Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/D2YsSOLMYmw0pEB6R1jSG9ZN1KU.roa
File: D2YsSOLMYmw0pEB6R1jSG9ZN1KU.roa (raw, json)
Hash identifier: eXyF8aS6/vC079PPBUG58N38onhhf5oumuuwwA4gZhk=
Subject key identifier: 0F:66:2C:48:E2:CC:62:6C:34:A4:40:7A:47:58:D2:1B:D6:4D:D4:A5
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01850530C980D54707A2A3E54C8CFF8FDB8C
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/D2YsSOLMYmw0pEB6R1jSG9ZN1KU.roa
Signing time: Mon 12 Dec 2022 07:16:01 +0000
ROA not before: Mon 12 Dec 2022 07:16:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50928
IP address blocks: 46.29.192.0/21 maxlen: 21
46.29.199.0/24 maxlen: 24
46.29.194.0/24 maxlen: 24
46.29.196.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
188.170.244.0/23 maxlen: 23
188.170.244.0/24 maxlen: 24
188.170.245.0/24 maxlen: 24
188.170.250.0/24 maxlen: 24
188.170.251.0/24 maxlen: 24
188.170.252.0/24 maxlen: 24
188.170.248.0/24 maxlen: 24
188.170.249.0/24 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 21
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
212.119.160.0/19 maxlen: 24
178.176.250.0/24 maxlen: 24
178.176.251.0/24 maxlen: 24
178.176.252.0/24 maxlen: 24
178.176.248.0/24 maxlen: 24
178.176.253.0/24 maxlen: 24
178.176.249.0/24 maxlen: 24
37.29.81.0/24 maxlen: 24
37.29.80.0/24 maxlen: 24
37.29.83.0/24 maxlen: 24
37.29.80.0/22 maxlen: 22
37.29.82.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
31.173.248.0/21 maxlen: 21
31.173.248.0/24 maxlen: 24
31.173.252.0/24 maxlen: 24
31.173.253.0/24 maxlen: 24
31.173.249.0/24 maxlen: 24
31.173.250.0/24 maxlen: 24
31.173.251.0/24 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
188.162.0.0/16 maxlen: 24
178.23.149.0/24 maxlen: 24
178.23.148.0/24 maxlen: 24
178.23.151.0/24 maxlen: 24
178.23.150.0/24 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:30:c9:80:d5:47:07:a2:a3:e5:4c:8c:ff:8f:db:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 07:16:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f662c48e2cc626c34a4407a4758d21bd64dd4a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c9:f9:7c:38:36:a4:0f:76:c5:2a:0b:7d:db:
ea:7c:2c:c2:ae:71:de:c5:7b:2d:27:4e:70:b3:32:
2b:8c:24:31:d2:b9:cd:a1:2e:82:49:6d:1f:3c:9a:
83:73:31:9e:ca:f6:45:c2:64:04:99:45:04:18:f6:
8a:1c:b5:af:05:31:b8:0d:00:b3:d7:e7:7b:54:99:
ae:b0:b1:6f:9a:d8:54:b8:b3:34:48:e0:e1:5c:81:
eb:d3:0c:ec:1a:16:81:3d:c5:b3:3d:81:16:30:7f:
19:35:ea:15:80:a1:99:4a:be:8f:c9:01:f6:53:2b:
04:d0:dd:65:10:b2:99:61:14:65:f0:fa:6f:c3:33:
d9:7a:9d:5e:ab:24:a9:d9:a5:2b:dd:c6:6d:43:1d:
54:01:92:4e:09:96:6a:26:8e:8d:44:b6:0a:86:09:
83:9b:97:39:bf:71:c8:f9:a3:f1:01:e8:57:3d:ee:
42:51:df:14:0a:28:af:40:11:c3:d9:30:9c:11:02:
7b:78:03:ad:d6:f7:72:3f:19:7f:10:d8:0b:b0:3d:
32:3f:4f:e6:90:6c:03:e0:2a:be:40:f7:60:7d:1e:
63:af:c9:fb:e7:a2:18:e1:5d:f1:8a:86:6c:c0:9e:
