Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/Y9ouJS5TJYIHQSeLaUlXJJC_T1U.roa
File: Y9ouJS5TJYIHQSeLaUlXJJC_T1U.roa (raw, json)
Hash identifier: pAkHRn+qBNhJA/r8hwqYtCfPOrOy3LazcTHRAC6qc/U=
Subject key identifier: 63:DA:2E:25:2E:53:25:82:07:41:27:8B:69:49:57:24:90:BF:4F:55
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018505E11688DBAEF02F429E2B760D92820D
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/Y9ouJS5TJYIHQSeLaUlXJJC_T1U.roa
Signing time: Mon 12 Dec 2022 10:28:35 +0000
ROA not before: Mon 12 Dec 2022 10:28:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29648
IP address blocks: 31.173.119.0/24 maxlen: 24
77.233.160.0/19 maxlen: 19
77.233.161.0/24 maxlen: 24
77.233.164.0/24 maxlen: 24
77.233.160.0/24 maxlen: 24
77.233.162.0/24 maxlen: 24
77.233.166.0/24 maxlen: 24
77.233.167.0/24 maxlen: 24
77.233.170.0/24 maxlen: 24
31.173.104.0/24 maxlen: 24
31.173.105.0/24 maxlen: 24
31.173.112.0/24 maxlen: 24
31.173.108.0/24 maxlen: 24
31.173.109.0/24 maxlen: 24
31.173.110.0/24 maxlen: 24
31.173.106.0/24 maxlen: 24
31.173.111.0/24 maxlen: 24
31.173.107.0/24 maxlen: 24
31.173.116.0/24 maxlen: 24
31.173.113.0/24 maxlen: 24
31.173.117.0/24 maxlen: 24
31.173.114.0/24 maxlen: 24
31.173.118.0/24 maxlen: 24
31.173.115.0/24 maxlen: 24
77.233.173.0/24 maxlen: 24
77.233.178.0/24 maxlen: 24
77.233.185.0/24 maxlen: 24
77.233.181.0/24 maxlen: 24
77.233.180.0/24 maxlen: 24
77.233.186.0/24 maxlen: 24
77.233.182.0/24 maxlen: 24
77.233.188.0/24 maxlen: 24
77.233.191.0/24 maxlen: 24
77.233.190.0/24 maxlen: 24
188.170.98.0/24 maxlen: 24
86.109.192.0/19 maxlen: 19
86.109.192.0/20 maxlen: 20
188.170.96.0/24 maxlen: 24
188.170.97.0/24 maxlen: 24
188.170.102.0/24 maxlen: 24
86.109.193.0/24 maxlen: 24
188.170.103.0/24 maxlen: 24
188.170.99.0/24 maxlen: 24
188.170.100.0/24 maxlen: 24
188.170.104.0/24 maxlen: 24
86.109.195.0/24 maxlen: 24
188.170.101.0/24 maxlen: 24
188.170.105.0/24 maxlen: 24
188.170.110.0/24 maxlen: 24
188.170.106.0/24 maxlen: 24
188.170.111.0/24 maxlen: 24
188.170.107.0/24 maxlen: 24
86.109.200.0/23 maxlen: 23
188.170.108.0/24 maxlen: 24
188.170.109.0/24 maxlen: 24
188.170.112.0/24 maxlen: 24
188.170.114.0/24 maxlen: 24
86.109.213.0/24 maxlen: 24
188.170.115.0/24 maxlen: 24
188.170.116.0/24 maxlen: 24
86.109.212.0/24 maxlen: 24
86.109.208.0/24 maxlen: 24
188.170.118.0/24 maxlen: 24
188.170.117.0/24 maxlen: 24
188.170.113.0/24 maxlen: 24
86.109.210.0/24 maxlen: 24
188.170.119.0/24 maxlen: 24
188.170.123.0/24 maxlen: 24
86.109.216.0/24 maxlen: 24
188.170.122.0/24 maxlen: 24
86.109.215.0/24 maxlen: 24
86.109.218.0/23 maxlen: 23
188.170.125.0/24 maxlen: 24
188.170.121.0/24 maxlen: 24
