Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/TRvW0T3dCeJuN7B_9TbRSyNXD1E.roa
File: TRvW0T3dCeJuN7B_9TbRSyNXD1E.roa (raw, json)
Hash identifier: DBSkf/4J8/imcACK9A7da9J0MsFimL+wJEh4SIw8iIc=
Subject key identifier: 4D:1B:D6:D1:3D:DD:09:E2:6E:37:B0:7F:F5:36:D1:4B:23:57:0F:51
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F219DF44DEE2BC54D3542D077C3EE67B
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/TRvW0T3dCeJuN7B_9TbRSyNXD1E.roa
Signing time: Thu 08 Dec 2022 14:18:12 +0000
ROA not before: Thu 08 Dec 2022 14:18:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24767
IP address blocks: 212.69.96.0/19 maxlen: 24
212.14.160.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
195.16.96.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f2:19:df:44:de:e2:bc:54:d3:54:2d:07:7c:3e:e6:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 14:18:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d1bd6d13ddd09e26e37b07ff536d14b23570f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c7:35:cd:93:64:7e:cc:d7:aa:6f:10:c5:a2:
b3:3a:e4:81:a3:67:8d:a5:08:71:df:2f:a9:a8:99:
a0:16:d8:5c:8e:9e:d4:4d:a8:47:47:78:e7:bc:a6:
5b:47:ae:47:ac:8c:87:40:d6:55:ec:0a:b1:ab:41:
d5:ef:6d:b2:7d:a6:bf:48:d9:2e:ab:ba:6c:52:5b:
98:26:b9:03:3d:e3:f7:1c:cf:5e:6d:ca:b3:97:d1:
35:1d:9b:f0:8c:9c:e6:f5:d0:2a:33:50:da:70:de:
82:9a:66:d0:f8:49:1f:10:96:20:ae:cb:9a:fb:fe:
d1:99:7f:f1:0a:ae:c6:1d:bf:30:43:7c:4c:6a:5d:
92:b1:8f:8c:c4:a3:6c:66:80:36:ef:04:a9:73:19:
4a:43:40:b6:5d:2b:6a:12:68:74:f6:54:61:25:7e:
24:62:2f:9e:99:15:50:05:c4:a9:fd:fb:02:5c:85:
da:ff:8c:da:f8:7d:cd:ed:8f:1c:b7:c9:d5:4a:27:
89:18:4c:b5:cf:26:ec:96:7b:ad:55:05:cc:72:53:
82:dc:c1:2d:92:b9:d8:fd:09:80:dd:fd:4f:24:e8:
75:ca:d3:3d:12:76:91:7c:b6:bd:0e:1d:fb:85:65:
9e:f2:8d:b1:d3:6f:71:50:27:50:87:ff:2a:c5:7c:
d9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:1B:D6:D1:3D:DD:09:E2:6E:37:B0:7F:F5:36:D1:4B:23:57:0F:51
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/TRvW0T3dCeJuN7B_9TbRSyNXD1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
1f:a5:2b:de:9e:7c:11:db:ac:82:34:30:70:59:c4:b6:87:47:
e0:e3:09:cf:79:93:a0:96:bd:98:0b:19:66:49:a4:90:0f:fb:
b6:63:3b:52:9e:0c:93:f1:21:eb:37:eb:09:70:5d:80:4e:4f:
2e:5e:07:cd:a3:6f:01:0c:85:82:7b:61:54:0f:73:29:05:1c:
fe:21:06:dc:45:c7:09:ee:5c:9c:0e:1f:20:82:de:25:8d:1f:
44:5e:91:14:86:ab:65:3c:72:ef:5f:c9:04:bd:96:c2:47:7c:
cc:e9:c9:c6:63:a0:35:02:fa:0d:32:44:e2:82:6c:48:0a:1b:
98:cc:a2:9a:91:70:a1:84:09:ad:7f:4f:87:5b:fb:8c:bc:2c:
92:5f:38:68:a0:7a:44:4f:a2:ab:f0:e5:c1:82:ea:93:1f:b9:
33:34:2d:ab:22:87:12:3a:73:f3:4a:d2:91:7f:69:ca:a2:d5:
fb:03:3c:4d:48:ea:06:2e:7d:72:e8:8f:1e:ca:24:db:b2:06:
44:ca:14:9b:61:83:d9:f6:6b:54:1a:a8:d6:43:90:a5:e1:4a:
f3:29:d0:5b:32:70:2c:3c:dc:f6:7e:1f:37:a2:ee:46:cc:a7:
83:d8:2b:7c:6e:59:06:dc:36:cb:64:09:73:49:e6:a0:ae:30:
ff:5b:3f:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:35 2024 by rpki-client on console-ams.rpki-client.org