Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/2-1lMj92JjucrQcCsocr-BJvqSQ.roa
File: 2-1lMj92JjucrQcCsocr-BJvqSQ.roa (raw, json)
Hash identifier: XgTihMJRQG7gmUp7RxwAoJtmvagbOcMDRPQ1Oy0mAsE=
Subject key identifier: DB:ED:65:32:3F:76:26:3B:9C:AD:07:02:B2:87:2B:F8:12:6F:A9:24
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184E2660F38B05F457A7F9C78F8E9D4A252
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/2-1lMj92JjucrQcCsocr-BJvqSQ.roa
Signing time: Mon 05 Dec 2022 13:07:30 +0000
ROA not before: Mon 05 Dec 2022 13:07:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25159
IP address blocks: 109.188.0.0/16 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
78.25.119.0/24 maxlen: 24
94.25.128.0/17 maxlen: 24
93.153.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.170.25.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
188.170.32.0/21 maxlen: 21
188.170.40.0/21 maxlen: 21
37.28.176.0/21 maxlen: 21
212.119.160.0/19 maxlen: 24
91.193.212.0/22 maxlen: 24
178.177.0.0/18 maxlen: 18
178.177.3.0/24 maxlen: 24
78.25.112.0/22 maxlen: 22
78.25.116.0/23 maxlen: 23
78.25.118.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
37.29.32.0/21 maxlen: 21
95.137.0.0/17 maxlen: 24
178.176.52.0/22 maxlen: 22
178.176.72.0/21 maxlen: 21
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
31.173.0.0/21 maxlen: 21
31.173.8.0/21 maxlen: 21
178.176.0.0/19 maxlen: 19
83.229.254.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
178.176.32.0/21 maxlen: 21
178.176.40.0/21 maxlen: 21
31.173.72.0/21 maxlen: 21
31.173.80.0/21 maxlen: 21
31.173.88.0/21 maxlen: 21
188.170.0.0/19 maxlen: 19
188.170.24.0/24 maxlen: 24
31.173.16.0/21 maxlen: 21
31.173.24.0/21 maxlen: 21
31.173.32.0/19 maxlen: 19
31.173.60.0/24 maxlen: 24
31.173.64.0/21 maxlen: 21
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
109.74.112.0/20 maxlen: 24
62.64.0.0/20 maxlen: 20
213.243.64.0/18 maxlen: 24
83.229.211.0/24 maxlen: 24
217.115.80.0/20 maxlen: 24
46.229.128.0/22 maxlen: 22
212.44.64.0/19 maxlen: 24
83.222.212.0/22 maxlen: 22
83.222.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:66:0f:38:b0:5f:45:7a:7f:9c:78:f8:e9:d4:a2:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 5 13:07:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbed65323f76263b9cad0702b2872bf8126fa924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:41:52:e8:2a:a7:b0:83:19:fd:cc:f7:95:04:
e9:68:50:25:87:3c:39:26:20:3f:6e:5a:7c:4f:90:
64:82:09:1c:62:9d:54:e7:0f:51:33:a6:a0:d5:f5:
d9:5f:51:84:14:42:0a:86:93:0f:89:7c:4a:43:22:
05:6d:4c:3e:e1:f3:d0:f2:1f:3d:bb:1a:69:e7:b3:
07:fa:e3:f3:e2:e7:10:2f:c6:d5:54:2d:1d:32:9a:
9e:f3:15:99:52:2b:47:37:18:b7:7e:72:2c:6c:69:
9c:f1:ec:41:dc:f6:de:ff:05:e8:4f:71:30:c6:51:
19:ba:eb:8b:57:68:7e:04:41:da:0b:dd:cb:dd:c0:
fa:c2:03:6e:e5:09:c5:db:c4:09:1f:0d:26:94:d8:
93:7d:e0:f8:e6:8f:8f:9b:7a:ac:1e:6f:f4:90:1c:
40:e7:50:e2:18:98:a3:e5:21:14:0f:6d:8c:51:d8:
ff:d9:0c:3a:09:a6:e4:cd:21:a1:f3:d0:43:cc:6c:
0e:ca:27:d4:e6:eb:02:fe:ad:4e:1d:d1:04:95:42:
aa:a2:ab:fe:c8:e1:d9:ed:46:ec:52:e5:d3:73:68:
6f:02:1b:e4:79:4c:62:68:45:e2:a6:3d:46:9c:88:
5e:f6:af:27:13:19:f1:6d:77:6e:7a:06:71:69:db:
ce:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:ED:65:32:3F:76:26:3B:9C:AD:07:02:B2:87:2B:F8:12:6F:A9:24
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/2-1lMj92JjucrQcCsocr-BJvqSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.0.0-31.173.95.255
37.28.176.0/21
37.29.32.0/21
46.229.128.0/22
62.64.0.0/20
78.25.112.0/21
83.222.212.0-83.222.223.255
83.229.211.0/24
83.229.254.0/24
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.0.0-178.176.47.255
178.176.52.0/22
178.176.72.0/21
178.177.0.0/18
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.0.0-188.170.47.255
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
0a:29:d0:bf:75:b4:3b:43:8f:0e:92:35:97:05:8c:14:0c:fa:
27:8e:4c:d4:ed:45:c4:ca:1b:e2:f1:7d:50:99:3c:45:cf:be:
c3:4a:07:65:9c:f7:d0:65:d6:8b:01:e2:86:03:34:a3:10:e1:
d7:0f:af:23:2a:ae:9f:bf:f9:b3:e1:49:36:e6:f2:51:1b:ff:
8d:93:56:a7:8d:5e:5a:d6:2d:b2:d7:75:b0:68:cd:31:8b:d1:
f9:5b:72:52:a8:22:4e:e2:cc:09:51:74:18:80:c3:8c:c0:94:
d6:6e:3c:7e:f3:70:7f:64:c9:97:24:38:0b:b4:94:32:c2:11:
79:a7:7d:64:e4:05:61:eb:84:fe:4c:47:71:a0:0d:b7:88:5f:
8d:0d:16:85:42:03:97:93:c1:8e:32:5f:eb:71:f4:98:ff:84:
da:58:35:f7:d5:d3:7a:96:6a:ba:99:09:53:d6:da:86:01:b5:
e3:e8:b0:c8:cf:c6:33:7c:9a:09:4b:27:d6:d4:0f:a5:a2:5a:
a8:40:ee:a5:d7:98:5f:30:7c:a9:f3:19:69:c6:2b:fe:b3:6d:
1c:74:e1:21:4d:58:68:95:70:74:75:b2:5e:66:a6:a2:58:6d:
0f:6c:6b:46:c7:a8:bd:bb:e5:a6:4c:0e:3d:d2:55:3f:0d:6e:
1e:eb:b7:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:33 2024 by rpki-client on console-ams.rpki-client.org