Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/Yl4ADT440tICbJVChwHN_WqrPEw.roa
File: Yl4ADT440tICbJVChwHN_WqrPEw.roa (raw, json)
Hash identifier: WN7/Rd8LmO834ZAZhNFeviwHWz2B8ykLWBOI77igsTE=
Subject key identifier: 62:5E:00:0D:3E:38:D2:D2:02:6C:95:42:87:01:CD:FD:6A:AB:3C:4C
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0185F2D374171567329C74D57BFB76593EB5
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/Yl4ADT440tICbJVChwHN_WqrPEw.roa
Signing time: Fri 27 Jan 2023 10:43:42 +0000
ROA not before: Fri 27 Jan 2023 10:43:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31208
IP address blocks: 178.178.84.0/22 maxlen: 22
178.178.82.0/24 maxlen: 24
178.178.80.0/23 maxlen: 23
178.178.131.0/24 maxlen: 24
178.178.130.0/24 maxlen: 24
178.178.129.0/24 maxlen: 24
178.178.132.0/24 maxlen: 24
178.178.128.0/24 maxlen: 24
178.176.230.0/23 maxlen: 23
37.28.186.0/24 maxlen: 24
188.170.50.0/24 maxlen: 24
37.28.184.0/24 maxlen: 24
188.170.48.0/24 maxlen: 24
37.28.185.0/24 maxlen: 24
188.170.49.0/24 maxlen: 24
188.170.54.0/24 maxlen: 24
188.170.55.0/24 maxlen: 24
37.28.187.0/24 maxlen: 24
188.170.56.0/24 maxlen: 24
188.170.52.0/24 maxlen: 24
188.170.57.0/24 maxlen: 24
188.170.53.0/24 maxlen: 24
188.170.62.0/24 maxlen: 24
188.170.63.0/24 maxlen: 24
188.170.59.0/24 maxlen: 24
188.170.60.0/24 maxlen: 24
188.170.61.0/24 maxlen: 24
37.29.75.0/24 maxlen: 24
37.29.74.0/24 maxlen: 24
37.29.73.0/24 maxlen: 24
37.29.72.0/24 maxlen: 24
128.204.72.0/24 maxlen: 24
128.204.73.0/24 maxlen: 24
178.176.58.0/24 maxlen: 24
178.176.56.0/24 maxlen: 24
178.176.57.0/24 maxlen: 24
178.176.62.0/24 maxlen: 24
178.176.63.0/24 maxlen: 24
178.176.59.0/24 maxlen: 24
178.176.60.0/24 maxlen: 24
178.176.61.0/24 maxlen: 24
83.149.41.0/24 maxlen: 24
83.149.44.0/23 maxlen: 23
83.149.40.0/24 maxlen: 24
83.149.42.0/23 maxlen: 23
83.149.46.0/23 maxlen: 23
83.169.212.0/24 maxlen: 24
83.169.208.0/24 maxlen: 24
83.169.213.0/24 maxlen: 24
83.169.209.0/24 maxlen: 24
83.169.210.0/24 maxlen: 24
83.169.211.0/24 maxlen: 24
83.169.214.0/24 maxlen: 24
83.169.215.0/24 maxlen: 24
178.178.135.0/24 maxlen: 24
178.178.134.0/24 maxlen: 24
178.178.137.0/24 maxlen: 24
178.178.133.0/24 maxlen: 24
178.178.136.0/24 maxlen: 24
178.178.143.0/24 maxlen: 24
178.178.142.0/24 maxlen: 24
46.229.136.0/22 maxlen: 22
46.229.141.0/24 maxlen: 24
46.229.140.0/24 maxlen: 24
46.229.143.0/24 maxlen: 24
46.229.142.0/24 maxlen: 24
