Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/SIwKmCa-G5zGzFPSu4aHVi21yzQ.roa
File: SIwKmCa-G5zGzFPSu4aHVi21yzQ.roa (raw, json)
Hash identifier: TRzvS2WIrguTGmBglL+efGHFeO/80CbWcJWh0Sr78U4=
Subject key identifier: 48:8C:0A:98:26:BE:1B:9C:C6:CC:53:D2:BB:86:87:56:2D:B5:CB:34
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F176BEB8BF73BDA95466D18FE44937DC
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/SIwKmCa-G5zGzFPSu4aHVi21yzQ.roa
Signing time: Thu 08 Dec 2022 11:20:01 +0000
ROA not before: Thu 08 Dec 2022 11:20:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29648
IP address blocks: 109.188.0.0/16 maxlen: 24
193.201.228.0/22 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
31.173.119.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
77.233.160.0/19 maxlen: 19
77.233.161.0/24 maxlen: 24
77.233.164.0/24 maxlen: 24
77.233.160.0/24 maxlen: 24
77.233.162.0/24 maxlen: 24
77.233.166.0/24 maxlen: 24
77.233.167.0/24 maxlen: 24
77.233.170.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
31.173.104.0/24 maxlen: 24
31.173.105.0/24 maxlen: 24
31.173.112.0/24 maxlen: 24
31.173.108.0/24 maxlen: 24
31.173.109.0/24 maxlen: 24
31.173.110.0/24 maxlen: 24
31.173.106.0/24 maxlen: 24
31.173.111.0/24 maxlen: 24
31.173.107.0/24 maxlen: 24
31.173.116.0/24 maxlen: 24
31.173.113.0/24 maxlen: 24
31.173.117.0/24 maxlen: 24
31.173.114.0/24 maxlen: 24
31.173.118.0/24 maxlen: 24
31.173.115.0/24 maxlen: 24
77.233.173.0/24 maxlen: 24
77.233.178.0/24 maxlen: 24
77.233.185.0/24 maxlen: 24
77.233.181.0/24 maxlen: 24
77.233.180.0/24 maxlen: 24
77.233.186.0/24 maxlen: 24
77.233.182.0/24 maxlen: 24
77.233.188.0/24 maxlen: 24
77.233.191.0/24 maxlen: 24
77.233.190.0/24 maxlen: 24
212.44.64.0/19 maxlen: 24
195.16.96.0/19 maxlen: 24
178.23.144.0/21 maxlen: 24
185.3.32.0/22 maxlen: 24
188.170.98.0/24 maxlen: 24
86.109.192.0/19 maxlen: 19
86.109.192.0/20 maxlen: 20
188.170.96.0/24 maxlen: 24
188.170.97.0/24 maxlen: 24
188.170.102.0/24 maxlen: 24
86.109.193.0/24 maxlen: 24
188.170.103.0/24 maxlen: 24
188.170.99.0/24 maxlen: 24
188.170.100.0/24 maxlen: 24
188.170.104.0/24 maxlen: 24
86.109.195.0/24 maxlen: 24
188.170.101.0/24 maxlen: 24
188.170.105.0/24 maxlen: 24
188.170.110.0/24 maxlen: 24
188.170.106.0/24 maxlen: 24
188.170.111.0/24 maxlen: 24
188.170.107.0/24 maxlen: 24
86.109.200.0/23 maxlen: 23
188.170.108.0/24 maxlen: 24
212.69.96.0/19 maxlen: 24
188.170.109.0/24 maxlen: 24
188.170.112.0/24 maxlen: 24
188.170.114.0/24 maxlen: 24
86.109.213.0/24 maxlen: 24
188.170.115.0/24 maxlen: 24
188.170.116.0/24 maxlen: 24
86.109.212.0/24 maxlen: 24
86.109.208.0/24 maxlen: 24
188.170.118.0/24 maxlen: 24
188.170.117.0/24 maxlen: 24
188.170.113.0/24 maxlen: 24
86.109.210.0/24 maxlen: 24
188.170.119.0/24 maxlen: 24
188.170.123.0/24 maxlen: 24
86.109.216.0/24 maxlen: 24
188.170.122.0/24 maxlen: 24
86.109.215.0/24 maxlen: 24
86.109.218.0/23 maxlen: 23
188.170.125.0/24 maxlen: 24
188.170.121.0/24 maxlen: 24
188.170.120.0/24 maxlen: 24
86.109.214.0/24 maxlen: 24
188.170.124.0/24 maxlen: 24
188.170.127.0/24 maxlen: 24
86.109.220.0/24 maxlen: 24
188.170.126.0/24 maxlen: 24
86.109.223.0/24 maxlen: 24
86.109.222.0/24 maxlen: 24
78.109.120.0/24 maxlen: 24
78.109.121.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
128.204.64.0/18 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
