Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/3MZ2-dVUAHXfdSElr1pTYgKP-iM.roa
File: 3MZ2-dVUAHXfdSElr1pTYgKP-iM.roa (raw, json)
Hash identifier: 5eR6BBFzTFfPFJW82vR0SOvVrCGrJ4WpDW5EukO2IV8=
Subject key identifier: DC:C6:76:F9:D5:54:00:75:DF:75:21:25:AF:5A:53:62:02:8F:FA:23
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F219E0803A1036AECD0B1EA761B94171
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/3MZ2-dVUAHXfdSElr1pTYgKP-iM.roa
Signing time: Thu 08 Dec 2022 14:18:12 +0000
ROA not before: Thu 08 Dec 2022 14:18:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29648
IP address blocks: 193.201.228.0/22 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
31.173.119.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
77.233.160.0/19 maxlen: 19
77.233.161.0/24 maxlen: 24
77.233.164.0/24 maxlen: 24
77.233.160.0/24 maxlen: 24
77.233.162.0/24 maxlen: 24
77.233.166.0/24 maxlen: 24
77.233.167.0/24 maxlen: 24
77.233.170.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
31.173.104.0/24 maxlen: 24
31.173.105.0/24 maxlen: 24
31.173.112.0/24 maxlen: 24
31.173.108.0/24 maxlen: 24
31.173.109.0/24 maxlen: 24
31.173.110.0/24 maxlen: 24
31.173.106.0/24 maxlen: 24
31.173.111.0/24 maxlen: 24
31.173.107.0/24 maxlen: 24
31.173.116.0/24 maxlen: 24
31.173.113.0/24 maxlen: 24
31.173.117.0/24 maxlen: 24
31.173.114.0/24 maxlen: 24
31.173.118.0/24 maxlen: 24
31.173.115.0/24 maxlen: 24
77.233.173.0/24 maxlen: 24
77.233.178.0/24 maxlen: 24
77.233.185.0/24 maxlen: 24
77.233.181.0/24 maxlen: 24
77.233.180.0/24 maxlen: 24
77.233.186.0/24 maxlen: 24
77.233.182.0/24 maxlen: 24
77.233.188.0/24 maxlen: 24
77.233.191.0/24 maxlen: 24
77.233.190.0/24 maxlen: 24
212.44.64.0/19 maxlen: 24
195.16.96.0/19 maxlen: 24
188.170.98.0/24 maxlen: 24
86.109.192.0/19 maxlen: 19
86.109.192.0/20 maxlen: 20
188.170.96.0/24 maxlen: 24
188.170.97.0/24 maxlen: 24
188.170.102.0/24 maxlen: 24
86.109.193.0/24 maxlen: 24
188.170.103.0/24 maxlen: 24
188.170.99.0/24 maxlen: 24
188.170.100.0/24 maxlen: 24
188.170.104.0/24 maxlen: 24
86.109.195.0/24 maxlen: 24
188.170.101.0/24 maxlen: 24
188.170.105.0/24 maxlen: 24
188.170.110.0/24 maxlen: 24
188.170.106.0/24 maxlen: 24
188.170.111.0/24 maxlen: 24
188.170.107.0/24 maxlen: 24
86.109.200.0/23 maxlen: 23
188.170.108.0/24 maxlen: 24
212.69.96.0/19 maxlen: 24
188.170.109.0/24 maxlen: 24
188.170.112.0/24 maxlen: 24
188.170.114.0/24 maxlen: 24
86.109.213.0/24 maxlen: 24
188.170.115.0/24 maxlen: 24
188.170.116.0/24 maxlen: 24
86.109.212.0/24 maxlen: 24
86.109.208.0/24 maxlen: 24
188.170.118.0/24 maxlen: 24
188.170.117.0/24 maxlen: 24
188.170.113.0/24 maxlen: 24
86.109.210.0/24 maxlen: 24
188.170.119.0/24 maxlen: 24
188.170.123.0/24 maxlen: 24
86.109.216.0/24 maxlen: 24
188.170.122.0/24 maxlen: 24
86.109.215.0/24 maxlen: 24
86.109.218.0/23 maxlen: 23
188.170.125.0/24 maxlen: 24
188.170.121.0/24 maxlen: 24
188.170.120.0/24 maxlen: 24
86.109.214.0/24 maxlen: 24
188.170.124.0/24 maxlen: 24
188.170.127.0/24 maxlen: 24
86.109.220.0/24 maxlen: 24
188.170.126.0/24 maxlen: 24
86.109.223.0/24 maxlen: 24
86.109.222.0/24 maxlen: 24
78.109.120.0/24 maxlen: 24
78.109.121.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
178.176.98.0/24 maxlen: 24
195.149.111.0/24 maxlen: 24
