Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/3s0lXgZLDXD_sjF_hQ63K-B7hW8.roa
File: 3s0lXgZLDXD_sjF_hQ63K-B7hW8.roa (raw, json)
Hash identifier: KmIMDX3lFFWlF/2bOh3lNtuilT0lI6+K/zm/zgZ62i4=
Subject key identifier: DE:CD:25:5E:06:4B:0D:70:FF:B2:31:7F:85:0E:B7:2B:E0:7B:85:6F
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0185059111BAC5529C860801CF67F07D60BA
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/3s0lXgZLDXD_sjF_hQ63K-B7hW8.roa
Signing time: Mon 12 Dec 2022 09:01:11 +0000
ROA not before: Mon 12 Dec 2022 09:01:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31208
IP address blocks: 195.16.96.0/19 maxlen: 24
178.178.84.0/22 maxlen: 22
178.178.82.0/24 maxlen: 24
178.178.80.0/23 maxlen: 23
193.201.228.0/22 maxlen: 24
178.178.131.0/24 maxlen: 24
178.178.130.0/24 maxlen: 24
178.178.129.0/24 maxlen: 24
178.178.132.0/24 maxlen: 24
178.178.128.0/24 maxlen: 24
178.176.230.0/23 maxlen: 23
37.28.186.0/24 maxlen: 24
188.170.50.0/24 maxlen: 24
37.28.184.0/24 maxlen: 24
188.170.48.0/24 maxlen: 24
37.28.185.0/24 maxlen: 24
188.170.49.0/24 maxlen: 24
188.170.54.0/24 maxlen: 24
188.170.55.0/24 maxlen: 24
37.28.187.0/24 maxlen: 24
188.170.56.0/24 maxlen: 24
188.170.52.0/24 maxlen: 24
188.170.57.0/24 maxlen: 24
188.170.53.0/24 maxlen: 24
188.170.62.0/24 maxlen: 24
188.170.63.0/24 maxlen: 24
188.170.59.0/24 maxlen: 24
188.170.60.0/24 maxlen: 24
188.170.61.0/24 maxlen: 24
37.29.75.0/24 maxlen: 24
37.29.74.0/24 maxlen: 24
37.29.73.0/24 maxlen: 24
37.29.72.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.72.0/24 maxlen: 24
128.204.73.0/24 maxlen: 24
178.176.58.0/24 maxlen: 24
178.176.56.0/24 maxlen: 24
178.176.57.0/24 maxlen: 24
178.176.62.0/24 maxlen: 24
178.176.63.0/24 maxlen: 24
178.176.59.0/24 maxlen: 24
178.176.60.0/24 maxlen: 24
178.176.61.0/24 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
83.149.41.0/24 maxlen: 24
83.149.44.0/23 maxlen: 23
83.149.40.0/24 maxlen: 24
83.149.42.0/23 maxlen: 23
195.78.116.0/23 maxlen: 24
83.149.46.0/23 maxlen: 23
83.169.212.0/24 maxlen: 24
83.169.208.0/24 maxlen: 24
83.169.213.0/24 maxlen: 24
83.169.209.0/24 maxlen: 24
83.169.210.0/24 maxlen: 24
83.169.211.0/24 maxlen: 24
83.169.214.0/24 maxlen: 24
83.169.215.0/24 maxlen: 24
188.162.0.0/16 maxlen: 24
178.178.135.0/24 maxlen: 24
178.178.134.0/24 maxlen: 24
178.178.137.0/24 maxlen: 24
178.178.133.0/24 maxlen: 24
178.178.136.0/24 maxlen: 24
178.178.143.0/24 maxlen: 24
178.178.142.0/24 maxlen: 24
46.229.136.0/22 maxlen: 22
46.229.141.0/24 maxlen: 24
46.229.140.0/24 maxlen: 24
46.229.143.0/24 maxlen: 24