2a03:d000:3000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f2:d3:74:17:15:67:32:9c:74:d5:7b:fb:76:59:3e:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 27 10:43:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=625e000d3e38d2d2026c95428701cdfd6aab3c4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:53:9a:48:34:dc:5b:c0:e8:f3:04:56:99:95:
76:b9:3d:6b:7f:65:e8:56:b7:97:cf:39:25:88:90:
7f:39:35:29:da:83:9a:e1:ef:b9:b1:bc:5d:fc:df:
b4:3f:ff:57:4a:01:ca:e0:82:61:bd:77:c2:81:e5:
bf:b1:6f:59:4e:fb:70:28:40:30:a0:ed:0e:b1:14:
ab:7c:1a:43:08:e0:aa:29:bb:fb:a4:35:f2:e1:e8:
87:ec:93:7f:00:b2:8a:85:aa:86:6c:d6:12:77:59:
f8:98:a9:95:8f:80:94:8c:f9:2c:09:c4:d2:58:62:
2b:3e:27:99:22:db:41:00:f8:b4:94:be:97:61:e1:
5d:b5:cf:9f:4e:0a:f8:99:26:8b:d5:a3:d2:0a:7e:
39:ba:7a:3a:39:ae:d0:d4:5b:ec:f8:79:d2:66:f8:
fd:ad:9e:cd:b3:d3:70:e4:a9:39:2d:c5:ed:88:ce:
52:8c:96:3a:7d:99:f7:d7:72:1f:29:76:96:e3:cf:
29:68:f6:9f:ed:d8:fe:09:db:20:79:95:2b:cf:62:
e0:c9:b3:68:be:8a:ad:43:70:e4:0b:d9:bf:12:11:
f6:e8:cb:de:2a:ce:e6:78:fa:52:26:6d:b2:74:86:
39:de:a1:aa:b0:0f:fe:f2:8f:c1:91:8d:1a:a5:bb:
d0:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:5E:00:0D:3E:38:D2:D2:02:6C:95:42:87:01:CD:FD:6A:AB:3C:4C
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/Yl4ADT440tICbJVChwHN_WqrPEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.184.0/22
37.29.72.0/22
46.229.136.0/21
83.149.40.0/21
83.169.208.0/21
128.204.72.0/23
178.176.56.0/21
178.176.230.0/23
178.178.80.0-178.178.82.255
178.178.84.0/22
178.178.128.0-178.178.137.255
178.178.142.0/23
188.170.48.0-188.170.50.255
188.170.52.0-188.170.57.255
188.170.59.0-188.170.63.255
IPv6:
2a03:d000:3000::/36
Signature Algorithm: sha256WithRSAEncryption
00:2a:95:df:ab:18:2c:5e:6b:64:df:13:d3:2f:79:dc:f7:03:
6d:5b:fe:f2:3f:ce:09:2a:41:db:9a:ec:76:a4:1c:bf:14:c0:
b3:86:c3:bc:09:6f:99:3f:aa:0c:36:bf:49:f6:41:fd:32:a4:
ea:36:49:03:e6:e7:34:91:f1:85:c9:db:ec:3d:ac:cd:9a:76:
c9:7d:e6:4f:0e:75:a6:e6:60:3c:29:eb:81:16:80:45:18:93:
bd:ee:62:15:52:31:ce:28:83:af:75:94:39:8e:8d:1c:93:39:
fa:43:bf:8c:7c:8e:98:c5:9b:ed:d0:9e:25:64:4d:e3:08:7a:
7f:44:18:4b:42:1d:d8:83:fb:26:b8:f7:85:45:d1:5e:8b:3c:
21:a3:85:b3:f7:93:d4:18:0c:94:60:d1:7b:d6:24:3b:a3:f4:
4b:67:2c:a0:b9:dc:2f:4f:fd:c8:61:52:ac:f1:4f:86:02:20:
b6:32:f3:90:80:80:bc:ff:99:2a:ea:d5:b7:c8:6f:04:68:fa:
13:1f:cb:e7:fd:b2:46:c1:4a:be:fe:25:1c:86:3f:aa:76:fc:
ab:2f:45:90:89:3e:71:e5:1f:de:6a:a0:85:b9:82:aa:3d:1d:
11:f5:34:85:d4:fc:27:22:40:4d:58:cb:36:52:dd:90:53:6f:
fa:68:23:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:21 2025 by rpki-client