Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/1-xLre32qpCEbFRmn8EkA8fFyyAI.roa
File: 1-xLre32qpCEbFRmn8EkA8fFyyAI.roa (raw, json)
Hash identifier: Dil1OLgb4X1N3ZSUtDyjDnlyvED/p7mvFR35DzxJ9ms=
Subject key identifier: FB:12:EB:7B:7D:AA:A4:21:1B:15:19:A7:F0:49:00:F1:F1:72:C8:02
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0185056154D404EF99A63A4F2D43E3AD231D
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/1-xLre32qpCEbFRmn8EkA8fFyyAI.roa
Signing time: Mon 12 Dec 2022 08:09:02 +0000
ROA not before: Mon 12 Dec 2022 08:09:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31195
IP address blocks: 195.16.96.0/19 maxlen: 24
193.201.228.0/22 maxlen: 24
85.26.240.0/22 maxlen: 22
213.154.160.0/19 maxlen: 24
178.178.64.0/24 maxlen: 24
178.178.71.0/24 maxlen: 24
178.178.67.0/24 maxlen: 24
178.178.70.0/24 maxlen: 24
178.178.66.0/24 maxlen: 24
178.178.65.0/24 maxlen: 24
178.178.68.0/24 maxlen: 24
178.178.73.0/24 maxlen: 24
178.178.72.0/24 maxlen: 24
78.25.124.0/22 maxlen: 22
78.25.127.0/24 maxlen: 24
212.69.96.0/19 maxlen: 24
31.173.225.0/24 maxlen: 24
31.173.226.0/24 maxlen: 24
31.173.132.0/23 maxlen: 23
31.173.134.0/23 maxlen: 23
31.173.135.0/24 maxlen: 24
178.176.233.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
178.176.235.0/24 maxlen: 24
178.176.234.0/24 maxlen: 24
31.173.143.0/24 maxlen: 24
37.28.190.0/24 maxlen: 24
37.28.188.0/22 maxlen: 22
37.28.191.0/24 maxlen: 24
37.29.91.0/24 maxlen: 24
37.29.88.0/22 maxlen: 22
37.29.89.0/24 maxlen: 24
37.29.95.0/24 maxlen: 24
37.29.94.0/24 maxlen: 24
37.29.92.0/22 maxlen: 22
188.170.232.0/24 maxlen: 24
188.170.233.0/24 maxlen: 24
188.170.230.0/24 maxlen: 24
188.170.231.0/24 maxlen: 24
188.170.228.0/23 maxlen: 23
188.170.236.0/24 maxlen: 24
188.170.237.0/24 maxlen: 24
188.170.234.0/24 maxlen: 24
188.170.239.0/24 maxlen: 24
188.170.235.0/24 maxlen: 24
31.173.230.0/24 maxlen: 24
31.173.231.0/24 maxlen: 24
31.173.228.0/23 maxlen: 23
31.173.232.0/23 maxlen: 23
31.173.228.0/24 maxlen: 24
31.173.229.0/24 maxlen: 24
31.173.238.0/24 maxlen: 24
31.173.235.0/24 maxlen: 24
31.173.239.0/24 maxlen: 24
31.173.236.0/23 maxlen: 23
195.5.128.0/19 maxlen: 24
37.29.43.0/24 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
83.149.52.0/22 maxlen: 22
83.169.230.0/24 maxlen: 24
83.169.228.0/23 maxlen: 23
83.169.227.0/24 maxlen: 24
83.169.226.0/24 maxlen: 24
83.169.224.0/23 maxlen: 23
188.162.0.0/16 maxlen: 24
85.26.244.0/22 maxlen: 22
85.26.247.0/24 maxlen: 24
