Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/QX87FYtxchzRVzHTfoyTiyeXUhk.roa
File: QX87FYtxchzRVzHTfoyTiyeXUhk.roa (raw, json)
Hash identifier: UNXe+EICeXJDxXC1iDEJ4g4w00BjidH/hSdobQlpDUA=
Subject key identifier: 41:7F:3B:15:8B:71:72:1C:D1:57:31:D3:7E:8C:93:8B:27:97:52:19
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184E26614A426BE6760319AAA9BA778D1D9
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/QX87FYtxchzRVzHTfoyTiyeXUhk.roa
Signing time: Mon 05 Dec 2022 13:07:31 +0000
ROA not before: Mon 05 Dec 2022 13:07:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31268
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:66:14:a4:26:be:67:60:31:9a:aa:9b:a7:78:d1:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 5 13:07:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=417f3b158b71721cd15731d37e8c938b27975219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c2:92:c9:92:43:a2:2a:47:88:2a:7b:03:b8:
e9:83:97:73:12:be:1e:f8:3d:7b:6b:7c:fa:3c:21:
05:89:cc:85:28:bc:2a:fe:05:79:eb:80:98:f1:91:
21:c1:07:05:e9:3a:2c:9f:b8:c0:1b:89:1a:77:75:
ba:5c:4d:96:64:35:58:aa:45:cd:32:9b:aa:f9:c7:
fe:fb:e7:9a:24:4e:b3:85:ec:56:90:9c:78:e8:54:
89:32:ef:83:ce:5b:5d:95:bb:ce:7c:6c:5d:bd:f0:
a0:6c:de:3f:c1:61:d5:68:0b:9d:98:1d:08:6e:95:
f1:bc:1b:89:d9:92:aa:47:06:2b:a3:32:2d:2c:48:
88:3b:f7:f4:06:e5:72:26:c1:c6:2b:d8:14:1f:e3:
bf:f6:34:ef:9e:5f:86:d4:ff:84:13:11:14:1e:86:
f3:52:39:ad:a0:0a:ff:f1:52:b1:35:8a:9d:47:8e:
cf:69:b1:7b:ce:33:c3:a8:ea:fc:89:eb:57:6b:2c:
41:17:a8:09:b1:e3:89:ab:2f:ef:51:df:10:94:79:
df:93:86:39:71:5e:96:3f:bb:ea:02:88:75:12:5a:
2f:40:03:7a:dd:42:e9:d9:80:4b:f2:ca:c2:ed:a1:
79:31:7d:73:d4:0e:66:8e:02:75:cb:b2:21:1b:3d:
c0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:7F:3B:15:8B:71:72:1C:D1:57:31:D3:7E:8C:93:8B:27:97:52:19
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/QX87FYtxchzRVzHTfoyTiyeXUhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
0c:96:2f:96:77:3c:9e:bd:fb:02:74:98:e9:73:78:da:a5:2f:
e3:0b:46:c5:b6:58:54:a2:45:82:20:7d:4a:af:e2:59:42:73:
be:28:4c:c9:c8:1e:42:c4:0f:af:ce:17:38:a1:22:15:4a:b9:
76:03:95:4c:3c:04:0f:a4:8f:7a:34:05:56:ba:2d:1e:25:e0:
9a:8c:4b:84:6e:b4:86:b4:99:6a:34:90:ab:2a:fe:7f:e9:83:
49:88:e0:15:ea:7e:47:50:73:41:e0:de:63:68:7c:cf:91:85:
f2:f9:b1:a3:5e:64:56:36:77:1d:e7:6b:ab:1f:07:cd:17:5d:
08:f4:d6:cb:ec:42:7f:f0:db:46:ad:17:fe:fa:3a:3f:59:d9:
21:0d:db:54:34:2b:e4:d8:e2:67:09:27:6b:b0:4e:5d:4e:00:
b2:08:1c:a2:69:3c:db:d5:6e:63:41:dc:93:8c:8e:2f:d5:c0:
39:1c:42:95:6b:4c:db:f7:c6:02:d2:ee:95:de:c7:5b:08:0d:
de:a5:2a:30:18:d2:df:7d:71:48:11:0a:f8:07:c5:3d:ad:85:
a3:9a:00:2a:44:ec:e7:f2:28:8f:c6:43:b4:6b:b4:5d:5f:1d:
07:3a:6a:18:62:9d:82:27:b1:ab:a7:93:6f:2d:05:af:77:05:
9e:13:ee:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:35 2024 by rpki-client on console-ams.rpki-client.org