Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/bs9qGe3bfP5ejlWm9u6FTTN2svA.roa
File: bs9qGe3bfP5ejlWm9u6FTTN2svA.roa (raw, json)
Hash identifier: 3f4zapEF64q8Hu6mMxnIby/agn+tUEl8AMG6GIFvQJE=
Subject key identifier: 6E:CF:6A:19:ED:DB:7C:FE:5E:8E:55:A6:F6:EE:85:4D:33:76:B2:F0
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184D30EABB1C2EF3D3C857F3DE932ED5150
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/bs9qGe3bfP5ejlWm9u6FTTN2svA.roa
Signing time: Fri 02 Dec 2022 13:37:44 +0000
ROA not before: Fri 02 Dec 2022 13:37:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31208
IP address blocks: 109.188.0.0/16 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
178.178.84.0/22 maxlen: 22
178.178.82.0/24 maxlen: 24
193.201.228.0/22 maxlen: 24
178.178.80.0/23 maxlen: 23
178.178.130.0/24 maxlen: 24
178.178.129.0/24 maxlen: 24
178.178.132.0/24 maxlen: 24
178.178.131.0/24 maxlen: 24
178.23.144.0/21 maxlen: 24
178.178.128.0/24 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
178.176.230.0/23 maxlen: 23
212.119.160.0/19 maxlen: 24
37.28.186.0/24 maxlen: 24
188.170.50.0/24 maxlen: 24
37.28.184.0/24 maxlen: 24
37.28.185.0/24 maxlen: 24
188.170.49.0/24 maxlen: 24
188.170.48.0/24 maxlen: 24
188.170.55.0/24 maxlen: 24
80.247.176.0/20 maxlen: 24
188.170.52.0/24 maxlen: 24
188.170.57.0/24 maxlen: 24
188.170.54.0/24 maxlen: 24
37.28.187.0/24 maxlen: 24
188.170.56.0/24 maxlen: 24
188.170.53.0/24 maxlen: 24
91.193.212.0/22 maxlen: 24
188.170.63.0/24 maxlen: 24
188.170.60.0/24 maxlen: 24
188.170.62.0/24 maxlen: 24
188.170.59.0/24 maxlen: 24
188.170.61.0/24 maxlen: 24
37.29.74.0/24 maxlen: 24
37.29.73.0/24 maxlen: 24
37.29.75.0/24 maxlen: 24
37.29.72.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
178.176.56.0/24 maxlen: 24
178.176.58.0/24 maxlen: 24
178.176.57.0/24 maxlen: 24
178.176.62.0/24 maxlen: 24
178.176.59.0/24 maxlen: 24
178.176.61.0/24 maxlen: 24
178.176.63.0/24 maxlen: 24
178.176.60.0/24 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
81.24.128.0/20 maxlen: 24
83.149.41.0/24 maxlen: 24
83.149.44.0/23 maxlen: 23
83.149.42.0/23 maxlen: 23
83.149.40.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
83.149.46.0/23 maxlen: 23
83.169.192.0/18 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
178.178.135.0/24 maxlen: 24
178.178.137.0/24 maxlen: 24
178.178.134.0/24 maxlen: 24
178.178.133.0/24 maxlen: 24
178.178.136.0/24 maxlen: 24
178.178.143.0/24 maxlen: 24
178.178.142.0/24 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
46.229.136.0/22 maxlen: 22
46.229.140.0/24 maxlen: 24
46.229.143.0/24 maxlen: 24
46.229.141.0/24 maxlen: 24
