Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/aZZRrodMe7X3COo-WW8IYE68iz0.roa
File: aZZRrodMe7X3COo-WW8IYE68iz0.roa (raw, json)
Hash identifier: PAXjNk5ETqUkURMUjMReiMm63wnMMnafFO2Xazgjuik=
Subject key identifier: 69:96:51:AE:87:4C:7B:B5:F7:08:EA:3E:59:6F:08:60:4E:BC:8B:3D
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184C3EFC2EAB6E963953EE3F4F0E97F2D92
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/aZZRrodMe7X3COo-WW8IYE68iz0.roa
Signing time: Tue 29 Nov 2022 15:09:40 +0000
ROA not before: Tue 29 Nov 2022 15:09:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6854
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
77.233.160.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
79.171.8.0/21 maxlen: 24
81.24.128.0/20 maxlen: 24
78.41.100.0/22 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
83.169.192.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
80.253.0.0/20 maxlen: 20
78.25.64.0/18 maxlen: 24
185.210.140.0/22 maxlen: 24
62.64.16.0/20 maxlen: 20
212.119.160.0/19 maxlen: 24
62.64.24.0/21 maxlen: 21
80.247.176.0/20 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c3:ef:c2:ea:b6:e9:63:95:3e:e3:f4:f0:e9:7f:2d:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Nov 29 15:09:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=699651ae874c7bb5f708ea3e596f08604ebc8b3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:fa:3c:0f:41:1f:31:d0:71:df:b2:7f:18:bc:
f6:8f:0a:ef:09:02:73:61:e3:fd:8c:05:67:7c:e5:
eb:1a:97:c9:89:05:41:88:e7:e9:57:c1:81:9f:9f:
d0:91:d3:a2:18:c6:4f:6c:7c:cb:d7:f3:49:b5:95:
04:85:60:6f:5d:7a:bc:fb:04:5c:e3:fe:7f:63:e5:
7c:af:56:44:45:e2:a4:1a:36:0e:b9:26:77:96:05:
00:3e:54:d4:36:c7:06:76:5d:b4:ee:d1:ab:06:16:
55:a9:70:6b:9c:f0:6d:c3:0d:ab:f3:7b:11:72:18:
3f:64:6a:1c:fb:ec:67:cc:e5:34:60:1b:78:c1:c2:
3e:37:f2:c6:00:fa:f0:e5:a4:0b:59:2e:86:f8:d0:
1e:46:5f:da:7c:22:ab:e1:4e:04:a1:1b:01:5c:8c:
46:37:12:89:f3:14:6d:4e:63:da:0e:af:51:66:ad:
31:8d:d5:c0:ec:28:7e:22:ab:5c:6a:ec:45:1e:94:
08:21:40:83:01:a6:b8:55:7c:56:88:ac:e4:1c:2a:
f4:3b:f3:69:c5:30:f2:3d:0b:36:70:52:38:31:ca:
5d:9e:1b:3e:ff:13:40:81:f6:cf:f6:8c:77:4c:3a:
1f:72:8e:19:f2:ec:f6:7c:06:78:28:e7:b2:c8:b5:
24:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:96:51:AE:87:4C:7B:B5:F7:08:EA:3E:59:6F:08:60:4E:BC:8B:3D
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/aZZRrodMe7X3COo-WW8IYE68iz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.64.16.0/20
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
80.253.0.0/20
81.24.128.0/20
