Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vWer5sjv3ir6Z35Zg5Qq9sEifN4.roa
File: vWer5sjv3ir6Z35Zg5Qq9sEifN4.roa (raw, json)
Hash identifier: PUnIzHPK8EzJECbkPcvRukX19NPPs2OJOkE0hE4T02A=
Subject key identifier: BD:67:AB:E6:C8:EF:DE:2A:FA:67:7E:59:83:94:2A:F6:C1:22:7C:DE
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0182F55C9971D0D2146013FB0133A6B7D0CB
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vWer5sjv3ir6Z35Zg5Qq9sEifN4.roa
Signing time: Wed 31 Aug 2022 19:24:22 +0000
ROA not before: Wed 31 Aug 2022 19:24:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15731
IP address blocks: 194.87.200.0/24 maxlen: 24
62.76.226.0/24 maxlen: 24
195.133.86.0/24 maxlen: 24
195.58.35.0/24 maxlen: 24
212.192.9.0/24 maxlen: 24
195.133.31.0/24 maxlen: 24
194.87.168.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
212.192.31.0/24 maxlen: 24
212.193.1.0/24 maxlen: 24
212.193.3.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.130.0/24 maxlen: 24
195.133.0.0/24 maxlen: 24
194.87.73.0/24 maxlen: 24
193.124.91.0/24 maxlen: 24
194.87.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f5:5c:99:71:d0:d2:14:60:13:fb:01:33:a6:b7:d0:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 31 19:24:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd67abe6c8efde2afa677e5983942af6c1227cde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:7f:b7:24:0e:40:a4:bb:0b:d2:3c:e4:d3:91:
35:24:2b:ce:db:06:61:ff:1c:34:89:85:11:df:7d:
96:61:f3:c6:23:70:7e:b2:33:6d:31:eb:58:f0:ae:
7c:a7:17:3e:5a:d8:91:c1:b7:cb:0e:dd:81:26:c5:
3a:d4:99:7a:68:d2:33:3e:aa:f8:ec:b5:38:d1:fd:
10:ca:4a:38:ec:d7:af:9d:ef:cf:78:90:c7:e6:97:
6f:9b:0a:92:55:f7:27:79:c0:d8:f2:3f:c6:00:52:
b2:f4:13:74:fc:a9:8e:28:26:3a:38:ac:cf:22:a1:
ba:7e:c2:70:52:8f:70:32:d4:4f:4d:fe:ac:9b:7b:
09:5b:a1:c5:7a:59:07:39:76:51:fd:2e:e9:c7:61:
f1:f2:0e:12:c5:c5:94:c3:99:66:fa:61:4b:29:83:
4d:05:0d:38:17:94:a1:8c:41:4d:bf:06:1e:63:1b:
1e:41:9d:21:27:d3:e2:7e:88:b9:61:a3:38:d8:b5:
40:b3:61:d0:36:92:bf:ca:30:94:44:a4:8c:25:4d:
39:ad:5e:9d:2b:1e:df:a3:2b:82:da:b6:40:5f:a6:
3e:53:9a:90:5e:f2:f8:e1:e7:77:8f:fc:48:6a:26:
24:02:9c:68:d8:3e:fd:9a:7c:ee:ad:0e:51:1d:9b:
a6:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:67:AB:E6:C8:EF:DE:2A:FA:67:7E:59:83:94:2A:F6:C1:22:7C:DE
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vWer5sjv3ir6Z35Zg5Qq9sEifN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
193.124.91.0/24
193.124.205.0/24
193.124.207.0/24
194.87.73.0/24
194.87.90.0/24
194.87.130.0/24
194.87.168.0/24
