Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/1-YkjJtjHY5QSnjjvlKCDiY0BPN4.roa
File: 1-YkjJtjHY5QSnjjvlKCDiY0BPN4.roa (raw, json)
Hash identifier: MnSu1sDfTHWRwQ46pofvV3IA5XUDnFuxy+izHaCJTPM=
Subject key identifier: F9:89:23:26:D8:C7:63:94:12:9E:38:EF:94:A0:83:89:8D:01:3C:DE
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184C3EFCF27A4432B2328A13E3CC36265D9
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/1-YkjJtjHY5QSnjjvlKCDiY0BPN4.roa
Signing time: Tue 29 Nov 2022 15:09:43 +0000
ROA not before: Tue 29 Nov 2022 15:09:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42891
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
77.233.160.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
79.171.8.0/21 maxlen: 24
81.24.128.0/20 maxlen: 24
195.78.116.0/23 maxlen: 24
78.41.100.0/22 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
83.169.192.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
78.25.64.0/18 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
80.247.176.0/20 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c3:ef:cf:27:a4:43:2b:23:28:a1:3e:3c:c3:62:65:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Nov 29 15:09:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9892326d8c76394129e38ef94a083898d013cde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:21:89:01:95:8d:85:a2:cd:1c:02:84:4b:a9:
e2:16:83:22:5d:9d:3d:34:72:e6:38:ae:82:20:0b:
46:d5:92:6d:da:c7:23:42:cf:0a:dd:08:fc:a0:68:
88:84:ed:d7:1e:23:67:16:96:a4:6c:2f:a0:12:e3:
ce:2d:e8:b1:44:b1:ed:b6:af:af:94:76:86:26:a6:
b8:eb:32:48:a8:68:8e:69:10:65:c9:8b:7b:cd:fb:
4a:08:47:a4:b8:e7:fd:05:0c:ac:23:be:01:f9:8f:
3a:dd:00:1d:aa:e8:65:49:9e:91:f3:59:cf:50:70:
10:26:eb:2f:bc:45:5e:18:ce:80:68:fb:ba:ec:ff:
b8:e9:99:86:d6:9a:44:30:52:3d:75:38:34:f0:71:
b6:a1:ce:4c:35:8b:7c:ff:1c:0c:47:3d:e7:86:77:
ea:09:fa:57:cc:4d:1d:03:6e:f5:bf:b5:ca:dc:10:
6b:21:65:8b:fb:92:f8:80:dc:98:16:a1:97:a0:32:
eb:74:2b:04:80:df:89:34:98:8d:29:e1:a1:70:03:
be:08:5a:46:3d:59:71:6a:5e:0d:af:23:60:38:a2:
b9:28:ce:6f:b6:79:3c:7f:18:dd:3c:3d:b6:77:7e:
10:cc:df:0d:c4:d4:72:9a:89:5a:ea:5e:0a:74:83:
b1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:89:23:26:D8:C7:63:94:12:9E:38:EF:94:A0:83:89:8D:01:3C:DE
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/1-YkjJtjHY5QSnjjvlKCDiY0BPN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.24.128.0/20
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
9c:dc:f9:ac:6f:5f:f4:cb:8b:86:46:b0:87:06:f9:d1:aa:e4:
bc:19:1c:36:ed:31:0b:09:ac:bf:c1:a6:61:4d:df:ce:16:d3:
d7:a7:1e:88:ac:b4:ec:33:c8:67:0b:2b:c1:18:b4:c2:4c:d9:
1f:c5:3f:e4:47:df:87:a5:7c:73:5c:2c:8f:9e:db:56:9f:eb:
e8:07:5c:4e:a5:4a:7e:e2:c4:6d:d3:de:12:f2:ce:c2:a4:79:
2d:22:50:0a:ce:b3:9b:73:95:61:f1:c4:6e:20:6a:cf:7d:2f:
2c:c3:76:53:84:06:9a:a6:4a:75:84:68:e4:6c:c9:bc:40:38:
62:a5:2a:48:a7:a0:fc:f7:6a:0a:39:ac:51:f4:70:d3:01:8c:
3d:d6:f3:72:ea:d0:f5:7e:c7:c0:12:9f:37:7b:62:09:39:0a:
ea:c7:4c:8f:32:df:6d:be:0a:92:41:72:a8:2c:84:cb:3a:f4:
1b:c8:be:21:8b:af:5a:35:d2:06:77:29:5a:b5:da:ac:b8:d2:
ce:53:dd:9b:81:d3:b3:b5:dd:93:47:bd:d9:ef:7b:23:66:04:
9b:4a:2b:ba:d0:2d:dd:51:f2:23:11:f9:52:e9:82:bc:b8:93:
19:5d:ee:d6:82:22:78:6d:2a:f4:5f:f9:40:7d:b1:e2:4b:d8:
b6:68:2b:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:24 2024 by rpki-client on console-fra.rpki-client.org