Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/zgMYVmB9SBvJ-MaaWaBg1iIWP9A.roa
File: zgMYVmB9SBvJ-MaaWaBg1iIWP9A.roa (raw, json)
Hash identifier: eZvhrpUTKifjfpY005ibnjRa82CAxv2cJapWJ4Ro3Ec=
Subject key identifier: CE:03:18:56:60:7D:48:1B:C9:F8:C6:9A:59:A0:60:D6:22:16:3F:D0
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018534FA347DAED756D8BA9FCF92FBB4EE0B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/zgMYVmB9SBvJ-MaaWaBg1iIWP9A.roa
Signing time: Wed 21 Dec 2022 13:58:10 +0000
ROA not before: Wed 21 Dec 2022 13:58:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2118
IP address blocks: 193.124.3.0/24 maxlen: 24
193.124.6.0/24 maxlen: 24
193.124.8.0/24 maxlen: 24
193.124.9.0/24 maxlen: 24
62.76.231.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
194.87.7.0/24 maxlen: 24
194.87.24.0/22 maxlen: 24
194.87.104.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.116.0/24 maxlen: 24
194.87.118.0/24 maxlen: 24
194.87.123.0/24 maxlen: 24
193.124.133.0/24 maxlen: 24
194.87.136.0/24 maxlen: 24
194.87.56.0/24 maxlen: 24
194.87.76.0/24 maxlen: 24
194.87.82.0/24 maxlen: 24
194.87.83.0/24 maxlen: 24
195.133.94.0/24 maxlen: 24
195.133.15.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.55.0/24 maxlen: 24
195.133.195.0/24 maxlen: 24
212.193.12.0/24 maxlen: 24
194.58.38.0/24 maxlen: 24
212.192.222.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
194.58.46.0/23 maxlen: 24
194.58.45.0/24 maxlen: 24
195.58.50.0/24 maxlen: 24
195.58.52.0/24 maxlen: 24
195.58.56.0/21 maxlen: 24
194.58.59.0/24 maxlen: 24
195.58.62.0/24 maxlen: 24
212.193.0.0/24 maxlen: 24
194.87.202.0/24 maxlen: 24
194.87.208.0/23 maxlen: 24
194.87.222.0/23 maxlen: 24
194.87.233.0/24 maxlen: 24
194.135.30.0/24 maxlen: 24
212.192.0.0/23 maxlen: 24
194.87.149.0/24 maxlen: 24
192.124.172.0/24 maxlen: 24
212.192.5.0/24 maxlen: 24
212.192.10.0/24 maxlen: 24
194.87.165.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
192.124.178.0/24 maxlen: 24
194.87.160.0/24 maxlen: 24
192.124.181.0/24 maxlen: 24
192.124.180.0/22 maxlen: 24
192.124.182.0/23 maxlen: 24
194.87.171.0/24 maxlen: 24
194.87.172.0/24 maxlen: 24
194.87.176.0/24 maxlen: 24
194.87.182.0/24 maxlen: 24
193.124.201.0/24 maxlen: 24
193.124.203.0/24 maxlen: 24
194.87.198.0/24 maxlen: 24
193.124.207.0/24 maxlen: 24
