Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/dcfRmUnKuCOwG8Tq5bMosehR_cM.roa
File: dcfRmUnKuCOwG8Tq5bMosehR_cM.roa (raw, json)
Hash identifier: ZtiY6hHo/1QEh4s3vRh5+npwx3tDZgFshG485LeXKwg=
Subject key identifier: 75:C7:D1:99:49:CA:B8:23:B0:1B:C4:EA:E5:B3:28:B1:E8:51:FD:C3
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018419313746D2B9956D9433683196D6E54D
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/dcfRmUnKuCOwG8Tq5bMosehR_cM.roa
Signing time: Thu 27 Oct 2022 11:26:06 +0000
ROA not before: Thu 27 Oct 2022 11:26:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20632
IP address blocks: 109.188.0.0/16 maxlen: 24
84.204.230.0/24 maxlen: 24
46.29.192.0/21 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
84.204.160.0/20 maxlen: 20
84.204.176.0/21 maxlen: 21
79.171.8.0/21 maxlen: 24
84.204.188.0/22 maxlen: 22
84.204.192.0/18 maxlen: 18
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
84.204.0.0/17 maxlen: 17
94.25.128.0/17 maxlen: 24
93.153.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
37.29.0.0/17 maxlen: 24
78.25.64.0/18 maxlen: 24
37.28.160.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
80.247.176.0/20 maxlen: 24
91.193.212.0/22 maxlen: 24
84.204.132.0/22 maxlen: 22
84.204.139.0/24 maxlen: 24
84.204.138.0/24 maxlen: 24
84.204.136.0/24 maxlen: 24
84.204.140.0/22 maxlen: 22
84.204.144.0/20 maxlen: 20
195.5.128.0/19 maxlen: 24
82.140.64.0/18 maxlen: 18
128.204.64.0/18 maxlen: 24
82.140.93.0/24 maxlen: 24
95.137.0.0/17 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
77.233.160.0/19 maxlen: 24
82.196.64.0/19 maxlen: 19
81.24.128.0/20 maxlen: 24
78.41.100.0/22 maxlen: 24
195.78.116.0/23 maxlen: 24
83.169.192.0/18 maxlen: 24
109.74.112.0/20 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
46.232.200.0/21 maxlen: 24
62.64.0.0/19 maxlen: 24
81.3.128.0/18 maxlen: 18
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
46.229.128.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
46.47.192.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:19:31:37:46:d2:b9:95:6d:94:33:68:31:96:d6:e5:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 27 11:26:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75c7d19949cab823b01bc4eae5b328b1e851fdc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:99:29:ea:01:8b:21:ee:51:03:e6:e2:cc:f7:
e3:e1:e3:31:72:13:d5:9f:43:ed:14:34:73:c6:29:
2d:d7:e0:ba:f3:e1:ab:10:f4:0d:fd:b3:de:b4:53:
83:8a:ee:17:6d:d5:ae:1f:1b:09:f7:ec:73:28:0c:
84:db:33:a4:02:33:23:38:42:00:c4:8e:bd:11:52:
69:89:bc:e5:f6:84:99:6b:22:c3:6e:d0:ba:80:7f:
10:02:2a:21:98:94:75:3f:db:96:67:98:0d:5f:f4:
33:c4:5f:75:63:d1:ec:16:c2:a7:09:b1:0f:93:ac:
0a:f7:51:e4:31:78:dc:ba:da:50:79:90:6c:ba:9a:
ca:4b:8d:67:41:0a:36:ea:e2:03:d4:3c:cb:51:23:
4a:6f:97:4a:3b:bc:df:90:cc:b6:a2:0d:e9:12:d8:
5c:70:f3:3d:01:09:ef:76:62:11:8f:57:46:f8:11:
93:2d:dc:6b:29:93:f1:12:a9:f6:29:b4:fa:b4:d5:
23:ec:cd:be:88:ca:98:63:a9:4a:2e:d6:75:06:1f:
23:de:50:71:84:7d:b3:d7:53:68:26:ed:09:d7:3c:
6e:7f:0b:c0:23:d9:88:57:94:f2:bb:fb:3b:67:fe:
58:a6:57:c0:1c:d6:9a:3b:d7:72:e4:58:38:54:dc:
9b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:C7:D1:99:49:CA:B8:23:B0:1B:C4:EA:E5:B3:28:B1:E8:51:FD:C3
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/dcfRmUnKuCOwG8Tq5bMosehR_cM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.160.0/19
37.29.0.0/17
46.29.192.0/21
46.47.192.0/18
46.229.128.0/20
46.232.200.0/21
62.64.0.0/19
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.3.128.0/18
81.24.128.0/20
82.140.64.0/18
82.196.64.0/19
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
84.204.0.0/17
84.204.132.0-84.204.136.255
84.204.138.0-84.204.183.255
84.204.188.0-84.204.255.255
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
5a:24:cf:75:c0:6d:80:9c:ef:6f:46:44:70:3f:e5:47:3f:8f:
2a:37:ce:e4:6e:a9:6e:19:14:d9:84:63:59:8f:81:41:58:d3:
93:38:50:e3:50:50:d1:b9:b0:af:97:7f:a8:65:80:02:36:d3:
f3:16:35:35:67:06:31:59:7c:3d:e9:19:ec:87:dd:f9:f1:2c:
dc:75:20:a3:63:67:9c:d8:dc:ad:7f:98:2a:69:37:b2:e2:ce:
d4:9f:4d:e9:3c:0b:4d:ff:68:5d:a1:f8:58:97:1e:7c:30:92:
42:d3:a9:19:e4:84:42:d1:e5:5a:71:ee:08:c8:12:fc:b2:a3:
b8:06:88:e9:38:1b:35:4f:6b:2a:aa:86:4e:87:77:a5:02:e1:
d7:85:38:7b:e9:2d:3d:57:74:5b:16:8a:5e:e1:e3:d9:0d:ac:
e1:a3:f3:ea:65:d1:a1:1c:d2:2f:fa:6d:87:de:c6:35:d2:e8:
76:c5:d2:04:4d:40:85:2b:81:3e:37:30:1d:80:c3:34:50:76:
f0:a6:94:89:de:16:ac:61:a9:6f:11:c5:5f:2c:9c:ef:e7:a8:
bf:a6:65:17:5b:43:b1:fa:fc:82:9a:67:d7:63:b1:6f:e2:1c:
5c:b3:d0:2f:a4:bd:b9:4b:66:ab:57:62:89:16:77:4b:92:21:
27:5a:c6:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:21:51 2025 by rpki-client