188.170.120.0/24 maxlen: 24
86.109.214.0/24 maxlen: 24
188.170.124.0/24 maxlen: 24
188.170.127.0/24 maxlen: 24
86.109.220.0/24 maxlen: 24
188.170.126.0/24 maxlen: 24
86.109.223.0/24 maxlen: 24
86.109.222.0/24 maxlen: 24
78.109.120.0/24 maxlen: 24
78.109.121.0/24 maxlen: 24
178.176.98.0/24 maxlen: 24
195.149.111.0/24 maxlen: 24
178.176.96.0/24 maxlen: 24
178.176.97.0/24 maxlen: 24
178.176.102.0/24 maxlen: 24
178.176.103.0/24 maxlen: 24
178.176.99.0/24 maxlen: 24
178.176.100.0/24 maxlen: 24
178.176.101.0/24 maxlen: 24
178.176.118.0/24 maxlen: 24
178.176.114.0/24 maxlen: 24
178.176.115.0/24 maxlen: 24
178.176.116.0/24 maxlen: 24
178.176.117.0/24 maxlen: 24
178.176.122.0/24 maxlen: 24
178.176.123.0/24 maxlen: 24
178.176.119.0/24 maxlen: 24
178.176.124.0/24 maxlen: 24
178.176.120.0/24 maxlen: 24
178.176.125.0/24 maxlen: 24
178.176.121.0/24 maxlen: 24
178.176.126.0/24 maxlen: 24
178.176.127.0/24 maxlen: 24
83.169.217.0/24 maxlen: 24
83.169.218.0/24 maxlen: 24
83.169.219.0/24 maxlen: 24
83.169.220.0/24 maxlen: 24
83.169.221.0/24 maxlen: 24
83.169.222.0/24 maxlen: 24
83.169.223.0/24 maxlen: 24
188.94.168.0/24 maxlen: 24
188.94.172.0/24 maxlen: 24
188.94.169.0/24 maxlen: 24
188.94.170.0/24 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.171.0/24 maxlen: 24
188.94.173.0/24 maxlen: 24
188.94.174.0/24 maxlen: 24
188.94.175.0/24 maxlen: 24
217.115.80.0/20 maxlen: 20
217.115.81.0/24 maxlen: 24
217.115.80.0/24 maxlen: 24
217.115.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:e1:16:88:db:ae:f0:2f:42:9e:2b:76:0d:92:82:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 10:28:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63da2e252e5325820741278b6949572490bf4f55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:67:9d:9b:d3:3b:67:30:b2:e9:5e:f0:cd:98:
3f:6c:9a:1d:01:77:02:e5:30:90:07:84:53:4c:43:
91:e0:72:e4:c9:79:a3:d9:53:3c:e7:b4:e4:e6:35:
16:a8:2e:79:45:f4:20:a8:47:c3:47:7e:63:b2:15:
fe:fc:d5:6d:8f:e2:07:67:90:5c:94:ee:9f:c1:a4:
40:64:fa:c7:73:be:d1:68:ce:77:9b:8e:b9:bf:cd:
48:17:6c:c4:e2:5c:0a:23:50:4d:cc:d8:71:90:51:
62:31:63:88:07:01:70:c5:1a:f5:71:75:4a:90:9f:
93:c3:34:ae:33:7f:07:0c:37:6e:01:dd:18:58:f2:
f4:2a:4a:38:79:b8:ad:3b:c2:34:6e:9b:dc:8a:32:
c2:7f:00:fd:18:99:21:a6:9c:8f:6c:70:41:40:38:
03:1b:88:4d:16:d2:4b:77:78:98:5b:cb:aa:f1:3d:
29:a7:56:aa:d5:3c:32:fc:72:d4:cd:e3:05:3d:5c:
f2:64:7f:26:57:d9:68:6d:91:7b:86:65:71:cb:d2:
36:4b:e6:76:88:7a:d4:94:d8:fd:65:0f:ce:e3:96:
d6:96:08:54:28:d6:c1:22:23:41:47:b2:13:a3:6d:
fd:4d:31:a2:23:9f:66:40:96:72:51:9b:c1:5f:cc:
58:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:DA:2E:25:2E:53:25:82:07:41:27:8B:69:49:57:24:90:BF:4F:55
