Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/9Lfwr_q1Vuh7-0NMxTlNyylDsGk.roa
File: 9Lfwr_q1Vuh7-0NMxTlNyylDsGk.roa (raw, json)
Hash identifier: d5Qy9rS0kKflCPrpMuntX5mxOgEL+HXQa7YsazT2fCQ=
Subject key identifier: F4:B7:F0:AF:FA:B5:56:E8:7B:FB:43:4C:C5:39:4D:CB:29:43:B0:69
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F219E71D628CDC8051153DE15B5AA280
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/9Lfwr_q1Vuh7-0NMxTlNyylDsGk.roa
Signing time: Thu 08 Dec 2022 14:18:14 +0000
ROA not before: Thu 08 Dec 2022 14:18:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31268
IP address blocks: 212.14.160.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f2:19:e7:1d:62:8c:dc:80:51:15:3d:e1:5b:5a:a2:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 14:18:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4b7f0affab556e87bfb434cc5394dcb2943b069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:65:f7:b1:2d:c9:8c:3d:62:b8:b7:24:f2:0e:
f8:50:4b:a4:89:2d:f6:6e:9f:7d:49:70:3b:62:73:
53:a8:31:f3:a5:b1:29:a1:43:2c:3f:9b:e9:eb:12:
51:42:0a:97:76:00:28:d8:ee:37:b5:8b:d5:69:2f:
0d:fd:9f:1c:2c:0e:d2:cd:81:c7:01:e3:22:06:a6:
f8:10:14:b7:78:9f:00:07:94:e7:c3:aa:63:d7:a5:
96:3c:15:93:4d:f4:30:1d:dd:4e:a8:3f:d5:75:b0:
5e:fc:b2:7e:f7:97:80:58:32:70:19:66:33:ab:07:
53:42:16:4b:91:2e:66:df:8e:2f:f4:30:3c:3c:e5:
55:35:5e:28:57:3e:87:f7:04:8d:21:3e:4c:a0:ad:
cd:d0:02:44:ab:11:96:96:7d:10:7b:48:d0:93:52:
a4:2b:f0:57:3e:5e:7e:1b:34:15:0f:1d:b0:66:ba:
47:dd:3d:61:4e:df:91:f0:9a:64:89:90:ae:50:a6:
ed:19:2b:ee:d0:86:bd:f7:7f:4d:ab:18:0b:df:9d:
fb:43:ae:6b:d6:4a:db:12:60:a2:ad:13:71:fc:2b:
fa:48:8d:5a:3a:0a:5c:66:37:0b:b5:a7:17:8c:38:
f4:8c:99:c3:a6:2e:a7:1f:4d:a4:89:4d:49:30:6f:
4a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B7:F0:AF:FA:B5:56:E8:7B:FB:43:4C:C5:39:4D:CB:29:43:B0:69
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/9Lfwr_q1Vuh7-0NMxTlNyylDsGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
7b:f8:34:ff:c4:ea:79:4e:ab:e2:19:46:2a:39:e6:96:ff:e1:
af:5c:25:30:43:48:66:d7:d7:48:e2:46:0e:48:ac:3b:b7:dc:
4d:83:35:65:6f:70:0d:12:b6:b2:38:31:68:1f:34:31:d0:da:
d7:40:ff:2d:05:dc:20:c3:f9:93:8c:54:cb:24:f5:60:71:45:
f2:b3:83:07:90:20:93:14:73:ed:4d:0f:b0:40:02:74:7b:2f:
41:d2:5e:c1:04:39:04:11:76:60:3b:10:a9:b9:f1:5e:4a:d3:
d4:23:29:30:42:9d:e2:f9:4e:0c:1a:da:b4:62:8f:01:4e:23:
70:5c:de:8d:dc:2c:f3:a1:d0:37:af:cb:36:c9:39:d6:f8:c8:
cb:4e:d2:d7:f7:f6:c2:5a:1c:c8:43:ba:3e:4b:54:05:ff:31:
5f:08:1c:80:ee:c0:13:02:b9:a9:22:ac:f2:72:6e:e3:c7:44:
42:97:47:fb:e0:60:36:fc:58:9d:04:82:4f:a6:b4:8d:3c:40:
84:61:09:6b:fc:94:07:ad:66:e4:f4:8d:bf:b5:92:6e:30:46:
d1:6f:71:67:2f:5b:2d:f5:8e:1f:fb:a8:51:b4:37:1e:ff:68:
04:46:25:69:df:bb:27:1a:a9:43:16:51:13:5e:54:b6:96:ff:
a9:49:48:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:34 2024 by rpki-client on console-ams.rpki-client.org