194.87.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:34:fa:34:7d:ae:d7:56:d8:ba:9f:cf:92:fb:b4:ee:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 21 13:58:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce031856607d481bc9f8c69a59a060d622163fd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:3b:14:20:9d:e1:95:7a:2e:61:fe:4f:ff:eb:
45:dc:08:df:fa:54:02:d0:10:96:f8:b2:c5:3a:84:
93:a1:b2:cf:16:51:2c:80:c1:35:fe:73:be:4e:ad:
fa:5a:99:ed:9a:d2:4e:e2:07:38:14:1e:a3:46:e0:
99:52:b9:6e:6a:d6:61:fa:20:6c:a3:6a:4e:24:54:
07:fa:2e:e1:63:d3:46:b4:ed:46:92:04:95:4e:8e:
ce:19:5e:a1:dd:b9:8f:65:9c:ab:b4:96:af:56:a8:
ca:19:e5:ef:09:d0:80:6a:da:1c:43:26:e6:a3:7e:
aa:be:f1:13:c5:d4:68:d9:61:90:be:cc:3b:87:8d:
7c:90:26:b4:9d:c8:10:93:2e:40:a7:1a:59:de:00:
ad:c7:a9:e0:0e:9e:ea:6c:85:a5:a3:7a:32:19:f2:
77:0b:63:f3:fa:fe:da:31:eb:e6:88:ef:63:90:1e:
17:3a:a4:3a:0a:0c:dd:8a:0a:33:98:c8:d6:29:6d:
3e:68:dc:34:16:45:ec:81:e1:87:45:db:be:4d:ab:
63:42:3f:ee:46:ea:8a:53:c9:c5:8a:6b:ae:26:01:
6f:b0:75:a0:0f:7e:15:80:6a:bc:5c:7c:5a:9e:7c:
25:8f:7a:02:36:10:16:7c:3c:c1:bb:3a:c6:15:ee:
7c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:03:18:56:60:7D:48:1B:C9:F8:C6:9A:59:A0:60:D6:22:16:3F:D0
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/zgMYVmB9SBvJ-MaaWaBg1iIWP9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
192.124.172.0/24
192.124.178.0/24
192.124.180.0/22
193.124.3.0/24
193.124.6.0/24
193.124.8.0/23
193.124.18.0/24
193.124.133.0/24
193.124.201.0/24
193.124.203.0/24
193.124.207.0/24
194.58.38.0/24
194.58.42.0/24
194.58.45.0-194.58.47.255
194.58.59.0/24
194.87.7.0/24
194.87.24.0/22
194.87.56.0/24
194.87.76.0/24
194.87.82.0/23
194.87.104.0/24
194.87.108.0/24
194.87.116.0/24
194.87.118.0/24
194.87.123.0/24
194.87.136.0/24
194.87.149.0/24
194.87.160.0/23
194.87.163.0/24
194.87.165.0/24
194.87.171.0-194.87.172.255
194.87.176.0/24
194.87.182.0/24
194.87.198.0/23
194.87.202.0/24
194.87.208.0/23
194.87.222.0/23
194.87.233.0/24
194.135.30.0/24
195.58.50.0/24
195.58.52.0/24
195.58.56.0/21
195.133.12.0/24
195.133.15.0/24
195.133.55.0/24
195.133.94.0/24
195.133.195.0/24
212.192.0.0/23
212.192.5.0/24
212.192.10.0/24
212.192.222.0/24
212.193.0.0/24
212.193.12.0/24
Signature Algorithm: sha256WithRSAEncryption
48:81:14:78:94:b9:46:d7:16:ec:da:98:81:b4:e5:af:57:c4:
02:6e:14:29:17:8c:09:56:84:8b:cc:d5:bd:2d:6d:9b:25:21:
59:de:e0:e5:b6:b0:4a:91:93:51:1a:3b:2c:63:ba:6c:eb:2f:
d6:e7:e3:5e:88:1e:3b:92:c8:2d:2c:bb:68:13:fc:3c:de:bd:
54:f8:d6:3e:bd:15:99:c2:8b:5b:8c:7c:36:bf:d3:4c:7f:6e:
76:47:04:c2:ed:8a:b3:f2:3e:66:b3:a1:95:44:52:d7:24:a9:
10:21:6d:8d:54:b9:65:f4:e9:d2:f6:65:fe:b8:6d:f4:3f:66:
ce:f1:f2:75:01:d4:54:4b:21:56:cf:68:04:46:83:d5:35:7a:
8a:8e:29:f9:42:d5:b8:8c:d4:88:20:5b:de:2b:22:4e:3e:22:
f3:98:e7:9e:44:ef:7f:15:aa:00:8d:c8:d5:b9:fd:28:aa:95:
c0:8a:ce:27:58:52:10:04:76:75:08:8b:c5:72:f6:0b:8f:a9:
a7:7c:7c:2a:61:89:33:4f:09:7a:67:f8:0a:d8:7f:af:4a:57:
ca:c0:8b:c5:d1:5a:2b:9e:4e:d0:42:6b:35:13:e6:c4:8f:7d:
52:64:bf:7c:49:4c:dc:ef:bf:20:94:b5:7b:f7:c1:49:4e:67:
84:b6:f4:09
-----BEGIN CERTIFICATE-----
MIIGVTCCBT2gAwIBAgISAYU0+jR9rtdW2Lqfz5L7tO4LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjIxMjIxMTM1ODEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZTAzMTg1NjYwN2Q0ODFiYzlmOGM2OWE1OWEwNjBkNjIyMTYzZmQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkTsUIJ3hlXouYf5P/+tF3Ajf+lQC
0BCW+LLFOoSTobLPFlEsgME1/nO+Tq36WpntmtJO4gc4FB6jRuCZUrluatZh+iBs
o2pOJFQH+i7hY9NGtO1GkgSVTo7OGV6h3bmPZZyrtJavVqjKGeXvCdCAatocQybm
o36qvvETxdRo2WGQvsw7h418kCa0ncgQky5ApxpZ3gCtx6ngDp7qbIWlo3oyGfJ3
C2Pz+v7aMevmiO9jkB4XOqQ6CgzdigozmMjWKW0+aNw0FkXsgeGHRdu+TatjQj/u
RuqKU8nFimuuJgFvsHWgD34VgGq8XHxannwlj3oCNhAWfDzBuzrGFe58OwIDAQAB
o4IDYTCCA10wHQYDVR0OBBYEFM4DGFZgfUgbyfjGmlmgYNYiFj/QMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvemdNWVZtQjlTQnZKLU1hYVdhQmcxaUlXUDlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBdQYIKwYBBQUHAQcBAf8EggFkMIIBYDCCAVwEAgABMIIB
VAMEAD5M5wMEAMB8rAMEAMB8sgMEAsB8tAMEAMF8AwMEAMF8BgMEAcF8CAMEAMF8
EgMEAMF8hQMEAMF8yQMEAMF8ywMEAMF8zwMEAMI6JgMEAMI6KjAMAwQAwjotAwQE
wjogAwQAwjo7AwQAwlcHAwQCwlcYAwQAwlc4AwQAwldMAwQBwldSAwQAwldoAwQA
wldsAwQAwld0AwQAwld2AwQAwld7AwQAwleIAwQAwleVAwQBwlegAwQAwlejAwQA
wlelMAwDBADCV6sDBADCV6wDBADCV7ADBADCV7YDBAHCV8YDBADCV8oDBAHCV9AD
BAHCV94DBADCV+kDBADChx4DBADDOjIDBADDOjQDBAPDOjgDBADDhQwDBADDhQ8D
BADDhTcDBADDhV4DBADDhcMDBAHUwAADBADUwAUDBADUwAoDBADUwN4DBADUwQAD
BADUwQwwDQYJKoZIhvcNAQELBQADggEBAEiBFHiUuUbXFuzamIG05a9XxAJuFCkX
jAlWhIvM1b0tbZslIVne4OW2sEqRk1EaOyxjumzrL9bn416IHjuSyC0su2gT/Dze
vVT41j69FZnCi1uMfDa/00x/bnZHBMLtirPyPmazoZVEUtckqRAhbY1UuWX06dL2
Zf64bfQ/Zs7x8nUB1FRLIVbPaARGg9U1eoqOKflC1biM1IggW94rIk4+IvOY555E
738VqgCNyNW5/SiqlcCKzidYUhAEdnUIi8Vy9guPqad8fCphiTNPCXpn+ArYf69K
V8rAi8XRWiueTtBCazUT5sSPfVJkv3xJTNzvvyCUtXv3wUlOZ4S29Ak=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:31 2024 by rpki-client on console-fra.rpki-client.org