46.229.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:91:11:ba:c5:52:9c:86:08:01:cf:67:f0:7d:60:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 09:01:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=decd255e064b0d70ffb2317f850eb72be07b856f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fd:ba:c2:31:64:ee:67:a7:a7:81:9b:aa:01:
cc:73:ce:2d:bc:a5:91:a9:5a:e9:4e:5b:04:5b:39:
6e:a9:8a:33:fb:f2:ca:1b:4a:d0:fe:55:9e:bd:83:
23:ee:e9:f8:a0:f3:45:56:59:ac:7b:54:32:6d:92:
a4:d9:ea:fc:b7:18:66:15:c5:8b:87:7f:61:d7:2f:
0c:e3:d9:27:5d:45:9d:e6:b2:48:c5:d7:5c:a7:26:
42:f9:de:d8:f0:b8:ec:04:a3:ce:ae:fc:a5:33:64:
91:a3:49:dc:7e:c0:2d:1e:a6:a1:c1:43:b2:91:23:
e1:78:e0:7e:0a:f1:04:3c:c4:81:0d:c1:ce:f4:c5:
f2:7f:f5:d4:1f:65:18:96:49:5e:1b:b9:2d:e9:d9:
10:ea:cc:99:33:48:c9:bd:95:cd:ca:8e:90:aa:63:
9f:bf:76:7c:2e:e3:1f:21:32:e8:c3:ae:15:b6:ec:
50:e2:c2:a9:74:50:d6:bf:b1:74:97:4d:3f:a3:d1:
b7:1b:5a:c6:7f:87:e5:83:d3:40:f8:55:43:4b:a9:
f9:45:4c:1c:83:a7:8d:81:f5:50:3c:21:9f:07:a0:
d9:ac:ac:cf:d6:5e:48:0d:ad:d5:3b:9c:58:97:23:
15:16:5f:ed:8d:5d:f1:ed:ef:8a:e3:4f:a5:5d:f7:
d1:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:CD:25:5E:06:4B:0D:70:FF:B2:31:7F:85:0E:B7:2B:E0:7B:85:6F
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/3s0lXgZLDXD_sjF_hQ63K-B7hW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.184.0/22
37.29.72.0/22
46.229.136.0/21
83.149.40.0/21
83.169.208.0/21
128.204.72.0/23
178.176.56.0/21
178.176.230.0/23
178.178.80.0-178.178.82.255
178.178.84.0/22
178.178.128.0-178.178.137.255
178.178.142.0/23
188.162.0.0/16
188.170.48.0-188.170.50.255
188.170.52.0-188.170.57.255
188.170.59.0-188.170.63.255
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
Signature Algorithm: sha256WithRSAEncryption
11:e8:a1:be:59:02:f1:b7:5e:84:bc:79:79:72:90:58:92:69:
c4:b0:99:f9:fd:d1:6e:97:a2:b1:58:33:e0:99:d5:a4:99:d2:
46:ea:6b:78:84:aa:52:6d:aa:dd:0b:99:f6:b2:87:81:77:1b:
35:8b:5b:29:03:f7:d4:3a:9e:8a:91:ff:05:0b:66:c7:65:b4:
df:a4:94:65:bf:55:06:41:13:2b:e5:71:24:b0:8a:92:52:18:
a3:ba:8a:81:61:4a:0e:1e:b8:ec:0d:67:e8:37:d0:7d:03:96:
29:98:70:c9:82:a2:0c:e1:30:66:54:31:da:9b:2a:49:0a:83:
22:60:ca:62:43:ce:51:0c:c4:b7:92:0d:ba:82:39:0c:39:ef:
25:6b:c9:ce:ff:8b:ae:cb:01:88:8c:a7:a0:3b:4c:a8:f5:24:
ef:09:70:92:5f:67:4a:6f:42:fd:4f:0a:5f:f9:64:45:9c:7e:
f0:ca:02:17:e5:7b:98:49:15:27:5a:c4:46:e8:2b:0f:f1:30:
8c:d9:97:b2:ba:03:0e:8c:66:d5:6f:e1:e6:b5:ac:88:59:fb:
49:dc:43:e4:93:ae:2c:a0:b4:3a:aa:84:3e:3b:86:4d:23:df:
dc:6d:2e:c0:07:74:76:77:99:f6:2e:69:5b:7e:38:1a:57:76:
44:38:7b:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:24 2024 by rpki-client on console-fra.rpki-client.org