Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/bq72y5bW7MbmClJVOkAJ6WvZHWw.roa
File: bq72y5bW7MbmClJVOkAJ6WvZHWw.roa (raw, json)
Hash identifier: Xj4UguE5GctVOH64yefG5SIvwCaByn3a2Pq9ZtlF6h0=
Subject key identifier: 6E:AE:F6:CB:96:D6:EC:C6:E6:0A:52:55:3A:40:09:E9:6B:D9:1D:6C
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F1F513BFA3465256458C5C1BA2BBC148
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/bq72y5bW7MbmClJVOkAJ6WvZHWw.roa
Signing time: Thu 08 Dec 2022 13:38:01 +0000
ROA not before: Thu 08 Dec 2022 13:38:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20663
IP address blocks: 212.14.160.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
195.230.64.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:f5:13:bf:a3:46:52:56:45:8c:5c:1b:a2:bb:c1:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 13:38:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6eaef6cb96d6ecc6e60a52553a4009e96bd91d6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f8:bf:9b:3f:26:cc:10:6f:1d:cc:3c:76:bf:
f0:8b:2c:cb:21:b4:93:af:8d:b8:24:e8:ac:8d:fd:
07:38:a9:60:e5:dc:19:f3:06:e4:d8:4d:4a:d9:7b:
d5:b5:a0:ad:b6:13:e2:cc:5c:5f:94:d9:e7:e0:9d:
89:ad:24:cd:00:89:b3:7f:a9:93:bc:73:a3:c1:7c:
72:49:4a:62:b2:72:8c:df:55:d9:9e:0c:5f:c9:e3:
20:06:64:6d:b0:60:16:b5:b3:5e:ca:fa:38:8e:e1:
2d:2a:fc:72:4c:de:53:6c:bb:b0:56:5c:fc:12:a0:
9e:c6:64:2f:12:09:c5:1b:dc:fd:a2:99:ed:60:22:
2d:73:55:8c:2f:29:bf:da:5c:62:b8:af:20:3f:a1:
a9:26:ed:fa:eb:bf:d7:73:3e:e7:88:bc:7a:fb:ca:
aa:63:9e:14:c9:34:24:70:4f:93:20:e6:ca:69:df:
d7:60:0b:37:2e:5a:22:cc:43:53:6c:aa:9a:12:9b:
8e:56:a5:5a:94:e9:9c:8c:89:3b:68:ed:34:58:06:
4f:c1:c9:63:13:15:fb:b6:0e:0c:9f:64:c2:40:dd:
48:a0:09:5b:2b:b8:7a:ae:42:b1:68:8e:7a:ef:45:
ed:77:e3:46:e4:d1:3e:96:a5:84:d5:fe:f9:17:a3:
8d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:AE:F6:CB:96:D6:EC:C6:E6:0A:52:55:3A:40:09:E9:6B:D9:1D:6C
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/bq72y5bW7MbmClJVOkAJ6WvZHWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
00:f2:08:40:10:dc:a9:a6:bc:ec:f5:ed:9f:c8:39:41:6d:56:
ad:c6:09:47:23:31:3b:3a:39:4b:76:1c:90:d3:3c:4d:e3:e2:
15:1c:79:99:57:5f:73:95:5b:11:e5:64:05:1d:ce:63:da:17:
39:75:92:cf:18:df:0d:4d:6e:34:6e:65:a9:11:d4:52:e2:44:
01:92:b9:6c:13:5b:4c:86:a2:62:65:da:ed:75:82:2d:6d:3b:
68:d2:41:1d:39:af:46:8b:70:cd:0e:71:af:ce:d6:13:61:c4:
02:db:54:bd:e9:5a:d7:8f:d4:91:f6:48:92:8f:fe:fa:62:c1:
fc:8b:49:79:7c:a0:90:0a:81:03:0b:7a:67:06:9f:c4:c6:d6:
75:76:d3:51:db:d4:ce:21:45:db:c8:63:84:40:ce:a8:52:50:
ac:ca:67:67:d4:a0:74:79:e3:f4:d3:b4:c8:b3:cd:34:7e:d7:
d1:41:39:2f:e6:6b:5d:e5:fc:c2:7a:01:40:b2:96:b4:77:72:
67:ab:69:8e:1c:8a:20:31:87:d9:46:c9:d0:f2:68:3e:78:4c:
ae:05:02:2a:5d:67:2e:8f:59:3c:68:52:16:1b:22:59:89:9f:
02:ec:af:27:26:f0:2f:c3:13:5a:1c:dd:01:af:6e:ee:46:39:
54:51:48:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:12 2025 by rpki-client