Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/IiV-475kpQukVDABVjvUQ89dj9s.roa
File: IiV-475kpQukVDABVjvUQ89dj9s.roa (raw, json)
Hash identifier: dbgAdvOzT83OFxe/x0YLxnkHHi28zlK/tGBVHQ0hCJY=
Subject key identifier: 22:25:7E:E3:BE:64:A5:0B:A4:54:30:01:56:3B:D4:43:CF:5D:8F:DB
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184E23BF617B22E360C0C84A8A032A1A7B7
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/IiV-475kpQukVDABVjvUQ89dj9s.roa
Signing time: Mon 05 Dec 2022 12:21:31 +0000
ROA not before: Mon 05 Dec 2022 12:21:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31208
IP address blocks: 109.188.0.0/16 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
178.178.84.0/22 maxlen: 22
178.178.82.0/24 maxlen: 24
193.201.228.0/22 maxlen: 24
178.178.80.0/23 maxlen: 23
178.178.130.0/24 maxlen: 24
178.178.129.0/24 maxlen: 24
178.178.132.0/24 maxlen: 24
178.178.131.0/24 maxlen: 24
178.23.144.0/21 maxlen: 24
178.178.128.0/24 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
178.176.230.0/23 maxlen: 23
212.119.160.0/19 maxlen: 24
37.28.186.0/24 maxlen: 24
188.170.50.0/24 maxlen: 24
37.28.184.0/24 maxlen: 24
37.28.185.0/24 maxlen: 24
188.170.49.0/24 maxlen: 24
188.170.48.0/24 maxlen: 24
188.170.55.0/24 maxlen: 24
188.170.52.0/24 maxlen: 24
188.170.57.0/24 maxlen: 24
188.170.54.0/24 maxlen: 24
37.28.187.0/24 maxlen: 24
188.170.56.0/24 maxlen: 24
188.170.53.0/24 maxlen: 24
91.193.212.0/22 maxlen: 24
188.170.63.0/24 maxlen: 24
188.170.60.0/24 maxlen: 24
188.170.62.0/24 maxlen: 24
188.170.59.0/24 maxlen: 24
188.170.61.0/24 maxlen: 24
37.29.74.0/24 maxlen: 24
37.29.73.0/24 maxlen: 24
37.29.75.0/24 maxlen: 24
37.29.72.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
178.176.56.0/24 maxlen: 24
178.176.58.0/24 maxlen: 24
178.176.57.0/24 maxlen: 24
178.176.62.0/24 maxlen: 24
178.176.59.0/24 maxlen: 24
178.176.61.0/24 maxlen: 24
178.176.63.0/24 maxlen: 24
178.176.60.0/24 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
83.149.41.0/24 maxlen: 24
83.149.44.0/23 maxlen: 23
83.149.42.0/23 maxlen: 23
83.149.40.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
83.149.46.0/23 maxlen: 23
83.169.192.0/18 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
178.178.135.0/24 maxlen: 24
178.178.137.0/24 maxlen: 24
178.178.134.0/24 maxlen: 24
178.178.133.0/24 maxlen: 24
178.178.136.0/24 maxlen: 24
178.178.143.0/24 maxlen: 24
178.178.142.0/24 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
46.229.136.0/22 maxlen: 22
46.229.140.0/24 maxlen: 24
46.229.143.0/24 maxlen: 24
46.229.141.0/24 maxlen: 24
46.229.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:3b:f6:17:b2:2e:36:0c:0c:84:a8:a0:32:a1:a7:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 5 12:21:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22257ee3be64a50ba4543001563bd443cf5d8fdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fa:c0:dd:4e:fa:f0:d1:b4:7d:ef:df:6c:2c:
3d:b7:67:54:a3:79:10:67:73:03:88:a9:f9:65:fd:
8e:b7:67:ea:a9:91:09:52:fe:31:0d:37:68:e1:1e:
41:c6:e8:89:68:e9:49:c1:68:af:19:dc:4d:bf:7a:
cd:b7:98:f8:cf:2d:17:01:5d:b8:2a:b8:ad:b8:27:
2e:26:79:2f:32:14:2a:a0:16:ab:7a:fe:3f:e7:03:
cc:51:26:ae:03:ae:15:15:dc:76:2e:8e:3c:35:02:
6a:57:b4:29:d2:ff:96:20:47:63:9f:b0:b7:00:0b:
a3:ac:10:a6:0e:59:1c:76:4e:d1:c7:85:94:97:ee:
2e:46:56:0a:b0:2c:e1:d6:85:5b:10:fa:83:2d:5b:
10:7e:4a:11:7a:a0:32:28:3b:c9:a2:bf:ab:da:ab:
02:29:3d:9e:de:99:0d:6f:e0:f8:80:86:b0:52:08:
