Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/NQkz09Ji__QmkWr6KGTcaUYW8ss.roa
File: NQkz09Ji__QmkWr6KGTcaUYW8ss.roa (raw, json)
Hash identifier: TKWgMRVe8v3f/O7fbPNasTv8IPRSIwTJPzRpkO3jgZ4=
Subject key identifier: 35:09:33:D3:D2:62:FF:F4:26:91:6A:FA:28:64:DC:69:46:16:F2:CB
Certificate issuer: /CN=de2e917315f0a878b21fc139d49a821aaddc3c97
Certificate serial: 01825AFCF491A96673C89307B9EE40D737AA
Authority key identifier: DE:2E:91:73:15:F0:A8:78:B2:1F:C1:39:D4:9A:82:1A:AD:DC:3C:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3i6RcxXwqHiyH8E51JqCGq3cPJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/NQkz09Ji__QmkWr6KGTcaUYW8ss.roa
Signing time: Mon 01 Aug 2022 19:58:23 +0000
ROA not before: Mon 01 Aug 2022 19:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39351
IP address blocks: 45.129.56.0/24 maxlen: 24
185.209.196.0/24 maxlen: 24
185.209.197.0/24 maxlen: 24
193.32.249.0/24 maxlen: 24
185.65.132.0/24 maxlen: 24
185.65.134.0/24 maxlen: 24
185.65.133.0/24 maxlen: 24
185.65.135.0/24 maxlen: 24
141.98.252.0/24 maxlen: 24
141.98.255.0/24 maxlen: 24
141.98.254.0/24 maxlen: 24
45.83.220.0/24 maxlen: 24
45.83.221.0/24 maxlen: 24
45.83.223.0/24 maxlen: 24
45.83.222.0/24 maxlen: 24
45.83.222.0/23 maxlen: 24
185.213.152.0/24 maxlen: 24
185.213.153.0/24 maxlen: 24
185.213.155.0/24 maxlen: 24
185.213.154.0/24 maxlen: 24
193.138.216.0/22 maxlen: 22
193.32.127.0/24 maxlen: 24
193.32.126.0/24 maxlen: 24
185.195.232.0/24 maxlen: 24
185.195.233.0/24 maxlen: 24
2a03:1b20:8::/48 maxlen: 48
2a03:1b20:3::/48 maxlen: 48
2a03:1b20:6::/48 maxlen: 48
2a03:1b20:1::/48 maxlen: 48
2a03:1b20:a::/48 maxlen: 48
2a03:1b20:5::/48 maxlen: 48
2a03:1b20:beef::/48 maxlen: 48
2a03:1b20:2::/48 maxlen: 48
2a03:1b20:7::/48 maxlen: 48
2a03:1b20:9::/48 maxlen: 48
2a03:1b20:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5a:fc:f4:91:a9:66:73:c8:93:07:b9:ee:40:d7:37:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2e917315f0a878b21fc139d49a821aaddc3c97
Validity
Not Before: Aug 1 19:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=350933d3d262fff426916afa2864dc694616f2cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e5:79:87:09:54:93:04:7c:42:28:56:d4:ee:
53:90:cc:c5:42:5b:31:5d:cb:4b:5a:e9:2f:8c:0d:
57:fb:8c:7b:54:8a:f9:b0:b1:53:32:5e:0f:8d:1f:
b5:67:b9:19:f5:37:f3:6a:b1:a4:a3:d3:e0:6f:df:
b6:38:96:50:72:1a:1f:e5:68:5e:e1:5a:2a:1a:8a:
9a:04:43:0b:c0:af:6b:fa:49:9c:f3:b6:62:39:45:
a6:7a:bc:12:c4:58:5e:ca:f6:60:46:23:a1:1b:f3:
77:9d:96:58:e6:13:fc:8e:2c:02:c6:6d:6f:20:55:
5b:ce:50:46:fa:b2:a9:a5:ef:50:68:af:8c:8b:bf:
c4:03:e6:6a:d7:b9:36:2e:5d:af:1b:51:ff:60:d9:
e1:1e:ce:24:74:d3:9d:65:57:85:b8:85:53:0f:ef:
5f:4b:b8:57:a1:bc:ed:f6:bc:97:72:40:80:e0:4c:
b1:a8:79:80:73:89:1d:02:db:5c:40:4b:4c:dc:ed:
10:5f:42:2d:3c:74:4c:11:94:b4:3d:37:0b:be:4b:
c8:a3:1b:71:c6:cf:3d:51:18:1c:3f:79:8e:1a:9e:
80:8b:41:a1:1f:9c:17:e1:8e:a3:9a:77:d2:e2:7e:
33:12:63:4b:a2:87:81:35:0c:dd:9f:e9:0a:be:c1:
92:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:09:33:D3:D2:62:FF:F4:26:91:6A:FA:28:64:DC:69:46:16:F2:CB
X509v3 Authority Key Identifier:
keyid:DE:2E:91:73:15:F0:A8:78:B2:1F:C1:39:D4:9A:82:1A:AD:DC:3C:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3i6RcxXwqHiyH8E51JqCGq3cPJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/NQkz09Ji__QmkWr6KGTcaUYW8ss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/3i6RcxXwqHiyH8E51JqCGq3cPJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.220.0/22
45.129.56.0/24
141.98.252.0/24
141.98.254.0/23
185.65.132.0/22
185.195.232.0/23
185.209.196.0/23
185.213.152.0/22
193.32.126.0/23
193.32.249.0/24
193.138.216.0/22
IPv6:
2a03:1b20:1::-2a03:1b20:a:ffff:ffff:ffff:ffff:ffff
2a03:1b20:beef::/48
Signature Algorithm: sha256WithRSAEncryption
7f:eb:d5:2e:55:e2:6d:c7:36:65:d5:26:0d:0f:99:60:ff:3f:
38:5f:65:5c:f1:32:9e:8a:f2:12:77:7f:8a:4e:d6:52:ea:49:
a9:7e:f8:8f:93:8e:3e:a3:24:10:fc:4d:b1:e4:93:ae:fe:99:
fe:5f:16:bf:64:3f:cf:c8:35:89:1d:af:4b:79:57:eb:2e:46:
14:1a:9a:5f:be:a5:ac:88:ed:b4:91:c7:70:ac:4a:46:bd:2d:
39:23:ea:54:7f:f9:46:94:5b:d8:8b:96:ae:d2:51:39:ee:ed:
81:bb:d4:79:8a:db:04:dd:b9:ed:06:b9:43:eb:77:3e:94:4c:
02:4e:19:64:0f:ab:83:27:d8:d9:d1:f7:d5:24:7b:08:92:ed:
67:43:63:3d:88:00:6e:00:48:d1:5b:10:bf:12:32:6b:22:c5:
94:08:c9:b4:9a:37:d4:7e:5e:d4:b4:36:6b:d2:5e:b6:66:a6:
92:70:b4:9a:f7:de:db:ca:60:12:eb:10:af:06:8e:95:06:7a:
0f:57:59:e0:a1:91:31:6a:54:c5:42:84:f2:b4:04:4b:da:c9:
d3:9e:c6:dc:da:db:f5:cf:40:ec:75:49:72:65:95:fd:31:fe:
73:74:c7:05:75:06:e0:44:48:81:de:42:93:b4:2c:bc:24:ba:
f2:64:6a:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:20 2024 by rpki-client on console-fra.rpki-client.org