178.176.98.0/24 maxlen: 24
195.149.111.0/24 maxlen: 24
178.176.96.0/24 maxlen: 24
178.176.97.0/24 maxlen: 24
178.176.102.0/24 maxlen: 24
178.176.103.0/24 maxlen: 24
178.176.99.0/24 maxlen: 24
178.176.100.0/24 maxlen: 24
178.176.101.0/24 maxlen: 24
178.176.118.0/24 maxlen: 24
178.176.114.0/24 maxlen: 24
178.176.115.0/24 maxlen: 24
178.176.116.0/24 maxlen: 24
178.176.117.0/24 maxlen: 24
178.176.122.0/24 maxlen: 24
178.176.123.0/24 maxlen: 24
178.176.119.0/24 maxlen: 24
178.176.124.0/24 maxlen: 24
178.176.120.0/24 maxlen: 24
178.176.125.0/24 maxlen: 24
178.176.121.0/24 maxlen: 24
178.176.126.0/24 maxlen: 24
178.176.127.0/24 maxlen: 24
83.169.217.0/24 maxlen: 24
83.169.218.0/24 maxlen: 24
83.169.219.0/24 maxlen: 24
83.169.220.0/24 maxlen: 24
83.169.221.0/24 maxlen: 24
83.169.222.0/24 maxlen: 24
83.169.223.0/24 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:76:be:b8:bf:73:bd:a9:54:66:d1:8f:e4:49:37:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 11:20:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=488c0a9826be1b9cc6cc53d2bb8687562db5cb34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ca:6c:17:ed:fe:11:69:23:58:00:f7:73:61:
dc:e9:43:b5:af:2e:4b:ff:b8:71:2a:7a:c2:a4:35:
1b:db:00:38:a5:06:ed:7b:6c:06:a4:0d:54:32:87:
74:e7:fb:3a:f1:02:ad:18:f6:e6:05:b9:ad:49:ce:
0e:6e:4e:63:b6:b4:8f:df:fb:97:05:66:e7:82:81:
dd:9e:d2:e5:cf:d8:bb:76:e4:a2:6f:a0:d8:33:67:
34:b3:db:ab:45:0b:9b:a5:4a:b3:58:0b:0c:11:4a:
c8:e3:d4:2d:7d:30:ec:b4:48:44:84:9c:c0:ba:8e:
1d:98:2a:fe:4e:69:20:4b:c6:b5:a7:a6:d0:0a:13:
a9:1c:98:1b:8c:79:ba:9e:6c:2b:08:c7:13:ad:e4:
54:77:e1:f4:30:f5:f8:a2:5c:e9:24:a3:33:a6:e5:
f2:bc:6c:c4:d4:8f:1e:1d:26:0c:42:5e:3d:c9:e2:
c6:d8:21:94:8c:13:3e:aa:81:8e:a6:4a:42:2c:05:
dc:fa:51:5b:14:1e:76:d8:d9:81:66:08:00:26:4d:
61:7f:80:e7:ed:ff:d2:c1:ad:ac:2c:02:54:25:03:
4f:db:b0:ff:3e:c5:0b:8d:28:18:a2:81:60:66:35:
52:7e:26:e8:81:f1:2b:b8:e4:00:f1:0a:90:f3:9c:
77:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:8C:0A:98:26:BE:1B:9C:C6:CC:53:D2:BB:86:87:56:2D:B5:CB:34
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/SIwKmCa-G5zGzFPSu4aHVi21yzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.104.0-31.173.119.255
77.233.160.0/19
78.109.120.0/23
83.169.217.0-83.169.223.255
86.109.192.0/19
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.96.0/21
178.176.114.0-178.176.127.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.96.0/19
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
4e:2c:e5:78:66:33:53:a5:a7:e6:28:03:88:72:ff:d2:cd:2e:
97:8f:ce:ce:03:95:69:69:7a:13:d7:5c:65:7d:5c:6f:fd:20:
09:4c:2f:9c:54:2f:28:8b:5e:41:3e:3d:f1:7f:ba:f8:ba:e8:
81:0b:82:d6:8d:87:b3:fb:6b:3b:82:ad:64:3d:2b:d3:b2:90:
a3:4d:a9:42:3d:35:10:13:ee:af:43:52:20:a7:70:0e:76:fe:
f6:a5:86:80:25:58:f9:70:c5:e0:10:9e:49:7a:dc:bf:be:e4:
e2:87:5f:70:d1:fc:53:3e:29:63:3b:42:1a:d2:45:a9:22:68:
d6:97:fb:a5:f0:b0:11:80:ba:cb:ee:0b:eb:a6:29:ca:78:b1:
32:3c:3e:0f:18:f4:3d:7b:1b:f3:2d:e5:60:08:2f:bb:4b:6a:
55:1a:6c:36:37:b1:f8:55:a7:b7:bc:56:95:f1:2c:39:cc:a8:
fb:6f:7e:fb:6a:06:9d:59:e9:b8:4f:c7:3e:f8:2a:48:eb:0c:
09:40:8d:89:f8:b6:8a:f3:a7:2d:8d:fe:eb:2d:3a:df:02:76:
93:b0:57:be:8c:1c:77:b8:9e:2c:1e:bc:02:16:cf:ec:b6:7b:
0a:3b:69:7e:30:26:b8:e0:aa:1e:05:c2:d2:75:c7:be:db:c0:
b0:64:bc:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:11 2025 by rpki-client