Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/Ucv76eI-5zASj8P3hw-Ux-9uNgY.roa
File: Ucv76eI-5zASj8P3hw-Ux-9uNgY.roa (raw, json)
Hash identifier: ptvcy1MNBzNwyi95eKqPzCMPLo85nbToqc99Jqrcg7I=
Subject key identifier: 51:CB:FB:E9:E2:3E:E7:30:12:8F:C3:F7:87:0F:94:C7:EF:6E:36:06
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F1F5162A48369BC1CBDEC65D5C5F8FE6
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/Ucv76eI-5zASj8P3hw-Ux-9uNgY.roa
Signing time: Thu 08 Dec 2022 13:38:01 +0000
ROA not before: Thu 08 Dec 2022 13:38:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31088
IP address blocks: 212.69.96.0/19 maxlen: 24
212.14.160.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
195.16.96.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:f5:16:2a:48:36:9b:c1:cb:de:c6:5d:5c:5f:8f:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 13:38:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51cbfbe9e23ee730128fc3f7870f94c7ef6e3606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:33:8e:0e:ff:a0:8f:2b:47:37:15:f1:f3:77:
99:35:f0:36:cb:80:a7:75:6c:5e:f4:bd:34:88:7c:
cd:0f:a5:99:40:09:ba:28:c7:6b:ea:66:df:98:c9:
d0:31:dc:3d:84:14:92:4c:1b:c1:dd:12:6d:81:61:
23:66:0a:4b:a0:9b:90:42:21:44:a3:d1:a1:7e:4a:
a7:84:97:f4:9c:57:f6:b0:90:fb:cb:8d:e4:6d:d4:
a0:a8:09:4d:3d:c6:9d:c2:44:9c:f6:f6:4f:05:b2:
ef:a1:be:d8:40:8b:6b:8e:e7:46:09:7a:62:e8:1d:
b8:59:93:7e:00:22:28:b0:4f:8b:eb:b4:b9:3a:e0:
9c:ea:a1:3d:5b:75:f5:15:b9:6e:bb:2d:a5:2f:86:
6e:5e:3d:f2:fb:be:20:1f:fd:c6:37:3e:f3:a8:ac:
9b:69:b1:3c:26:66:27:4c:98:7e:62:7c:73:25:da:
a1:7d:cf:34:c3:d5:39:b2:18:d0:fc:64:59:fd:04:
18:69:1f:13:fb:17:21:96:a8:48:04:07:98:4c:cf:
ac:e1:f3:93:16:84:a4:c9:c0:70:03:ca:27:99:6a:
d1:38:b6:bb:5b:d8:82:4a:58:0b:d1:8a:2a:31:14:
e4:ad:ad:c5:ac:4a:c5:84:4e:05:82:2a:1d:f1:63:
05:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:CB:FB:E9:E2:3E:E7:30:12:8F:C3:F7:87:0F:94:C7:EF:6E:36:06
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/Ucv76eI-5zASj8P3hw-Ux-9uNgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
36:f5:17:a1:45:71:ff:4d:2d:59:96:33:d6:ba:df:b7:b7:4c:
a7:e3:8a:cb:96:22:86:7d:74:cb:37:03:3e:82:e0:cb:0f:71:
cb:43:e6:3e:42:9a:9d:62:5e:dc:ff:0f:0e:ef:0b:01:ea:9f:
c2:13:be:ec:6a:16:72:4d:a5:0e:a5:21:b4:c8:9c:52:d5:59:
a5:f0:39:61:81:47:d4:f8:86:e2:48:78:34:0e:b3:5d:05:39:
ef:e7:0a:95:bd:5e:8a:64:c8:28:c7:d4:0f:85:f4:c7:98:ef:
db:66:e7:ac:71:d7:43:21:7b:e0:e4:27:8c:3c:c2:e1:a4:17:
18:db:72:7f:0c:7a:70:ec:4c:8b:68:ca:ab:2e:28:77:44:0f:
f8:42:28:c4:7a:48:17:9a:ac:5e:eb:e3:d6:11:2e:11:c6:ce:
a9:28:17:67:77:37:76:bf:2a:ab:41:be:43:9d:1a:3b:58:c2:
ee:21:db:bf:ef:01:0a:14:b6:84:4e:61:9d:42:ce:76:89:7a:
66:87:0b:7c:7c:91:b9:ed:2f:9c:2f:5c:32:b2:ee:85:85:99:
01:e8:19:af:6e:df:46:3a:4a:09:71:10:06:e3:ed:93:c0:25:
0a:80:71:11:59:43:ca:f2:ab:e9:10:bf:54:bd:df:57:28:0b:
f7:cb:00:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:25 2024 by rpki-client on console-fra.rpki-client.org