Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/cOeC-qWzpE9nvIrAx_OieLG0ES8.roa
File: cOeC-qWzpE9nvIrAx_OieLG0ES8.roa (raw, json)
Hash identifier: xXwOegMVmAj21rK9ZUEMGZ9dJQQOWzEgf9xfEL2bq88=
Subject key identifier: 70:E7:82:FA:A5:B3:A4:4F:67:BC:8A:C0:C7:F3:A2:78:B1:B4:11:2F
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0185061715BE90ADDDF74E8E497BD0D5EAEA
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/cOeC-qWzpE9nvIrAx_OieLG0ES8.roa
Signing time: Mon 12 Dec 2022 11:27:34 +0000
ROA not before: Mon 12 Dec 2022 11:27:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25159
IP address blocks: 195.16.96.0/19 maxlen: 19
193.201.228.0/22 maxlen: 22
109.188.112.0/23 maxlen: 23
109.188.114.0/24 maxlen: 24
195.16.110.0/23 maxlen: 23
195.16.114.0/23 maxlen: 23
85.26.144.0/20 maxlen: 20
109.188.64.0/19 maxlen: 19
109.188.96.0/21 maxlen: 21
78.25.119.0/24 maxlen: 24
94.25.131.0/24 maxlen: 24
94.25.144.0/20 maxlen: 20
94.25.164.0/24 maxlen: 24
94.25.160.0/24 maxlen: 24
212.69.106.0/24 maxlen: 24
94.25.172.0/22 maxlen: 22
94.25.168.0/22 maxlen: 22
212.69.113.0/24 maxlen: 24
212.69.114.0/24 maxlen: 24
188.170.25.0/24 maxlen: 24
188.170.32.0/21 maxlen: 21
188.170.40.0/21 maxlen: 21
37.28.176.0/21 maxlen: 21
178.177.0.0/18 maxlen: 18
178.177.3.0/24 maxlen: 24
78.25.112.0/22 maxlen: 22
78.25.116.0/23 maxlen: 23
78.25.118.0/24 maxlen: 24
94.25.176.0/21 maxlen: 21
212.69.125.0/24 maxlen: 24
94.25.184.0/21 maxlen: 21
128.204.78.0/23 maxlen: 23
128.204.76.0/22 maxlen: 22
37.29.32.0/21 maxlen: 21
128.204.76.0/23 maxlen: 23
178.176.52.0/22 maxlen: 22
178.176.72.0/21 maxlen: 21
31.173.0.0/21 maxlen: 21
195.230.70.0/23 maxlen: 23
31.173.8.0/21 maxlen: 21
178.176.0.0/19 maxlen: 19
213.243.109.0/24 maxlen: 24
213.243.116.0/24 maxlen: 24
83.229.254.0/24 maxlen: 24
178.176.32.0/21 maxlen: 21
178.176.40.0/21 maxlen: 21
31.173.72.0/21 maxlen: 21
31.173.80.0/21 maxlen: 21
31.173.88.0/21 maxlen: 21
188.170.0.0/19 maxlen: 19
188.170.24.0/24 maxlen: 24
31.173.16.0/21 maxlen: 21
31.173.24.0/21 maxlen: 21
195.230.91.0/24 maxlen: 24
195.230.92.0/24 maxlen: 24
31.173.32.0/19 maxlen: 19
31.173.60.0/24 maxlen: 24
31.173.64.0/21 maxlen: 21
62.64.0.0/20 maxlen: 20
83.229.211.0/24 maxlen: 24
46.229.128.0/22 maxlen: 22
83.222.212.0/22 maxlen: 22
83.222.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:06:17:15:be:90:ad:dd:f7:4e:8e:49:7b:d0:d5:ea:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 11:27:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70e782faa5b3a44f67bc8ac0c7f3a278b1b4112f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b2:e2:30:15:11:9c:78:bf:9d:a3:05:50:c9:
