Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/J5c7eX4AkvQitNCSqiObKKlK9Kk.roa
File: J5c7eX4AkvQitNCSqiObKKlK9Kk.roa (raw, json)
Hash identifier: HZu8uhNEEKeGCaCgqzcCnRWHXx9b2p7AUkCpB3wa2Jg=
Subject key identifier: 27:97:3B:79:7E:00:92:F4:22:B4:D0:92:AA:23:9B:28:A9:4A:F4:A9
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F1C2BCD2C66A4D1D3B85EDD31C8AF185
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/J5c7eX4AkvQitNCSqiObKKlK9Kk.roa
Signing time: Thu 08 Dec 2022 12:43:01 +0000
ROA not before: Thu 08 Dec 2022 12:43:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31088
IP address blocks: 212.69.96.0/19 maxlen: 24
212.14.160.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
195.16.96.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
178.23.144.0/21 maxlen: 24
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:c2:bc:d2:c6:6a:4d:1d:3b:85:ed:d3:1c:8a:f1:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 12:43:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27973b797e0092f422b4d092aa239b28a94af4a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:30:a8:73:f7:f8:f0:ab:6a:0b:23:9c:34:48:
a4:4f:d1:fe:69:a5:d0:41:2c:b4:10:d4:7e:08:03:
01:3e:da:9f:0b:73:e1:85:71:fe:80:42:ec:e2:6b:
98:c7:24:8b:4c:e8:74:50:b8:66:52:0e:6c:4b:92:
e8:8f:5c:46:b3:1b:ec:fd:80:15:e3:3d:33:94:01:
5b:86:66:c4:1b:0f:f6:70:ad:ec:24:1b:8f:4f:8a:
33:74:7a:b2:a8:49:b7:09:6f:2e:f9:f4:c7:32:36:
ec:ee:9a:8f:df:a6:58:2f:c1:1a:ab:49:43:92:b9:
de:1a:94:3f:a6:ba:37:65:ca:e4:e4:33:e8:51:74:
a8:2c:4e:fe:2e:5d:8e:28:95:6f:68:12:f3:a8:f4:
49:0c:9a:29:e2:53:5b:6d:61:83:5b:08:3c:f2:e9:
72:b3:4f:48:09:2e:da:79:33:02:7e:1a:b1:80:f0:
e4:e9:01:ed:8c:f6:63:13:15:f4:d5:5d:bf:2f:30:
56:3d:fc:dc:45:f9:cb:21:7c:e5:66:e8:ed:d7:83:
43:9a:51:6b:cf:53:79:67:e6:3d:d1:26:e9:a3:d0:
8e:b3:d3:94:4e:51:2b:d9:22:c2:fd:3e:b1:65:3d:
e6:f5:d2:ba:d4:d4:9e:a9:16:3d:79:67:c7:c5:05:
d8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:97:3B:79:7E:00:92:F4:22:B4:D0:92:AA:23:9B:28:A9:4A:F4:A9
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/J5c7eX4AkvQitNCSqiObKKlK9Kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
7f:93:88:9c:6f:be:57:48:91:3d:5d:b9:66:75:7f:24:5e:e8:
9f:fb:04:a1:02:e8:20:85:20:c6:bc:c9:0a:a3:13:71:86:e2:
7e:eb:c1:e3:b2:5a:0c:53:b8:f0:7e:0c:aa:fe:29:6c:a2:e0:
cd:c9:a8:88:e6:58:52:1b:84:92:53:ec:b7:49:a9:cc:a8:3a:
87:f9:5c:9c:54:47:31:74:65:92:fd:c4:fc:31:c4:a1:bf:51:
eb:5b:d0:6d:4f:d0:ab:dd:cf:9d:3b:d7:8f:9d:bf:64:19:3a:
46:4c:22:34:b5:28:77:49:90:1f:72:4e:93:35:26:b4:f5:ee:
12:ee:ce:13:42:e8:c6:49:de:ea:af:51:de:88:89:cc:d3:d0:
04:35:17:f0:b2:3c:5a:09:ed:12:47:cd:3a:05:7f:5c:ec:61:
67:f8:05:82:58:d9:f6:00:6c:41:ee:1f:c0:ef:08:bb:e6:ec:
3e:19:ff:bc:71:0f:24:a3:91:dc:93:a7:c5:51:4d:ea:2b:9c:
e3:8a:78:b1:15:11:26:21:0c:17:09:f0:00:7e:62:5e:49:0b:
75:dd:89:25:8d:da:7e:67:32:59:0a:4c:8d:c0:ad:1a:b6:bc:
7c:87:43:00:c8:4b:db:6f:dd:10:5c:1d:ce:83:29:cd:10:a5:
dc:b8:fd:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:38:35 2025 by rpki-client