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/Y9ouJS5TJYIHQSeLaUlXJJC_T1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.104.0-31.173.119.255
77.233.160.0/19
78.109.120.0/23
83.169.217.0-83.169.223.255
86.109.192.0/19
178.176.96.0/21
178.176.114.0-178.176.127.255
188.94.168.0/21
188.162.0.0/16
188.170.96.0/19
195.149.111.0/24
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
52:99:77:dd:ae:76:df:31:14:a9:dd:f4:0d:c3:76:6d:52:87:
2a:95:ec:db:f2:7e:49:b8:75:e3:5c:03:04:8f:3d:bf:fd:1e:
d2:4f:a7:32:f1:f8:35:8c:fe:61:0a:aa:79:99:05:23:11:3a:
1d:e3:39:84:a7:27:d8:e6:a7:af:23:60:e7:29:1e:87:6a:49:
ab:f9:fb:21:89:ea:78:2a:37:c1:ff:2a:67:f7:85:61:66:4f:
1f:d5:5c:9c:30:76:78:8f:01:46:97:4c:b7:6d:52:2a:75:b6:
28:14:fb:ca:a8:a9:25:fe:5f:b2:f9:24:9f:6f:28:55:c1:bb:
f2:77:66:d4:c1:ea:36:c0:06:44:d6:8a:dd:53:8d:36:ea:22:
02:28:7b:e4:2f:18:5c:41:c9:98:82:65:a6:41:30:f8:e0:13:
5f:5c:b0:f8:b7:62:b9:28:24:b0:45:49:da:f6:76:0a:91:0f:
a4:85:68:56:bf:61:1e:03:ec:70:22:dc:e0:27:81:d7:29:c1:
26:1b:23:b5:82:1a:e3:96:ea:28:bb:6a:cb:a1:df:0a:2d:ed:
3d:7e:73:ca:bb:7c:07:c2:d2:29:b1:7b:ba:e3:36:66:2e:59:
20:59:c1:44:49:03:ee:c5:62:46:ff:7f:7b:02:71:4f:11:0b:
42:a9:7c:04
-----BEGIN CERTIFICATE-----
MIIFVjCCBD6gAwIBAgISAYUF4RaI267wL0KeK3YNkoINMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjEyMTAyODM1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2M2RhMmUyNTJlNTMyNTgyMDc0MTI3OGI2OTQ5NTcyNDkwYmY0ZjU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAimedm9M7ZzCy6V7wzZg/bJodAXcC
5TCQB4RTTEOR4HLkyXmj2VM857Tk5jUWqC55RfQgqEfDR35jshX+/NVtj+IHZ5Bc
lO6fwaRAZPrHc77RaM53m465v81IF2zE4lwKI1BNzNhxkFFiMWOIBwFwxRr1cXVK
kJ+TwzSuM38HDDduAd0YWPL0Kko4ebitO8I0bpvcijLCfwD9GJkhppyPbHBBQDgD
G4hNFtJLd3iYW8uq8T0pp1aq1Twy/HLUzeMFPVzyZH8mV9lobZF7hmVxy9I2S+Z2
iHrUlNj9ZQ/O45bWlghUKNbBIiNBR7ITo239TTGiI59mQJZyUZvBX8xYPQIDAQAB
o4ICYjCCAl4wHQYDVR0OBBYEFGPaLiUuUyWCB0Eni2lJVySQv09VMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvWTlvdUpTNVRKWUlIUVNlTGFVbFhKSkNfVDFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHgGCCsGAQUFBwEHAQH/BGkwZzBlBAIAATBfMAwDBAMfrWgD
BAMfrXADBAVN6aADBAFObXgwDAMEAFOp2QMEBVOpwAMEBVZtwAMEA7KwYDAMAwQB
srByAwQHsrAAAwQDvF6oAwMAvKIDBAW8qmADBADDlW8DBATZc1AwDQYJKoZIhvcN
AQELBQADggEBAFKZd92udt8xFKnd9A3Ddm1ShyqV7Nvyfkm4deNcAwSPPb/9HtJP
pzLx+DWM/mEKqnmZBSMROh3jOYSnJ9jmp68jYOcpHodqSav5+yGJ6ngqN8H/Kmf3
hWFmTx/VXJwwdniPAUaXTLdtUip1tigU+8qoqSX+X7L5JJ9vKFXBu/J3ZtTB6jbA
BkTWit1TjTbqIgIoe+QvGFxByZiCZaZBMPjgE19csPi3YrkoJLBFSdr2dgqRD6SF
aFa/YR4D7HAi3OAngdcpwSYbI7WCGuOW6ii7asuh3wot7T1+c8q7fAfC0imxe7rj
NmYuWSBZwURJA+7FYkb/f3sCcU8RC0KpfAQ=
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:14 2025 by rpki-client