Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/Ajtdz1Ii-uKzcvRwDyjRR1x8jLA.roa
File: Ajtdz1Ii-uKzcvRwDyjRR1x8jLA.roa (raw, json)
Hash identifier: svIWiJ8XzjQVdwV1JU9U3vJOTUDWSvv6EbS/Gmw4zXI=
Subject key identifier: 02:3B:5D:CF:52:22:FA:E2:B3:72:F4:70:0F:28:D1:47:5C:7C:8C:B0
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01847659028C3A004EA9551115EC9CF2146A
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/Ajtdz1Ii-uKzcvRwDyjRR1x8jLA.roa
Signing time: Mon 14 Nov 2022 13:34:15 +0000
ROA not before: Mon 14 Nov 2022 13:34:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31195
IP address blocks: 109.188.0.0/16 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
79.171.8.0/21 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
178.178.64.0/24 maxlen: 24
178.178.71.0/24 maxlen: 24
178.178.66.0/24 maxlen: 24
178.178.65.0/24 maxlen: 24
178.178.68.0/24 maxlen: 24
178.178.67.0/24 maxlen: 24
178.178.70.0/24 maxlen: 24
178.178.73.0/24 maxlen: 24
185.3.32.0/22 maxlen: 24
178.178.72.0/24 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
31.173.225.0/24 maxlen: 24
31.173.226.0/24 maxlen: 24
78.25.64.0/18 maxlen: 24
185.210.140.0/22 maxlen: 24
31.173.132.0/23 maxlen: 23
212.119.160.0/19 maxlen: 24
31.173.134.0/23 maxlen: 23
31.173.135.0/24 maxlen: 24
178.176.233.0/24 maxlen: 24
178.176.235.0/24 maxlen: 24
178.176.234.0/24 maxlen: 24
31.173.143.0/24 maxlen: 24
80.247.176.0/20 maxlen: 24
37.28.188.0/22 maxlen: 22
37.28.191.0/24 maxlen: 24
37.28.190.0/24 maxlen: 24
91.193.212.0/22 maxlen: 24
37.29.89.0/24 maxlen: 24
37.29.91.0/24 maxlen: 24
37.29.88.0/22 maxlen: 22
37.29.95.0/24 maxlen: 24
37.29.92.0/22 maxlen: 22
37.29.94.0/24 maxlen: 24
188.170.233.0/24 maxlen: 24
188.170.231.0/24 maxlen: 24
188.170.228.0/23 maxlen: 23
188.170.232.0/24 maxlen: 24
188.170.230.0/24 maxlen: 24
188.170.236.0/24 maxlen: 24
188.170.234.0/24 maxlen: 24
188.170.239.0/24 maxlen: 24
188.170.237.0/24 maxlen: 24
188.170.235.0/24 maxlen: 24
31.173.231.0/24 maxlen: 24
31.173.228.0/23 maxlen: 23
31.173.228.0/24 maxlen: 24
31.173.230.0/24 maxlen: 24
31.173.232.0/23 maxlen: 23
31.173.229.0/24 maxlen: 24
31.173.239.0/24 maxlen: 24
31.173.236.0/23 maxlen: 23
31.173.238.0/24 maxlen: 24
31.173.235.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
37.29.43.0/24 maxlen: 24
95.137.0.0/17 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
77.233.160.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
81.24.128.0/20 maxlen: 24
195.78.116.0/23 maxlen: 24
78.41.100.0/22 maxlen: 24
83.149.52.0/22 maxlen: 22
83.169.192.0/18 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
46.232.200.0/21 maxlen: 24
