Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/7gofeTpfqNVH5lsvVVHMPSUwSd4.roa
File: 7gofeTpfqNVH5lsvVVHMPSUwSd4.roa (raw, json)
Hash identifier: tQmy8SD0OBY8hGcm2nOFw7Q7D1jHlCTsSXWBme9ro4k=
Subject key identifier: EE:0A:1F:79:3A:5F:A8:D5:47:E6:5B:2F:55:51:CC:3D:25:30:49:DE
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184E2AF4CC018A42B9252569FFAFF44EBD0
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/7gofeTpfqNVH5lsvVVHMPSUwSd4.roa
Signing time: Mon 05 Dec 2022 14:27:30 +0000
ROA not before: Mon 05 Dec 2022 14:27:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29648
IP address blocks: 109.188.0.0/16 maxlen: 24
193.201.228.0/22 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
31.173.119.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
91.193.212.0/22 maxlen: 24
195.5.128.0/19 maxlen: 24
77.233.160.0/19 maxlen: 19
77.233.160.0/24 maxlen: 24
77.233.166.0/24 maxlen: 24
77.233.161.0/24 maxlen: 24
77.233.164.0/24 maxlen: 24
77.233.162.0/24 maxlen: 24
77.233.167.0/24 maxlen: 24
77.233.170.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
31.173.104.0/24 maxlen: 24
31.173.105.0/24 maxlen: 24
31.173.112.0/24 maxlen: 24
31.173.109.0/24 maxlen: 24
31.173.110.0/24 maxlen: 24
31.173.107.0/24 maxlen: 24
31.173.108.0/24 maxlen: 24
31.173.106.0/24 maxlen: 24
31.173.111.0/24 maxlen: 24
31.173.117.0/24 maxlen: 24
31.173.118.0/24 maxlen: 24
31.173.115.0/24 maxlen: 24
31.173.116.0/24 maxlen: 24
31.173.113.0/24 maxlen: 24
31.173.114.0/24 maxlen: 24
77.233.173.0/24 maxlen: 24
77.233.178.0/24 maxlen: 24
77.233.181.0/24 maxlen: 24
77.233.182.0/24 maxlen: 24
77.233.185.0/24 maxlen: 24
77.233.180.0/24 maxlen: 24
77.233.186.0/24 maxlen: 24
77.233.190.0/24 maxlen: 24
77.233.188.0/24 maxlen: 24
77.233.191.0/24 maxlen: 24
212.44.64.0/19 maxlen: 24
195.16.96.0/19 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
185.3.32.0/22 maxlen: 24
86.109.192.0/19 maxlen: 24
188.170.98.0/24 maxlen: 24
188.170.97.0/24 maxlen: 24
188.170.96.0/24 maxlen: 24
188.170.103.0/24 maxlen: 24
188.170.100.0/24 maxlen: 24
188.170.105.0/24 maxlen: 24
188.170.102.0/24 maxlen: 24
188.170.99.0/24 maxlen: 24
188.170.104.0/24 maxlen: 24
188.170.101.0/24 maxlen: 24
188.170.106.0/24 maxlen: 24
188.170.111.0/24 maxlen: 24
188.170.108.0/24 maxlen: 24
188.170.110.0/24 maxlen: 24
188.170.107.0/24 maxlen: 24
212.69.96.0/19 maxlen: 24
188.170.109.0/24 maxlen: 24
188.170.112.0/24 maxlen: 24
188.170.114.0/24 maxlen: 24
188.170.113.0/24 maxlen: 24
188.170.116.0/24 maxlen: 24
188.170.115.0/24 maxlen: 24
188.170.118.0/24 maxlen: 24
188.170.117.0/24 maxlen: 24
188.170.119.0/24 maxlen: 24
188.170.122.0/24 maxlen: 24
188.170.121.0/24 maxlen: 24
188.170.124.0/24 maxlen: 24
188.170.123.0/24 maxlen: 24
188.170.125.0/24 maxlen: 24
188.170.120.0/24 maxlen: 24
188.170.127.0/24 maxlen: 24
188.170.126.0/24 maxlen: 24
78.109.120.0/24 maxlen: 24
78.109.121.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
178.176.96.0/24 maxlen: 24
178.176.98.0/24 maxlen: 24
178.176.97.0/24 maxlen: 24
178.176.102.0/24 maxlen: 24
178.176.99.0/24 maxlen: 24
178.176.101.0/24 maxlen: 24
