Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UDXiZK9BOH5izOurXALnDH-K6s4.roa
File: UDXiZK9BOH5izOurXALnDH-K6s4.roa (raw, json)
Hash identifier: r/IT1NJKNeULkkJKVZF1I5TFvqqVTLexzpYwU6vkhho=
Subject key identifier: 50:35:E2:64:AF:41:38:7E:62:CC:EB:AB:5C:02:E7:0C:7F:8A:EA:CE
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184D21CE95D32576265A52981ACDFDC1F2A
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UDXiZK9BOH5izOurXALnDH-K6s4.roa
Signing time: Fri 02 Dec 2022 09:13:40 +0000
ROA not before: Fri 02 Dec 2022 09:13:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25159
IP address blocks: 109.188.0.0/16 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
79.171.8.0/21 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
94.25.128.0/17 maxlen: 24
93.153.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
78.25.64.0/18 maxlen: 24
188.170.25.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
188.170.32.0/21 maxlen: 21
188.170.40.0/21 maxlen: 21
37.28.176.0/21 maxlen: 21
212.119.160.0/19 maxlen: 24
80.247.176.0/20 maxlen: 24
91.193.212.0/22 maxlen: 24
178.177.0.0/18 maxlen: 18
178.177.3.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
37.29.32.0/21 maxlen: 21
95.137.0.0/17 maxlen: 24
178.176.52.0/22 maxlen: 22
178.176.72.0/21 maxlen: 21
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
31.173.0.0/21 maxlen: 21
31.173.8.0/21 maxlen: 21
178.176.0.0/19 maxlen: 19
81.24.128.0/20 maxlen: 24
195.78.116.0/23 maxlen: 24
178.176.32.0/21 maxlen: 21
78.41.100.0/22 maxlen: 24
178.176.40.0/21 maxlen: 21
31.173.72.0/21 maxlen: 21
31.173.80.0/21 maxlen: 21
31.173.88.0/21 maxlen: 21
188.170.0.0/19 maxlen: 19
188.170.24.0/24 maxlen: 24
31.173.16.0/21 maxlen: 21
31.173.24.0/21 maxlen: 21
31.173.32.0/19 maxlen: 19
83.169.192.0/18 maxlen: 24
31.173.60.0/24 maxlen: 24
31.173.64.0/21 maxlen: 21
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
109.74.112.0/20 maxlen: 24
62.64.0.0/20 maxlen: 20
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
46.229.128.0/22 maxlen: 22
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d2:1c:e9:5d:32:57:62:65:a5:29:81:ac:df:dc:1f:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 2 09:13:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5035e264af41387e62ccebab5c02e70c7f8aeace
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:f4:75:00:b0:42:b8:7a:cf:1d:12:a1:39:c0:
be:64:73:70:37:08:59:36:69:20:d3:3d:88:5e:64:
b4:9e:fc:e5:32:5b:1a:49:9e:9f:de:7f:e6:61:70:
91:8a:f2:6d:bd:69:27:d8:c1:01:b6:b3:77:02:29:
42:81:88:f9:ad:59:a1:cc:5c:61:07:d6:16:0b:3d:
92:16:92:f6:f1:41:23:8b:e8:9f:35:7a:b2:79:9f:
35:9b:ed:38:f3:d0:d9:34:15:1d:81:02:95:34:f2:
19:5c:db:36:82:0c:5a:9b:03:78:d8:6a:0d:42:11:
ba:54:5a:4f:de:f6:84:bf:d7:4d:5f:05:5e:82:de:
2d:2f:10:22:3a:27:7b:9b:f6:f1:0c:2b:20:e4:ab:
68:42:e3:6e:dd:51:f1:19:7c:3c:d4:08:2b:3d:48:
7b:d8:7d:be:72:c9:21:6f:f4:6d:37:1e:18:7c:f7:
58:fe:eb:59:c2:cf:39:47:9f:ab:90:e3:f5:be:60:
d1:ae:9a:61:d6:08:7a:fb:28:d7:cb:7e:a9:8c:d6:
c1:2f:89:7f:40:88:f5:32:ef:1c:ae:d1:56:b3:a4:
bf:c9:7d:60:f6:f8:d9:70:ba:88:78:c7:6c:f1:77:
12:9b:0d:de:81:e5:d8:11:93:a9:db:7f:b2:bb:3a:
47:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:35:E2:64:AF:41:38:7E:62:CC:EB:AB:5C:02:E7:0C:7F:8A:EA:CE
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UDXiZK9BOH5izOurXALnDH-K6s4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.0.0-31.173.95.255
37.28.176.0/21
37.29.32.0/21
46.229.128.0/22
62.64.0.0/20
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.24.128.0/20
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.0.0-178.176.47.255
178.176.52.0/22
178.176.72.0/21
178.177.0.0/18
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.0.0-188.170.47.255
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
78:86:31:b5:31:58:97:d7:f7:1d:6d:a0:cd:7e:24:8e:cd:6e:
e8:18:c1:a0:2f:8c:93:4b:c4:dd:a9:4c:b9:f2:29:c9:36:b9:
19:d1:63:58:f8:28:53:6d:a7:29:b7:c4:72:79:03:0b:00:a5:
4e:3c:bb:b7:53:fc:59:d3:e6:e1:4a:dd:4f:9a:56:f9:a2:e5:
0a:e6:93:46:d8:f2:37:11:b5:0b:26:d0:95:35:00:d8:86:97:
c6:78:c9:91:6c:c2:b8:1f:cb:90:e0:06:a6:75:5e:5b:85:a2:
76:1a:f9:83:b2:bb:15:9a:f9:a6:91:0b:37:29:87:43:ac:7c:
60:39:6d:c7:1b:34:f6:7d:61:30:cf:68:f0:0d:13:17:2e:8e:
78:36:c2:a2:3e:b5:ef:53:e4:00:a9:52:74:53:25:07:7b:7e:
04:01:4b:5a:c3:0a:7d:e3:d4:79:8d:1e:c3:5d:ec:b5:8b:cf:
71:33:2a:e6:a7:31:ba:0b:e4:31:10:8a:4d:8a:90:9f:c2:65:
66:5a:e5:2c:6f:34:6b:dd:29:6f:a6:3c:6b:e5:3f:e8:12:4d:
2e:27:d3:23:b9:08:73:bc:38:d7:ea:6b:be:44:f7:dd:89:38:
90:bc:81:60:76:2f:b4:56:8b:fb:e3:01:80:bc:c1:be:cd:68:
3d:01:ae:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:41 2025 by rpki-client