Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/TCQQGKGYAAE4jVAm6lNuT4D9PEc.roa
File: TCQQGKGYAAE4jVAm6lNuT4D9PEc.roa (raw, json)
Hash identifier: Kfyji4n7QejL2RL7StsG1LuIXn1Fvo7QUg0HByGsN4c=
Subject key identifier: 4C:24:10:18:A1:98:00:01:38:8D:50:26:EA:53:6E:4F:80:FD:3C:47
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018505A428F0CB59743DD3AAF48A691C9DE0
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/TCQQGKGYAAE4jVAm6lNuT4D9PEc.roa
Signing time: Mon 12 Dec 2022 09:22:02 +0000
ROA not before: Mon 12 Dec 2022 09:22:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31205
IP address blocks: 195.16.96.0/19 maxlen: 24
188.170.247.0/24 maxlen: 24
83.149.50.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
83.149.49.0/24 maxlen: 24
83.149.48.0/24 maxlen: 24
83.149.51.0/24 maxlen: 24
178.176.48.0/24 maxlen: 24
193.201.228.0/22 maxlen: 24
83.169.252.0/22 maxlen: 22
83.169.248.0/22 maxlen: 22
85.26.226.0/24 maxlen: 24
85.26.224.0/24 maxlen: 24
85.26.230.0/24 maxlen: 24
85.26.229.0/24 maxlen: 24
85.26.228.0/24 maxlen: 24
85.26.231.0/24 maxlen: 24
85.26.227.0/24 maxlen: 24
188.162.0.0/16 maxlen: 24
46.232.202.0/23 maxlen: 23
46.232.200.0/24 maxlen: 24
185.210.142.0/23 maxlen: 23
185.210.140.0/23 maxlen: 23
178.176.240.0/22 maxlen: 22
178.176.244.0/22 maxlen: 22
78.25.92.0/23 maxlen: 23
78.25.94.0/23 maxlen: 23
37.29.86.0/23 maxlen: 23
188.170.240.0/22 maxlen: 22
31.173.240.0/23 maxlen: 23
195.5.128.0/19 maxlen: 24
128.204.66.0/24 maxlen: 24
31.173.242.0/23 maxlen: 23
128.204.67.0/24 maxlen: 24
31.173.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:a4:28:f0:cb:59:74:3d:d3:aa:f4:8a:69:1c:9d:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 09:22:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c241018a1980001388d5026ea536e4f80fd3c47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ad:d6:60:b7:aa:07:d0:dd:10:c9:d4:9a:6d:
ef:03:08:70:65:70:16:d5:9a:92:57:f3:67:bc:5e:
f8:4a:68:58:d0:d7:ba:d0:40:fb:0c:68:e0:2d:c2:
47:79:fb:74:21:bd:92:d7:29:5d:38:21:90:e7:be:
91:83:14:01:47:71:f4:10:e3:76:c5:c4:f7:75:d5:
77:f6:cf:22:e2:5d:68:2a:f4:14:27:61:4c:80:90:
d0:59:64:6c:74:aa:3d:21:02:7d:5d:ef:71:14:d7:
9b:06:04:23:81:c7:fd:a2:1b:89:2a:67:8f:73:e5:
cf:8b:90:00:7c:36:20:a6:43:3d:b2:13:96:11:8e:
5d:bf:55:ab:28:9b:40:be:be:56:28:6f:7b:b9:8f:
5f:8b:af:47:5e:56:cc:2a:d1:11:ce:eb:6b:e5:45:
19:00:ac:5f:ca:be:23:9b:3a:f2:1e:b7:21:b7:12:
cc:7a:4e:19:c9:ae:ef:75:06:4d:3f:04:e2:a1:5e:
b5:47:8b:28:b4:ce:aa:01:c6:3e:2e:73:5c:1f:1c:
1f:c6:75:16:8b:eb:8a:5e:60:e0:78:0e:89:8b:e1:
9d:88:9e:ae:36:ea:fa:53:da:d0:f8:68:e9:d4:5d:
c3:ce:58:91:92:6f:d6:c8:ae:fa:f0:fd:cb:0b:96:
b8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:24:10:18:A1:98:00:01:38:8D:50:26:EA:53:6E:4F:80:FD:3C:47
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/TCQQGKGYAAE4jVAm6lNuT4D9PEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.240.0/21
37.29.86.0/23
46.232.200.0/24
46.232.202.0/23
78.25.92.0/22
83.149.48.0/22
83.169.248.0/21
85.26.224.0/24
85.26.226.0-85.26.231.255
128.204.66.0/23
178.176.48.0/24
178.176.240.0/21
185.210.140.0/22
188.162.0.0/16
188.170.240.0/22
188.170.247.0/24
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
Signature Algorithm: sha256WithRSAEncryption
70:30:a0:0b:f8:1a:f0:d1:e0:63:09:d9:00:86:10:c2:40:af:
84:c4:80:a2:77:4b:f4:c5:ec:f0:b7:b6:08:4f:3b:c5:39:08:
27:92:de:07:14:d3:64:9c:81:3f:cc:cf:94:6f:4d:bb:b2:e6:
b8:bc:9c:2b:1d:5f:d1:10:28:87:c0:77:d9:03:34:09:aa:f1:
de:30:4c:b9:20:4c:e0:07:31:7e:01:b3:2a:4d:7e:63:49:9a:
ae:ec:21:33:4a:70:b4:8d:5c:12:f3:26:90:c2:4c:1b:15:bf:
4d:b2:6e:fe:f3:f0:d0:c5:3e:e1:80:e8:b0:0a:a9:a3:fb:4c:
a6:c8:7f:36:d4:ed:ef:67:24:21:dd:80:72:e7:c2:fd:b8:2c:
ae:ee:9e:28:5f:35:85:60:e1:b2:85:f6:9a:6a:be:52:bd:2e:
d3:29:85:e0:a9:4a:96:67:5c:31:97:1c:be:8e:cb:45:95:44:
c6:c4:88:d9:44:51:59:2a:37:0d:b2:2f:85:bd:08:3d:73:7a:
f9:d8:af:4d:3f:a9:98:df:63:a4:0e:ca:d9:ee:2b:96:9d:a8:
0b:d9:fc:bd:ab:7a:10:84:49:6e:0e:ea:51:a6:d8:a8:cf:a3:
d8:79:29:1e:48:db:0b:4e:19:fc:1d:4a:f5:63:d3:5a:0a:bc:
08:42:5a:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:23:39 2025 by rpki-client