Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/d2K4BH4H1f0edQmi1ie6GPfAtQ8.roa
File: d2K4BH4H1f0edQmi1ie6GPfAtQ8.roa (raw, json)
Hash identifier: bl9i2zmTjXfB8eCAonSxNUEJ9rov/Vd3gW7UQumipTo=
Subject key identifier: 77:62:B8:04:7E:07:D5:FD:1E:75:09:A2:D6:27:BA:18:F7:C0:B5:0F
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F243CF0A2709AAD4681B49161CD20531
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/d2K4BH4H1f0edQmi1ie6GPfAtQ8.roa
Signing time: Thu 08 Dec 2022 15:04:00 +0000
ROA not before: Thu 08 Dec 2022 15:04:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24866
IP address blocks: 212.14.160.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
212.119.160.0/19 maxlen: 24
178.176.229.0/24 maxlen: 24
178.176.228.0/24 maxlen: 24
178.176.227.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f2:43:cf:0a:27:09:aa:d4:68:1b:49:16:1c:d2:05:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 15:04:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7762b8047e07d5fd1e7509a2d627ba18f7c0b50f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:cc:a9:6f:25:77:4e:b2:48:26:2d:fb:ed:a3:
7e:76:63:5a:93:cd:b1:fc:0d:51:49:cd:2f:26:b8:
20:86:2e:e2:31:d1:77:ee:90:47:e9:a3:3d:ca:6a:
e0:54:ae:c1:3c:89:af:1e:af:d1:d5:5b:30:27:b9:
6b:64:79:d3:3d:40:5c:9a:25:5c:5e:72:fd:bb:c7:
5b:03:eb:72:58:18:f4:87:da:46:0a:c8:88:46:e8:
3f:6c:29:b5:86:f0:51:6a:12:6f:f2:bc:78:a8:c4:
66:6f:63:ee:73:62:41:cb:6f:c2:13:5e:3f:8b:0f:
3b:3c:cd:de:26:fb:c5:1f:25:db:42:ec:1c:e5:92:
b5:fb:58:54:c2:25:81:6b:b0:6b:5b:f3:3b:f1:c8:
5f:7f:a0:4d:10:e3:f6:9a:7e:7d:cc:2a:ff:0f:37:
20:59:45:a0:8f:86:f8:ea:bd:f3:45:3e:ee:44:07:
26:7f:b0:81:a8:01:bc:9a:d6:58:e0:25:15:e2:c5:
df:b8:b3:cb:c5:c2:57:8a:71:10:ad:17:c1:bc:d4:
48:f0:c7:c7:1b:82:89:01:8b:a8:a7:0b:6c:18:20:
17:be:e9:70:64:b2:a6:f7:c2:51:d6:5a:94:f9:d0:
1c:ee:0b:9f:03:c3:3d:b8:52:b9:92:1a:8f:80:e5:
52:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:62:B8:04:7E:07:D5:FD:1E:75:09:A2:D6:27:BA:18:F7:C0:B5:0F
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/d2K4BH4H1f0edQmi1ie6GPfAtQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.176.227.0-178.176.229.255
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
58:60:1c:9b:50:65:9f:fd:1e:f7:e5:3d:92:40:15:89:8b:65:
a9:65:43:25:b2:08:ff:a7:b2:fe:53:54:c9:1f:00:04:4a:06:
a9:d9:41:f2:54:f4:92:0b:c7:ce:0a:a5:29:2f:66:20:86:36:
ef:63:e6:55:e3:a4:26:55:a5:d0:21:f4:80:99:59:cc:e9:fa:
9f:4a:cf:44:59:e8:32:e5:bf:04:3a:46:a3:0b:58:26:36:91:
1c:93:ec:27:d8:a4:cf:95:e4:58:e5:bd:31:61:54:7c:04:10:
53:63:01:ab:b4:9f:7a:3c:3c:a6:d0:79:c3:b6:dc:9d:9e:52:
9f:a7:9b:51:19:72:64:57:a8:0d:05:3d:80:87:13:78:2c:a2:
82:48:63:8e:32:c3:02:ef:36:16:aa:0b:e2:90:a1:6e:c3:ed:
f9:51:91:d7:1e:01:52:6f:6f:3f:8d:9a:d9:66:24:6a:50:1d:
fc:9f:f2:48:66:ed:cd:c7:3b:2f:f2:c1:84:d8:25:04:96:73:
0e:ca:23:2a:30:f3:8d:7a:e0:4b:bf:42:db:4e:fc:8d:4e:12:
51:09:6e:d6:6c:19:7f:6a:03:ad:a6:9d:f4:5c:8e:78:78:4f:
e6:97:4b:6d:71:b0:6e:52:87:43:35:6b:86:c3:f1:ef:a0:9d:
8e:c0:e4:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:35 2024 by rpki-client on console-ams.rpki-client.org