Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/2w1WnhbZ9650IYZF0lufF4ZgyGQ.roa
File: 2w1WnhbZ9650IYZF0lufF4ZgyGQ.roa (raw, json)
Hash identifier: fHYqrRvf4H7E9BvMP5bg87V4OBU1+XkpFgUMd+oGEFo=
Subject key identifier: DB:0D:56:9E:16:D9:F7:AE:74:21:86:45:D2:5B:9F:17:86:60:C8:64
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184E2AF490093388B30384911EC59846451
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/2w1WnhbZ9650IYZF0lufF4ZgyGQ.roa
Signing time: Mon 05 Dec 2022 14:27:29 +0000
ROA not before: Mon 05 Dec 2022 14:27:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6854
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
80.253.0.0/20 maxlen: 20
185.210.140.0/22 maxlen: 24
62.64.16.0/20 maxlen: 20
212.119.160.0/19 maxlen: 24
62.64.24.0/21 maxlen: 21
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 19
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 17
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:af:49:00:93:38:8b:30:38:49:11:ec:59:84:64:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 5 14:27:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db0d569e16d9f7ae74218645d25b9f178660c864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:05:e5:ec:1a:fd:4a:1a:76:64:e6:e0:e2:b7:
36:f3:00:88:cc:fc:bf:03:bf:fa:ea:6e:4b:64:6c:
b7:0b:e0:1e:99:ca:bd:21:ec:32:f0:54:54:71:bb:
77:a7:23:51:ee:f6:53:a7:22:2f:e6:60:56:4f:f5:
81:88:fe:fa:d6:cb:5c:df:e9:b2:92:fb:0e:e4:10:
41:79:99:a0:00:d6:1e:63:46:90:60:a5:93:cd:b1:
38:db:8d:3c:5d:50:f4:7f:4f:3c:17:0d:d7:9d:f7:
2e:04:57:97:2e:9f:25:34:15:6e:3c:3b:24:56:69:
f5:df:b7:e0:a0:78:84:8e:7a:be:8c:8c:3e:7a:38:
3f:60:b7:54:d9:40:a9:8f:92:e8:4a:60:71:15:22:
8e:f8:e0:d0:9f:b9:fe:72:e0:57:ea:cf:58:a2:ca:
38:e7:af:09:33:ae:6d:b7:6e:b5:8e:6b:d8:09:9b:
57:e5:de:66:26:21:39:be:8c:49:fb:99:da:51:b7:
04:30:32:4a:8d:cc:ea:77:66:37:49:57:43:02:71:
69:dc:67:67:09:8c:20:4d:f7:a2:9f:c8:34:89:8f:
57:ec:7f:a8:1d:f7:e0:bf:4f:29:bb:9e:20:34:16:
9a:18:b4:b4:c3:7a:b0:6b:3a:d5:f9:66:9a:cd:a4:
7c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:0D:56:9E:16:D9:F7:AE:74:21:86:45:D2:5B:9F:17:86:60:C8:64
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/2w1WnhbZ9650IYZF0lufF4ZgyGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.64.16.0/20
80.253.0.0/20
83.222.192.0/19
83.229.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
14:6e:60:16:11:6a:4d:60:ab:66:2e:b5:bf:88:16:6a:ad:cf:
