Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/c6AB3PWMF-F69ZiPJshJrXhvqFU.roa
File: c6AB3PWMF-F69ZiPJshJrXhvqFU.roa (raw, json)
Hash identifier: pTb16wWYLCGDIZiQD8hRSxWXQcgghGpWcCfWMRNdCWA=
Subject key identifier: 73:A0:01:DC:F5:8C:17:E1:7A:F5:98:8F:26:C8:49:AD:78:6F:A8:55
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018505AE3D6BEDB27595238CB12B1F1B5FF6
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/c6AB3PWMF-F69ZiPJshJrXhvqFU.roa
Signing time: Mon 12 Dec 2022 09:33:02 +0000
ROA not before: Mon 12 Dec 2022 09:33:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31213
IP address blocks: 195.16.96.0/19 maxlen: 24
85.26.128.0/20 maxlen: 20
193.201.228.0/22 maxlen: 24
85.26.208.0/22 maxlen: 22
85.26.212.0/22 maxlen: 22
109.188.128.0/17 maxlen: 17
85.26.216.0/22 maxlen: 22
85.26.220.0/22 maxlen: 22
188.170.80.0/21 maxlen: 21
78.25.120.0/22 maxlen: 22
188.170.92.0/22 maxlen: 22
188.162.0.0/16 maxlen: 24
37.28.160.0/21 maxlen: 21
85.26.248.0/22 maxlen: 22
85.26.252.0/22 maxlen: 22
37.28.168.0/21 maxlen: 21
78.25.96.0/21 maxlen: 21
78.25.104.0/22 maxlen: 22
188.170.68.0/24 maxlen: 24
188.170.65.0/24 maxlen: 24
188.170.66.0/24 maxlen: 24
188.170.67.0/24 maxlen: 24
78.25.108.0/22 maxlen: 22
188.170.72.0/21 maxlen: 21
94.25.228.0/23 maxlen: 23
94.25.232.0/21 maxlen: 21
37.29.71.0/24 maxlen: 24
37.29.68.0/23 maxlen: 23
37.29.70.0/24 maxlen: 24
83.149.0.0/21 maxlen: 21
195.5.128.0/19 maxlen: 24
128.204.74.0/24 maxlen: 24
128.204.75.0/24 maxlen: 24
94.25.208.0/22 maxlen: 22
37.29.48.0/21 maxlen: 21
37.29.56.0/21 maxlen: 21
94.25.216.0/21 maxlen: 21
94.25.224.0/21 maxlen: 21
37.29.64.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:ae:3d:6b:ed:b2:75:95:23:8c:b1:2b:1f:1b:5f:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 09:33:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73a001dcf58c17e17af5988f26c849ad786fa855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:41:b9:83:96:b5:6e:13:21:b4:dd:8f:2e:3b:
6e:7a:4c:29:9e:f2:a4:52:2d:77:3d:11:43:63:20:
64:c1:8f:43:9a:4e:c8:a9:02:6f:f4:f8:82:bb:52:
a7:23:da:b3:c2:12:38:91:7d:3f:17:96:74:f8:34:
e8:39:8f:4b:57:6e:bd:a2:54:90:c8:ff:2c:ce:c5:
9c:bc:c5:2f:67:32:4c:ce:5e:2c:00:d7:04:75:3a:
e7:5d:72:7d:1a:6a:0a:06:86:fd:62:0f:73:3c:fc:
c9:9f:c8:06:3f:a9:c8:aa:0c:a7:03:ca:c7:5e:92:
cc:38:6b:3b:8b:3e:b1:d4:60:db:64:96:e6:e2:db:
d2:a6:c6:da:b3:4c:0a:7d:e2:6d:9a:99:9d:ee:6f:
c7:a0:77:b7:a7:a0:ef:30:f1:e2:ec:5b:f2:b2:bc:
3d:59:8e:90:25:ab:08:cd:7c:da:df:21:dd:db:72:
80:9c:c8:2f:58:c3:c6:d6:9b:52:3a:a7:65:ae:8c:
ab:21:ff:e6:08:c3:84:90:25:fa:f9:b4:5d:20:88:
48:33:dc:b3:d5:69:75:f9:0d:35:62:e3:2f:66:5d:
05:e8:f8:35:45:1b:5c:27:ee:88:3d:6b:ff:bb:64:
61:ea:2a:e9:cf:b8:20:b2:cd:54:d5:02:51:e5:05:
67:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:A0:01:DC:F5:8C:17:E1:7A:F5:98:8F:26:C8:49:AD:78:6F:A8:55
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/c6AB3PWMF-F69ZiPJshJrXhvqFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.160.0/20
37.29.48.0-37.29.71.255
78.25.96.0/20
78.25.120.0/22
83.149.0.0/21
85.26.128.0/20
85.26.208.0/20
85.26.248.0/21
94.25.208.0/22
94.25.216.0-94.25.239.255
109.188.128.0/17
128.204.74.0/23
188.162.0.0/16
188.170.65.0-188.170.68.255
188.170.72.0-188.170.87.255
188.170.92.0/22
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
Signature Algorithm: sha256WithRSAEncryption
20:3d:84:d3:f9:55:00:38:f4:4f:e7:44:de:65:55:90:14:43:
15:99:21:1a:a5:b2:d9:50:d3:e0:e2:58:14:5c:3c:ab:62:d7:
91:b4:92:61:47:de:5d:ff:e7:29:04:bc:2c:98:1d:c0:13:3b:
a3:fd:b0:aa:c6:53:c7:59:86:43:2c:fa:16:c0:0c:e5:4c:66:
1e:7a:21:f2:11:41:b9:17:a1:39:33:19:9f:25:16:30:6b:1a:
22:a8:02:08:58:6b:f0:6b:3a:0c:15:1c:84:bb:99:ed:0e:3e:
f0:fe:2c:bf:2b:e4:d2:77:d0:e6:29:e5:35:13:df:da:2c:e2:
ed:67:cd:ec:c5:a9:5f:58:3c:5b:54:e1:ed:47:9a:3d:fc:5b:
b7:c9:be:4a:cd:f9:3c:2c:a7:cd:5f:14:3d:06:dc:a3:51:90:
de:9c:ed:80:bd:64:47:2c:b3:44:58:60:ce:cf:db:f5:2a:d9:
9f:c2:08:ab:28:b4:31:d9:97:62:65:45:1f:b9:f9:d6:7d:eb:
a9:77:58:ef:62:31:af:fb:c8:5a:6b:dd:3a:05:63:87:c3:b8:
1a:09:98:0f:13:90:5d:a8:7f:4e:08:96:07:db:21:bd:9a:24:
d4:96:e8:23:62:1a:66:37:cf:ab:f5:5b:c4:90:5e:c5:50:2c:
f3:57:ad:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:45:24 2025 by rpki-client