62.64.0.0/19 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:76:59:02:8c:3a:00:4e:a9:55:11:15:ec:9c:f2:14:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Nov 14 13:34:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=023b5dcf5222fae2b372f4700f28d1475c7c8cb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e8:ed:c8:df:31:a4:6f:89:06:d3:3b:3f:ec:
11:94:8e:12:55:fb:66:86:c1:f7:ad:31:2a:0e:6d:
3a:d0:cc:9d:95:6d:bd:35:04:92:7c:26:6e:e6:67:
6d:5d:5b:ef:db:12:ca:fc:fa:a6:a5:dc:83:83:f1:
f7:81:19:b3:fb:7d:11:f1:c0:49:f0:f6:10:f5:c3:
42:bb:45:00:a7:2f:67:9d:4d:49:03:42:d2:d3:70:
ef:b9:04:06:84:8d:ba:57:40:06:31:2a:58:3b:02:
23:c6:ab:c2:17:0d:b6:a7:b5:ca:69:ed:6f:b7:8b:
26:25:0a:96:a1:f6:84:0a:7f:48:60:28:2d:66:21:
69:31:0b:95:c1:92:1d:56:0e:8c:2f:52:78:e6:fd:
99:28:1f:ac:4b:5d:5b:30:e3:fc:74:93:88:a3:9d:
f6:15:c7:fb:7f:0c:1c:90:f1:bc:0b:97:ab:29:be:
38:80:1b:94:b3:09:48:1c:48:41:b9:52:ce:ea:1b:
f3:1a:61:89:3e:e2:fb:42:34:44:60:93:79:06:f7:
fb:f1:95:c2:d4:d9:5c:b0:46:54:d2:7f:2f:ea:71:
db:0c:73:51:f1:00:6d:4e:3d:c1:2d:c3:de:ae:13:
88:37:99:30:e6:53:a7:08:9b:87:a1:3e:3a:30:dd:
58:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:3B:5D:CF:52:22:FA:E2:B3:72:F4:70:0F:28:D1:47:5C:7C:8C:B0
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/Ajtdz1Ii-uKzcvRwDyjRR1x8jLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.132.0/22
31.173.143.0/24
31.173.225.0-31.173.226.255
31.173.228.0-31.173.233.255
31.173.235.0-31.173.239.255
37.28.188.0/22
37.29.43.0/24
37.29.88.0/21
46.232.200.0/21
62.64.0.0/19
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.24.128.0/20
83.149.52.0/22
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.233.0-178.176.235.255
178.178.64.0-178.178.68.255
178.178.70.0-178.178.73.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.228.0-188.170.237.255
188.170.239.0/24
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
77:e3:d5:71:7a:ba:ef:15:26:b9:bd:8a:94:49:5d:c1:ae:df:
e6:2a:ae:0b:cc:99:34:fe:98:79:b2:b5:a0:4f:82:94:47:79:
01:c5:c9:13:77:fc:ad:66:7b:49:96:52:55:dd:d5:2e:d8:58:
9f:aa:e8:92:52:f7:58:52:0b:09:43:97:e1:75:32:08:5d:0b:
7a:3f:ca:0b:96:9d:51:2d:cc:ff:e0:6d:a7:54:b1:a6:61:a0:
82:e6:75:a1:b6:4a:5a:a3:61:70:df:85:79:4b:6d:b9:ab:c0:
6c:1a:b9:4c:63:7d:19:3b:70:e9:25:14:4a:70:11:cf:4c:5b:
53:d7:6b:30:33:21:6b:ff:c1:87:5c:ad:33:bb:b8:e3:f2:e9:
63:a7:ab:0d:b7:a5:b2:f6:0a:13:a5:9c:90:1c:63:48:3f:3d:
4f:fe:1a:bb:d3:d5:db:38:c7:da:10:b5:7c:16:2b:c9:87:e5:
3a:cd:8e:08:04:47:42:f3:c2:f2:5e:11:02:cb:bc:b1:af:46:
c1:c8:e6:86:a2:48:fb:90:e4:fe:40:9a:28:77:83:8d:42:56:
32:52:19:b6:24:f1:64:f5:16:2c:a3:c8:fe:f1:19:61:38:25:
8a:8d:76:5e:41:5c:34:13:5e:d8:cc:e7:e7:58:f5:ff:85:e3:
0e:c9:e4:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:30 2025 by rpki-client