Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/TdzX55fFhej4ZxszBwJQ-tkBsnY.roa
File: TdzX55fFhej4ZxszBwJQ-tkBsnY.roa (raw, json)
Hash identifier: TDrPiqAgR75NnSZft3PEyLPow5cdbujsmxEW9eG/QTI=
Subject key identifier: 4D:DC:D7:E7:97:C5:85:E8:F8:67:1B:33:07:02:50:FA:D9:01:B2:76
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01841D9C9459A1FFECA66B69EBEC4275F3A7
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/TdzX55fFhej4ZxszBwJQ-tkBsnY.roa
Signing time: Fri 28 Oct 2022 08:01:51 +0000
ROA not before: Fri 28 Oct 2022 08:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31208
IP address blocks: 109.188.0.0/16 maxlen: 24
46.29.192.0/21 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
79.171.8.0/21 maxlen: 24
178.178.84.0/22 maxlen: 22
178.178.82.0/24 maxlen: 24
178.178.80.0/23 maxlen: 23
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
37.29.0.0/17 maxlen: 24
37.28.160.0/19 maxlen: 24
78.25.64.0/18 maxlen: 24
185.210.140.0/22 maxlen: 24
178.176.230.0/23 maxlen: 23
212.119.160.0/19 maxlen: 24
80.247.176.0/20 maxlen: 24
91.193.212.0/22 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
178.176.58.0/24 maxlen: 24
178.176.56.0/24 maxlen: 24
178.176.57.0/24 maxlen: 24
178.176.62.0/24 maxlen: 24
178.176.63.0/24 maxlen: 24
178.176.59.0/24 maxlen: 24
178.176.60.0/24 maxlen: 24
178.176.61.0/24 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
77.233.160.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
81.24.128.0/20 maxlen: 24
83.149.41.0/24 maxlen: 24
83.149.44.0/23 maxlen: 23
83.149.40.0/24 maxlen: 24
83.149.42.0/23 maxlen: 23
195.78.116.0/23 maxlen: 24
78.41.100.0/22 maxlen: 24
83.149.46.0/23 maxlen: 23
83.169.192.0/18 maxlen: 24
188.94.168.0/21 maxlen: 24
109.74.112.0/20 maxlen: 24
188.162.0.0/16 maxlen: 24
46.232.200.0/21 maxlen: 24
62.64.0.0/19 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
212.44.64.0/19 maxlen: 24
46.229.128.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1d:9c:94:59:a1:ff:ec:a6:6b:69:eb:ec:42:75:f3:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 28 08:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ddcd7e797c585e8f8671b33070250fad901b276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:6f:85:20:05:86:bf:c2:57:26:ba:58:56:ff:
15:bf:89:25:cc:ae:ef:5b:4a:a1:0b:85:87:73:70:
10:85:fe:5f:26:94:d7:81:d3:c9:58:56:7d:39:aa:
5f:2c:86:d4:2b:06:0b:16:3c:3e:3c:fb:b4:c2:ee:
e9:2d:0a:fb:a4:f1:e0:ca:6d:0e:c3:38:c6:c7:88:
d1:4d:b1:61:aa:fa:39:56:45:e6:44:0a:d4:b4:ac:
cc:d6:4b:27:63:d0:19:fe:ed:af:94:6d:2b:16:d3:
9b:cd:8b:89:a7:51:d0:f9:00:82:2e:74:9d:7c:de:
b0:9e:96:c2:01:6a:8a:5d:4a:42:2b:36:ae:3e:c4:
3b:d9:67:c3:31:e0:c5:5d:68:9a:32:62:ed:0d:a9:
4c:8e:f1:02:29:89:8d:7f:f3:d9:8b:8b:69:0e:5b:
63:2a:2d:96:d0:ce:e8:cd:1c:ab:aa:a4:ca:07:9a:
6b:48:ab:ca:0e:a4:44:3f:35:76:30:70:fc:24:54:
b6:12:15:aa:ad:73:9c:5a:98:fe:36:c8:37:f9:ba:
5f:a1:c0:71:12:34:52:8b:bc:65:fc:79:f8:5f:4b:
c4:55:69:f6:6e:13:3b:f0:7d:d6:a8:75:f9:24:6f:
d8:f4:7c:12:25:94:c2:b3:b3:a8:e4:a8:de:57:1f:
52:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:DC:D7:E7:97:C5:85:E8:F8:67:1B:33:07:02:50:FA:D9:01:B2:76
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/TdzX55fFhej4ZxszBwJQ-tkBsnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.160.0/19
37.29.0.0/17
46.29.192.0/21
46.229.128.0/20
46.232.200.0/21
62.64.0.0/19
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.24.128.0/20
83.149.40.0/21
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.56.0/21
178.176.230.0/23
178.178.80.0-178.178.82.255
178.178.84.0/22
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
4c:fe:2b:61:d7:81:31:b9:ae:85:2f:8f:a4:db:b2:fb:57:ff:
3f:f3:f7:b0:30:04:e1:0a:5c:2b:a0:df:27:23:c1:93:0b:8c:
ed:aa:2a:aa:82:6c:b0:df:e8:98:ab:f2:9a:60:df:f6:a6:d2:
38:f9:cc:74:3b:6c:47:c1:4d:27:0e:b0:69:e4:ee:66:23:67:
79:ee:49:5a:a4:79:9a:f4:c3:ff:39:96:b7:97:ae:ad:65:9e:
5b:34:7a:51:f2:13:a7:46:a5:64:8c:e6:b4:44:ca:93:4b:15:
7c:de:ea:97:a6:fa:30:f9:f2:14:a2:2b:b0:03:57:25:c7:b1:
46:fe:b6:25:72:1e:f4:1c:60:72:b3:8b:e9:32:60:af:36:a3:
35:7a:ba:49:60:76:da:80:35:65:f2:a9:e9:9a:d5:1f:cd:1f:
54:05:44:b4:16:0e:fc:b0:7e:d2:31:a4:1d:64:c4:ff:50:c9:
92:23:53:8c:84:c6:7c:45:dc:7a:f2:71:f9:c7:db:1c:59:9f:
da:e0:14:5a:8e:43:85:39:9d:7c:1f:c6:e8:87:a2:ca:3d:da:
1d:81:7c:b8:cc:59:bd:dd:e0:aa:d7:ee:16:9d:c2:28:9e:2a:
d1:3c:45:61:88:58:81:ab:10:77:3c:8a:94:67:5b:ae:01:5b:
01:79:79:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:35 2024 by rpki-client on console-ams.rpki-client.org