Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/JzAq-RMlLqUXbNSxnOVdk9833VE.roa
File: JzAq-RMlLqUXbNSxnOVdk9833VE.roa (raw, json)
Hash identifier: u2GpL+PWhVp+KAdOg0OGEkupiU2mjnbUaDxHjBVfseQ=
Subject key identifier: 27:30:2A:F9:13:25:2E:A5:17:6C:D4:B1:9C:E5:5D:93:DF:37:DD:51
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01841D9C93DD82F32FB363FD65D25F24200D
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/JzAq-RMlLqUXbNSxnOVdk9833VE.roa
Signing time: Fri 28 Oct 2022 08:01:51 +0000
ROA not before: Fri 28 Oct 2022 08:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31195
IP address blocks: 109.188.0.0/16 maxlen: 24
46.29.192.0/21 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
79.171.8.0/21 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
178.178.64.0/24 maxlen: 24
178.178.71.0/24 maxlen: 24
178.178.67.0/24 maxlen: 24
178.178.70.0/24 maxlen: 24
178.178.66.0/24 maxlen: 24
178.178.65.0/24 maxlen: 24
178.178.68.0/24 maxlen: 24
185.3.32.0/22 maxlen: 24
178.178.73.0/24 maxlen: 24
178.178.72.0/24 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
37.29.0.0/17 maxlen: 24
31.173.225.0/24 maxlen: 24
31.173.226.0/24 maxlen: 24
37.28.160.0/19 maxlen: 24
78.25.64.0/18 maxlen: 24
185.210.140.0/22 maxlen: 24
31.173.132.0/23 maxlen: 23
31.173.134.0/23 maxlen: 23
31.173.135.0/24 maxlen: 24
178.176.233.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
178.176.235.0/24 maxlen: 24
178.176.234.0/24 maxlen: 24
31.173.143.0/24 maxlen: 24
80.247.176.0/20 maxlen: 24
91.193.212.0/22 maxlen: 24
31.173.230.0/24 maxlen: 24
31.173.231.0/24 maxlen: 24
31.173.228.0/23 maxlen: 23
31.173.232.0/23 maxlen: 23
31.173.228.0/24 maxlen: 24
31.173.229.0/24 maxlen: 24
31.173.238.0/24 maxlen: 24
31.173.235.0/24 maxlen: 24
31.173.239.0/24 maxlen: 24
31.173.236.0/23 maxlen: 23
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
77.233.160.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
81.24.128.0/20 maxlen: 24
195.78.116.0/23 maxlen: 24
78.41.100.0/22 maxlen: 24
83.149.52.0/22 maxlen: 22
83.169.192.0/18 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
46.232.200.0/21 maxlen: 24
62.64.0.0/19 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
46.229.128.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1d:9c:93:dd:82:f3:2f:b3:63:fd:65:d2:5f:24:20:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 28 08:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27302af913252ea5176cd4b19ce55d93df37dd51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:21:1c:72:fb:c2:bf:e7:6d:11:69:62:45:13:
46:e7:ab:06:8b:37:80:e7:d0:2e:d7:d7:0f:a7:fb:
7a:b9:1c:a2:5b:c5:f7:e0:01:a1:88:41:aa:d9:66:
b6:db:cb:e6:d2:1d:16:b5:c9:5e:c5:d7:6c:42:9b:
20:d9:98:36:84:bb:fa:6e:f1:49:43:22:e5:3b:ab:
43:83:a8:33:ac:3f:70:1d:1f:4d:24:d1:71:04:ae:
d7:5c:36:e9:b3:40:e1:58:38:a6:d9:03:12:b0:47:
df:a8:03:29:35:82:13:3f:18:7f:6f:cc:11:6d:4f:
54:95:50:38:25:8a:9d:30:61:bc:d2:07:ac:7c:b3:
ee:8b:66:e6:f7:6f:76:3b:9d:fa:4e:ca:17:fe:7c:
10:4a:fa:50:ae:1f:bf:7e:2f:ad:98:6c:04:f8:4a:
b5:7c:d8:3a:43:2a:5d:7e:ca:e2:56:75:70:06:09:
e5:cf:d3:6f:08:c8:76:15:df:fa:64:ab:18:7c:3d:
1c:8e:4a:1b:78:e9:c8:1d:df:5b:e3:d7:6c:9c:02:
d3:f2:d9:36:6c:c8:3a:a4:14:0e:25:7e:4c:88:f6:
be:49:4e:42:28:6e:8b:ff:e9:84:aa:0d:fc:e0:55:
22:df:be:d6:7b:5e:dc:5b:b9:22:46:f2:f4:bb:32:
79:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:30:2A:F9:13:25:2E:A5:17:6C:D4:B1:9C:E5:5D:93:DF:37:DD:51
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/JzAq-RMlLqUXbNSxnOVdk9833VE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.132.0/22
31.173.143.0/24
31.173.225.0-31.173.226.255
31.173.228.0-31.173.233.255
31.173.235.0-31.173.239.255
37.28.160.0/19
37.29.0.0/17
46.29.192.0/21
46.229.128.0/20
46.232.200.0/21
62.64.0.0/19
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.24.128.0/20
83.149.52.0/22
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.233.0-178.176.235.255
178.178.64.0-178.178.68.255
178.178.70.0-178.178.73.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
a2:e2:9e:48:49:5b:06:25:0f:fc:bb:6c:a5:9c:3c:be:91:6b:
63:8d:32:cf:f8:1d:65:94:d8:7f:67:7b:7e:22:ac:8b:d8:1f:
46:b2:fc:d7:75:37:6b:2d:56:06:b7:97:0f:94:64:06:10:52:
29:e3:72:88:7b:13:30:fa:ab:57:89:10:83:fb:60:38:59:0b:
2d:14:ba:1f:2d:82:68:56:08:b7:a7:4c:11:5f:00:07:23:74:
8e:b2:5e:19:53:93:fb:54:01:93:43:7a:a8:fb:8d:f4:e2:9a:
b1:e2:7c:57:18:50:c2:d4:ea:86:da:63:dd:1c:1c:ae:5d:24:
3b:e6:ab:5c:be:4b:b3:43:82:88:36:f8:ae:4d:0d:7f:33:b0:
f0:49:c7:24:fa:b2:14:ae:2b:89:fc:06:c3:56:06:48:b4:73:
11:c7:55:61:7b:68:72:44:49:34:22:8a:b6:75:0f:33:0c:5e:
bd:c0:be:c7:bd:03:9a:ba:d4:99:af:e9:83:cb:bb:65:c5:a3:
28:84:33:7f:99:df:76:3c:4f:84:8d:db:b9:e6:4f:d2:f1:0c:
21:5b:32:77:3c:43:65:7b:63:c4:f3:cf:68:14:86:1d:7f:34:
32:66:3a:7e:d9:1e:92:15:b3:53:1d:8c:33:69:4c:43:04:bc:
5e:0a:c1:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:25 2024 by rpki-client on console-fra.rpki-client.org