Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/_16Z6cPX4sY3GHCFwo2KqRPBEsk.roa
File: _16Z6cPX4sY3GHCFwo2KqRPBEsk.roa (raw, json)
Hash identifier: vhK4FlfSA2sPlCrKwP11GgKQfYl34gAHvxje1ujONTs=
Subject key identifier: FF:5E:99:E9:C3:D7:E2:C6:37:18:70:85:C2:8D:8A:A9:13:C1:12:C9
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01847659043822C406AE341639FBD9211D0C
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/_16Z6cPX4sY3GHCFwo2KqRPBEsk.roa
Signing time: Mon 14 Nov 2022 13:34:16 +0000
ROA not before: Mon 14 Nov 2022 13:34:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31224
IP address blocks: 109.188.0.0/16 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
79.171.8.0/21 maxlen: 24
193.201.228.0/22 maxlen: 24
178.178.88.0/22 maxlen: 22
178.178.92.0/22 maxlen: 22
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
94.25.128.0/17 maxlen: 24
93.153.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
78.25.64.0/18 maxlen: 24
31.173.122.0/24 maxlen: 24
31.173.125.0/24 maxlen: 24
31.173.120.0/24 maxlen: 24
31.173.123.0/24 maxlen: 24
31.173.121.0/24 maxlen: 24
31.173.124.0/24 maxlen: 24
31.173.127.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
31.173.126.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
80.247.176.0/20 maxlen: 24
91.193.212.0/22 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
37.29.44.0/22 maxlen: 22
95.137.0.0/17 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
77.233.160.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
178.176.104.0/21 maxlen: 21
83.149.32.0/22 maxlen: 22
83.149.36.0/22 maxlen: 22
83.149.34.0/24 maxlen: 24
83.149.37.0/24 maxlen: 24
81.24.128.0/20 maxlen: 24
83.149.39.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
78.41.100.0/22 maxlen: 24
31.173.96.0/24 maxlen: 24
31.173.97.0/24 maxlen: 24
31.173.103.0/24 maxlen: 24
31.173.101.0/24 maxlen: 24
31.173.102.0/24 maxlen: 24
31.173.99.0/24 maxlen: 24
31.173.100.0/24 maxlen: 24
31.173.100.0/23 maxlen: 23
178.176.112.0/24 maxlen: 24
178.176.113.0/24 maxlen: 24
83.169.192.0/18 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
109.74.112.0/20 maxlen: 24
46.232.200.0/21 maxlen: 24
62.64.0.0/19 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
46.229.132.0/22 maxlen: 22
83.229.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:76:59:04:38:22:c4:06:ae:34:16:39:fb:d9:21:1d:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Nov 14 13:34:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff5e99e9c3d7e2c637187085c28d8aa913c112c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9c:ca:dd:f0:77:11:a3:60:96:bb:70:62:e5:
a3:ee:45:46:7e:4c:95:5c:c7:1f:14:0c:a1:ae:96:
f0:d7:19:cc:65:b9:60:37:89:98:83:9a:c9:ff:35:
df:f7:f6:a8:18:fa:95:61:92:37:38:b3:5e:9f:e2:
f9:e1:d7:72:70:d4:61:98:bc:52:7f:1b:02:81:c6:
7c:37:18:16:5a:a9:71:0e:00:3b:b3:2b:ee:5f:35:
c6:f6:84:86:86:65:7a:01:7d:de:7f:ec:1d:d2:7d:
34:f9:ff:0e:c3:8d:d3:15:d1:f7:ba:13:db:4f:cb:
ed:92:44:19:f2:2a:0d:55:43:1f:81:c5:3b:2d:62:
f9:f1:09:20:6a:01:87:fa:fb:a2:f9:c6:04:20:ed:
cc:b8:60:09:5b:d8:d6:c1:6c:c2:dc:07:fa:9b:0d:
c3:63:60:ff:22:cc:b3:7f:12:c6:ff:9d:22:0a:5d:
44:d4:f7:f9:08:24:54:e2:ec:67:76:55:b8:59:17:
5b:48:5d:72:6a:13:8c:b8:6c:5a:1c:ae:ab:9f:99:
13:5c:6d:e6:6f:34:f3:8d:5b:27:08:de:24:7b:cb:
ec:11:4c:36:4e:79:dd:40:54:77:02:c3:63:23:46:
b5:87:a1:5f:9f:18:35:c1:95:5b:e0:08:31:cd:05:
16:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:5E:99:E9:C3:D7:E2:C6:37:18:70:85:C2:8D:8A:A9:13:C1:12:C9
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/_16Z6cPX4sY3GHCFwo2KqRPBEsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.96.0/23
31.173.99.0-31.173.103.255
31.173.120.0/21
37.29.44.0/22
46.229.132.0/22
46.232.200.0/21
62.64.0.0/19
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.24.128.0/20
83.149.32.0/21
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.104.0-178.176.113.255
178.178.88.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
48:3a:33:02:5b:ab:81:55:03:d0:23:b6:2c:c6:c9:5a:a5:90:
df:9d:86:99:d3:64:53:b4:99:09:c7:b6:69:dd:fd:04:6c:b8:
71:65:d7:88:66:4c:6c:b1:f5:ca:12:62:63:33:63:a2:4a:1d:
d5:2c:11:61:e8:02:20:c8:c0:7d:07:af:cc:c8:81:1f:bf:ea:
d4:d0:7e:ab:09:8a:16:df:3f:1c:2f:0b:86:6f:ea:b8:c9:3f:
10:68:80:f0:b7:9f:eb:e7:db:04:a8:83:c7:42:91:56:b5:7b:
24:27:c2:ff:d3:d9:94:9c:4d:f6:6b:c5:4c:79:bc:f3:38:5f:
e8:aa:d7:51:e1:f4:34:d4:fe:3c:bd:ed:f5:2e:c7:e4:ba:83:
8a:50:9a:e7:83:dd:34:7e:86:49:c4:ac:0d:9a:2c:7a:aa:3b:
ca:e4:7d:7f:e7:df:44:1a:30:cd:bc:40:0e:a3:31:a5:50:95:
d9:2d:fd:39:0f:b3:c5:9c:79:88:37:2d:28:18:30:0c:16:36:
2b:a2:30:ea:9c:ed:91:6c:bf:2a:77:40:28:5b:84:24:32:a3:
cb:57:ba:e6:dd:98:4f:f0:93:92:ca:42:6e:5f:da:a4:45:4b:
32:0d:73:64:f4:8c:4c:6f:74:0b:1d:81:2d:1e:b8:8c:21:15:
6b:d1:5d:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:51 2025 by rpki-client