Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/BEsYb_tM6mimZR7SwkRUmveXoZs.roa
File: BEsYb_tM6mimZR7SwkRUmveXoZs.roa (raw, json)
Hash identifier: 8xGnbKj8qOtoFSS5aTeWcaGD6Jme3WQ8J1Asgnxrgr8=
Subject key identifier: 04:4B:18:6F:FB:4C:EA:68:A6:65:1E:D2:C2:44:54:9A:F7:97:A1:9B
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F1F51C2BCD20BAB49682E9956BD392C8
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/BEsYb_tM6mimZR7SwkRUmveXoZs.roa
Signing time: Thu 08 Dec 2022 13:38:03 +0000
ROA not before: Thu 08 Dec 2022 13:38:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42891
IP address blocks: 212.14.160.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
91.193.212.0/22 maxlen: 22
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:f5:1c:2b:cd:20:ba:b4:96:82:e9:95:6b:d3:92:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 13:38:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=044b186ffb4cea68a6651ed2c244549af797a19b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3e:40:a5:6c:c0:34:dd:df:7d:55:4d:16:36:
75:18:20:df:2d:c1:5f:9a:7a:28:f7:3b:6d:b3:f8:
e3:24:07:b3:76:db:72:8f:27:03:2b:67:ff:10:ab:
6c:85:eb:4a:a6:bb:03:7f:7b:82:d1:7a:fe:fa:60:
9c:41:2e:c4:b3:f8:e2:d0:d5:1c:52:bb:12:11:59:
b9:5c:8d:44:04:a9:d3:4c:13:6b:d3:5c:c6:9c:9c:
1f:00:c2:be:d9:9b:b2:1f:0b:a0:da:97:71:92:17:
b4:12:4c:7f:41:37:8d:d1:b9:54:04:24:4b:d7:11:
0b:df:f6:57:b1:2d:72:5e:56:42:4f:89:31:65:77:
a0:a1:de:87:a4:2b:8a:34:9b:45:79:f3:77:83:24:
83:fe:00:0b:49:2d:2a:ec:d8:e9:8f:ee:37:8a:c7:
3e:49:e8:40:50:f0:76:07:b7:77:be:45:b5:be:d2:
53:98:be:25:fc:10:c8:7a:0d:ca:a7:4a:d3:fa:ce:
bd:bc:41:10:67:a0:5d:7d:5c:c2:80:e1:2f:fb:8e:
cc:af:75:bc:e4:74:28:94:28:16:cc:ec:9c:06:2e:
fb:71:f7:18:28:f3:14:9e:6f:3c:5e:fa:7b:36:76:
b1:41:7c:14:70:d2:c5:bd:cc:23:26:48:85:91:68:
02:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:4B:18:6F:FB:4C:EA:68:A6:65:1E:D2:C2:44:54:9A:F7:97:A1:9B
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/BEsYb_tM6mimZR7SwkRUmveXoZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.212.0/22
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
6f:9a:76:45:3f:4d:65:74:c7:f2:55:be:40:54:8f:e9:42:80:
15:92:84:41:47:a4:cf:60:16:bc:36:9f:bc:9c:b5:09:22:05:
d9:22:e0:a0:8c:d2:99:8e:bd:d4:fb:11:82:71:ba:6f:05:cc:
f9:4d:7d:fe:34:ed:0f:1b:97:38:09:8d:17:d1:bb:bc:d3:f0:
f2:4c:11:cc:2c:2c:94:67:bd:99:4b:36:55:b3:e4:2d:7f:d1:
4e:30:56:49:28:42:9a:1c:f4:f0:7b:52:49:4d:db:da:ff:7a:
92:d2:c7:c9:a6:b2:3e:32:7f:20:d2:a9:2e:2e:ff:48:41:82:
0b:75:2e:54:7d:d2:bb:3e:b9:dd:5c:e6:5e:e9:fd:e7:55:09:
0f:a9:13:92:d8:f8:18:3f:43:9f:81:60:48:62:cd:59:9a:9b:
0e:2a:03:75:57:f3:01:be:61:13:f5:a9:18:cf:4a:45:04:14:
53:d6:28:2d:57:80:a2:cb:12:1f:42:36:4b:c5:8e:39:63:86:
44:4a:df:24:39:c9:ee:c5:e1:39:3b:69:f3:b9:d0:c2:62:22:
11:ea:be:f1:fa:22:41:d2:3f:5f:f5:0c:38:b0:40:8d:9c:3d:
d5:3a:c0:ac:95:f4:47:40:df:a8:3a:b8:f5:72:86:54:37:3c:
1d:35:fd:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:33:02 2025 by rpki-client