178.176.96.0/24 maxlen: 24
178.176.97.0/24 maxlen: 24
178.176.102.0/24 maxlen: 24
178.176.103.0/24 maxlen: 24
178.176.99.0/24 maxlen: 24
178.176.100.0/24 maxlen: 24
178.176.101.0/24 maxlen: 24
178.176.118.0/24 maxlen: 24
178.176.114.0/24 maxlen: 24
178.176.115.0/24 maxlen: 24
178.176.116.0/24 maxlen: 24
178.176.117.0/24 maxlen: 24
178.176.122.0/24 maxlen: 24
178.176.123.0/24 maxlen: 24
178.176.119.0/24 maxlen: 24
178.176.124.0/24 maxlen: 24
178.176.120.0/24 maxlen: 24
178.176.125.0/24 maxlen: 24
178.176.121.0/24 maxlen: 24
178.176.126.0/24 maxlen: 24
178.176.127.0/24 maxlen: 24
83.169.217.0/24 maxlen: 24
83.169.218.0/24 maxlen: 24
83.169.219.0/24 maxlen: 24
83.169.220.0/24 maxlen: 24
83.169.221.0/24 maxlen: 24
83.169.222.0/24 maxlen: 24
83.169.223.0/24 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f2:19:e0:80:3a:10:36:ae:cd:0b:1e:a7:61:b9:41:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 14:18:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcc676f9d5540075df752125af5a5362028ffa23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:78:f2:60:f0:ca:a6:83:40:ad:53:f3:b6:e1:
76:83:bb:7a:a0:27:af:cf:1f:73:ba:d9:04:70:b3:
cb:c2:2d:63:9d:92:aa:bb:84:46:ee:f6:c0:a4:3a:
70:a0:27:72:e8:e5:7d:f0:26:98:71:e6:cd:5a:a1:
ff:0d:e6:eb:1c:69:84:20:77:7c:56:8d:c2:54:98:
1d:5a:6f:79:c0:a9:a5:ed:7d:8f:8e:68:c4:c3:e0:
fc:3a:41:49:f1:ac:82:97:9a:b9:8d:4b:f0:0f:c8:
20:9d:ee:9e:81:3a:66:38:33:8f:8c:44:5c:92:01:
f1:dc:3a:ec:5f:99:35:9a:00:1b:6f:f2:fa:04:5c:
c3:1e:92:2b:b6:0d:47:29:cf:76:54:73:f9:b4:46:
c7:5e:96:da:4a:42:b4:90:d4:71:0d:df:17:92:e8:
0a:6f:34:d0:5b:19:b8:db:d5:6f:e9:02:70:9b:26:
60:ca:ae:4f:df:e7:a0:81:1a:84:b2:7a:fe:3a:7c:
b9:56:82:6e:5a:36:30:ba:40:1a:72:07:ce:25:5e:
3c:c1:1b:2e:ae:1a:41:37:e4:e2:1a:db:e9:b0:2f:
80:4e:e6:e9:71:40:85:da:54:41:66:45:d0:53:ff:
53:ee:df:7f:98:74:eb:1b:45:f8:50:5c:70:f1:e9:
92:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:C6:76:F9:D5:54:00:75:DF:75:21:25:AF:5A:53:62:02:8F:FA:23
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/3MZ2-dVUAHXfdSElr1pTYgKP-iM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.104.0-31.173.119.255
77.233.160.0/19
78.109.120.0/23
83.169.217.0-83.169.223.255
86.109.192.0/19
178.176.96.0/21
178.176.114.0-178.176.127.255
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.96.0/19
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
1a:2b:14:69:5a:08:89:57:49:50:1c:0b:26:17:56:b9:62:74:
13:4c:70:a4:b2:6a:3a:0d:9e:b5:0b:7f:f4:d7:6c:88:43:5a:
d6:7b:90:23:f3:88:97:7b:cc:7c:05:32:dc:05:79:f9:0f:1b:
da:e3:a7:e4:f4:b5:f5:a3:28:93:99:e5:0e:60:73:eb:46:d6:
5f:f9:3f:5b:69:21:ba:9a:41:ab:f1:43:b0:df:2c:ac:8f:9c:
35:f5:3d:5f:06:fe:7e:af:c2:a4:c4:35:46:77:d5:eb:82:05:
90:27:0e:28:83:b9:c0:f8:2d:77:f0:fe:bc:1a:9e:1a:d6:8e:
64:5e:61:e3:ad:18:e4:41:03:62:4a:b4:d1:51:c7:a1:bb:a1:
a6:ad:a0:6a:0e:21:bc:f8:93:8f:2d:9f:57:0f:0b:cf:6b:9b:
ed:e2:ba:02:0f:4b:b7:a6:72:01:3e:9c:29:3d:b0:64:bf:b9:
e6:d8:b0:f3:b8:04:45:6d:c7:c6:ea:d5:13:0a:b0:c9:e6:b8:
1c:71:bd:82:13:bd:29:90:cf:c9:8d:49:13:a1:31:38:75:e8:
6a:79:b1:03:6f:2c:00:b2:81:b4:d5:b4:cb:31:ec:20:b9:35:
c6:73:15:c6:7d:ee:14:d3:42:c0:1b:21:22:95:4c:6d:ce:e3:
59:a8:e0:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:22 2025 by rpki-client