Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/BFAs96sE77Pyqgvd37avvP_H2Lg.roa
File: BFAs96sE77Pyqgvd37avvP_H2Lg.roa (raw, json)
Hash identifier: nVe1BrTUi0A6dmrZhUnW251prukZ5NwpWfM7ukcyrp0=
Subject key identifier: 04:50:2C:F7:AB:04:EF:B3:F2:AA:0B:DD:DF:B6:AF:BC:FF:C7:D8:B8
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F1F51D3CF9E62F03AE4D3E8CE63B4093
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/BFAs96sE77Pyqgvd37avvP_H2Lg.roa
Signing time: Thu 08 Dec 2022 13:38:03 +0000
ROA not before: Thu 08 Dec 2022 13:38:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50928
IP address blocks: 46.29.192.0/21 maxlen: 21
46.29.199.0/24 maxlen: 24
46.29.194.0/24 maxlen: 24
46.29.196.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
188.170.244.0/23 maxlen: 23
188.170.244.0/24 maxlen: 24
188.170.245.0/24 maxlen: 24
188.170.250.0/24 maxlen: 24
188.170.251.0/24 maxlen: 24
188.170.248.0/24 maxlen: 24
188.170.249.0/24 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 21
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
212.69.96.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
178.176.250.0/24 maxlen: 24
178.176.251.0/24 maxlen: 24
178.176.252.0/24 maxlen: 24
178.176.248.0/24 maxlen: 24
178.176.253.0/24 maxlen: 24
178.176.249.0/24 maxlen: 24
37.29.81.0/24 maxlen: 24
37.29.80.0/24 maxlen: 24
37.29.83.0/24 maxlen: 24
37.29.80.0/22 maxlen: 22
37.29.82.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
31.173.248.0/21 maxlen: 21
31.173.248.0/24 maxlen: 24
31.173.252.0/24 maxlen: 24
31.173.253.0/24 maxlen: 24
31.173.249.0/24 maxlen: 24
31.173.250.0/24 maxlen: 24
31.173.251.0/24 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
178.23.149.0/24 maxlen: 24
178.23.148.0/24 maxlen: 24
178.23.151.0/24 maxlen: 24
178.23.150.0/24 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:f5:1d:3c:f9:e6:2f:03:ae:4d:3e:8c:e6:3b:40:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 13:38:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04502cf7ab04efb3f2aa0bdddfb6afbcffc7d8b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:27:93:70:a3:77:d1:37:21:8b:b2:0e:f6:34:
06:c7:17:57:57:2a:96:38:85:06:fe:ab:6b:8d:2e:
6b:8e:ea:52:ca:35:7f:ca:68:a6:68:61:6c:07:fa:
4a:d2:cf:39:26:27:58:2c:fe:65:97:df:d5:e6:91:
54:f5:7e:eb:df:0a:d2:70:63:81:cf:2b:ac:09:e5:
d2:f3:92:9e:81:9b:39:c0:60:f1:2a:32:e9:f7:a5:
74:9d:2f:b1:1a:46:e5:cf:12:52:9e:3c:62:f7:6a:
5f:f3:bb:00:d3:cd:32:70:50:38:5b:58:42:c8:e8:
4b:f3:82:d2:df:63:02:6d:99:63:dd:30:e2:a0:a6:
c1:10:3d:28:e1:f6:18:44:1a:aa:93:06:56:9d:d2:
0f:6c:61:53:80:39:79:9f:77:dc:b3:74:d4:9e:ba:
fc:e7:69:cb:4b:ff:ed:70:6e:20:11:56:94:f6:0a:
e2:76:e1:c2:f2:16:2c:a5:19:f4:34:45:0f:2c:1f:
6f:b3:2e:9d:04:08:78:3a:6f:28:65:50:4e:07:42:
83:4b:27:02:b9:99:94:bb:48:63:e6:aa:f3:a7:9d:
2c:65:eb:54:6a:a0:24:b8:95:94:62:48:1c:a2:44:
b3:c1:b3:3b:87:88:50:62:72:99:f7:fc:96:3e:a2:
29:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:50:2C:F7:AB:04:EF:B3:F2:AA:0B:DD:DF:B6:AF:BC:FF:C7:D8:B8
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/BFAs96sE77Pyqgvd37avvP_H2Lg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.248.0/21
37.29.80.0/22
46.29.192.0/21
178.23.144.0/21
178.176.248.0-178.176.253.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.244.0/23
188.170.248.0/22
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
33:d6:d0:37:d2:5e:e6:89:1d:c5:73:34:eb:de:f5:60:00:0d:
d8:0f:6d:33:27:30:63:96:9b:60:42:78:38:c3:6d:ca:d5:56:
ae:1a:dd:2b:b6:b9:0b:0e:08:19:26:a5:c4:17:cb:42:74:17:
6d:9e:a5:58:31:8c:fe:bb:bb:b9:32:44:b4:de:ec:41:42:47:
95:24:bd:16:99:2a:79:00:5a:09:f6:7a:83:b4:59:69:45:e5:
52:73:b3:02:4f:f1:00:66:33:b1:f4:fe:f8:16:21:af:6c:5a:
65:ce:ad:f3:83:1f:0c:ec:b7:58:9a:c5:d7:05:df:cc:78:42:
2d:9f:ea:9b:7f:ee:86:55:e3:e2:6e:86:37:19:7d:aa:57:70:
ec:92:ee:80:85:c6:d3:2b:5f:d5:5e:8c:8d:6a:27:db:4f:da:
f9:49:fa:94:51:64:27:91:c3:d4:8a:0a:03:b2:f2:6b:5f:9a:
02:a0:26:a4:72:96:bb:67:42:d1:c1:8d:b5:08:f5:9a:79:44:
bf:30:62:5f:40:6b:07:1f:06:d3:b5:c5:32:77:96:10:c6:c8:
dc:20:e9:e2:d3:4c:15:d4:3d:0d:ec:23:28:0a:83:c6:79:1b:
b9:4d:15:b3:a2:02:d2:2f:e3:30:3f:5c:01:50:69:da:43:ff:
fc:f2:36:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:28 2025 by rpki-client