Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/7teakOfjnc1e4qhlPg1t5njjeds.roa
File: 7teakOfjnc1e4qhlPg1t5njjeds.roa (raw, json)
Hash identifier: wKwwJ2KbKjdOVPizQja4nDVmsHBlkNCWDYRCGYgmLlg=
Subject key identifier: EE:D7:9A:90:E7:E3:9D:CD:5E:E2:A8:65:3E:0D:6D:E6:78:E3:79:DB
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F219E143A9DD8A95C7520F715D929976
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/7teakOfjnc1e4qhlPg1t5njjeds.roa
Signing time: Thu 08 Dec 2022 14:18:13 +0000
ROA not before: Thu 08 Dec 2022 14:18:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31088
IP address blocks: 212.69.96.0/19 maxlen: 24
212.14.160.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
195.16.96.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f2:19:e1:43:a9:dd:8a:95:c7:52:0f:71:5d:92:99:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 14:18:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eed79a90e7e39dcd5ee2a8653e0d6de678e379db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ce:18:de:53:64:f6:97:a9:1e:42:09:06:12:
cb:98:0e:1c:63:90:15:47:cc:6e:6e:e8:30:5a:ae:
ff:3c:99:d2:91:74:98:11:38:be:38:df:2a:6f:e6:
39:4d:99:86:19:ff:68:da:67:54:cb:20:c6:4c:32:
67:40:b8:20:64:2a:f3:85:c0:69:1f:85:26:7e:56:
4e:4f:db:86:8c:14:64:09:de:b0:48:83:ad:87:7f:
c4:03:56:65:a6:19:df:5f:7c:d6:0c:56:43:eb:03:
28:b5:99:7c:1a:1f:38:64:08:a7:4f:f1:3e:70:ba:
ba:b3:d4:c9:8e:55:e0:fb:dd:7c:ac:9b:69:79:42:
f7:5f:d9:c8:ad:c4:c5:50:f0:d6:b5:af:6b:5f:72:
08:02:b6:0f:d4:fb:f5:8c:1a:59:6c:8b:43:19:f2:
5f:34:5d:ef:61:ac:d1:1b:7d:74:fd:ea:0e:34:a5:
18:d3:72:42:e1:9b:f7:e5:1f:eb:e5:d4:86:26:0c:
6e:ea:f0:8e:b5:ac:f6:f7:d0:ca:ac:b9:4e:4d:1c:
8b:b5:7c:3c:6e:e0:e5:5e:82:5d:82:83:a6:52:50:
46:f3:5f:a9:12:80:b2:28:72:27:ce:90:90:6c:c0:
bd:9a:f7:52:9d:c9:a2:4e:b9:cb:51:89:e9:51:d1:
08:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:D7:9A:90:E7:E3:9D:CD:5E:E2:A8:65:3E:0D:6D:E6:78:E3:79:DB
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/7teakOfjnc1e4qhlPg1t5njjeds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
13:fc:16:0d:43:c6:08:eb:34:34:6e:43:8d:3a:66:d4:23:8f:
b6:28:f5:18:d2:af:a3:35:36:8c:1f:d0:b0:a0:05:70:c5:9d:
9f:25:8e:d7:60:a9:5a:a6:b5:bc:5e:e3:0e:c6:d8:a8:b0:73:
d3:0a:2a:94:a5:5c:cb:e3:22:07:52:cc:cc:dd:ad:21:d9:3f:
5e:ef:e3:a5:9d:3f:7a:1b:0d:49:bd:51:a9:9d:c8:46:07:92:
5d:7d:9b:2f:67:2b:68:16:5c:8e:d2:4a:ea:56:23:5f:cd:88:
62:28:ef:9c:a9:6c:37:5f:1b:5f:ff:f5:fd:6c:0c:2e:79:de:
89:f2:ab:e2:5a:9a:44:cf:66:e0:77:02:bd:64:22:b0:8a:8b:
9b:25:cf:fa:7d:a7:00:9c:5a:bf:40:97:27:b2:84:3d:51:8a:
ce:89:9e:00:54:26:bb:c8:5f:d3:6c:28:63:56:90:44:ee:c4:
48:d2:b2:6f:f1:2e:85:64:19:1d:1a:cf:a0:a5:f6:dc:a2:85:
28:31:79:86:19:83:bf:a8:9d:3d:cc:9f:39:bc:fb:30:bd:93:
19:3b:d6:98:08:c8:c9:b8:6c:e4:74:b4:52:45:6d:25:8a:5f:
5d:ed:31:71:8b:83:d6:8a:c5:95:96:df:3e:b8:4d:90:a3:8b:
50:ab:41:d3
-----BEGIN CERTIFICATE-----
MIIFXDCCBESgAwIBAgISAYTyGeFDqd2KlcdSD3Fdkpl2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjA4MTQxODEzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZWQ3OWE5MGU3ZTM5ZGNkNWVlMmE4NjUzZTBkNmRlNjc4ZTM3OWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlc4Y3lNk9pepHkIJBhLLmA4cY5AV
R8xubugwWq7/PJnSkXSYETi+ON8qb+Y5TZmGGf9o2mdUyyDGTDJnQLggZCrzhcBp
H4UmflZOT9uGjBRkCd6wSIOth3/EA1ZlphnfX3zWDFZD6wMotZl8Gh84ZAinT/E+
cLq6s9TJjlXg+918rJtpeUL3X9nIrcTFUPDWta9rX3IIArYP1Pv1jBpZbItDGfJf
NF3vYazRG310/eoONKUY03JC4Zv35R/r5dSGJgxu6vCOtaz299DKrLlOTRyLtXw8
buDlXoJdgoOmUlBG81+pEoCyKHInzpCQbMC9mvdSncmiTrnLUYnpUdEICQIDAQAB
o4ICaDCCAmQwHQYDVR0OBBYEFO7XmpDn453NXuKoZT4NbeZ443nbMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvN3RlYWtPZmpuYzFlNHFobFBnMXQ1bmpqZWRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH4GCCsGAQUFBwEHAQH/BG8wbTBrBAIAATBlAwQCudKMAwQD
vF6oAwMAvKIDBALByeQDBAXDBYADBAXDEGADBAHDTnQDBADDlW8DBAXD5kADBAXU
DqADBAXULEADBAXURWADBAXUd6ADBAXVmqADBAXVqCADBAbV80ADBATZc1AwDQYJ
KoZIhvcNAQELBQADggEBABP8Fg1DxgjrNDRuQ406ZtQjj7Yo9RjSr6M1Nowf0LCg
BXDFnZ8ljtdgqVqmtbxe4w7G2Kiwc9MKKpSlXMvjIgdSzMzdrSHZP17v46WdP3ob
DUm9UamdyEYHkl19my9nK2gWXI7SSupWI1/NiGIo75ypbDdfG1//9f1sDC553ony
q+JamkTPZuB3Ar1kIrCKi5slz/p9pwCcWr9AlyeyhD1Ris6JngBUJrvIX9NsKGNW
kETuxEjSsm/xLoVkGR0az6Cl9tyihSgxeYYZg7+onT3Mnzm8+zC9kxk71pgIyMm4
bOR0tFJFbSWKX13tMXGLg9aKxZWW3z64TZCji1CrQdM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:33 2024 by rpki-client on console-ams.rpki-client.org