Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/YguuFt85HJ6qjOmV5E33TIS0xrI.roa
File: YguuFt85HJ6qjOmV5E33TIS0xrI.roa (raw, json)
Hash identifier: XksEb82WXdTMMrW/u5iUqVHlprE3QUXaGAbKQtffCuU=
Subject key identifier: 62:0B:AE:16:DF:39:1C:9E:AA:8C:E9:95:E4:4D:F7:4C:84:B4:C6:B2
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018505AE37A61135F6FE1FE0BC6EA407919B
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/YguuFt85HJ6qjOmV5E33TIS0xrI.roa
Signing time: Mon 12 Dec 2022 09:33:01 +0000
ROA not before: Mon 12 Dec 2022 09:33:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25159
IP address blocks: 195.16.96.0/19 maxlen: 24
193.201.228.0/22 maxlen: 24
109.188.112.0/23 maxlen: 23
109.188.114.0/24 maxlen: 24
85.26.144.0/20 maxlen: 20
109.188.64.0/19 maxlen: 19
109.188.96.0/21 maxlen: 21
78.25.119.0/24 maxlen: 24
94.25.131.0/24 maxlen: 24
94.25.144.0/20 maxlen: 20
94.25.164.0/24 maxlen: 24
94.25.160.0/24 maxlen: 24
212.69.106.0/24 maxlen: 24
94.25.172.0/22 maxlen: 22
94.25.168.0/22 maxlen: 22
212.69.113.0/24 maxlen: 24
212.69.114.0/24 maxlen: 24
188.170.25.0/24 maxlen: 24
188.170.32.0/21 maxlen: 21
188.170.40.0/21 maxlen: 21
37.28.176.0/21 maxlen: 21
178.177.0.0/18 maxlen: 18
178.177.3.0/24 maxlen: 24
78.25.112.0/22 maxlen: 22
78.25.116.0/23 maxlen: 23
78.25.118.0/24 maxlen: 24
94.25.176.0/21 maxlen: 21
212.69.125.0/24 maxlen: 24
94.25.184.0/21 maxlen: 21
195.5.128.0/19 maxlen: 24
128.204.78.0/23 maxlen: 23
128.204.76.0/22 maxlen: 22
37.29.32.0/21 maxlen: 21
128.204.76.0/23 maxlen: 23
178.176.52.0/22 maxlen: 22
178.176.72.0/21 maxlen: 21
31.173.0.0/21 maxlen: 21
195.230.70.0/23 maxlen: 23
31.173.8.0/21 maxlen: 21
178.176.0.0/19 maxlen: 19
213.243.109.0/24 maxlen: 24
213.243.116.0/24 maxlen: 24
83.229.254.0/24 maxlen: 24
178.176.32.0/21 maxlen: 21
178.176.40.0/21 maxlen: 21
31.173.72.0/21 maxlen: 21
31.173.80.0/21 maxlen: 21
31.173.88.0/21 maxlen: 21
188.170.0.0/19 maxlen: 19
188.170.24.0/24 maxlen: 24
31.173.16.0/21 maxlen: 21
31.173.24.0/21 maxlen: 21
195.230.91.0/24 maxlen: 24
195.230.92.0/24 maxlen: 24
31.173.32.0/19 maxlen: 19
31.173.60.0/24 maxlen: 24
31.173.64.0/21 maxlen: 21
188.162.0.0/16 maxlen: 24
62.64.0.0/20 maxlen: 20
83.229.211.0/24 maxlen: 24
46.229.128.0/22 maxlen: 22
83.222.212.0/22 maxlen: 22
83.222.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:ae:37:a6:11:35:f6:fe:1f:e0:bc:6e:a4:07:91:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 09:33:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=620bae16df391c9eaa8ce995e44df74c84b4c6b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b0:ba:d0:d3:09:e9:7c:25:b3:50:4e:fb:d9:
