Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/1Qcs1MPkBm36ikrSPlow7TbJ_xQ.roa
File: 1Qcs1MPkBm36ikrSPlow7TbJ_xQ.roa (raw, json)
Hash identifier: 4Xg1Ct+FuEz9emH4LI2ZiqT7KQx81oeKnBQK1L3athE=
Subject key identifier: D5:07:2C:D4:C3:E4:06:6D:FA:8A:4A:D2:3E:5A:30:ED:36:C9:FF:14
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F14BB4F36F2845731B1EE1BE377049E9
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/1Qcs1MPkBm36ikrSPlow7TbJ_xQ.roa
Signing time: Thu 08 Dec 2022 10:33:01 +0000
ROA not before: Thu 08 Dec 2022 10:33:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8263
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
212.69.96.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
178.176.225.0/24 maxlen: 24
178.176.224.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
178.176.226.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:4b:b4:f3:6f:28:45:73:1b:1e:e1:be:37:70:49:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 10:33:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5072cd4c3e4066dfa8a4ad23e5a30ed36c9ff14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c0:0f:8f:27:49:b2:4a:7a:45:90:dc:33:1a:
23:9a:3d:a8:2c:92:1f:1e:92:b7:51:e8:da:4b:81:
20:14:54:02:62:15:46:52:e0:5c:4f:f1:74:c4:32:
c7:5b:90:2b:fd:13:90:7c:19:0f:3b:dd:7b:e6:25:
f5:65:99:d3:9c:35:60:15:16:78:e3:3d:3a:02:7f:
f5:96:64:b8:d4:20:2b:3e:82:fc:a6:76:c4:6b:55:
ee:d0:49:01:ac:28:09:15:58:42:83:a0:4a:ec:da:
1b:89:80:2b:b6:cf:a0:66:0d:58:31:41:fd:01:2c:
7e:4f:ca:e2:3d:2d:ef:68:60:6b:9f:ae:43:4d:76:
ab:ce:77:2a:df:9a:ad:e4:1e:18:29:be:aa:7a:b1:
dc:85:83:2f:8a:cd:d1:08:48:14:f1:f1:73:2d:31:
f0:4c:9f:7c:df:d7:3e:cd:a9:f1:a9:d5:80:53:7c:
a9:75:6d:ab:de:32:5b:29:cc:56:c8:41:45:91:f3:
c6:c8:94:6b:ca:17:64:87:9e:9b:5f:7d:97:a7:88:
83:81:20:b1:2e:7f:ba:74:56:b2:e3:57:fd:8b:20:
ad:8c:d0:c9:c4:84:19:4c:61:92:e5:a2:a9:5c:c2:
47:23:9b:23:71:52:99:78:63:76:e3:a8:1a:d8:b8:
b4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:07:2C:D4:C3:E4:06:6D:FA:8A:4A:D2:3E:5A:30:ED:36:C9:FF:14
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/1Qcs1MPkBm36ikrSPlow7TbJ_xQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.224.0-178.176.226.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
7c:86:6a:04:90:bd:63:b0:f5:55:86:4e:d3:78:79:0e:60:a8:
03:d6:f4:35:8c:af:23:8a:b8:99:0d:9d:90:94:f0:88:d7:91:
5d:f5:95:f9:9a:67:1e:86:23:cc:df:64:cf:e5:fe:a7:9d:41:
21:68:45:be:ca:af:80:1e:8e:69:bd:70:ae:c8:c5:3b:93:47:
07:e4:9e:aa:09:a3:17:69:9a:49:c5:08:75:a2:f8:20:cd:21:
75:aa:da:56:d2:24:48:bb:4b:74:86:02:55:2a:b2:e0:db:50:
a2:78:1a:2e:49:12:b7:7d:75:04:1d:11:29:1e:b4:5d:bb:44:
50:5e:78:c1:3a:2f:10:64:86:5e:e6:ed:9a:c3:86:a4:1b:64:
5c:3b:31:e7:29:7c:80:d1:e5:39:52:a5:78:37:c9:f4:6a:77:
31:9a:a9:69:41:82:54:f1:f3:0e:92:5e:fe:e0:a4:ef:a9:2b:
b7:03:9b:09:6d:3e:cd:4b:e0:9c:fb:91:87:45:c9:c3:5e:3b:
b6:cb:0c:9f:f2:ac:b2:09:98:2b:75:49:b1:6b:ee:fa:60:29:
59:97:47:26:d8:08:19:bf:bb:1c:d9:0f:d6:68:ce:eb:4f:13:
aa:43:26:b2:9a:be:f9:0c:34:3a:d3:10:8b:40:9b:4b:48:b1:
02:61:9b:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:52 2025 by rpki-client