Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/bxkuqz8CFEAJBH6Ef-7v546oZKQ.roa
File: bxkuqz8CFEAJBH6Ef-7v546oZKQ.roa (raw, json)
Hash identifier: zNvxOjQax9s/0LofoUINAMuApBmWm4WSUHXKtczGy18=
Subject key identifier: 6F:19:2E:AB:3F:02:14:40:09:04:7E:84:7F:EE:EF:E7:8E:A8:64:A4
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F1463E9D639DB6167CAC141AEE02EAD4
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/bxkuqz8CFEAJBH6Ef-7v546oZKQ.roa
Signing time: Thu 08 Dec 2022 10:27:03 +0000
ROA not before: Thu 08 Dec 2022 10:27:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31208
IP address blocks: 109.188.0.0/16 maxlen: 24
195.16.96.0/19 maxlen: 24
178.178.84.0/22 maxlen: 22
178.178.82.0/24 maxlen: 24
178.178.80.0/23 maxlen: 23
193.201.228.0/22 maxlen: 24
178.178.131.0/24 maxlen: 24
178.178.130.0/24 maxlen: 24
178.23.144.0/21 maxlen: 24
178.178.129.0/24 maxlen: 24
178.178.132.0/24 maxlen: 24
178.178.128.0/24 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
212.69.96.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
178.176.230.0/23 maxlen: 23
212.119.160.0/19 maxlen: 24
37.28.186.0/24 maxlen: 24
188.170.50.0/24 maxlen: 24
37.28.184.0/24 maxlen: 24
188.170.48.0/24 maxlen: 24
37.28.185.0/24 maxlen: 24
188.170.49.0/24 maxlen: 24
188.170.54.0/24 maxlen: 24
188.170.55.0/24 maxlen: 24
37.28.187.0/24 maxlen: 24
188.170.56.0/24 maxlen: 24
188.170.52.0/24 maxlen: 24
188.170.57.0/24 maxlen: 24
188.170.53.0/24 maxlen: 24
188.170.62.0/24 maxlen: 24
188.170.63.0/24 maxlen: 24
188.170.59.0/24 maxlen: 24
188.170.60.0/24 maxlen: 24
188.170.61.0/24 maxlen: 24
37.29.75.0/24 maxlen: 24
37.29.74.0/24 maxlen: 24
37.29.73.0/24 maxlen: 24
37.29.72.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
178.176.58.0/24 maxlen: 24
178.176.56.0/24 maxlen: 24
178.176.57.0/24 maxlen: 24
178.176.62.0/24 maxlen: 24
178.176.63.0/24 maxlen: 24
178.176.59.0/24 maxlen: 24
178.176.60.0/24 maxlen: 24
178.176.61.0/24 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
83.149.41.0/24 maxlen: 24
83.149.44.0/23 maxlen: 23
83.149.40.0/24 maxlen: 24
83.149.42.0/23 maxlen: 23
195.78.116.0/23 maxlen: 24
83.149.46.0/23 maxlen: 23
83.169.212.0/24 maxlen: 24
83.169.208.0/24 maxlen: 24
83.169.213.0/24 maxlen: 24
83.169.209.0/24 maxlen: 24
83.169.210.0/24 maxlen: 24
83.169.211.0/24 maxlen: 24
83.169.214.0/24 maxlen: 24
83.169.215.0/24 maxlen: 24
188.94.168.0/21 maxlen: 24
109.74.112.0/20 maxlen: 24
188.162.0.0/16 maxlen: 24
178.178.135.0/24 maxlen: 24
178.178.134.0/24 maxlen: 24
178.178.137.0/24 maxlen: 24
178.178.133.0/24 maxlen: 24
178.178.136.0/24 maxlen: 24
178.178.143.0/24 maxlen: 24
178.178.142.0/24 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
46.229.136.0/22 maxlen: 22
