Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/DBV8wH60KOxXTmpju_55OLnDS2g.roa
File: DBV8wH60KOxXTmpju_55OLnDS2g.roa (raw, json)
Hash identifier: Lu5XJGkRG0/gkrXSCdLrt3cx3ntZOKKBY/m7gs4NaeU=
Subject key identifier: 0C:15:7C:C0:7E:B4:28:EC:57:4E:6A:63:BB:FE:79:38:B9:C3:4B:68
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184E23BEED4036A78DAC3CBB8FA01C79433
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/DBV8wH60KOxXTmpju_55OLnDS2g.roa
Signing time: Mon 05 Dec 2022 12:21:29 +0000
ROA not before: Mon 05 Dec 2022 12:21:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20663
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
83.169.192.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:3b:ee:d4:03:6a:78:da:c3:cb:b8:fa:01:c7:94:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 5 12:21:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c157cc07eb428ec574e6a63bbfe7938b9c34b68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:7e:53:44:c6:2c:e2:28:6f:fe:95:a3:e3:5f:
e4:40:64:2b:9a:af:f8:64:b3:5b:40:91:7a:a6:bc:
bf:72:87:4c:45:c8:b6:19:47:b5:14:1a:e1:81:dc:
99:9f:54:fa:5b:9f:cc:94:bc:ac:fc:4a:72:00:22:
29:c3:43:43:63:cb:00:de:7d:5a:51:e4:5b:38:f7:
fe:71:ee:62:74:90:68:b1:63:10:d1:3c:0c:10:f5:
c7:f5:02:fe:62:bb:50:86:1e:5d:81:05:4e:ae:ac:
ed:14:36:d5:c0:40:1e:44:be:38:fd:0b:24:00:f7:
b8:e7:73:b6:bb:b1:26:4e:08:48:c1:06:78:ce:8c:
d1:09:7f:0e:5e:2f:be:ca:16:63:5a:68:87:d7:1a:
b1:02:78:6c:5c:9e:df:c9:e6:c6:66:a4:a0:a1:b9:
23:dc:63:ae:b7:b7:18:e4:e2:b7:b9:62:38:fc:44:
f9:57:8a:0f:76:7c:be:1f:c9:b7:89:e9:51:39:7e:
4e:77:da:37:02:b2:91:16:76:ea:f5:07:31:5d:a7:
74:14:f4:e3:bb:da:58:89:a1:3f:bc:ea:e6:d1:34:
e1:27:11:2f:e0:80:41:9e:8c:01:f3:b4:02:18:f8:
ee:a7:70:23:ac:26:05:79:b6:80:8c:2c:ff:d6:3d:
1b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:15:7C:C0:7E:B4:28:EC:57:4E:6A:63:BB:FE:79:38:B9:C3:4B:68
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/DBV8wH60KOxXTmpju_55OLnDS2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
12:7d:5b:51:29:da:1c:ce:e1:45:e9:d0:dd:77:61:10:42:e3:
08:10:e3:87:ec:24:17:1a:60:45:b0:c5:6c:91:16:ca:8e:82:
37:34:85:30:77:34:5f:13:2d:61:33:f3:ff:a8:7b:74:d5:e8:
55:86:7c:ea:ae:ac:28:bd:53:59:6f:73:9b:48:91:26:35:ac:
0a:80:8f:c8:08:c6:25:7f:ec:ef:88:cb:8f:02:d3:c2:86:df:
00:54:06:c1:fd:d1:cd:bb:a4:30:89:aa:4f:9b:33:94:db:24:
25:2d:63:60:22:42:a1:0a:32:97:9a:65:0d:9f:fa:43:74:5f:
26:2c:17:4c:c4:06:d5:e1:56:06:b0:3d:76:76:bb:58:47:69:
2d:44:d9:2d:a4:0f:b9:f2:36:8c:ef:ae:0d:ee:85:10:e3:2e:
21:a6:79:df:a0:68:b8:fa:a3:21:9b:be:fb:c5:16:33:1c:bd:
b6:20:94:62:ec:20:e8:d2:84:48:c7:85:c6:64:49:16:96:f1:
e7:dc:5b:fa:e3:ba:98:ad:55:63:51:da:cd:3b:65:fe:c0:b3:
9a:e0:59:1e:06:d6:ca:d6:91:70:97:98:47:bb:79:ee:7d:25:
65:f1:22:1b:91:c3:2f:0b:3f:55:88:9f:0d:af:1b:10:ca:c0:
1e:85:70:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:05 2025 by rpki-client