Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yADYH8YPX6OuN8jjTBOZ9J4s6_8.roa
File: yADYH8YPX6OuN8jjTBOZ9J4s6_8.roa (raw, json)
Hash identifier: icSqRzst9Tqw+voubGqDrLOHjyETHJCsGrWm8A/Ia7o=
Subject key identifier: C8:00:D8:1F:C6:0F:5F:A3:AE:37:C8:E3:4C:13:99:F4:9E:2C:EB:FF
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01849AC2EC65947203A30ABC848548CE2F0B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yADYH8YPX6OuN8jjTBOZ9J4s6_8.roa
Signing time: Mon 21 Nov 2022 15:16:16 +0000
ROA not before: Mon 21 Nov 2022 15:16:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
194.87.1.0/24 maxlen: 24
193.124.16.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.36.0/24 maxlen: 24
193.124.45.0/24 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
194.87.137.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.30.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
212.193.3.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
212.193.6.0/24 maxlen: 24
194.87.207.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
194.135.18.0/24 maxlen: 24
194.135.30.0/24 maxlen: 24
194.87.250.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.6.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.173.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.183.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.170.0/24 maxlen: 24
194.87.179.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.191.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
192.124.209.0/24 maxlen: 24
193.108.112.0/24 maxlen: 24
212.192.208.0/24 maxlen: 24
212.192.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9a:c2:ec:65:94:72:03:a3:0a:bc:84:85:48:ce:2f:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 21 15:16:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c800d81fc60f5fa3ae37c8e34c1399f49e2cebff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d4:52:f4:4e:cc:ef:f6:c3:f2:13:15:99:3e:
08:56:0f:87:a6:77:75:37:2d:a4:db:10:ce:a9:58:
6a:58:65:a0:d0:d7:f7:d6:e1:2f:c7:71:49:fb:91:
18:dd:4e:a8:9c:d6:f7:ba:79:06:a2:7a:77:0d:7a:
17:81:2b:18:ea:63:62:03:8a:71:45:76:32:51:4b:
7c:65:70:4f:4c:7b:2b:a8:44:34:5b:83:ff:3a:64:
36:40:68:96:63:7b:92:0e:cc:87:1e:dd:e1:3a:ce:
1d:d8:44:11:9e:24:37:cf:df:b0:67:e3:d5:11:21:
df:4f:f9:07:3c:ce:51:8c:81:aa:05:57:b7:de:ca:
ae:87:90:90:30:51:60:9a:a1:c2:1f:6e:68:e7:f9:
8d:61:41:9d:93:c9:18:a6:e4:32:9f:b1:b6:00:97:
ed:42:f3:18:9c:f1:c1:9f:dd:5d:af:b9:40:53:06:
fc:04:46:d8:e0:f6:9a:04:23:03:97:77:2c:47:57:
ef:5c:1b:0a:08:7e:1e:f2:18:47:42:8d:f0:a6:0b:
ad:15:9b:2a:a9:ed:61:ff:a0:e6:f9:8b:52:77:15:
be:17:89:ab:e6:38:ae:30:ce:a9:d3:b6:47:54:e5:
51:36:1e:b6:d5:4b:8d:f8:56:e2:2a:84:26:4c:77:
5f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:00:D8:1F:C6:0F:5F:A3:AE:37:C8:E3:4C:13:99:F4:9E:2C:EB:FF
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yADYH8YPX6OuN8jjTBOZ9J4s6_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/23
192.124.180.0/22
192.124.209.0/24
193.108.112.0/24
193.124.3.0/24
193.124.9.0/24
193.124.16.0/24
193.124.18.0/24
193.124.45.0/24
193.124.201.0/24
193.124.203.0/24
193.124.205.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/23
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.1.0/24
194.87.7.0/24
194.87.24.0/22
194.87.36.0/24
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.108.0/24
194.87.118.0/24
194.87.123.0/24
194.87.137.0/24
194.87.160.0/24
194.87.163.0/24
194.87.165.0/24
194.87.170.0/23
194.87.179.0/24
194.87.191.0/24
194.87.198.0/23
194.87.207.0-194.87.209.255
194.87.222.0/23
194.87.233.0/24
194.87.250.0/24
194.135.18.0/24
194.135.30.0/24
195.58.50.0/24
195.58.56.0/21
195.133.12.0/24
195.133.30.0/24
195.133.55.0/24
212.192.6.0/24
212.192.10.0/24
212.192.208.0/23
212.192.222.0/24
212.193.0.0/24
212.193.3.0/24
212.193.6.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
35:c1:55:74:06:5c:57:11:3d:bb:a9:c9:ca:0e:79:49:35:5e:
75:03:3f:ef:1d:1b:9c:de:a5:a2:9b:8f:5b:86:85:1b:fa:2c:
ac:49:99:b6:8a:fd:df:80:ed:87:d2:90:12:2a:f3:7b:ab:16:
1d:ec:4e:ff:55:67:31:24:5a:c9:37:5b:12:a5:99:84:9c:d3:
b2:ce:20:df:5a:b3:b1:e7:c7:5a:0d:83:80:32:cd:ed:95:d5:
df:28:b5:af:6b:00:dd:ba:a3:d6:2c:39:51:71:13:96:bb:77:
7d:5a:4b:53:ee:4f:68:da:9d:a7:92:cf:c4:fc:24:ce:8a:7d:
ff:2f:2b:38:60:87:45:36:b9:38:b5:e6:f8:10:ac:91:06:a1:
9e:74:95:17:30:5c:47:1e:30:02:a6:8c:06:64:4d:63:0c:84:
6e:b5:be:92:54:0e:52:07:0c:9d:c5:f5:64:61:d5:9c:29:f5:
5c:eb:fc:3e:0d:40:89:25:78:99:81:19:ec:92:91:1f:d4:0c:
81:27:8b:fb:ec:6d:85:00:b1:16:b5:6a:b8:8e:4a:df:1f:6d:
2b:8c:a6:e7:13:fd:b9:88:ac:53:4d:c2:b1:91:91:fd:7a:4b:
7b:d9:59:14:7e:31:80:96:e9:85:d4:d7:b9:8c:88:18:77:4b:
f4:a7:a8:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:51 2024 by rpki-client on console-ams.rpki-client.org