Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UYUUu8fjjQrb7rAP-EeB1WI11ig.roa
File: UYUUu8fjjQrb7rAP-EeB1WI11ig.roa (raw, json)
Hash identifier: IZzYAO+4IcPO417ZdcmxrvW+8Kp9LWECRYsPRMtxeO0=
Subject key identifier: 51:85:14:BB:C7:E3:8D:0A:DB:EE:B0:0F:F8:47:81:D5:62:35:D6:28
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01847658FFFA7B087B6967AE65878FDBC603
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UYUUu8fjjQrb7rAP-EeB1WI11ig.roa
Signing time: Mon 14 Nov 2022 13:34:14 +0000
ROA not before: Mon 14 Nov 2022 13:34:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24866
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
77.233.160.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
79.171.8.0/21 maxlen: 24
81.24.128.0/20 maxlen: 24
78.41.100.0/22 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
83.169.192.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
46.232.200.0/21 maxlen: 24
62.64.0.0/19 maxlen: 24
78.25.64.0/18 maxlen: 24
185.210.140.0/22 maxlen: 24
178.176.227.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
178.176.229.0/24 maxlen: 24
178.176.228.0/24 maxlen: 24
80.247.176.0/20 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:76:58:ff:fa:7b:08:7b:69:67:ae:65:87:8f:db:c6:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Nov 14 13:34:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=518514bbc7e38d0adbeeb00ff84781d56235d628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:92:f9:96:09:49:86:f7:97:86:f3:75:6e:b1:
d4:93:15:9c:bc:b9:ee:91:a8:79:7e:0f:0c:b1:88:
a9:47:b7:3d:a7:c2:ce:63:72:08:cb:4d:bc:66:b1:
ac:ea:d1:68:9b:10:94:2d:76:69:f3:67:21:f7:ca:
ec:cb:da:19:8d:35:a4:03:58:5f:2f:00:06:d4:f1:
e7:76:17:4b:23:c7:5c:44:00:c0:ef:bd:b6:7c:ae:
20:ad:93:72:71:ad:9d:db:27:d9:d1:fe:7d:62:9d:
93:76:18:4d:91:96:eb:f0:2f:02:fc:85:33:9c:7a:
4b:1d:31:00:24:ef:53:4f:c6:03:a7:30:e5:34:fc:
4d:9e:05:82:de:29:2c:f2:49:db:99:0b:be:64:7b:
b7:aa:ba:09:f0:94:84:d8:61:e1:23:26:17:01:88:
a0:a3:4d:10:1a:8c:5e:da:7b:44:0f:64:54:77:aa:
67:e3:2c:b1:03:79:e9:52:f4:8f:c7:bd:2a:33:90:
ed:fc:29:b3:8d:71:59:57:48:55:e5:aa:d3:29:1b:
36:4c:8c:50:bb:1d:83:b5:bd:7a:8c:5b:b5:7f:8c:
7b:19:11:5d:9a:87:a6:37:33:aa:bf:be:fc:ce:1d:
61:7f:b6:f8:7d:6f:ed:30:3b:97:87:c7:d5:77:6b:
67:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:85:14:BB:C7:E3:8D:0A:DB:EE:B0:0F:F8:47:81:D5:62:35:D6:28
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/UYUUu8fjjQrb7rAP-EeB1WI11ig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.232.200.0/21
62.64.0.0/19
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.24.128.0/20
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.227.0-178.176.229.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
09:47:ba:bc:67:e6:86:78:dc:ab:d7:f4:93:e3:7d:44:28:d7:
92:76:e1:7d:68:e8:0b:e2:ba:ec:59:86:6b:24:86:a5:81:61:
a0:8e:36:84:f0:32:85:11:5c:8e:86:e6:4c:96:a2:d2:9f:c2:
14:10:7f:99:85:a0:4d:41:6f:27:ab:69:f6:2d:12:a2:8f:95:
3a:69:d3:0d:45:58:f4:1f:cd:dc:5e:38:1e:ae:36:d8:d8:c3:
36:1d:36:93:0e:18:8f:c6:d8:09:6c:f9:ea:88:af:9e:85:10:
72:24:0a:c8:92:82:a9:52:5f:3a:ba:9a:77:87:96:de:3f:47:
2f:3d:a2:14:d8:24:f6:d4:61:ec:0b:a4:8f:f9:de:db:33:33:
35:e7:64:9f:49:38:5c:18:d9:60:ab:e5:e9:46:ea:52:45:fa:
84:c8:7a:3f:66:50:a3:d6:a0:35:5e:29:16:1d:96:ba:64:48:
17:de:9f:e8:04:66:5a:d2:57:b0:17:ca:23:86:61:a3:bf:f7:
35:d8:c8:32:0d:42:cf:55:36:cd:0f:40:aa:63:6e:ab:e7:f6:
fb:a6:6b:7a:0e:0f:d8:22:1e:be:a3:72:d2:e3:71:a9:ea:d5:
2b:b0:bf:7d:ba:84:d5:8d:e9:ae:c0:24:d7:3c:76:29:b8:3d:
4c:23:ed:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:26 2025 by rpki-client