46.229.141.0/24 maxlen: 24
46.229.140.0/24 maxlen: 24
46.229.143.0/24 maxlen: 24
46.229.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:46:3e:9d:63:9d:b6:16:7c:ac:14:1a:ee:02:ea:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 10:27:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f192eab3f02144009047e847feeefe78ea864a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:41:eb:d4:98:1a:34:33:12:85:04:6c:db:0e:
d4:fe:fa:49:e5:92:25:f1:aa:dc:70:88:61:36:00:
ea:e2:3d:52:1e:c3:2e:5c:8e:47:a2:60:fd:58:fd:
fc:6c:ad:d3:fe:91:a6:b6:2f:a1:17:53:fe:43:86:
00:25:f9:66:ea:fe:54:30:bb:59:28:6e:e0:59:ff:
3d:c8:a9:f3:f1:99:cd:5f:73:c7:9a:ed:71:6a:43:
b0:f8:66:5f:7a:47:0e:b9:1e:72:a6:14:a5:59:52:
6e:bf:8a:40:11:ef:f2:3d:71:19:b2:ce:ab:75:63:
f2:16:fe:05:99:13:20:d1:39:b6:ad:31:e5:9b:6a:
c0:26:08:89:e6:28:ba:53:1e:d0:49:5b:de:3a:71:
27:08:1e:39:bb:96:53:9d:59:5a:33:b1:b6:51:33:
92:6b:5c:19:cf:58:18:f2:cd:1d:25:82:ba:b3:27:
58:da:d6:3d:c8:b8:94:75:4f:65:35:09:8c:4e:4a:
63:09:03:5c:88:ff:d4:af:c2:05:cc:8b:f0:21:97:
b4:a9:f2:8f:a3:06:84:7b:42:5d:4d:1e:be:82:1f:
29:1b:b2:3d:57:29:a4:7c:b3:83:37:c8:e3:0d:3f:
4e:bb:a6:85:9b:0a:a5:d9:fc:0c:ad:06:18:47:fd:
1c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:19:2E:AB:3F:02:14:40:09:04:7E:84:7F:EE:EF:E7:8E:A8:64:A4
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/bxkuqz8CFEAJBH6Ef-7v546oZKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.184.0/22
37.29.72.0/22
46.229.136.0/21
83.149.40.0/21
83.169.208.0/21
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.56.0/21
178.176.230.0/23
178.178.80.0-178.178.82.255
178.178.84.0/22
178.178.128.0-178.178.137.255
178.178.142.0/23
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.48.0-188.170.50.255
188.170.52.0-188.170.57.255
188.170.59.0-188.170.63.255
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
14:59:f6:19:6a:ab:b1:cd:21:6f:a3:02:71:b4:11:aa:b9:a0:
ae:87:a7:96:2b:bd:11:44:31:9e:88:ec:42:c4:88:6b:7c:f9:
be:49:a3:3d:00:7a:c2:9e:a9:58:c4:8d:68:01:53:41:16:2a:
36:6a:a5:40:90:9c:94:7e:0d:ef:3e:6d:a6:bc:2b:ff:f2:ab:
33:71:03:20:fe:e9:95:50:b3:72:8e:f1:6e:de:f9:27:f6:6f:
33:22:db:00:1c:0b:d2:a0:ca:fd:dd:e0:0b:9b:33:cc:64:fe:
dc:52:d5:5d:15:1a:b3:e7:8f:34:f3:61:f4:b6:a5:e6:d8:cb:
43:83:2b:38:45:6d:00:72:9c:bb:07:af:89:47:96:70:16:45:
07:4c:dc:c2:49:f4:3f:c3:37:89:e7:f2:2c:bd:4d:9f:db:81:
7f:3a:e3:5f:f2:99:90:1b:f2:73:76:7e:44:6f:ad:32:a4:0c:
b7:f9:4d:2c:27:64:99:f1:02:a0:64:5c:6e:0d:d5:c3:71:d8:
84:59:cf:eb:e2:fd:9c:7c:99:88:21:67:cc:d9:98:2a:2b:25:
65:47:a4:06:cd:98:cf:1e:9b:78:2a:1a:91:12:fd:86:8e:a8:
08:98:73:3b:ff:44:4e:fd:a3:24:49:40:58:3c:a5:64:f3:3c:
38:ac:c2:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:35 2024 by rpki-client on console-ams.rpki-client.org