Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/dUYKqky_-8V6MAtRFkeWwWekfwk.roa
File: dUYKqky_-8V6MAtRFkeWwWekfwk.roa (raw, json)
Hash identifier: ML+oZkE89Czfmssx/cbg2vFdo3aMTu53eMBF3GsNjJQ=
Subject key identifier: 75:46:0A:AA:4C:BF:FB:C5:7A:30:0B:51:16:47:96:C1:67:A4:7F:09
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F12717720A9825578E3CD3E6B6C96560
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/dUYKqky_-8V6MAtRFkeWwWekfwk.roa
Signing time: Thu 08 Dec 2022 09:53:01 +0000
ROA not before: Thu 08 Dec 2022 09:53:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6854
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
94.25.128.0/17 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
80.253.0.0/20 maxlen: 20
185.210.140.0/22 maxlen: 24
62.64.16.0/20 maxlen: 20
212.119.160.0/19 maxlen: 24
62.64.24.0/21 maxlen: 21
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 19
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 17
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:27:17:72:0a:98:25:57:8e:3c:d3:e6:b6:c9:65:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 09:53:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75460aaa4cbffbc57a300b51164796c167a47f09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:53:26:39:6e:af:1c:9e:3a:4c:03:b1:a6:cc:
12:b3:d3:5b:ec:3a:61:81:65:3f:4d:fa:fa:42:86:
41:56:af:2a:51:dc:6b:70:a4:70:b8:2c:4e:28:a8:
06:74:21:81:12:83:c9:11:80:68:f1:61:fd:e2:97:
b9:d0:32:73:a7:80:69:d8:ef:03:c9:9c:44:77:6c:
b9:23:5e:68:d3:6c:a2:91:d5:06:be:ca:8c:e2:41:
1e:4a:87:39:8e:b5:cd:3d:ff:53:ce:5f:22:1b:ad:
8a:bc:a7:8d:62:b4:ca:d0:c1:0f:f9:49:19:ab:1e:
1b:56:8f:0f:49:77:c9:5c:61:5e:5a:7f:75:a1:3c:
6d:7d:bd:a2:e6:cb:57:08:db:0e:86:a7:0c:55:ae:
05:3e:40:1a:de:cf:4f:4a:14:44:39:d8:dd:6f:7b:
32:2c:66:2e:ec:9a:f9:22:b4:55:20:a9:27:fe:c1:
d5:d0:84:3e:65:e2:cb:31:e8:a1:4c:02:58:5a:03:
49:46:38:38:ae:72:ed:65:b2:cc:d5:2a:96:93:f7:
8d:0d:92:b4:56:74:0f:24:99:2d:12:02:ab:3a:df:
df:3a:fd:ac:f1:ef:e5:1d:ab:56:bc:72:9a:ff:35:
58:fd:34:95:20:03:0e:7c:5f:f0:7f:20:8e:8a:59:
fd:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:46:0A:AA:4C:BF:FB:C5:7A:30:0B:51:16:47:96:C1:67:A4:7F:09
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/dUYKqky_-8V6MAtRFkeWwWekfwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.64.16.0/20
80.253.0.0/20
83.222.192.0/19
83.229.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
03:39:25:ed:76:f3:2c:23:a7:45:11:72:ec:86:92:e2:ac:c6:
eb:af:b5:dd:41:da:0c:13:42:b6:0d:18:24:46:21:03:cc:7c:
39:7e:08:3f:d4:cf:95:b0:50:f8:54:8e:51:0b:bf:82:d2:dc:
25:e7:e1:c1:03:b5:ba:ae:85:f0:14:df:47:d6:1c:ef:da:76:
12:2d:68:5a:3f:43:b0:66:e6:e0:d3:9a:6e:e3:4d:58:40:38:
5e:a3:da:a3:96:81:da:05:ad:85:01:a1:05:7f:16:fe:f5:b0:
ae:5d:c5:c9:65:07:b1:60:78:5c:df:16:d7:0e:41:9a:18:35:
43:c0:93:8f:c2:97:e6:90:6b:34:9f:fd:26:10:12:c2:7c:8a:
b4:88:04:dd:74:9b:9d:4b:37:13:25:ba:53:42:e0:df:b8:1a:
a0:39:36:7e:d0:b2:00:3b:04:05:19:66:c9:a1:13:35:25:ef:
64:87:a7:55:03:a8:66:61:b1:16:76:e9:89:18:91:89:a5:be:
e5:26:dd:93:41:25:22:ee:64:86:44:ef:09:70:35:1d:9e:0b:
31:98:f7:e2:50:52:a2:9a:d2:f1:c7:15:26:ab:0d:4f:14:75:
e5:0e:11:c1:20:a1:09:1a:11:6d:ab:c2:d5:f8:d3:78:33:a1:
c9:36:6b:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:35 2024 by rpki-client on console-ams.rpki-client.org