Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ECT4GqeqF87NLgOxPGrnKjnmvk4.roa
File: ECT4GqeqF87NLgOxPGrnKjnmvk4.roa (raw, json)
Hash identifier: XrWTTBkj8xB/dOi0OZ45owzJtn/1164JW70b9/YITd8=
Subject key identifier: 10:24:F8:1A:A7:AA:17:CE:CD:2E:03:B1:3C:6A:E7:2A:39:E6:BE:4E
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01854D8F19B6AA3B9803D80666EE1BADD0E5
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ECT4GqeqF87NLgOxPGrnKjnmvk4.roa
Signing time: Mon 26 Dec 2022 08:31:41 +0000
ROA not before: Mon 26 Dec 2022 08:31:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20632
IP address blocks: 84.204.230.0/24 maxlen: 24
212.14.160.0/19 maxlen: 19
84.204.160.0/20 maxlen: 20
82.196.64.0/19 maxlen: 19
84.204.176.0/21 maxlen: 21
81.24.128.0/20 maxlen: 20
79.171.8.0/21 maxlen: 21
84.204.188.0/22 maxlen: 22
84.204.192.0/18 maxlen: 18
109.124.108.0/22 maxlen: 22
217.195.64.0/19 maxlen: 19
109.124.64.0/18 maxlen: 18
213.172.0.0/19 maxlen: 19
84.204.0.0/17 maxlen: 17
93.153.128.0/17 maxlen: 17
93.153.144.0/21 maxlen: 21
93.153.158.0/24 maxlen: 24
93.153.162.0/24 maxlen: 24
93.153.161.0/24 maxlen: 24
195.144.224.0/19 maxlen: 19
212.119.160.0/19 maxlen: 19
80.247.176.0/20 maxlen: 20
81.3.128.0/18 maxlen: 18
91.193.212.0/22 maxlen: 22
84.204.132.0/22 maxlen: 22
94.25.248.0/21 maxlen: 21
84.204.139.0/24 maxlen: 24
84.204.138.0/24 maxlen: 24
213.182.160.0/19 maxlen: 19
84.204.136.0/24 maxlen: 24
84.204.140.0/22 maxlen: 22
84.204.144.0/20 maxlen: 20
195.5.128.0/19 maxlen: 19
212.44.64.0/19 maxlen: 19
82.140.64.0/18 maxlen: 18
82.140.93.0/24 maxlen: 24
95.137.0.0/17 maxlen: 17
46.47.192.0/18 maxlen: 18
62.182.128.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:4d:8f:19:b6:aa:3b:98:03:d8:06:66:ee:1b:ad:d0:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 26 08:31:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1024f81aa7aa17cecd2e03b13c6ae72a39e6be4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:29:d9:85:28:90:be:a7:78:85:db:32:07:05:
d5:71:b5:0b:a7:3f:99:55:57:10:49:5f:c3:35:26:
0b:f6:e8:37:f5:18:1a:58:79:57:9b:a0:18:d8:00:
42:ed:a6:83:5a:bf:a2:9b:e5:21:8c:58:a6:91:57:
5a:62:1b:77:b7:1f:8e:ba:66:3b:ff:73:d6:13:5a:
3e:2a:c4:c8:fa:3e:12:bc:0d:5c:ce:9f:a9:26:7e:
01:46:53:2b:5e:51:b8:ab:b6:bf:d2:5c:5e:12:42:
56:59:4b:f9:44:49:87:31:17:0e:28:7c:1b:bb:58:
af:97:df:c4:ab:fd:72:56:d4:7c:da:ec:95:9f:b0:
2a:d9:ed:85:6d:70:41:17:8a:0c:9d:f6:4c:5f:10:
fb:b5:f9:00:52:ed:c4:9e:c5:e0:e5:af:1e:38:f3:
99:46:e3:cf:f9:37:79:3b:67:27:51:2b:16:86:11:
92:88:f4:70:56:ef:30:aa:5a:e9:14:e4:f3:e3:c4:
e0:26:b8:13:6f:59:7a:d1:39:98:c6:84:0e:57:f2:
a4:8d:0c:09:61:84:0c:82:fc:a4:e8:0b:d0:80:e6:
a3:1d:ea:86:b5:66:1d:83:87:ed:ea:ef:83:fc:96:
54:1f:8e:4e:a4:04:4a:8d:de:ef:61:92:a8:50:5a:
2e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:24:F8:1A:A7:AA:17:CE:CD:2E:03:B1:3C:6A:E7:2A:39:E6:BE:4E
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ECT4GqeqF87NLgOxPGrnKjnmvk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.47.192.0/18
62.182.128.0/21
79.171.8.0/21
80.247.176.0/20
81.3.128.0/18
81.24.128.0/20
82.140.64.0/18
82.196.64.0/19
84.204.0.0/17
84.204.132.0-84.204.136.255
84.204.138.0-84.204.183.255
84.204.188.0-84.204.255.255
91.193.212.0/22
93.153.128.0/17
94.25.248.0/21
95.137.0.0/17
109.124.64.0/18
195.5.128.0/19
195.144.224.0/19
212.14.160.0/19
212.44.64.0/19
212.119.160.0/19
213.172.0.0/19
213.182.160.0/19
217.195.64.0/19
Signature Algorithm: sha256WithRSAEncryption
2f:1a:2b:a9:3f:11:9c:f7:db:4f:56:b9:8d:62:fc:c5:40:01:
09:db:2d:f4:27:d3:9b:de:f8:1c:c9:7f:e3:3b:af:b9:55:03:
eb:70:28:28:05:4b:b5:23:c3:17:08:4b:da:5e:e2:45:00:4f:
18:ae:89:6c:2e:35:aa:a6:8a:7d:b6:25:43:2e:56:b2:b0:23:
bf:ea:2c:b6:06:4d:4c:90:da:31:34:d4:63:c7:2f:60:64:33:
d9:6f:4f:b9:17:2f:16:fd:b4:1e:76:b7:c8:32:67:32:81:e5:
f4:9f:c0:2d:79:a5:2c:b3:20:82:66:cf:ff:a6:23:9e:5f:b7:
2b:fa:d9:41:9e:31:1e:2a:f3:0a:61:69:c0:29:af:ec:2a:24:
35:ce:0c:fd:25:31:df:80:7c:3d:b9:12:28:ba:c4:86:e5:a7:
60:9d:e1:53:af:04:56:a6:f5:6e:ee:5f:60:c2:32:f8:49:d8:
fb:44:0f:0e:75:1b:a7:42:60:76:5b:91:8f:4c:60:4c:bd:41:
fe:54:7d:22:0d:64:8b:a1:f4:49:04:8d:e3:bc:b0:14:e6:8d:
90:a2:70:db:c1:41:ba:8b:9f:6b:3f:88:7d:c5:43:f7:5a:f1:
d9:86:72:ae:0f:cc:ec:79:b8:0e:5f:fb:c4:cb:95:98:e4:28:
33:a4:8a:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:36:05 2025 by rpki-client