c0:ca:d2:0a:9e:dd:c2:1a:63:6d:90:5a:2d:fd:cb:
07:30:29:c6:8e:e3:4a:e2:93:86:65:66:28:f6:8c:
df:60:d7:59:29:45:70:84:fc:70:ab:be:33:da:6b:
71:8e:a1:da:52:90:fe:b9:51:cd:fc:38:7f:91:54:
93:ec:39:b2:89:53:ba:22:af:a1:ee:86:de:73:6d:
24:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:25:7E:E3:BE:64:A5:0B:A4:54:30:01:56:3B:D4:43:CF:5D:8F:DB
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/IiV-475kpQukVDABVjvUQ89dj9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.184.0/22
37.29.72.0/22
46.229.136.0/21
83.149.40.0/21
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.56.0/21
178.176.230.0/23
178.178.80.0-178.178.82.255
178.178.84.0/22
178.178.128.0-178.178.137.255
178.178.142.0/23
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.48.0-188.170.50.255
188.170.52.0-188.170.57.255
188.170.59.0-188.170.63.255
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
2a:31:1f:17:a0:da:d9:b6:8d:20:4b:1f:dc:57:46:5b:4f:3b:
6c:da:a5:04:17:15:3b:fc:0f:62:70:42:ba:91:d6:35:68:4c:
b8:e3:8e:11:51:25:e7:b1:5f:b7:dd:35:3c:8a:a2:e8:6b:13:
2c:0b:7f:80:ec:55:d7:bd:41:ef:a3:a4:a5:9e:3b:db:35:25:
28:ba:96:6c:b4:74:eb:df:16:6f:50:bc:20:0a:87:91:c2:ad:
73:11:75:d6:3e:dc:30:9f:bb:c3:4d:e7:57:a3:14:c0:e9:0a:
5f:7e:cf:fd:e7:87:80:51:81:e3:6e:6d:82:11:e8:61:b9:a4:
1a:37:8b:d0:d6:fd:e1:b2:c8:f1:b1:60:ae:7b:a0:14:da:01:
96:07:9b:2c:5e:05:7e:cb:3d:66:38:f4:4c:92:51:f7:2a:7d:
b4:2b:6a:c1:90:54:8e:fc:ce:5a:4a:65:6e:b4:68:6a:40:11:
64:f7:26:0b:d9:97:04:e5:00:14:d3:cf:20:2b:61:f8:ef:77:
c9:5a:9a:d4:8b:a2:2a:43:6a:82:c4:d2:8c:9b:fb:6e:eb:5d:
06:84:3c:f4:f0:b4:fe:d3:b6:73:e9:05:ef:c6:57:fd:c7:d6:
e2:e0:8c:b6:5a:79:24:74:d7:cd:93:84:b0:18:3e:f1:39:9b:
29:6f:7b:b2
-----BEGIN CERTIFICATE-----
MIIGNTCCBR2gAwIBAgISAYTiO/YXsi42DAyEqKAyoae3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjA1MTIyMTMxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMjI1N2VlM2JlNjRhNTBiYTQ1NDMwMDE1NjNiZDQ0M2NmNWQ4ZmRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvrA3U768NG0fe/fbCw9t2dUo3kQ
Z3MDiKn5Zf2Ot2fqqZEJUv4xDTdo4R5BxuiJaOlJwWivGdxNv3rNt5j4zy0XAV24
KrituCcuJnkvMhQqoBarev4/5wPMUSauA64VFdx2Lo48NQJqV7Qp0v+WIEdjn7C3
AAujrBCmDlkcdk7Rx4WUl+4uRlYKsCzh1oVbEPqDLVsQfkoReqAyKDvJor+r2qsC
KT2e3pkNb+D4gIawUgjAytIKnt3CGmNtkFot/csHMCnGjuNK4pOGZWYo9ozfYNdZ
KUVwhPxwq74z2mtxjqHaUpD+uVHN/Dh/kVST7DmyiVO6Iq+h7obec20kYQIDAQAB
o4IDQTCCAz0wHQYDVR0OBBYEFCIlfuO+ZKULpFQwAVY71EPPXY/bMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvSWlWLTQ3NWtwUXVrVkRBQlZqdlVRODlkajlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBVQYIKwYBBQUHAQcBAf8EggFEMIIBQDCCATwEAgABMIIB
NAMEAiUcuAMEAiUdSAMEAy7liAMEA1OVKAMEBlOpwAMEBVPewAMEB1PlgAMEB1Ua
gAMEBVZtwAMEAlvB1AMEB12ZgAMEB14ZgAMEB1+JAAMEBG1KcAMEBm18QAMDAG28
AwQGgMxAAwQDsheQAwQDsrA4AwQBsrDmMAwDBASyslADBACyslIDBAKyslQwDAME
B7KygAMEAbKyiAMEAbKyjgMEArkDIAMEArnSjAMEA7xeqAMDALyiMAwDBAS8qjAD
BAC8qjIwDAMEAryqNAMEAbyqODAMAwQAvKo7AwQGvKoAAwQCwcnkAwQFwwWAAwQF
wxBgAwQBw050AwQAw5VvAwQFw+ZAAwQF1A6gAwQF1CxAAwQF1EVgAwQF1HegAwQF
1ZqgAwQF1aggAwQG1fNAAwQE2XNQMA0GCSqGSIb3DQEBCwUAA4IBAQAqMR8XoNrZ
to0gSx/cV0ZbTzts2qUEFxU7/A9icEK6kdY1aEy4444RUSXnsV+33TU8iqLoaxMs
C3+A7FXXvUHvo6SlnjvbNSUoupZstHTr3xZvULwgCoeRwq1zEXXWPtwwn7vDTedX
oxTA6Qpffs/954eAUYHjbm2CEehhuaQaN4vQ1v3hssjxsWCue6AU2gGWB5ssXgV+
yz1mOPRMklH3Kn20K2rBkFSO/M5aSmVutGhqQBFk9yYL2ZcE5QAU088gK2H473fJ
WprUi6IqQ2qCxNKMm/tu610GhDz08LT+07Zz6QXvxlf9x9bi4Iy2WnkkdNfNk4Sw
GD7xOZspb3uy
-----END CERTIFICATE-----
Generated at Tue Apr 8 04:41:10 2025 by rpki-client