Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/T2pg_vLzmID7L_91By1HvRopMQU.roa
File: T2pg_vLzmID7L_91By1HvRopMQU.roa (raw, json)
Hash identifier: DXyTI1QvMwB09bGnZHzkVw41wh5/5bDOl2j/ddsY1k0=
Subject key identifier: 4F:6A:60:FE:F2:F3:98:80:FB:2F:FF:75:07:2D:47:BD:1A:29:31:05
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F127243CFA76D0F1D6751EDBA1250DAA
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/T2pg_vLzmID7L_91By1HvRopMQU.roa
Signing time: Thu 08 Dec 2022 09:53:04 +0000
ROA not before: Thu 08 Dec 2022 09:53:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41976
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
94.25.128.0/17 maxlen: 24
212.69.96.0/19 maxlen: 24
109.74.112.0/20 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:27:24:3c:fa:76:d0:f1:d6:75:1e:db:a1:25:0d:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 09:53:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f6a60fef2f39880fb2fff75072d47bd1a293105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:99:07:cc:ad:83:ed:ab:c2:3f:f1:f2:cc:e7:
43:68:4f:de:8d:ee:23:60:a5:56:88:14:fc:1c:45:
37:3a:f1:c9:57:2f:8d:25:4c:00:bc:0c:47:9a:bf:
cb:5d:84:f0:e4:c5:46:f5:36:e9:a6:4f:ec:ea:77:
8e:a2:f3:b4:96:05:c6:76:0b:78:16:7b:a3:d2:6d:
ec:b7:a3:f9:ef:d2:1a:b3:25:7a:55:4b:2e:90:1a:
2d:dc:6a:d2:24:3c:91:47:51:8f:2d:7c:51:5c:e0:
c7:41:2e:5a:44:11:dd:fc:0c:0f:7f:03:8b:86:57:
2a:69:c2:0a:aa:1b:90:3e:3e:b5:e6:68:b7:ab:fb:
78:f5:a8:a8:80:c6:13:96:1e:20:04:02:b4:9a:f0:
58:75:57:89:8b:70:72:5b:e4:0d:54:51:76:9b:9a:
60:a6:6c:e2:c6:4e:d4:2f:fb:75:64:40:31:c2:4b:
76:7b:72:85:7a:77:2f:c2:79:5d:dd:8a:63:ea:d9:
0b:4b:0f:df:f7:40:cc:88:95:7d:eb:31:ad:04:f0:
b5:65:7b:ce:7a:44:d6:6b:d2:6b:bc:0f:66:51:2e:
af:ae:ee:0f:74:47:0a:06:6e:1c:1e:a7:9b:5a:c8:
b3:eb:15:66:4e:ff:f4:bd:36:10:28:c1:4b:47:ba:
b6:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:6A:60:FE:F2:F3:98:80:FB:2F:FF:75:07:2D:47:BD:1A:29:31:05
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/T2pg_vLzmID7L_91By1HvRopMQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
01:e2:e9:12:80:8f:42:34:31:e3:57:89:52:08:f1:cc:99:24:
08:30:95:6a:61:8d:14:96:8b:c2:49:6f:65:9f:05:0f:a6:7c:
1d:4c:32:a9:60:bd:02:10:65:aa:0f:af:aa:bd:ef:c7:97:40:
07:72:d7:51:c7:db:23:11:9d:46:8c:4b:5b:e1:08:2e:98:78:
1f:97:fc:38:3d:09:05:27:26:66:2a:7c:f6:29:f1:be:f3:d9:
4a:3f:1f:e1:81:e7:db:66:0b:d9:d6:7d:87:48:ac:fd:c2:36:
73:88:b6:28:ac:ca:8c:f3:1a:8d:6a:96:a7:1d:27:3d:a3:e3:
da:ca:ed:18:09:1f:9e:25:c2:86:86:55:45:0b:94:47:22:47:
2f:5b:aa:c6:86:52:ce:20:56:f5:00:94:1f:87:06:0a:02:70:
ed:23:45:fd:5b:98:11:62:9c:5d:f4:56:88:c4:0e:a2:79:0e:
ac:e2:7b:75:81:5f:d5:27:7b:0f:79:0c:ae:73:9b:b5:96:49:
47:d7:38:0c:30:43:8a:b2:c1:5e:3d:12:1f:ae:cd:f3:6c:7d:
d8:fa:5e:ac:f1:0f:72:f3:a1:bc:c7:29:89:b4:2c:29:d3:a7:
2b:5f:c7:37:88:9c:58:61:81:fb:21:10:1c:ee:f1:c1:83:b1:
4c:9d:6c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:35 2024 by rpki-client on console-ams.rpki-client.org