Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/OECnt0FMp4R8y-pLtFCobikMNd8.roa
File: OECnt0FMp4R8y-pLtFCobikMNd8.roa (raw, json)
Hash identifier: FZzrRhZ4p6X3WQD4Z07YQ1IQAvm9AzfOLpESkfhY8bc=
Subject key identifier: 38:40:A7:B7:41:4C:A7:84:7C:CB:EA:4B:B4:50:A8:6E:29:0C:35:DF
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F219DCE39283C3CCF635545B470F5952
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/OECnt0FMp4R8y-pLtFCobikMNd8.roa
Signing time: Thu 08 Dec 2022 14:18:11 +0000
ROA not before: Thu 08 Dec 2022 14:18:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8263
IP address blocks: 212.14.160.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
178.176.225.0/24 maxlen: 24
178.176.224.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
178.176.226.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f2:19:dc:e3:92:83:c3:cc:f6:35:54:5b:47:0f:59:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 14:18:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3840a7b7414ca7847ccbea4bb450a86e290c35df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ad:0e:c8:c7:1a:2c:da:bf:94:19:28:39:6b:
d0:d4:b4:60:a3:e6:6d:c7:b6:98:7f:18:68:9b:5c:
57:e5:d2:38:8e:9a:48:9e:98:58:00:7d:8b:29:3d:
91:85:26:a9:5f:14:1d:51:5f:3d:7b:e3:48:75:57:
53:9f:c9:56:41:c5:10:fc:8d:35:97:08:06:8f:cc:
0a:6a:b7:3f:3f:81:f0:7b:d2:ab:47:76:60:a2:65:
3a:41:db:57:f5:2b:03:4d:a9:d9:fe:9f:bc:f8:00:
f7:49:0f:43:6d:6d:8c:ad:08:4d:84:6c:b7:96:47:
5a:25:8d:1b:34:23:0f:43:33:4f:59:2b:2b:93:b3:
54:84:be:7a:0d:0c:ce:66:d6:69:67:d8:9d:72:d4:
41:91:24:81:56:11:ff:f5:25:04:92:63:43:21:9c:
a1:24:9d:11:0f:a5:3f:c1:f2:3b:08:cc:09:d4:f3:
0f:90:53:02:1c:11:16:6e:fd:5e:89:9b:33:89:70:
be:a9:6f:6f:25:9d:2f:bd:85:08:60:56:04:4f:89:
95:ff:0d:55:73:df:58:f4:8a:6a:00:b6:d6:63:11:
67:c5:e6:d4:61:28:45:48:8d:fd:82:87:2d:1f:c8:
01:54:dd:6c:91:de:24:07:a0:0c:fa:83:63:38:8a:
31:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:40:A7:B7:41:4C:A7:84:7C:CB:EA:4B:B4:50:A8:6E:29:0C:35:DF
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/OECnt0FMp4R8y-pLtFCobikMNd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.176.224.0-178.176.226.255
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
49:73:15:28:ce:f4:a9:dc:f7:15:b1:f8:11:8c:4a:1c:be:11:
c7:2b:a3:d6:e6:6a:29:99:0b:e6:e4:ef:29:43:d3:2f:74:38:
ae:c5:c3:7e:96:32:b7:35:74:a0:82:4c:e1:89:43:84:53:00:
4d:f4:d4:29:4f:a2:dc:c2:f2:36:ce:bc:60:ae:b2:2e:71:8c:
bd:11:c0:b8:d6:82:34:6e:53:02:9e:9c:da:1b:52:34:13:82:
61:56:d4:6b:c5:d4:ce:ab:87:9d:7c:0b:cf:85:c5:41:54:ca:
22:c2:8a:83:a7:78:10:ec:69:b5:5a:77:59:25:d6:16:22:21:
13:5f:32:89:d8:f2:d5:2b:fd:be:d6:56:25:bc:94:c6:b3:2d:
12:18:e2:84:81:73:6e:4a:10:5b:72:ec:19:fc:1f:ef:c2:4e:
fd:96:2a:2b:9c:be:1f:19:6a:55:13:88:e2:56:6d:17:38:c5:
e2:4e:16:3b:1a:e0:2c:ad:be:1b:a5:80:c3:02:cf:7c:1d:05:
e1:0f:82:d1:f7:6e:2e:e8:93:92:7e:ed:77:00:b6:bc:12:bc:
48:24:bc:e1:35:ff:79:a3:cb:e2:0b:c9:a5:d7:33:da:9f:1d:
2b:98:94:5d:59:aa:3f:2b:3e:f9:aa:a5:6b:02:02:e9:14:9d:
6b:87:70:ea
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:34 2024 by rpki-client on console-ams.rpki-client.org