Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UElY6pvxbTRleedrW6dfGCxBgxU.roa
File: UElY6pvxbTRleedrW6dfGCxBgxU.roa (raw, json)
Hash identifier: ZEuNQhofEdJHiUOUdafF6tELo5o32IqzmhK0lqd67OI=
Subject key identifier: 50:49:58:EA:9B:F1:6D:34:65:79:E7:6B:5B:A7:5F:18:2C:41:83:15
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F14636BBDF36DF27383E3D8C74798B9A
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UElY6pvxbTRleedrW6dfGCxBgxU.roa
Signing time: Thu 08 Dec 2022 10:27:01 +0000
ROA not before: Thu 08 Dec 2022 10:27:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20663
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
109.74.112.0/20 maxlen: 24
195.230.64.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
178.23.144.0/21 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:46:36:bb:df:36:df:27:38:3e:3d:8c:74:79:8b:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 10:27:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=504958ea9bf16d346579e76b5ba75f182c418315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ff:8d:36:a8:ef:6f:c7:88:ab:c9:cd:f3:ae:
11:89:18:c3:ed:85:e0:80:8c:5a:36:4e:c3:a8:58:
bc:f7:23:a5:fc:29:7d:c7:94:d2:8d:08:b5:81:4f:
3a:18:3f:94:80:d5:f2:ef:b0:19:00:57:3e:4d:10:
b0:f8:d7:7a:63:70:1e:82:da:08:7e:7e:d8:33:8a:
cb:77:ca:5a:47:bc:5d:6a:21:f8:b0:de:b9:85:b7:
8b:99:56:9b:d0:94:df:80:f0:fe:2b:8c:e3:15:6e:
56:2e:46:24:55:f1:52:f5:54:62:d2:bd:d4:9c:6f:
24:0c:c5:b4:9a:96:26:bd:34:a1:6a:4c:a9:51:27:
7c:ac:08:af:ba:f3:3b:dd:34:21:7e:0f:a3:3b:20:
3c:9d:ab:7e:8c:a6:0f:cd:a4:ff:92:b2:27:6b:22:
4e:f0:75:11:5d:fd:16:70:f3:39:ba:ad:31:b1:1a:
45:51:af:4c:c8:e9:57:6c:f8:01:ea:af:90:27:4c:
d1:21:6e:5c:98:a3:ba:2f:6f:ee:fd:37:d0:11:aa:
a5:c2:0e:0a:f9:00:7a:3b:d3:29:c1:06:15:d7:db:
24:46:4a:4b:1b:df:d1:bb:0a:8d:55:de:d9:4c:ee:
17:56:98:c9:99:b6:d8:1c:cc:3b:1d:58:1e:30:08:
ab:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:49:58:EA:9B:F1:6D:34:65:79:E7:6B:5B:A7:5F:18:2C:41:83:15
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UElY6pvxbTRleedrW6dfGCxBgxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
93:df:78:cd:62:35:d3:95:3e:04:1c:d7:48:e3:29:04:b9:04:
db:b4:6d:60:26:d1:c3:f3:1a:21:d7:1f:37:cd:e2:ac:16:bf:
79:22:15:63:31:0c:c7:4c:9c:e2:44:e3:47:99:bc:2d:ae:c0:
06:28:c9:76:45:af:f3:43:af:57:e0:b1:90:95:61:ef:14:d3:
26:38:f5:8c:27:a1:4b:21:ea:d8:ae:d0:7d:8d:26:ce:fd:46:
95:e9:ce:66:36:ac:99:28:73:66:0d:e1:d8:17:2c:9e:13:d1:
e7:ba:f7:4c:04:a7:8d:24:6e:52:30:ff:84:b1:64:41:10:26:
52:08:77:4d:93:a7:ee:05:5b:bf:42:ee:52:a8:04:53:cc:3b:
e2:a6:3f:07:b6:aa:c2:11:5d:3e:a3:27:27:f1:dd:aa:ce:1f:
48:04:2f:49:86:67:ea:a1:ab:0c:74:4a:c2:d5:b6:a5:f4:a8:
8b:24:33:90:62:17:00:86:14:dd:54:d2:77:66:b0:72:f2:4b:
da:5a:6e:77:c8:1d:8d:6e:c4:e2:ee:21:94:54:3c:05:0b:fe:
ee:53:3d:96:9d:ac:94:08:12:5d:32:7b:b6:c5:df:16:e6:f5:
27:f5:ee:2b:70:e9:9f:29:ee:b5:d8:0d:b2:01:fe:f3:cc:d2:
3e:b5:ff:bc
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgISAYTxRja73zbfJzg+PYx0eYuaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjA4MTAyNzAxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MDQ5NThlYTliZjE2ZDM0NjU3OWU3NmI1YmE3NWYxODJjNDE4MzE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0f+NNqjvb8eIq8nN864RiRjD7YXg
gIxaNk7DqFi89yOl/Cl9x5TSjQi1gU86GD+UgNXy77AZAFc+TRCw+Nd6Y3AegtoI
fn7YM4rLd8paR7xdaiH4sN65hbeLmVab0JTfgPD+K4zjFW5WLkYkVfFS9VRi0r3U
nG8kDMW0mpYmvTShakypUSd8rAivuvM73TQhfg+jOyA8nat+jKYPzaT/krInayJO
8HURXf0WcPM5uq0xsRpFUa9MyOlXbPgB6q+QJ0zRIW5cmKO6L2/u/TfQEaqlwg4K
+QB6O9MpwQYV19skRkpLG9/RuwqNVd7ZTO4XVpjJmbbYHMw7HVgeMAirVQIDAQAB
o4ICkDCCAowwHQYDVR0OBBYEFFBJWOqb8W00ZXnna1unXxgsQYMVMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvVUVsWTZwdnhiVFJsZWVkclc2ZGZHQ3hCZ3hVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGlBggrBgEFBQcBBwEB/wSBlTCBkjCBjwQCAAEwgYgDBARt
SnADBAZtfEADAwBtvAMEBoDMQAMEA7IXkAMEArkDIAMEArnSjAMEA7xeqAMDALyi
AwQCwcnkAwQFwwWAAwQFwxBgAwQBw050AwQAw5VvAwQFw+ZAAwQF1A6gAwQF1CxA
AwQF1EVgAwQF1HegAwQF1ZqgAwQF1aggAwQG1fNAAwQE2XNQMA0GCSqGSIb3DQEB
CwUAA4IBAQCT33jNYjXTlT4EHNdI4ykEuQTbtG1gJtHD8xoh1x83zeKsFr95IhVj
MQzHTJziRONHmbwtrsAGKMl2Ra/zQ69X4LGQlWHvFNMmOPWMJ6FLIerYrtB9jSbO
/UaV6c5mNqyZKHNmDeHYFyyeE9HnuvdMBKeNJG5SMP+EsWRBECZSCHdNk6fuBVu/
Qu5SqARTzDvipj8HtqrCEV0+oycn8d2qzh9IBC9JhmfqoasMdErC1bal9KiLJDOQ
YhcAhhTdVNJ3ZrBy8kvaWm53yB2NbsTi7iGUVDwFC/7uUz2WnayUCBJdMnu2xd8W
5vUn9e4rcOmfKe612A2yAf7zzNI+tf+8
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:00:05 2025 by rpki-client