Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/DoEgdAKb6TYWd7MA0go62qw-6yI.roa
File: DoEgdAKb6TYWd7MA0go62qw-6yI.roa (raw, json)
Hash identifier: 9APMWs2sEUT41FOyGv8jFq24Q5IbGJC0IlvE/8k0PDY=
Subject key identifier: 0E:81:20:74:02:9B:E9:36:16:77:B3:00:D2:0A:3A:DA:AC:3E:EB:22
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 08782328
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/DoEgdAKb6TYWd7MA0go62qw-6yI.roa
Signing time: Sat 01 Jan 2022 04:02:33 +0000
ROA not before: Sat 01 Jan 2022 04:02:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31163
IP address blocks: 109.188.0.0/16 maxlen: 24
46.29.192.0/21 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
77.233.160.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
81.24.128.0/20 maxlen: 24
79.171.8.0/21 maxlen: 24
195.78.116.0/23 maxlen: 24
78.41.100.0/22 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
83.169.192.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
46.232.200.0/21 maxlen: 24
37.29.0.0/17 maxlen: 24
62.64.0.0/19 maxlen: 24
37.28.160.0/19 maxlen: 24
78.25.64.0/18 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
80.247.176.0/20 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
46.229.128.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142091048 (0x8782328)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 1 04:02:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e812074029be9361677b300d20a3adaac3eeb22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:59:4e:54:4a:11:18:ec:3d:22:84:47:51:db:
a8:a8:0a:a1:d5:04:be:18:1f:c9:ff:09:3e:09:f3:
cd:59:e9:05:ad:a3:70:70:b3:98:9f:bb:27:3f:cf:
77:e4:9a:cb:f8:45:17:e6:66:9a:9e:52:86:8e:57:
be:0d:12:c8:1e:18:1b:ad:9b:c5:c7:84:14:37:9f:
8c:b6:c6:57:11:22:da:76:45:b1:25:47:f7:a3:85:
57:98:19:23:c7:cc:85:67:ee:b8:26:db:c5:25:cb:
c6:56:fd:1f:ba:00:ec:19:bc:30:0d:f5:46:63:8c:
19:29:93:9d:0f:20:da:fd:68:5a:0f:b8:ec:ff:8b:
39:69:d2:1c:05:53:f4:ef:62:32:f6:99:68:dd:b0:
bb:ce:12:a5:2a:82:60:93:ae:a5:d2:8a:9a:ed:51:
17:06:fa:0c:27:a0:c2:3f:b6:d5:0d:54:93:34:6d:
22:f1:2f:4e:c0:30:cb:ac:e2:8d:6b:db:14:64:05:
54:b1:bb:4f:f2:f0:78:d9:3d:aa:75:9e:22:1f:a7:
fa:63:b9:1f:b5:05:c1:27:de:a7:15:c3:45:a8:e4:
5e:a2:c7:0f:b5:83:18:63:cd:73:46:7c:50:d3:29:
da:ee:d2:2e:09:6c:41:00:b6:f2:f4:d3:d8:23:90:
b7:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:81:20:74:02:9B:E9:36:16:77:B3:00:D2:0A:3A:DA:AC:3E:EB:22
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/DoEgdAKb6TYWd7MA0go62qw-6yI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.160.0/19
37.29.0.0/17
46.29.192.0/21
46.229.128.0/20
46.232.200.0/21
62.64.0.0/19
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.24.128.0/20
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
61:32:db:8a:1d:ab:db:94:8f:51:b1:4c:55:73:4e:97:e0:be:
88:b2:15:f5:ed:32:40:eb:b5:89:62:af:10:cd:bc:1c:71:03:
0b:fd:c9:19:ea:6f:16:25:4d:4b:b5:0c:05:d3:4a:ba:be:c8:
4d:04:84:72:ba:22:55:8e:f7:a6:88:08:f0:89:21:4c:99:20:
09:a5:25:d6:09:dc:3b:ee:0c:b2:9d:da:1f:6b:38:24:27:8b:
41:c0:78:43:10:41:07:03:74:07:58:65:af:a2:95:ed:f8:52:
77:27:75:ef:7b:d1:3a:e4:c4:e2:81:4c:7b:e9:db:a2:4c:a1:
c8:02:60:aa:07:b4:4e:8a:8d:df:98:67:88:d9:cf:0a:96:31:
2d:1b:6f:16:ca:10:64:72:11:f5:5e:ca:cd:46:f5:02:c6:a8:
fb:36:17:b2:e5:94:7d:5b:29:e4:68:40:dd:b4:79:03:77:b2:
82:36:47:2a:80:c5:37:aa:ea:6b:f7:5d:7a:73:e1:06:b4:1b:
0b:ba:ba:cb:0c:4e:01:9c:22:9a:70:d1:d9:6a:18:f7:b3:4e:
4d:2f:8f:24:c4:c4:00:32:9c:d0:a9:bd:af:29:9d:e4:70:e0:
d5:18:74:32:b8:f8:77:6f:df:31:4a:3f:23:ae:1f:81:29:b3:
0f:ea:82:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:34 2024 by rpki-client on console-ams.rpki-client.org