Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/5UW3vLv2hTVwcOF399ZwezA1-Ws.roa
File: 5UW3vLv2hTVwcOF399ZwezA1-Ws.roa (raw, json)
Hash identifier: sAef/q7ZCmee23nL9VcHtYI6uTMUw0r5R2Y1x68X/gA=
Subject key identifier: E5:45:B7:BC:BB:F6:85:35:70:70:E1:77:F7:D6:70:7B:30:35:F9:6B
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184E2AF5499E84827181CD17C1321BDA687
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/5UW3vLv2hTVwcOF399ZwezA1-Ws.roa
Signing time: Mon 05 Dec 2022 14:27:32 +0000
ROA not before: Mon 05 Dec 2022 14:27:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47395
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:af:54:99:e8:48:27:18:1c:d1:7c:13:21:bd:a6:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 5 14:27:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e545b7bcbbf685357070e177f7d6707b3035f96b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e1:9a:5c:da:af:05:ea:23:d2:19:2a:c1:0d:
d0:48:fd:62:3e:bf:83:03:82:36:6f:02:84:87:7d:
2a:0b:4f:49:b8:6b:d8:1a:d3:a4:ed:26:91:a8:19:
f6:a8:05:73:ea:57:c4:fd:5d:78:9a:8a:0a:cc:93:
13:ce:95:b0:71:fb:06:7f:06:b0:63:bb:62:ff:f2:
67:70:67:db:b4:10:bc:e9:d6:36:69:96:1d:37:8f:
18:da:ae:ca:71:e9:32:9f:84:03:18:12:b2:74:07:
72:e0:ea:8f:3c:d9:65:a6:d7:b8:53:7a:2f:26:76:
db:d6:12:38:f6:e8:19:b0:39:29:93:9b:4b:8f:df:
5b:32:6c:57:aa:8c:ab:a0:50:7d:ce:43:20:b2:e4:
85:44:34:71:0d:53:62:fc:e7:37:83:b7:8a:a1:5c:
aa:93:fe:2f:d9:10:51:88:0a:80:60:eb:ed:c7:25:
d6:fd:ca:76:e5:79:32:14:ee:19:c9:c6:75:ad:e1:
50:ef:45:8d:d6:8b:11:c8:52:16:0d:b3:50:65:5f:
8c:a8:09:49:f4:68:eb:a9:4c:58:7a:b6:59:52:8a:
9a:e9:bb:2c:05:db:e6:84:9a:13:36:a9:c2:79:47:
b5:d0:46:6a:89:23:01:f8:55:12:c6:10:0f:ca:77:
4b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:45:B7:BC:BB:F6:85:35:70:70:E1:77:F7:D6:70:7B:30:35:F9:6B
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/5UW3vLv2hTVwcOF399ZwezA1-Ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
4c:32:ec:7a:05:9d:c2:b2:30:aa:17:9a:e1:8a:61:bc:6b:1e:
0d:83:9c:a3:be:76:95:30:f1:ec:18:00:6e:b8:a0:cc:08:fc:
a3:9c:b0:4e:db:a8:c1:0e:f6:19:45:ac:4d:43:be:34:4d:7f:
0d:59:49:d2:c4:26:a1:95:1e:d5:85:b8:d5:78:ac:43:46:70:
7e:79:6c:fe:7f:4a:1e:b8:53:65:3b:90:51:f0:b2:58:2f:dc:
d0:77:89:e9:bf:ba:0f:8d:06:be:60:ae:ef:26:8f:24:4b:1f:
e3:21:d4:11:6b:27:d5:a3:03:e5:ff:16:bd:6e:bf:be:cf:fc:
00:da:a1:2a:2f:2e:3f:52:ab:16:b0:5b:32:bd:21:9b:af:9a:
45:67:12:18:e3:ba:a3:44:78:93:b0:da:5b:4c:da:4f:9c:16:
90:07:dc:49:74:de:16:11:9a:f7:05:ff:66:3f:74:8b:f9:a9:
b0:d1:89:9d:91:1a:e0:e9:8b:a1:84:f3:b4:55:32:3e:cb:65:
07:64:ee:9c:a1:16:72:ca:70:85:8d:d0:cc:86:3e:c1:07:d7:
86:94:c6:e4:bf:d6:eb:49:ac:24:e3:61:4a:77:0f:b2:ed:b0:
e3:d0:cd:4d:a0:37:00:89:96:ea:74:56:35:8c:2f:0e:79:ff:
de:7c:52:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:40:31 2025 by rpki-client