Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/FZwSaycKuCFuQ5z_SMf9nfxcwOI.roa
File: FZwSaycKuCFuQ5z_SMf9nfxcwOI.roa (raw, json)
Hash identifier: +jDw50UwGuwkgxzm0JRlZmhkNiUABm3sSP+1xmjKPcg=
Subject key identifier: 15:9C:12:6B:27:0A:B8:21:6E:43:9C:FF:48:C7:FD:9D:FC:5C:C0:E2
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0185056159683071CDB54313A1B7F929FC76
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/FZwSaycKuCFuQ5z_SMf9nfxcwOI.roa
Signing time: Mon 12 Dec 2022 08:09:04 +0000
ROA not before: Mon 12 Dec 2022 08:09:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47395
IP address blocks: 109.188.0.0/17 maxlen: 17
94.25.128.0/18 maxlen: 18
212.69.96.0/19 maxlen: 24
212.14.160.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
195.16.96.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:61:59:68:30:71:cd:b5:43:13:a1:b7:f9:29:fc:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 08:09:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=159c126b270ab8216e439cff48c7fd9dfc5cc0e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b4:ee:fa:e1:d2:e9:61:34:d6:55:18:97:a3:
8a:4f:2a:d2:5f:40:e8:20:c0:b5:35:d0:90:ff:c2:
af:d9:7d:89:23:0b:59:9f:b4:0b:6c:42:86:da:02:
29:1d:a1:71:7f:35:12:b7:d4:2a:b3:86:b6:b5:e3:
23:8e:e3:d3:b7:8f:fa:d9:9d:43:65:43:42:e6:89:
7e:b1:3d:6a:92:0d:4e:0e:7f:d5:4e:e4:bb:fd:c3:
bd:83:25:a7:1e:4c:f0:a9:0e:9a:84:a5:4b:ba:b9:
b7:82:7f:76:a6:90:89:dd:85:f9:30:ff:1f:b8:bb:
cc:27:ea:21:75:6c:8e:53:3b:51:c0:72:c0:04:ad:
5f:3d:2d:3e:dc:dd:f3:5c:50:f6:80:46:b2:8d:3f:
6b:86:29:31:c0:7f:c7:f0:03:36:34:f9:81:c0:92:
55:8e:09:31:f6:e1:93:1d:cb:20:7a:2e:fd:74:c0:
b9:92:ed:94:b9:84:70:b1:57:14:d8:19:c6:83:a9:
83:53:e0:ef:e4:37:3b:f8:23:e7:b4:f3:f0:67:9e:
f8:7f:0b:50:27:83:ac:ba:ea:53:7d:3e:c8:5c:c8:
9a:54:7c:25:ff:8c:0f:e1:c8:ff:74:17:e3:69:3f:
7e:04:a8:a6:7a:1a:7c:6b:b7:2e:2d:8c:15:37:43:
e2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:9C:12:6B:27:0A:B8:21:6E:43:9C:FF:48:C7:FD:9D:FC:5C:C0:E2
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/FZwSaycKuCFuQ5z_SMf9nfxcwOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.25.128.0/18
109.188.0.0/17
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
Signature Algorithm: sha256WithRSAEncryption
9b:b7:78:b1:c5:dd:e7:3b:fe:41:44:87:1b:c2:17:a3:f3:a6:
2e:26:9c:5f:62:e9:14:fc:d6:a6:ae:b8:ff:5a:e3:b9:07:01:
c0:02:9f:99:5d:1d:29:0c:e2:9a:1d:d6:a3:f5:e2:a3:0a:4e:
03:68:a5:ce:bf:04:0b:7c:21:3d:32:6a:40:7a:dd:25:00:52:
90:ce:92:9a:e9:61:2a:9f:56:e9:fa:c6:b4:89:fe:4c:69:78:
9d:a0:46:79:24:a9:03:d9:4a:83:07:a4:55:72:4c:6f:d3:32:
4f:cc:e2:0d:f9:ff:bf:f0:61:95:9f:ec:2d:63:25:a8:8a:cd:
cf:e8:c6:8e:5d:e8:f6:46:ee:29:f9:91:6f:71:e0:dc:70:fa:
5e:5a:86:9e:80:55:1f:f9:cb:3f:bc:d6:2e:8d:ed:54:2a:5a:
ba:f2:bd:e8:9d:af:03:14:e6:ba:92:09:71:ab:21:6f:6d:78:
93:8c:75:25:18:31:82:4b:c4:a1:d9:eb:e3:b8:51:ed:0a:12:
08:c2:9d:f7:e9:b7:2b:4b:f8:f1:38:53:0a:87:7b:bc:a4:be:
cb:ff:8b:ae:24:f4:1e:eb:76:4e:8f:08:18:79:54:9a:17:db:
ec:b2:e0:73:ba:58:bb:51:82:ff:f0:66:5c:c8:61:a9:c9:a0:
f2:88:2a:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:34 2024 by rpki-client on console-ams.rpki-client.org