Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/cye4XkF7BE8J77OQXR1okqBRWTM.roa
File: cye4XkF7BE8J77OQXR1okqBRWTM.roa (raw, json)
Hash identifier: 9tOJjWJwqw7GY9dYjT20xmS0Pd2fT6n63Mq52J6Ka+I=
Subject key identifier: 73:27:B8:5E:41:7B:04:4F:09:EF:B3:90:5D:1D:68:92:A0:51:59:33
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F1C2B9832BB8E7D35B0F9CFC5121E1C5
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/cye4XkF7BE8J77OQXR1okqBRWTM.roa
Signing time: Thu 08 Dec 2022 12:43:01 +0000
ROA not before: Thu 08 Dec 2022 12:43:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24866
IP address blocks: 212.14.160.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
178.176.229.0/24 maxlen: 24
178.176.228.0/24 maxlen: 24
178.176.227.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
178.23.144.0/21 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:c2:b9:83:2b:b8:e7:d3:5b:0f:9c:fc:51:21:e1:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 12:43:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7327b85e417b044f09efb3905d1d6892a0515933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ab:08:43:1a:8f:54:da:ad:dd:90:a7:1d:f4:
7f:12:7a:e2:f8:48:66:f4:79:0d:22:bb:6b:98:eb:
ae:4c:85:2c:c9:98:84:c5:90:16:64:84:32:6d:14:
9d:8b:4f:73:b9:d6:7b:8e:fb:9e:cf:64:15:eb:e5:
0c:07:86:96:66:0e:51:73:09:61:40:2c:36:d6:0a:
f7:9b:d2:1d:08:d9:ca:6d:8e:ad:de:c8:6b:35:33:
a1:3d:c0:90:ac:b7:05:c2:8c:ae:65:d6:ed:b0:07:
c6:ac:4a:f3:0d:b6:e8:15:b1:a7:3f:29:0f:32:82:
2d:de:e0:1a:67:8d:2c:ab:52:5d:a2:1c:c8:c1:5a:
d5:ba:a2:0c:94:03:67:e3:e2:97:de:90:71:61:94:
58:7b:7a:0d:aa:61:7c:02:d4:91:db:7f:34:7a:77:
e2:69:af:a4:a3:a2:ac:66:b2:57:63:83:54:f8:5b:
73:67:e6:70:bd:04:1a:77:e4:15:04:51:69:2a:f6:
8e:7f:cf:64:82:55:ba:13:51:c1:3a:34:80:02:48:
18:2c:60:29:b9:61:95:17:a5:af:b9:34:9e:41:a3:
18:6a:06:1c:9b:89:1d:06:7a:9b:e9:07:52:7e:07:
1d:c8:33:29:cd:c4:b2:20:e5:34:52:f6:7d:ca:e0:
65:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:27:B8:5E:41:7B:04:4F:09:EF:B3:90:5D:1D:68:92:A0:51:59:33
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/cye4XkF7BE8J77OQXR1okqBRWTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.204.64.0/18
178.23.144.0/21
178.176.227.0-178.176.229.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
48:b1:c5:b1:98:a6:77:a8:ec:37:85:42:45:f1:f4:9d:b6:3b:
4a:eb:e8:15:46:40:96:59:9c:80:f9:70:ea:a0:f4:93:42:be:
3e:d2:a9:57:97:41:b6:6a:82:60:37:fe:98:52:fb:97:be:8a:
52:20:28:8b:33:b4:bd:e4:6b:a6:db:45:3d:80:4a:23:7d:95:
7b:67:e9:53:a6:9d:19:b3:0f:67:6d:9d:a9:df:51:06:94:96:
1d:9b:38:35:11:ad:d9:68:07:9c:0c:52:08:56:4e:98:1c:91:
ec:9a:29:d8:df:f3:67:ec:ca:9d:63:2a:e1:75:2c:70:d5:c3:
94:e3:b5:84:9f:08:fa:24:c6:8a:f4:85:a5:3b:6b:92:6d:d6:
95:37:4a:e9:a9:23:74:c8:b4:c9:de:2f:e9:b3:5e:e0:f7:52:
d8:71:64:0f:8b:33:a5:d4:cd:09:dd:2c:85:86:50:32:2f:f2:
e4:73:88:a4:4c:bd:ca:f5:fa:de:b5:b7:ea:e9:16:de:ce:a1:
f4:f9:e7:a0:ab:13:d7:23:0a:3f:17:62:13:bb:c9:25:ee:03:
58:81:03:fd:7e:f9:16:a6:ba:d9:d3:39:f5:ef:b1:f5:61:7b:
c5:0e:53:46:50:7e:2d:44:6c:5c:cf:9d:45:e1:10:9e:60:af:
dd:0a:da:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:26 2024 by rpki-client on console-fra.rpki-client.org