c8:47:9a:f7:f0:66:ef:69:7c:41:3a:81:1f:20:97:
98:df:e9:71:5c:d9:1d:81:91:6f:9c:21:66:df:55:
43:68:b6:d2:51:86:7b:ed:e0:45:75:97:03:e8:66:
4b:be:9e:7c:1c:a5:53:8d:c1:2d:3f:e0:8b:1d:5a:
bd:33:b5:92:39:ad:ed:9e:2c:61:c7:c5:e5:ea:34:
c4:f3:e5:5d:71:58:8f:96:2a:5e:0a:60:28:40:45:
0e:d3:48:7a:a4:d4:7a:e4:20:f8:b3:8e:4b:36:41:
c0:a5:b5:21:b3:e8:7a:f4:c5:21:57:82:8d:da:ff:
67:6f:95:00:1c:fa:01:b3:07:87:0b:f8:1b:24:f3:
96:57:27:5e:70:97:2b:31:66:2c:b1:9f:1d:a4:7f:
d3:60:52:4a:cf:29:b8:18:1b:ea:a8:c1:f8:b7:6c:
14:aa:30:85:7c:c6:97:62:68:ae:20:3e:1a:cd:3b:
fd:ef:48:a9:68:eb:8a:c5:57:08:e5:9e:58:d8:ff:
eb:10:00:7b:c1:75:fa:95:84:09:a5:56:de:4f:c0:
1a:14:53:34:f5:c9:02:46:33:f7:0d:a0:81:f9:12:
d8:ff:6d:25:0d:69:d7:c7:41:30:31:1b:20:50:6c:
8c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E7:82:FA:A5:B3:A4:4F:67:BC:8A:C0:C7:F3:A2:78:B1:B4:11:2F
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/cOeC-qWzpE9nvIrAx_OieLG0ES8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.0.0-31.173.95.255
37.28.176.0/21
37.29.32.0/21
46.229.128.0/22
62.64.0.0/20
78.25.112.0/21
83.222.212.0-83.222.223.255
83.229.211.0/24
83.229.254.0/24
85.26.144.0/20
94.25.131.0/24
94.25.144.0-94.25.160.255
94.25.164.0/24
94.25.168.0-94.25.191.255
109.188.64.0-109.188.103.255
109.188.112.0-109.188.114.255
128.204.76.0/22
178.176.0.0-178.176.47.255
178.176.52.0/22
178.176.72.0/21
178.177.0.0/18
188.170.0.0-188.170.47.255
193.201.228.0/22
195.16.96.0/19
195.230.70.0/23
195.230.91.0-195.230.92.255
212.69.106.0/24
212.69.113.0-212.69.114.255
212.69.125.0/24
213.243.109.0/24
213.243.116.0/24
Signature Algorithm: sha256WithRSAEncryption
46:f8:59:c7:fc:f2:38:f8:2d:4f:39:b8:b2:72:61:b6:66:7e:
e5:4a:e0:31:18:de:f1:19:32:e8:bc:3d:b5:e7:cc:d2:e0:00:
9a:78:9e:a3:ba:38:b7:c3:1e:21:2f:4d:75:85:3a:fd:fb:27:
32:99:d1:bd:f5:38:0f:c3:31:b1:15:7e:5a:79:6e:45:3a:96:
85:38:08:7d:ef:60:41:e3:2b:5b:6d:60:b8:2a:39:2e:91:4b:
78:9f:81:3e:71:85:f3:93:c9:a4:b8:ba:e7:ce:34:7a:5e:3c:
34:c6:06:97:d6:1a:0b:32:2e:2d:c6:c7:78:bf:e3:b1:41:2d:
1a:c9:6b:42:4f:df:f7:8b:8c:e1:72:5f:a1:ee:22:81:19:ae:
6f:96:12:dc:e4:60:ce:bc:b2:42:1e:a6:5e:ad:12:7e:55:b0:
ad:47:80:ab:fc:69:26:11:87:69:4a:63:5c:43:75:62:6f:37:
9c:3c:70:d3:47:61:7a:53:87:f9:84:e0:60:86:f8:77:de:52:
b2:b9:e2:4f:5d:ab:96:0a:a9:9b:26:8f:dd:37:34:6a:2a:3b:
6d:22:f9:4f:03:f9:99:79:c6:d0:b9:61:54:6b:73:0c:4d:2f:
72:20:da:c6:8b:ca:26:d7:fe:b8:21:26:e4:27:65:a0:70:99:
54:79:11:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:25 2024 by rpki-client on console-fra.rpki-client.org