12:7d:84:9b:3d:2b:d3:1d:a7:a8:2b:e3:dc:a7:df:
b8:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:66:2C:48:E2:CC:62:6C:34:A4:40:7A:47:58:D2:1B:D6:4D:D4:A5
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/D2YsSOLMYmw0pEB6R1jSG9ZN1KU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.248.0/21
37.29.80.0/22
46.29.192.0/21
178.23.144.0/21
178.176.248.0-178.176.253.255
188.162.0.0/16
188.170.244.0/23
188.170.248.0-188.170.252.255
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
47:83:19:a9:21:0d:bb:c2:06:b8:6e:28:01:25:47:5e:57:e1:
62:a1:b3:09:10:7a:1f:e7:6b:8e:cc:dc:96:13:b5:03:b8:37:
f0:b1:d1:0a:84:fe:33:77:6f:09:9f:da:3e:8f:a2:ad:15:69:
eb:18:47:35:8a:58:63:67:1f:2e:86:4f:df:fb:46:5f:ca:44:
64:b9:2e:db:de:bc:34:62:26:11:5f:26:55:c5:21:0d:79:f0:
d2:5f:38:e5:2b:db:c0:33:ae:6e:d7:dd:a6:a6:9a:c3:17:09:
ec:3a:45:d0:64:92:d6:54:83:6e:d2:7d:26:7f:b3:1e:b9:c7:
7b:a2:cd:7c:ba:f2:98:dc:37:eb:f9:72:37:77:60:71:f5:6a:
36:98:57:59:72:82:03:02:11:2e:34:e9:9d:5b:85:d5:a7:7d:
a1:7f:4a:d4:76:ae:68:3f:b2:ce:8b:04:d3:0f:db:5d:40:69:
d4:f1:73:55:f1:11:ba:d0:ef:4f:b9:db:db:2f:60:3c:2d:b4:
0d:c5:16:bd:3d:22:cf:60:2b:b5:30:39:eb:f5:b9:a1:23:61:
06:c6:fa:91:11:79:93:c8:ed:95:84:98:51:c7:8e:ad:9b:25:
39:7e:4a:6a:23:bf:fd:c7:8e:be:c3:4a:4c:dd:3f:b6:45:4a:
63:d0:57:7f
-----BEGIN CERTIFICATE-----
MIIFjzCCBHegAwIBAgISAYUFMMmA1UcHoqPlTIz/j9uMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjEyMDcxNjAxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjY2MmM0OGUyY2M2MjZjMzRhNDQwN2E0NzU4ZDIxYmQ2NGRkNGE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmsn5fDg2pA92xSoLfdvqfCzCrnHe
xXstJ05wszIrjCQx0rnNoS6CSW0fPJqDczGeyvZFwmQEmUUEGPaKHLWvBTG4DQCz
1+d7VJmusLFvmthUuLM0SODhXIHr0wzsGhaBPcWzPYEWMH8ZNeoVgKGZSr6PyQH2
UysE0N1lELKZYRRl8PpvwzPZep1eqySp2aUr3cZtQx1UAZJOCZZqJo6NRLYKhgmD
m5c5v3HI+aPxAehXPe5CUd8UCiivQBHD2TCcEQJ7eAOt1vdyPxl/ENgLsD0yP0/m
kGwD4Cq+QPdgfR5jr8n756IY4V3xioZswJ4SfYSbPSvTHaeoK+Pcp9+4wQIDAQAB
o4ICmzCCApcwHQYDVR0OBBYEFA9mLEjizGJsNKRAekdY0hvWTdSlMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvRDJZc1NPTE1ZbXcwcEVCNlIxalNHOVpOMUtVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGwBggrBgEFBQcBBwEB/wSBoDCBnTCBmgQCAAEwgZMDBAMf
rfgDBAIlHVADBAMuHcADBAOyF5AwDAMEA7Kw+AMEAbKw/AMDALyiAwQBvKr0MAwD
BAO8qvgDBAC8qvwDBALByeQDBAXDBYADBAXDEGADBAHDTnQDBADDlW8DBAXD5kAD
BAXUDqADBAXULEADBAXURWADBAXUd6ADBAXVmqADBAXVqCADBAbV80ADBATZc1Aw
DQYJKoZIhvcNAQELBQADggEBAEeDGakhDbvCBrhuKAElR15X4WKhswkQeh/na47M
3JYTtQO4N/Cx0QqE/jN3bwmf2j6Poq0VaesYRzWKWGNnHy6GT9/7Rl/KRGS5Ltve
vDRiJhFfJlXFIQ158NJfOOUr28Azrm7X3aammsMXCew6RdBkktZUg27SfSZ/sx65
x3uizXy68pjcN+v5cjd3YHH1ajaYV1lyggMCES406Z1bhdWnfaF/StR2rmg/ss6L
BNMP211AadTxc1XxEbrQ70+529svYDwttA3FFr09Is9gK7UwOev1uaEjYQbG+pER
eZPI7ZWEmFHHjq2bJTl+Smojv/3Hjr7DSkzdP7ZFSmPQV38=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:57 2025 by rpki-client