Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/JGXVHxp-FxH3N6r-sSHNwGwjA2g.roa
File: JGXVHxp-FxH3N6r-sSHNwGwjA2g.roa (raw, json)
Hash identifier: PRkam4kG1BahHPlRj1lLEGHHCYrksTtyMS9v6apr1Cc=
Subject key identifier: 24:65:D5:1F:1A:7E:17:11:F7:37:AA:FE:B1:21:CD:C0:6C:23:03:68
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F14642BFE1C39CA7B7051706DA7163B3
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/JGXVHxp-FxH3N6r-sSHNwGwjA2g.roa
Signing time: Thu 08 Dec 2022 10:27:04 +0000
ROA not before: Thu 08 Dec 2022 10:27:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47395
IP address blocks: 94.25.128.0/18 maxlen: 18
109.188.0.0/16 maxlen: 24
212.69.96.0/19 maxlen: 24
212.14.160.0/19 maxlen: 24
109.74.112.0/20 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
195.16.96.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
178.23.144.0/21 maxlen: 24
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
109.124.64.0/18 maxlen: 24
128.204.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:46:42:bf:e1:c3:9c:a7:b7:05:17:06:da:71:63:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 10:27:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2465d51f1a7e1711f737aafeb121cdc06c230368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ef:07:53:bb:ea:73:b6:86:9f:b2:9a:4d:79:
e2:f4:81:ed:b0:3f:07:6f:21:4e:52:cf:06:e3:ae:
eb:89:5b:9d:47:4f:64:f9:af:e4:e8:89:33:f9:8a:
b3:ad:16:51:44:05:de:05:62:57:7f:57:c6:17:89:
19:9d:9d:ee:ec:7d:e2:a9:db:24:0a:47:5b:ad:0d:
f8:71:81:81:fb:9f:d9:10:df:ae:8f:8d:96:b7:af:
a3:63:7a:48:d6:21:34:12:7e:90:73:7b:07:25:a7:
85:59:c2:92:9a:41:37:61:d7:c5:65:00:a4:5c:a3:
ce:9e:21:8a:ae:c3:bc:9c:fa:c9:6a:9b:fa:61:a7:
a5:46:46:d5:25:ed:34:01:49:5b:a5:7e:87:3f:a1:
d9:60:73:09:22:9a:0f:4e:f0:c5:42:4c:72:5c:b0:
8d:af:a0:e9:55:16:32:1e:5f:ab:60:1f:21:f9:e7:
fe:86:51:ea:75:c4:24:82:2e:c2:3a:b1:75:15:85:
c7:e6:70:8a:30:87:62:9f:b5:1c:6a:4f:02:92:3c:
ac:f2:2d:15:ba:c4:ca:c8:0b:7d:df:03:50:5f:82:
73:c0:90:44:f5:4f:f9:5a:43:a9:36:eb:0a:75:03:
97:03:01:20:c6:cb:07:82:e4:25:0c:5b:47:9e:2c:
70:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:65:D5:1F:1A:7E:17:11:F7:37:AA:FE:B1:21:CD:C0:6C:23:03:68
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/JGXVHxp-FxH3N6r-sSHNwGwjA2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.25.128.0/18
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
27:b7:06:9c:bf:c3:0d:b2:56:7c:57:eb:10:a1:d8:f4:b5:a6:
0f:13:9d:7b:98:d2:3e:7f:2a:f7:29:3a:c2:f9:2f:be:1e:ba:
a6:12:0e:ae:45:7b:24:2a:c2:00:3e:96:df:75:44:25:5a:17:
03:8b:e3:d6:d4:aa:e1:76:cd:fd:05:f8:c0:d0:3b:5b:71:77:
46:00:e0:a8:2e:0f:40:74:81:7c:70:33:f6:00:92:3d:60:de:
b2:50:18:03:35:4d:a0:6c:7e:aa:0d:b1:0d:29:ab:ee:83:a9:
ab:7a:ef:32:53:48:29:ed:9b:fc:5f:7b:5a:6f:4c:95:b4:6a:
d1:23:a5:7b:67:a0:7f:28:f6:49:92:db:21:9a:80:9f:66:52:
fb:be:3b:52:82:40:40:22:a3:56:15:fa:aa:13:96:52:37:db:
0a:8f:6b:48:af:22:6d:74:1e:41:8b:15:e1:52:34:62:94:d4:
ec:c2:dc:97:b0:fd:3c:e4:a3:44:5a:f4:7b:04:83:e5:02:96:
eb:98:36:9f:c2:15:38:56:e7:53:1a:c1:17:91:3e:06:ac:32:
6f:69:df:25:36:14:c1:6e:50:e1:92:5f:bf:3f:3e:ad:23:bf:
7a:ad:7b:b2:04:cd:45:e0:cf:d4:c6:7d:2d:57:76:b7:ee:e1:
55:64:3f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:47:04 2025 by rpki-client