194.87.200.0/24
195.58.35.0/24
195.58.50.0/24
195.133.0.0/24
195.133.31.0/24
195.133.86.0/24
212.192.9.0/24
212.192.31.0/24
212.193.1.0/24
212.193.3.0/24
Signature Algorithm: sha256WithRSAEncryption
17:c0:c9:8a:ff:8b:25:63:79:1a:d3:bd:3c:a5:21:1d:4a:a5:
96:0c:78:79:01:90:f3:61:e3:38:5f:b6:a2:85:bb:b4:c8:52:
84:d5:ba:5c:e5:15:00:e8:a6:5b:61:d3:c8:eb:d9:51:3b:45:
d0:a4:d1:cd:27:30:2c:fa:20:aa:fd:ac:46:d0:5b:3f:e1:a4:
48:b8:27:78:41:0f:78:6a:50:26:e7:cc:21:98:94:50:ec:d5:
aa:1f:85:97:dd:e7:f9:ba:24:22:16:d7:6a:74:fb:de:72:43:
ea:89:59:5f:1a:c0:a3:97:f7:2d:0d:4f:95:55:47:f7:10:49:
db:0a:80:14:87:6e:2a:3d:9b:42:61:f6:29:76:03:a0:45:40:
5c:b7:f3:8c:32:e6:90:90:fe:71:9e:18:7e:bd:93:6c:9e:15:
aa:38:b0:a6:e3:c5:09:87:04:28:59:60:e9:50:78:6a:1f:26:
78:48:08:3d:38:b3:33:e0:e7:c0:dd:61:c4:a8:19:e7:45:04:
f4:5f:ab:9d:00:27:a5:f6:16:f8:47:8c:7a:a1:52:dd:cf:cb:
96:97:d6:7e:9e:32:33:d0:9b:12:58:b6:f3:fa:45:89:eb:33:
55:3a:08:65:4c:85:07:a2:27:e4:dd:84:d1:c3:6d:43:a1:a4:
7b:4b:ab:08
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgISAYL1XJlx0NIUYBP7ATOmt9DLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjIwODMxMTkyNDIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZDY3YWJlNmM4ZWZkZTJhZmE2NzdlNTk4Mzk0MmFmNmMxMjI3Y2RlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8H+3JA5ApLsL0jzk05E1JCvO2wZh
/xw0iYUR332WYfPGI3B+sjNtMetY8K58pxc+WtiRwbfLDt2BJsU61Jl6aNIzPqr4
7LU40f0Qyko47Nevne/PeJDH5pdvmwqSVfcnecDY8j/GAFKy9BN0/KmOKCY6OKzP
IqG6fsJwUo9wMtRPTf6sm3sJW6HFelkHOXZR/S7px2Hx8g4SxcWUw5lm+mFLKYNN
BQ04F5ShjEFNvwYeYxseQZ0hJ9Pifoi5YaM42LVAs2HQNpK/yjCURKSMJU05rV6d
Kx7foyuC2rZAX6Y+U5qQXvL44ed3j/xIaiYkApxo2D79mnzurQ5RHZumhwIDAQAB
o4ICcDCCAmwwHQYDVR0OBBYEFL1nq+bI794q+md+WYOUKvbBInzeMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvdldlcjVzanYzaXI2WjM1Wmc1UXE5c0VpZk40LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGFBggrBgEFBQcBBwEB/wR2MHQwcgQCAAEwbAMEAD5M4gME
AMF8WwMEAMF8zQMEAMF8zwMEAMJXSQMEAMJXWgMEAMJXggMEAMJXqAMEAMJXyAME
AMM6IwMEAMM6MgMEAMOFAAMEAMOFHwMEAMOFVgMEANTACQMEANTAHwMEANTBAQME
ANTBAzANBgkqhkiG9w0BAQsFAAOCAQEAF8DJiv+LJWN5GtO9PKUhHUqllgx4eQGQ
82HjOF+2ooW7tMhShNW6XOUVAOimW2HTyOvZUTtF0KTRzScwLPogqv2sRtBbP+Gk
SLgneEEPeGpQJufMIZiUUOzVqh+Fl93n+bokIhbXanT73nJD6olZXxrAo5f3LQ1P
lVVH9xBJ2wqAFIduKj2bQmH2KXYDoEVAXLfzjDLmkJD+cZ4Yfr2TbJ4VqjiwpuPF
CYcEKFlg6VB4ah8meEgIPTizM+DnwN1hxKgZ50UE9F+rnQAnpfYW+EeMeqFS3c/L
lpfWfp4yM9CbEli28/pFieszVToIZUyFB6In5N2E0cNtQ6Gke0urCA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:50 2024 by rpki-client on console-ams.rpki-client.org