Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/NJ1z7L_ZK5S3OPwqrU6XOqohdnQ.roa
File: NJ1z7L_ZK5S3OPwqrU6XOqohdnQ.roa (raw, json)
Hash identifier: Xxh2JhlgdnVyeAICEPSuhIg5tyWLIPwvYBd1M7NMKNQ=
Subject key identifier: 34:9D:73:EC:BF:D9:2B:94:B7:38:FC:2A:AD:4E:97:3A:AA:21:76:74
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 07543CAE
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/NJ1z7L_ZK5S3OPwqrU6XOqohdnQ.roa
Signing time: Thu 09 Jun 2022 09:24:02 +0000
ROA not before: Thu 09 Jun 2022 09:24:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 32787
IP address blocks: 95.100.157.0/24 maxlen: 24
2.17.192.0/24 maxlen: 24
2.17.192.0/22 maxlen: 22
2.17.193.0/24 maxlen: 24
2.17.195.0/24 maxlen: 24
2.17.194.0/24 maxlen: 24
2.21.175.0/24 maxlen: 24
95.100.215.0/24 maxlen: 24
95.100.214.0/24 maxlen: 24
92.122.207.0/24 maxlen: 24
95.100.253.0/24 maxlen: 24
93.191.172.0/24 maxlen: 24
93.191.168.0/24 maxlen: 24
93.191.169.0/24 maxlen: 24
95.100.180.0/24 maxlen: 24
92.122.185.0/24 maxlen: 24
95.100.213.0/24 maxlen: 24
92.122.184.0/24 maxlen: 24
95.100.212.0/24 maxlen: 24
95.101.118.0/24 maxlen: 24
95.101.117.0/24 maxlen: 24
2a02:2370:2::/48 maxlen: 48
2a02:2370:102::/48 maxlen: 48
2a02:2370:6::/48 maxlen: 48
2a02:2370:106::/48 maxlen: 48
2a02:2370:206::/48 maxlen: 48
2a02:2370:1::/48 maxlen: 48
2a02:2370:101::/48 maxlen: 48
2a02:2370:201::/48 maxlen: 48
2a02:2370:4::/48 maxlen: 48
2a02:2370:104::/48 maxlen: 48
2a02:2370:103::/48 maxlen: 48
2a02:2370:3::/48 maxlen: 48
2a02:2370:200::/48 maxlen: 48
2a02:2370:5::/48 maxlen: 48
2a02:2370:105::/48 maxlen: 48
2a02:2370:205::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122961070 (0x7543cae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Jun 9 09:24:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=349d73ecbfd92b94b738fc2aad4e973aaa217674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d8:17:e2:a1:1f:67:cb:fc:d4:ad:0e:b6:96:
11:7a:55:23:40:44:53:10:a6:7b:4b:1b:58:ce:a2:
1c:9d:9a:c3:49:93:c4:e5:7c:ed:9e:df:c2:4c:c7:
e7:4c:22:c6:2a:8e:d9:ec:3c:91:f3:77:e2:e2:18:
50:d1:e4:53:03:22:f7:40:83:d4:c0:86:26:f7:f2:
44:e2:ad:ab:a9:4b:52:33:73:26:6d:f9:72:59:e2:
b4:80:1a:2f:97:9b:9e:ce:34:0a:fd:15:20:46:79:
be:ac:c0:50:6a:22:6e:72:78:b6:a9:93:45:ac:c2:
ab:f5:bd:7d:14:ed:61:a8:64:0d:00:9b:4f:63:e4:
e0:9c:99:c5:9d:e6:36:71:3a:1a:3b:33:14:f5:4d:
ee:72:4c:f7:4f:d5:14:98:fc:3b:a6:0f:d7:d5:2e:
f3:4c:17:51:86:34:06:d6:10:80:3f:d2:75:99:bd:
7a:b1:55:b0:c6:8b:45:71:18:79:f3:04:48:78:45:
f8:02:0c:c2:21:cd:9d:37:68:07:81:cd:e6:23:0b:
4f:4f:22:70:cd:21:92:5f:ec:58:f2:4b:1a:03:02:
d1:5a:81:75:d2:3c:7f:34:17:b8:e3:6b:68:f3:91:
cc:1b:22:52:04:19:33:f3:9d:13:bb:bd:1a:ac:5f:
8a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:9D:73:EC:BF:D9:2B:94:B7:38:FC:2A:AD:4E:97:3A:AA:21:76:74
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/NJ1z7L_ZK5S3OPwqrU6XOqohdnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.17.192.0/22
2.21.175.0/24
92.122.184.0/23
92.122.207.0/24
93.191.168.0/23
93.191.172.0/24
95.100.157.0/24
95.100.180.0/24
95.100.212.0/22
95.100.253.0/24
95.101.117.0-95.101.118.255
IPv6:
2a02:2370:1::-2a02:2370:6:ffff:ffff:ffff:ffff:ffff
2a02:2370:101::-2a02:2370:106:ffff:ffff:ffff:ffff:ffff
2a02:2370:200::/47
2a02:2370:205::-2a02:2370:206:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
76:d0:ee:56:ba:7a:1f:d2:6c:4c:6b:e8:64:b1:8c:ac:a3:82:
b9:5c:36:6f:68:24:0e:3d:31:37:56:3c:d8:59:ee:fe:27:4e:
32:e9:4b:d8:0f:40:f0:ea:a8:3c:86:d2:9f:64:9d:ac:83:6f:
8f:bc:eb:ff:c7:07:f9:0c:a7:90:ea:81:b5:1f:ac:d2:d0:a9:
1a:24:a2:9c:50:4d:6b:dd:03:d3:c9:e3:32:37:e4:15:fc:d1:
7d:bb:b4:e0:12:d3:2f:7e:f3:eb:2e:38:c6:76:f5:bc:f8:1f:
ea:89:d1:9f:83:a7:69:e5:af:07:07:d0:fb:0e:ce:56:99:94:
36:2d:9f:2a:89:2b:e7:e9:b9:bb:fa:73:9d:5e:4d:8a:30:37:
d9:9d:34:34:f7:be:db:f8:1f:b3:0f:68:a6:82:b4:ef:b7:6b:
9c:ff:81:77:fd:fa:20:b6:b9:0d:63:0e:31:29:18:79:92:2d:
a3:81:17:43:ed:f6:aa:96:ca:df:61:f0:68:d7:1b:ab:4f:38:
47:21:c7:56:97:7c:55:fd:77:ad:c9:c9:3e:c2:36:ed:8c:7b:
6c:28:5b:58:cf:72:dc:5f:13:06:6e:53:7e:43:f7:9b:ee:e9:
9c:ba:d7:fc:eb:80:3c:04:47:e2:d0:de:8c:5a:ab:20:65:07:
c7:36:3c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:41 2023 by rpki-client on console-fra.rpki-client.org