178.176.103.0/24 maxlen: 24
178.176.100.0/24 maxlen: 24
178.176.118.0/24 maxlen: 24
178.176.115.0/24 maxlen: 24
178.176.117.0/24 maxlen: 24
178.176.114.0/24 maxlen: 24
178.176.116.0/24 maxlen: 24
178.176.123.0/24 maxlen: 24
178.176.120.0/24 maxlen: 24
178.176.125.0/24 maxlen: 24
178.176.122.0/24 maxlen: 24
178.176.119.0/24 maxlen: 24
178.176.124.0/24 maxlen: 24
178.176.121.0/24 maxlen: 24
178.176.126.0/24 maxlen: 24
178.176.127.0/24 maxlen: 24
83.169.217.0/24 maxlen: 24
83.169.218.0/24 maxlen: 24
83.169.219.0/24 maxlen: 24
83.169.220.0/24 maxlen: 24
83.169.223.0/24 maxlen: 24
83.169.221.0/24 maxlen: 24
83.169.222.0/24 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:af:4c:c0:18:a4:2b:92:52:56:9f:fa:ff:44:eb:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 5 14:27:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee0a1f793a5fa8d547e65b2f5551cc3d253049de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:27:cd:c1:83:02:10:fc:3d:70:47:dd:09:2e:
58:0e:ad:82:ec:cf:10:f9:05:1e:9e:80:66:8d:7d:
29:59:2a:12:fd:bc:7f:a6:52:b9:e3:13:78:ad:13:
99:ab:22:4b:8b:92:50:6a:e7:8f:30:80:89:30:f3:
0b:e6:51:08:52:f4:81:33:df:d1:08:27:3f:4d:19:
e8:6f:d3:81:77:8e:8b:81:fd:27:9f:7e:39:6c:6c:
91:71:72:51:24:81:89:a2:e1:3e:79:03:e3:ce:cc:
4c:6c:41:1b:2d:e2:22:fb:bd:20:f9:18:cb:4c:56:
9f:5b:bf:b8:53:53:25:26:d9:d9:27:76:bd:9a:32:
09:fa:a0:36:85:8d:23:7e:40:7c:0e:54:fe:42:d4:
9b:a8:a3:d8:6b:bc:ae:da:1a:b8:0b:59:6d:96:b7:
ce:db:98:2f:64:11:60:85:35:9b:24:3d:05:f1:9c:
40:d1:9c:d3:13:95:ab:ff:bf:a4:a2:ab:a6:fb:bc:
2b:6f:16:8e:bf:38:28:8f:66:0e:9b:31:f0:39:46:
98:11:bd:05:b9:5e:42:81:66:c0:91:76:9e:3b:45:
39:29:a8:2b:db:d5:f4:0d:44:be:30:3b:21:8c:7b:
2f:0a:c0:36:bf:18:0c:49:be:09:32:7c:85:aa:9d:
7e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:0A:1F:79:3A:5F:A8:D5:47:E6:5B:2F:55:51:CC:3D:25:30:49:DE
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/7gofeTpfqNVH5lsvVVHMPSUwSd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.104.0-31.173.119.255
77.233.160.0/19
78.109.120.0/23
83.169.217.0-83.169.223.255
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.96.0/21
178.176.114.0-178.176.127.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.96.0/19
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
86:d5:5d:25:81:db:a0:2a:fc:fc:fb:c5:46:ef:77:33:61:8b:
61:31:f9:73:64:00:66:81:a5:01:92:d5:72:fc:39:32:16:dc:
57:19:32:e2:7f:76:a9:69:00:e0:cd:27:43:57:39:b2:f2:19:
99:89:12:95:67:a7:24:d6:2d:72:af:e9:00:ea:25:1f:32:a6:
f3:0d:e0:20:fb:35:76:25:60:a4:73:09:8c:5b:0f:89:4e:cd:
ff:af:c6:bc:f8:dc:a3:ca:46:64:c7:cf:75:00:53:ca:2c:2b:
34:ba:c8:aa:03:be:6c:fc:75:b7:ce:6b:27:1f:a1:de:2a:5e:
1c:21:a5:fd:a3:61:50:b0:3e:8a:bf:4b:8b:c3:97:e0:2f:d2:
a3:41:ba:f3:8f:09:0b:a5:09:6c:45:73:92:ad:3c:b9:07:fa:
63:1e:4e:10:bb:92:36:52:21:5b:ec:81:de:6f:d8:e8:99:e2:
21:a9:17:7c:b8:31:ac:8a:84:e4:09:fc:6c:9c:f3:ea:e2:d1:
83:dc:70:76:22:d1:e3:62:a0:92:5f:10:ec:39:b5:6b:a0:79:
f1:8d:20:3c:a0:d1:c9:48:38:9a:52:5e:fb:7b:c3:69:c8:3a:
26:a3:c8:da:68:80:90:c7:10:d4:14:3c:1d:4c:3d:67:43:b3:
f4:ca:c4:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:26:01 2025 by rpki-client