39:0c:db:41:60:e6:30:69:ca:ae:b7:ed:4d:f8:8b:68:f5:67:
7e:54:67:9d:41:28:ab:f4:eb:a8:f1:a8:96:da:4d:dc:39:01:
37:bb:8f:97:fe:45:0b:82:64:9c:33:79:98:ea:7d:1c:e5:23:
bb:29:21:f3:d6:e6:1c:60:c1:46:4e:10:0a:df:9e:44:27:ec:
90:8d:ed:ad:07:b7:13:6a:e1:70:e6:c2:d2:2a:aa:53:a4:5d:
e2:f7:12:08:3d:34:39:55:ed:b4:b0:0d:2f:fe:78:57:a3:9a:
27:c4:d1:98:68:10:8b:80:3d:d8:ab:6a:2f:c7:52:91:56:83:
af:98:04:d1:3d:95:df:3c:35:40:42:4f:f3:0b:fb:71:d6:63:
9d:a2:13:81:4d:d7:c2:5e:f3:c6:52:e8:c6:56:28:ec:ff:a0:
6d:3a:54:d7:bc:e9:d6:93:1c:71:21:1f:8d:94:58:50:2c:06:
1a:85:54:b0:de:a2:9e:38:40:a8:cd:d1:17:d4:62:7a:bd:cf:
fc:70:ff:8f:6f:2e:79:41:fe:7b:1f:5b:77:f0:66:51:99:67:
f1:f4:53:67:36:71:c0:84:f2:dd:02:29:de:6d:4b:6a:65:46:
ed:71:98:3a
-----BEGIN CERTIFICATE-----
MIIFujCCBKKgAwIBAgISAYTir0kAkziLMDhJEexZhGRRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjA1MTQyNzI5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjBkNTY5ZTE2ZDlmN2FlNzQyMTg2NDVkMjViOWYxNzg2NjBjODY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkwXl7Br9Shp2ZObg4rc28wCIzPy/
A7/66m5LZGy3C+Aemcq9Iewy8FRUcbt3pyNR7vZTpyIv5mBWT/WBiP761stc3+my
kvsO5BBBeZmgANYeY0aQYKWTzbE42408XVD0f088Fw3XnfcuBFeXLp8lNBVuPDsk
Vmn137fgoHiEjnq+jIw+ejg/YLdU2UCpj5LoSmBxFSKO+ODQn7n+cuBX6s9Yoso4
568JM65tt261jmvYCZtX5d5mJiE5voxJ+5naUbcEMDJKjczqd2Y3SVdDAnFp3Gdn
CYwgTfein8g0iY9X7H+oHffgv08pu54gNBaaGLS0w3qwazrV+WaazaR8RQIDAQAB
o4ICxjCCAsIwHQYDVR0OBBYEFNsNVp4W2feudCGGRdJbnxeGYMhkMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvMncxV25oYlo5NjUwSVlaRjBsdWZGNFpneUdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHbBggrBgEFBQcBBwEB/wSByzCByDCBxQQCAAEwgb4DBAQ+
QBADBARQ/QADBAVT3sADBAdT5YADBAVWbcADBAJbwdQDBAddmYADBAdeGYADBAdf
iQADBARtSnADBAZtfEADAwBtvAMEBoDMQAMEA7IXkAMEArkDIAMEArnSjAMEA7xe
qAMDALyiAwQCwcnkAwQFwwWAAwQFwxBgAwQBw050AwQAw5VvAwQFw+ZAAwQF1A6g
AwQF1CxAAwQF1EVgAwQF1HegAwQF1ZqgAwQF1aggAwQG1fNAAwQE2XNQMA0GCSqG
SIb3DQEBCwUAA4IBAQAUbmAWEWpNYKtmLrW/iBZqrc85DNtBYOYwacqut+1N+Ito
9Wd+VGedQSir9Ouo8aiW2k3cOQE3u4+X/kULgmScM3mY6n0c5SO7KSHz1uYcYMFG
ThAK355EJ+yQje2tB7cTauFw5sLSKqpTpF3i9xIIPTQ5Ve20sA0v/nhXo5onxNGY
aBCLgD3Yq2ovx1KRVoOvmATRPZXfPDVAQk/zC/tx1mOdohOBTdfCXvPGUujGVijs
/6BtOlTXvOnWkxxxIR+NlFhQLAYahVSw3qKeOECozdEX1GJ6vc/8cP+Pby55Qf57
H1t38GZRmWfx9FNnNnHAhPLdAinebUtqZUbtcZg6
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:33 2024 by rpki-client on console-ams.rpki-client.org