46.229.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d3:0e:ab:b1:c2:ef:3d:3c:85:7f:3d:e9:32:ed:51:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 2 13:37:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ecf6a19eddb7cfe5e8e55a6f6ee854d3376b2f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:df:77:79:b9:02:4d:92:8d:5f:76:b8:ad:33:
9b:dd:67:2c:45:d7:76:a2:8f:d2:02:13:bc:4b:5d:
c4:f5:72:e6:44:07:ff:95:0d:17:65:be:d9:2f:1d:
06:51:0c:d5:09:9e:4b:14:9b:5e:96:b7:94:d1:be:
2b:81:6b:7c:98:ca:8f:70:9d:e5:63:db:b3:cc:ef:
c8:36:23:75:28:19:3c:80:cb:ab:1a:29:a9:0d:6a:
74:51:5c:2c:8a:c7:63:87:7d:88:91:86:00:a4:c1:
a7:e6:64:70:d9:c6:86:8f:98:b4:66:e3:1b:7c:41:
ba:9f:9d:c5:63:aa:bc:77:a6:92:60:18:db:87:fd:
9f:46:d1:b7:1f:52:91:71:bc:74:08:ae:83:f1:b3:
31:40:96:ce:3b:e4:db:5d:82:43:64:da:f8:b5:4f:
eb:40:68:98:05:27:8b:05:86:79:33:1c:a8:bd:c9:
cb:97:2f:00:75:82:cb:b8:08:1d:85:18:66:c9:f9:
1f:32:16:5c:4c:2d:6b:3e:b9:cd:c3:3a:ab:d6:3a:
c1:82:11:12:80:de:14:c9:cd:ab:e0:79:fc:d0:31:
61:3b:eb:5a:f0:c4:9d:47:cf:d5:ba:0c:72:82:f8:
1a:8b:e3:df:3d:44:6b:82:2e:25:2d:dc:db:d4:59:
fe:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:CF:6A:19:ED:DB:7C:FE:5E:8E:55:A6:F6:EE:85:4D:33:76:B2:F0
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/bs9qGe3bfP5ejlWm9u6FTTN2svA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.184.0/22
37.29.72.0/22
46.229.136.0/21
80.247.176.0/20
81.24.128.0/20
83.149.40.0/21
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.56.0/21
178.176.230.0/23
178.178.80.0-178.178.82.255
178.178.84.0/22
178.178.128.0-178.178.137.255
178.178.142.0/23
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.48.0-188.170.50.255
188.170.52.0-188.170.57.255
188.170.59.0-188.170.63.255
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
98:70:7c:ce:cd:43:59:e3:1d:18:39:44:05:68:a3:a5:b3:7e:
40:c2:10:65:ed:0f:da:53:5c:85:6d:24:ee:ff:3e:51:95:7a:
7a:b0:51:29:a6:17:9c:c8:a7:d3:3f:11:f8:7c:b3:1d:3a:9c:
26:e0:58:e4:5e:f6:dd:73:c5:fa:5a:35:ba:8b:75:7b:46:80:
99:4a:be:29:d0:5b:ed:d7:09:7d:8a:3a:c4:84:7f:31:f3:4d:
4f:a7:f0:32:d8:e6:65:0f:49:54:64:71:4b:7c:e2:fd:b8:20:
bb:a0:ef:51:44:eb:20:87:6b:a6:17:4a:e2:89:3c:0e:ce:04:
87:67:45:9a:ea:b0:f2:a4:43:d0:df:f8:a8:ae:fe:9d:a0:33:
4f:53:0b:89:20:bc:67:dd:83:d3:06:9a:01:2a:53:f4:c3:55:
95:57:91:37:0f:29:b1:67:4b:5c:0a:05:ca:1d:39:32:5f:52:
5f:c6:e4:ae:94:65:1b:0c:ca:cd:1a:9b:89:cd:c9:3a:0a:df:
11:cb:c6:6d:a3:0c:b6:86:6b:bd:f2:86:3d:36:3e:66:61:fd:
3b:e0:61:aa:64:8b:bd:ab:e6:75:fc:d2:fb:51:cb:59:ec:3a:
32:6b:62:40:78:0d:f5:64:ec:24:fe:ad:fd:31:42:ba:cd:4a:
a6:4e:4d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:25 2024 by rpki-client on console-fra.rpki-client.org