Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/0_7oBlcWAdlroHxQh0gJYlNZR9c.roa
File: 0_7oBlcWAdlroHxQh0gJYlNZR9c.roa (raw, json)
Hash identifier: Laku8XzkO1dJ9d+6U60Qut8rLvoT1mswzVre3bQgs9Y=
Subject key identifier: D3:FE:E8:06:57:16:01:D9:6B:A0:7C:50:87:48:09:62:53:59:47:D7
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F219E7F60EDD96D85881D91872B35889
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/0_7oBlcWAdlroHxQh0gJYlNZR9c.roa
Signing time: Thu 08 Dec 2022 14:18:14 +0000
ROA not before: Thu 08 Dec 2022 14:18:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35298
IP address blocks: 31.173.176.0/20 maxlen: 20
212.14.160.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
78.41.100.0/22 maxlen: 22
193.201.228.0/22 maxlen: 24
37.29.76.0/22 maxlen: 22
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
178.176.154.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f2:19:e7:f6:0e:dd:96:d8:58:81:d9:18:72:b3:58:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 14:18:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3fee806571601d96ba07c5087480962535947d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:bc:20:c0:8d:33:60:2d:30:f1:2e:05:8d:d2:
eb:15:4f:de:e4:9e:c6:28:3f:b2:5a:5a:82:e7:43:
bf:eb:e3:65:0f:f6:ff:df:6e:0d:75:0c:ac:7b:df:
f7:81:cc:b4:72:bc:11:14:b4:b4:86:bf:90:20:7d:
19:53:8b:66:d8:9f:d2:dd:af:01:52:7a:b8:3c:4b:
78:66:11:ea:b0:a4:83:dc:b1:6d:09:98:82:0e:ab:
0c:14:ac:d2:3b:67:2c:a7:1c:f2:58:dd:68:b8:07:
a1:1c:dc:aa:37:e4:60:a6:1a:25:90:3f:ee:5f:41:
70:b0:a7:a7:c7:6a:80:bb:67:89:d4:3d:26:1c:49:
28:aa:0f:e8:6e:f3:ce:13:0d:4d:5e:17:45:9a:56:
59:19:e1:c6:04:00:f9:8d:0d:c1:d6:d8:3a:7a:b2:
eb:29:4a:0d:3b:78:30:15:e8:bf:ef:c1:3d:a4:81:
51:98:86:4e:43:fc:74:45:06:d8:f9:8c:9a:c0:5e:
b3:30:80:f0:80:8c:31:9b:ee:46:9d:2b:38:35:ab:
d0:a7:a4:0a:04:83:b6:ce:35:69:00:46:b1:60:c2:
60:7a:c5:00:2f:50:5d:f0:b6:9c:42:cd:f5:a4:de:
20:0a:77:bd:ef:96:44:3d:b2:57:8e:4a:cf:15:de:
50:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:FE:E8:06:57:16:01:D9:6B:A0:7C:50:87:48:09:62:53:59:47:D7
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/0_7oBlcWAdlroHxQh0gJYlNZR9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.176.0/20
37.29.76.0/22
78.41.100.0/22
178.176.154.0/23
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
78:bc:b2:57:98:2d:11:d1:19:93:31:6c:e5:7a:f2:5e:a2:9c:
5f:c3:cd:e3:77:0f:b7:9d:d5:f3:e0:65:2f:a0:eb:c1:39:b4:
7f:f8:19:31:42:1d:a9:86:33:47:91:70:a5:31:32:20:18:cf:
cc:2a:3e:72:40:24:5c:01:41:07:71:25:2f:6a:82:9d:97:e8:
55:ab:9e:65:24:b9:96:f6:4d:74:cf:cb:ec:0a:dd:fe:58:6d:
ec:96:64:02:52:f4:21:de:46:2b:1e:51:de:9a:57:c1:ba:38:
0f:50:73:de:f5:fc:0a:ed:3f:ea:04:39:f8:84:75:86:df:94:
43:8a:90:a3:d1:55:97:52:15:35:73:0a:13:73:52:92:5b:f2:
af:cf:e2:d3:2c:05:f1:35:3c:ec:4b:ee:68:61:b5:ce:7c:50:
9f:41:30:17:d5:76:21:25:af:1c:eb:5e:2b:f7:19:f7:08:5d:
34:af:d4:38:6c:08:53:7c:14:64:08:da:6c:31:1e:2f:54:ee:
35:e7:af:91:21:d8:7f:84:41:ac:b9:87:cb:69:e7:cb:e0:59:
00:67:3d:11:fd:70:4f:73:ed:4d:76:33:17:a6:06:72:ea:83:
47:41:7f:6e:8f:bc:0f:63:b4:04:9a:90:92:cd:e2:c0:f5:96:
69:fd:f9:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:31:22 2025 by rpki-client