Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/1q638bVKCwIHmTRM_iLk_uRZuF8.roa
File: 1q638bVKCwIHmTRM_iLk_uRZuF8.roa (raw, json)
Hash identifier: /8NRaSaLr2xvzSe3WY/ktEi6pl47JsYwzeJRXV+CsXc=
Subject key identifier: D6:AE:B7:F1:B5:4A:0B:02:07:99:34:4C:FE:22:E4:FE:E4:59:B8:5F
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184E23BF93A85F7573B85D33B3CC5292ADA
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/1q638bVKCwIHmTRM_iLk_uRZuF8.roa
Signing time: Mon 05 Dec 2022 12:21:31 +0000
ROA not before: Mon 05 Dec 2022 12:21:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42891
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
83.169.192.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:3b:f9:3a:85:f7:57:3b:85:d3:3b:3c:c5:29:2a:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 5 12:21:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6aeb7f1b54a0b020799344cfe22e4fee459b85f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:de:4c:fb:10:97:81:33:8b:b8:93:02:cc:fa:
c0:f7:8f:52:04:c2:bf:d5:4f:d5:ee:5c:f0:9c:98:
98:b6:07:25:df:eb:59:7c:79:12:53:ab:18:ed:35:
3c:99:b2:29:57:db:f2:75:00:c7:03:4b:a4:8a:50:
3e:2c:50:6f:f6:de:20:ed:6c:1f:35:94:12:e5:fe:
30:d2:4e:5d:40:88:89:3e:f0:5d:8f:6c:85:33:93:
cd:59:8a:39:2d:53:83:d6:07:f2:57:d2:7a:8c:6a:
21:c4:36:0d:b6:ff:aa:91:d1:d4:31:ea:98:bd:3a:
a4:79:53:78:d9:36:76:e6:3b:f8:d0:39:d7:26:04:
4f:c7:19:96:fd:a4:c2:46:c5:a0:42:b9:66:36:9f:
7f:8b:ae:f3:12:99:e1:f3:9a:f0:fb:93:ed:02:32:
57:53:88:5b:86:32:f9:5b:6b:49:cd:29:d4:8a:f4:
62:ec:5b:7b:e3:1c:ee:76:ce:a5:35:8f:df:f1:94:
a3:13:9a:97:04:7d:13:d7:85:32:b8:a3:79:fd:45:
37:b5:98:06:58:63:20:5c:e4:4d:82:58:53:81:2f:
47:cc:1a:93:dd:fe:88:58:fd:06:ee:89:b0:bd:a3:
22:d3:88:f0:26:f2:2c:3e:c0:80:6a:23:db:31:26:
8e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:AE:B7:F1:B5:4A:0B:02:07:99:34:4C:FE:22:E4:FE:E4:59:B8:5F
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/1q638bVKCwIHmTRM_iLk_uRZuF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
92:72:7f:d0:5a:c3:0d:a8:8f:3f:eb:ee:c4:b0:8c:be:e5:a4:
13:e6:0d:d3:07:fa:62:d5:fd:50:b0:a8:d8:65:ab:f3:94:6c:
c2:e8:8d:c4:2e:c8:91:49:1a:fa:f0:6d:fe:ed:6e:ef:ef:e2:
ce:f4:bf:2e:5b:88:71:64:8c:96:a0:e9:85:83:73:f1:18:1e:
d4:01:28:2e:4b:aa:d5:7e:3b:58:75:58:77:54:0f:a5:37:f7:
87:f5:04:d0:26:e9:4f:4e:c1:03:ad:da:31:6d:a7:28:83:63:
39:3f:f5:c8:94:45:56:79:99:9d:5f:d7:4a:05:de:39:03:0b:
9f:7d:6e:d0:a9:09:bb:b3:4e:8a:09:16:bd:33:f3:df:7b:4c:
04:55:db:b8:e1:cd:cf:af:15:63:b1:b6:2c:45:8f:ae:7a:b6:
b8:9c:e7:7e:fa:f5:66:5e:38:3e:24:65:1d:52:d6:1e:48:76:
af:71:3c:db:54:f2:bb:25:71:dc:03:48:98:6d:fd:b2:e7:06:
4c:db:77:1c:7e:f1:af:0a:31:c5:d4:72:d4:e4:5c:b8:61:fe:
de:88:15:06:51:4e:50:9e:c1:8a:6b:a2:7e:75:60:9f:da:0a:
25:70:34:8a:c9:51:30:54:10:75:98:55:5d:98:b5:da:4f:07:
94:75:4a:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:33 2024 by rpki-client on console-ams.rpki-client.org