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
61:ca:34:ff:16:95:21:10:d5:4b:97:ff:35:f4:aa:df:c0:ac:
00:e4:0c:58:23:f5:08:9a:46:a8:be:aa:17:0c:5a:83:c4:88:
fd:9d:7d:1b:eb:e8:50:0f:fd:00:98:73:2c:90:98:ac:ff:7d:
f1:03:02:09:3a:15:d4:0f:9a:04:af:02:57:37:38:9d:1b:b1:
fb:1a:31:96:8b:8e:f9:89:82:fd:35:00:37:d3:23:38:af:ea:
da:d6:fa:c5:70:1a:f9:a6:e2:e1:df:7d:1d:a9:0b:13:f9:c0:
1b:06:83:74:a0:eb:32:e5:24:48:ef:4b:c9:49:5b:3a:65:20:
b1:8a:28:f5:ed:b5:42:bf:56:90:23:c9:ae:83:0f:bf:ed:8b:
09:11:69:8b:c7:4f:9f:33:d2:12:e1:83:2c:2e:b1:d6:71:a4:
7e:f6:9c:35:3e:86:ac:46:e7:ad:64:2f:6e:bc:9e:6d:1d:7a:
3e:71:b2:b0:08:f0:82:79:62:37:30:d8:5a:2e:88:cf:20:93:
2e:d8:e9:41:90:77:a4:c3:56:bf:28:f7:18:91:57:ae:be:f6:
dc:c0:d4:1e:b7:e2:c8:18:68:1a:36:cd:99:f6:dc:75:fd:6a:
68:66:61:b8:01:79:1b:c7:ba:c4:f3:93:35:23:70:ec:80:90:
aa:9a:f9:56
-----BEGIN CERTIFICATE-----
MIIF6zCCBNOgAwIBAgISAYTD78LqtuljlT7j9PDpfy2SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMTI5MTUwOTQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OTk2NTFhZTg3NGM3YmI1ZjcwOGVhM2U1OTZmMDg2MDRlYmM4YjNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmvo8D0EfMdBx37J/GLz2jwrvCQJz
YeP9jAVnfOXrGpfJiQVBiOfpV8GBn5/QkdOiGMZPbHzL1/NJtZUEhWBvXXq8+wRc
4/5/Y+V8r1ZEReKkGjYOuSZ3lgUAPlTUNscGdl207tGrBhZVqXBrnPBtww2r83sR
chg/ZGoc++xnzOU0YBt4wcI+N/LGAPrw5aQLWS6G+NAeRl/afCKr4U4EoRsBXIxG
NxKJ8xRtTmPaDq9RZq0xjdXA7Ch+IqtcauxFHpQIIUCDAaa4VXxWiKzkHCr0O/Np
xTDyPQs2cFI4Mcpdnhs+/xNAgfbP9ox3TDofco4Z8uz2fAZ4KOeyyLUksQIDAQAB
o4IC9zCCAvMwHQYDVR0OBBYEFGmWUa6HTHu19wjqPllvCGBOvIs9MB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvYVpaUnJvZE1lN1gzQ09vLVdXOElZRTY4aXowLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBCwYIKwYBBQUHAQcBAf8EgfswgfgwgfUEAgABMIHuAwQE
PkAQAwQFTemgAwQGThlAAwQCTilkAwQDT6sIAwQEUPewAwQEUP0AAwQEURiAAwQG
U6nAAwQFU97AAwQHU+WAAwQHVRqAAwQFVm3AAwQCW8HUAwQHXZmAAwQHXhmAAwQH
X4kAAwQEbUpwAwQGbXxAAwMAbbwDBAaAzEADBAOyF5ADBAK5AyADBAK50owDBAO8
XqgDAwC8ogMEAsHJ5AMEBcMFgAMEBcMQYAMEAcNOdAMEAMOVbwMEBcPmQAMEBdQO
oAMEBdQsQAMEBdRFYAMEBdR3oAMEBdWaoAMEBdWoIAMEBtXzQAMEBNlzUDANBgkq
hkiG9w0BAQsFAAOCAQEAYco0/xaVIRDVS5f/NfSq38CsAOQMWCP1CJpGqL6qFwxa
g8SI/Z19G+voUA/9AJhzLJCYrP998QMCCToV1A+aBK8CVzc4nRux+xoxlouO+YmC
/TUAN9MjOK/q2tb6xXAa+abi4d99HakLE/nAGwaDdKDrMuUkSO9LyUlbOmUgsYoo
9e21Qr9WkCPJroMPv+2LCRFpi8dPnzPSEuGDLC6x1nGkfvacNT6GrEbnrWQvbrye
bR16PnGysAjwgnliNzDYWi6IzyCTLtjpQZB3pMNWvyj3GJFXrr723MDUHrfiyBho
GjbNmfbcdf1qaGZhuAF5G8e6xPOTNSNw7ICQqpr5Vg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:35 2024 by rpki-client on console-ams.rpki-client.org