Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/Cptnz9q8WHA_k7_TZ56GVFHTcsI.roa
File: Cptnz9q8WHA_k7_TZ56GVFHTcsI.roa (raw, json)
Hash identifier: 58if6V1uNJdAznS9eFdY+yNN6rLpCl3SczCDQ3l3llY=
Subject key identifier: 0A:9B:67:CF:DA:BC:58:70:3F:93:BF:D3:67:9E:86:54:51:D3:72:C2
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0185053F6ECB2156C58312700DE6A4E31D59
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/Cptnz9q8WHA_k7_TZ56GVFHTcsI.roa
Signing time: Mon 12 Dec 2022 07:32:01 +0000
ROA not before: Mon 12 Dec 2022 07:32:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8263
IP address blocks: 212.14.160.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
178.176.225.0/24 maxlen: 24
178.176.224.0/24 maxlen: 24
178.176.226.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:3f:6e:cb:21:56:c5:83:12:70:0d:e6:a4:e3:1d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 07:32:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a9b67cfdabc58703f93bfd3679e865451d372c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ac:19:e2:26:1d:2e:80:4d:c9:10:61:f0:97:
7e:60:73:59:48:a4:1d:af:34:c6:4a:75:37:e4:6a:
7b:29:78:8e:82:7f:86:b9:e3:76:45:47:75:45:2c:
bd:ad:83:2e:a2:44:23:c8:c7:b8:7f:2a:3b:93:26:
3a:e9:8b:c5:76:7b:c9:7d:96:de:d9:7d:d3:d9:73:
d9:8d:91:0c:7c:05:b8:23:c2:9e:83:1e:68:c2:a3:
7b:ba:36:fc:9f:48:e8:67:eb:6c:8c:0a:db:26:0d:
e7:4c:ae:6b:79:fc:ea:ea:6c:75:1d:bc:71:94:9d:
ff:3a:7a:3a:69:fb:0e:6d:23:c7:8f:58:6e:2f:a3:
45:ce:6d:49:eb:e4:91:f5:f0:d4:bf:e5:cd:63:8d:
e5:a6:24:28:26:47:90:af:d2:6c:29:f3:55:2f:cc:
69:54:7b:ec:d7:d6:6b:d9:41:11:4c:0d:ef:7d:83:
eb:a5:10:98:a7:2a:28:c5:75:44:a3:2d:e0:94:39:
39:fa:b2:c3:05:39:03:b5:b9:b9:a4:f9:ca:5b:52:
1b:b7:f2:23:2c:3b:51:e6:14:c1:5f:a0:92:3c:04:
83:78:a6:fe:f8:b0:ef:6e:d0:1d:aa:dd:7b:90:c6:
6a:83:e8:39:8c:8a:c1:b2:33:94:13:2d:39:49:20:
63:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:9B:67:CF:DA:BC:58:70:3F:93:BF:D3:67:9E:86:54:51:D3:72:C2
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/Cptnz9q8WHA_k7_TZ56GVFHTcsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.176.224.0-178.176.226.255
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
Signature Algorithm: sha256WithRSAEncryption
04:a7:26:e5:09:bb:73:13:3d:b6:b2:b2:80:63:25:b4:4b:a1:
44:9a:5d:a6:50:27:5c:9a:ab:17:5f:af:82:4f:c5:7b:ef:93:
ca:e5:5d:4b:f1:e4:85:a1:94:e8:ab:60:98:58:32:cd:ff:05:
ab:4f:4a:21:85:88:10:4c:7c:fd:91:10:97:9e:fa:fb:40:df:
36:e7:1d:50:87:40:94:3d:4f:41:c4:4e:a2:9b:0d:74:45:39:
de:05:c9:7b:e5:a7:a5:54:a2:9e:b6:a9:69:2f:e8:99:e6:2a:
48:4b:65:3c:44:73:d6:8a:4f:e3:61:33:39:4d:a7:fc:f8:2e:
d9:c2:f3:bc:08:43:4d:3d:f6:c9:30:83:0a:c0:d7:0d:18:a8:
ad:ee:2c:10:9d:44:aa:7b:06:86:e0:cc:03:c4:fb:02:a5:07:
c8:57:68:46:6a:87:81:b9:14:3b:e8:09:80:2b:d0:21:0e:3e:
b8:00:e5:52:05:76:ec:78:fc:49:0a:da:7b:61:63:c6:dd:db:
f3:28:d1:e2:37:6c:f7:7d:8e:2b:d4:8e:99:21:33:8d:b8:72:
38:d4:91:c5:c0:b5:29:9a:8c:1e:fa:a8:6b:99:67:ff:a8:0b:
15:44:74:16:a4:72:d8:8a:87:1a:5a:f8:5e:ef:81:66:c4:bc:
7b:dd:ea:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:24 2024 by rpki-client on console-fra.rpki-client.org