe:15:8c:
f6:0a:09:13:6a:11:02:1f:79:e4:95:2e:d0:66:a9:2c:b3:a8:
0e:00:5e:ca:11:dd:bf:be:14:5f:2c:5b:3c:a2:b6:59:03:ab:
8d:1a:bf:51:ca:14:f9:d4:b8:52:e8:69:c0:5d:44:b8:3d:1c:
00:ce:69:6f:bc:c7:5f:f3:bf:14:00:62:a9:d8:29:12:f1:c5:
8d:0c:63:6b:f1:46:55:d1:a0:33:a1:8e:46:12:9c:69:2b:96:
53:f5:00:00:1d:12:93:05:3d:e2:a9:41:e3:d3:97:77:c7:af:
70:0f:a2:f0:64:b3:e2:0c:30:b2:e1:1a:fd:f3:eb:e1:52:89:
52:eb:aa:c1:65:ca:35:89:07:d8:37:00:40:1b:e6:15:11:5d:
1d:08:05:70:4a:44:6e:2c:06:19:38:29:68:8d:f1:1a:3a:4b:
38:b2:98:a5:c7:81:55:8b:f6:90:0c:10:dd:9a:2e:7c:1e:77:
ae:4a:95:a8:43:bc:66:03:db:53:9c:36:8d:21:e0:00:b5:ec:
4f:ef:d0:a0:3e:00:0b:c7:f5:aa:6a:88:c5:32:bb:87:09:fc:
c5:14:8e:ce:a9:d2:78:ff:92:c2:23:e0:38:a3:a6:99:b0:52:
2d:d9:0f:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:49 2024 by rpki-client on console-ams.rpki-client.org