6a:7f:cc:09:5d:ef:cb:f2:11:d2:75:5c:d1:8d:b7:
43:89:68:28:c2:91:f5:20:33:5d:3e:bf:3c:d3:22:
e0:26:30:cc:d7:19:7c:d3:54:a3:a7:2f:e2:e2:35:
36:01:f7:15:c8:40:84:77:8d:2d:42:7d:65:01:c0:
c3:31:a6:87:a3:89:bc:c1:7b:07:3a:0f:63:67:3d:
9c:8c:eb:23:8b:0d:bb:73:52:8f:3f:57:52:b5:c7:
98:68:84:cb:f6:a9:c5:57:e6:33:4e:ff:63:0e:e0:
d1:5b:72:11:af:99:5e:02:8a:87:aa:07:9f:e0:80:
81:54:ec:3c:a0:27:79:09:e0:52:55:b5:42:02:b0:
83:cb:19:58:42:79:e3:ce:54:0e:aa:c8:90:ee:f0:
c3:85:7a:82:26:99:16:48:1d:de:bb:4f:db:5e:98:
1d:76:bd:67:d9:10:bf:c2:6b:87:da:29:4c:9a:8e:
17:69:2c:2e:99:6d:73:dc:2f:63:17:3d:a4:65:f3:
e6:0d:73:90:97:76:d1:20:6a:ae:c2:a6:0d:60:c6:
79:1a:05:34:a1:af:d5:a1:31:f4:46:f0:4c:d5:55:
e7:29:8d:9c:ce:a7:0f:67:0f:2e:d5:79:4b:e7:6d:
7d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:0B:AE:16:DF:39:1C:9E:AA:8C:E9:95:E4:4D:F7:4C:84:B4:C6:B2
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/YguuFt85HJ6qjOmV5E33TIS0xrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.0.0-31.173.95.255
37.28.176.0/21
37.29.32.0/21
46.229.128.0/22
62.64.0.0/20
78.25.112.0/21
83.222.212.0-83.222.223.255
83.229.211.0/24
83.229.254.0/24
85.26.144.0/20
94.25.131.0/24
94.25.144.0-94.25.160.255
94.25.164.0/24
94.25.168.0-94.25.191.255
109.188.64.0-109.188.103.255
109.188.112.0-109.188.114.255
128.204.76.0/22
178.176.0.0-178.176.47.255
178.176.52.0/22
178.176.72.0/21
178.177.0.0/18
188.162.0.0/16
188.170.0.0-188.170.47.255
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.230.70.0/23
195.230.91.0-195.230.92.255
212.69.106.0/24
212.69.113.0-212.69.114.255
212.69.125.0/24
213.243.109.0/24
213.243.116.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:e1:ce:04:29:56:c3:17:f9:fb:cc:b9:62:bf:1d:6f:b4:d3:
4d:32:5d:ed:a4:86:fc:16:73:1d:14:04:57:9b:cd:0c:f0:3e:
60:62:2e:ed:b5:d7:32:18:cf:6c:42:d0:38:39:6c:e8:b8:0d:
fa:76:86:64:53:f1:57:55:75:e8:bd:56:6e:ed:fe:74:7d:66:
29:c8:87:62:8c:0c:28:05:c2:7f:6d:b8:29:6c:31:8b:90:ee:
e0:d6:b3:03:28:dd:7a:86:09:6b:e0:a8:7a:47:c1:31:0c:34:
d5:8d:ef:2c:19:c1:3f:19:d3:74:f2:1c:e2:a7:cd:2b:4c:e2:
6b:ec:f8:b0:0f:34:a2:61:38:33:c2:f7:fe:02:06:87:67:0c:
e9:95:74:b4:18:d3:70:6f:e9:e6:14:d8:ab:37:ee:22:51:8d:
f8:08:e5:84:22:85:f2:61:b5:ce:66:3e:e3:9b:b7:0a:40:65:
0c:f2:19:ed:8c:a5:b5:08:8f:21:ba:c0:61:26:27:1e:f1:24:
21:b5:22:2d:50:f6:3c:ad:d1:2f:34:1d:98:45:ba:52:3d:a1:
9b:70:d7:c1:50:ef:fe:10:2a:17:e8:c2:85:f5:cc:ed:44:d7:
66:2d:d4:f1:7e:07:96:09:6c:6e:f1:9a:79:26:bb:53:98:81:
aa:95:7c:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:39 2025 by rpki-client