Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/2mUQYRx1m2NKqmUBr_WrrSTw7YA.roa
File: 2mUQYRx1m2NKqmUBr_WrrSTw7YA.roa (raw, json)
Hash identifier: oUAJ4rGB72nVoLoaMX8D5PlVUbyk1uXVeuauXfxJesE=
Subject key identifier: DA:65:10:61:1C:75:9B:63:4A:AA:65:01:AF:F5:AB:AD:24:F0:ED:80
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184E26616368128CACF08F7158E72C0A320
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/2mUQYRx1m2NKqmUBr_WrrSTw7YA.roa
Signing time: Mon 05 Dec 2022 13:07:31 +0000
ROA not before: Mon 05 Dec 2022 13:07:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41976
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
109.74.112.0/20 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:66:16:36:81:28:ca:cf:08:f7:15:8e:72:c0:a3:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 5 13:07:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da6510611c759b634aaa6501aff5abad24f0ed80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ee:6e:b1:76:dc:54:b3:56:e7:2a:03:cf:6c:
7a:9f:32:b0:a7:5e:91:7f:b3:e3:5b:c5:a6:93:b3:
95:46:5e:f7:01:af:60:d5:5a:9f:a7:f8:b0:85:13:
3a:33:5b:13:42:b0:ce:aa:ef:f1:45:d8:dc:01:b0:
a3:13:e6:df:76:e2:c6:7b:f3:93:65:35:0f:33:ac:
e9:0d:83:af:c9:9e:72:f7:2b:be:9f:83:f6:3c:8c:
70:ad:25:fd:d5:3e:da:a7:bb:aa:8f:21:bc:40:e6:
ab:4c:98:d6:ee:eb:87:3e:23:0b:cb:ae:d3:42:4e:
cf:dd:76:28:c0:56:c5:ea:43:5d:77:7a:7c:84:c4:
59:60:42:fe:4f:bf:d9:08:70:d8:9d:60:31:92:8b:
ce:75:fd:16:d4:4a:73:69:b8:20:24:1c:55:70:41:
79:39:60:18:2d:72:c1:78:0f:cf:dd:98:31:6e:41:
33:02:d5:c5:af:fa:dc:6d:8c:c0:07:5a:9e:d9:ab:
d2:94:e3:ec:80:d0:00:cf:33:e3:49:8b:4d:4d:b8:
e9:e5:ac:c0:cf:62:e3:f7:87:19:49:ce:ee:d1:c7:
03:58:89:3e:0c:87:5c:9e:6f:c2:f9:03:f3:3e:31:
29:5c:e1:20:7f:de:d2:7f:32:56:03:8c:07:ec:df:
94:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:65:10:61:1C:75:9B:63:4A:AA:65:01:AF:F5:AB:AD:24:F0:ED:80
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/2mUQYRx1m2NKqmUBr_WrrSTw7YA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
ab:4a:d0:92:4f:3a:71:f8:c3:23:06:ed:a3:6b:14:48:5e:f0:
59:26:de:88:50:97:58:39:59:64:13:49:ca:d1:45:25:56:a1:
0f:79:33:0f:c9:a1:9d:d2:e0:cf:37:35:51:73:1c:29:04:07:
82:b3:57:c9:08:a3:07:29:b2:cb:0f:a4:62:26:e9:8f:f9:13:
8c:b6:c6:7f:e8:82:cc:51:58:59:63:74:70:db:31:30:a4:55:
04:e4:ae:1f:90:ef:9b:7a:49:3c:ff:64:80:09:b1:4e:4d:b2:
a8:16:07:73:a2:27:c2:81:c0:de:ef:f7:c3:d6:f2:1c:41:fb:
7e:53:75:91:49:1e:b4:77:34:62:b9:69:15:bb:3d:6d:b0:a5:
38:62:4e:eb:fc:3e:5b:37:72:fe:a6:3d:2e:40:97:43:a8:8c:
cb:9b:13:9a:4c:e1:f9:aa:26:1f:b1:85:b2:16:b9:c2:9d:f3:
08:f6:e5:f6:52:97:92:0b:31:61:df:d5:06:38:60:43:98:a6:
24:98:4a:80:ac:1d:35:51:b1:87:a3:2b:d5:31:57:f2:a3:f1:
47:9c:e9:8e:29:78:b3:ac:6b:e8:42:cc:8e:1b:4e:91:7c:2f:
3e:2f:a3:2b:a7:35:48:99:b5:bf:75:d4:f0:7a:e7:2e:2a:69:
ad:2d:2e:71
-----BEGIN CERTIFICATE-----
MIIFqDCCBJCgAwIBAgISAYTiZhY2gSjKzwj3FY5ywKMgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjA1MTMwNzMxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYTY1MTA2MTFjNzU5YjYzNGFhYTY1MDFhZmY1YWJhZDI0ZjBlZDgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+5usXbcVLNW5yoDz2x6nzKwp16R
f7PjW8Wmk7OVRl73Aa9g1Vqfp/iwhRM6M1sTQrDOqu/xRdjcAbCjE+bfduLGe/OT
ZTUPM6zpDYOvyZ5y9yu+n4P2PIxwrSX91T7ap7uqjyG8QOarTJjW7uuHPiMLy67T
Qk7P3XYowFbF6kNdd3p8hMRZYEL+T7/ZCHDYnWAxkovOdf0W1EpzabggJBxVcEF5
OWAYLXLBeA/P3ZgxbkEzAtXFr/rcbYzAB1qe2avSlOPsgNAAzzPjSYtNTbjp5azA
z2Lj94cZSc7u0ccDWIk+DIdcnm/C+QPzPjEpXOEgf97SfzJWA4wH7N+USQIDAQAB
o4ICtDCCArAwHQYDVR0OBBYEFNplEGEcdZtjSqplAa/1q60k8O2AMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvMm1VUVlSeDFtMk5LcW1VQnJfV3JyU1R3N1lBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHJBggrBgEFBQcBBwEB/wSBuTCBtjCBswQCAAEwgawDBAdV
GoADBAVWbcADBAJbwdQDBAddmYADBAdeGYADBAdfiQADBARtSnADBAZtfEADAwBt
vAMEBoDMQAMEA7IXkAMEArkDIAMEArnSjAMEA7xeqAMDALyiAwQCwcnkAwQFwwWA
AwQFwxBgAwQBw050AwQAw5VvAwQFw+ZAAwQF1A6gAwQF1CxAAwQF1EVgAwQF1Heg
AwQF1ZqgAwQF1aggAwQG1fNAAwQE2XNQMA0GCSqGSIb3DQEBCwUAA4IBAQCrStCS
Tzpx+MMjBu2jaxRIXvBZJt6IUJdYOVlkE0nK0UUlVqEPeTMPyaGd0uDPNzVRcxwp
BAeCs1fJCKMHKbLLD6RiJumP+ROMtsZ/6ILMUVhZY3Rw2zEwpFUE5K4fkO+bekk8
/2SACbFOTbKoFgdzoifCgcDe7/fD1vIcQft+U3WRSR60dzRiuWkVuz1tsKU4Yk7r
/D5bN3L+pj0uQJdDqIzLmxOaTOH5qiYfsYWyFrnCnfMI9uX2UpeSCzFh39UGOGBD
mKYkmEqArB01UbGHoyvVMVfyo/FHnOmOKXizrGvoQsyOG06RfC8+L6MrpzVImbW/
ddTweucuKmmtLS5x
-----END CERTIFICATE-----
Generated at Tue Apr 8 04:41:11 2025 by rpki-client