212.44.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:61:54:d4:04:ef:99:a6:3a:4f:2d:43:e3:ad:23:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 08:09:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb12eb7b7daaa4211b1519a7f04900f1f172c802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:24:4a:de:7f:55:c1:39:78:60:59:93:41:13:
22:d0:95:e4:85:26:44:03:b1:7b:9d:d9:33:96:18:
42:f9:a6:3c:c7:18:6a:ff:76:62:8b:9d:f2:56:c2:
92:9e:3d:69:84:c9:98:5d:ea:b1:6b:94:e6:dc:73:
43:99:9b:18:bc:aa:cc:cf:75:f5:fb:57:14:d0:6f:
f4:ff:91:0b:2d:31:87:d9:08:1d:d7:e5:89:94:f2:
cd:ff:29:22:21:51:9b:8a:63:0a:f5:55:63:5b:b3:
db:45:0f:b6:17:85:b3:45:a6:a7:d3:b2:04:10:8c:
05:0f:b8:25:e6:70:0f:b4:83:b4:45:c8:d9:ef:6c:
48:2c:ad:16:ba:54:6c:f1:ff:5e:cb:82:11:5b:3f:
d8:98:bd:7c:0f:2a:71:b0:15:03:01:3d:70:3b:94:
d4:b3:8e:29:30:2a:ec:5e:4b:58:c5:5f:51:c5:57:
1d:cc:09:37:3d:c0:0a:2a:df:4c:2f:6f:a3:a4:35:
dd:11:60:97:c1:a2:4c:48:a5:25:8f:59:93:38:6f:
f6:32:29:37:f3:75:a6:44:3f:91:80:4b:48:8b:f4:
aa:99:91:0a:4e:02:69:d4:97:c6:d6:ce:e0:eb:90:
79:bb:2f:fc:ab:08:4b:2e:8b:6a:22:07:c8:f6:63:
0b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:12:EB:7B:7D:AA:A4:21:1B:15:19:A7:F0:49:00:F1:F1:72:C8:02
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/1-xLre32qpCEbFRmn8EkA8fFyyAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.132.0/22
31.173.143.0/24
31.173.225.0-31.173.226.255
31.173.228.0-31.173.233.255
31.173.235.0-31.173.239.255
37.28.188.0/22
37.29.43.0/24
37.29.88.0/21
78.25.124.0/22
83.149.52.0/22
83.169.224.0-83.169.230.255
85.26.240.0/21
178.176.233.0-178.176.235.255
178.178.64.0-178.178.68.255
178.178.70.0-178.178.73.255
188.162.0.0/16
188.170.228.0-188.170.237.255
188.170.239.0/24
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
Signature Algorithm: sha256WithRSAEncryption
47:46:84:33:59:f2:6f:ab:61:ea:1e:72:45:37:88:49:9e:63:
b4:1a:f8:d7:12:b4:be:a5:c9:ba:32:6b:00:c7:f3:a4:d9:ab:
19:bc:a6:4f:8c:af:1e:e9:3c:9d:b4:37:94:83:07:7f:f1:19:
f6:90:c4:51:e0:c6:fe:4c:5b:27:31:d9:8a:6c:45:b1:a7:7a:
3e:28:dd:d9:a7:5e:43:b8:fd:f3:dc:18:af:c3:fd:d3:4b:12:
b5:0f:9a:e5:4d:af:a3:43:e0:09:ca:bf:b1:64:73:c7:24:a5:
23:f8:7f:97:4d:66:1a:95:3e:ab:78:bc:77:f1:a3:3e:8e:d9:
ab:ee:a8:c9:5b:ee:81:fd:25:b9:c3:f7:f9:f9:67:3f:a1:26:
68:23:cb:90:20:47:44:d5:cf:3e:d4:5c:7a:aa:26:28:9f:2b:
fc:d2:3c:ce:2f:66:ea:14:0d:88:3e:8d:8f:b7:e2:c4:65:da:
b4:7e:8c:8e:7b:6c:26:ac:48:5d:29:74:f1:14:ba:cf:2c:a1:
74:e4:af:aa:6e:a6:3d:92:94:9a:b8:a4:cb:e5:4a:13:06:94:
e8:f6:e6:ad:14:17:f2:0d:be:55:b7:39:b4:77:47:bb:4d:01:
f1:1f:e2:29:ca:5e:88:17:bf:f4:e2:f9:a7:f1:67:a4:6d:0d:
9e:81:e8:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:23 2025 by rpki-client