Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/e4Rg6tiu785gLBH292KLKES5SKk.roa
File: e4Rg6tiu785gLBH292KLKES5SKk.roa (raw, json)
Hash identifier: KlZ9ZYI9tq5TumA9e2Ld42TXkQdZKx5ycJR04uZlbrk=
Subject key identifier: 7B:84:60:EA:D8:AE:EF:CE:60:2C:11:F6:F7:62:8B:28:44:B9:48:A9
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F1463FB6781B7FF2BA7C14F8455386C3
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/e4Rg6tiu785gLBH292KLKES5SKk.roa
Signing time: Thu 08 Dec 2022 10:27:03 +0000
ROA not before: Thu 08 Dec 2022 10:27:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31224
IP address blocks: 109.188.0.0/16 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.192.0/22 maxlen: 22
193.201.228.0/22 maxlen: 24
178.178.88.0/22 maxlen: 22
178.178.92.0/22 maxlen: 22
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
212.69.96.0/19 maxlen: 24
31.173.123.0/24 maxlen: 24
31.173.122.0/24 maxlen: 24
31.173.121.0/24 maxlen: 24
31.173.125.0/24 maxlen: 24
31.173.120.0/24 maxlen: 24
31.173.124.0/24 maxlen: 24
31.173.127.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
31.173.126.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
78.25.88.0/22 maxlen: 22
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
37.29.44.0/22 maxlen: 22
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
178.176.104.0/21 maxlen: 21
83.149.32.0/22 maxlen: 22
83.149.36.0/22 maxlen: 22
83.149.34.0/24 maxlen: 24
83.149.37.0/24 maxlen: 24
83.149.39.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
31.173.96.0/24 maxlen: 24
31.173.97.0/24 maxlen: 24
31.173.102.0/24 maxlen: 24
31.173.99.0/24 maxlen: 24
31.173.103.0/24 maxlen: 24
31.173.100.0/24 maxlen: 24
31.173.100.0/23 maxlen: 23
31.173.101.0/24 maxlen: 24
178.176.112.0/24 maxlen: 24
178.176.113.0/24 maxlen: 24
83.169.216.0/24 maxlen: 24
109.74.112.0/20 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
46.229.132.0/22 maxlen: 22
212.44.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:46:3f:b6:78:1b:7f:f2:ba:7c:14:f8:45:53:86:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 10:27:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b8460ead8aeefce602c11f6f7628b2844b948a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5e:a7:18:75:54:fb:9a:c7:d9:76:aa:1d:cc:
87:7e:db:20:ea:d6:2b:93:4e:aa:7d:5c:23:54:bf:
06:46:0c:16:50:05:0e:5b:09:22:51:08:9f:12:e7:
2d:e8:32:a4:7d:f9:8a:b2:32:0e:96:67:32:4d:2a:
4c:1a:e6:9d:6f:c4:23:50:05:3d:03:21:b4:fb:88:
01:b0:80:44:ba:bc:03:fb:dc:24:46:96:d9:2c:d4:
67:c4:64:7c:b8:46:ed:68:66:f5:c7:08:0e:23:6e:
e0:18:1c:ae:f9:f9:92:cb:0d:d7:d9:80:a6:f2:37:
24:80:17:b3:47:a3:c2:9d:c4:dd:26:65:c5:b6:f8:
22:0d:b0:0e:cb:8b:8c:c8:71:52:a1:72:c3:80:a8:
be:3d:99:77:3a:e1:0e:b0:fe:80:c1:cb:ca:ae:b6:
b4:20:f4:a3:c3:14:f4:6d:81:41:91:80:8e:0e:38:
06:9b:2e:b7:30:75:bc:34:a8:49:4b:67:f2:0b:b8:
c7:75:73:71:05:27:7f:23:ff:d3:dc:52:ea:4e:69:
ef:45:bb:e0:3b:c9:ba:65:3d:75:72:c5:d0:49:0d:
04:d0:48:a6:41:22:2e:6a:28:95:de:d3:b3:cc:a0:
5d:15:70:98:45:63:5b:89:18:e6:37:76:57:52:07:
a6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:84:60:EA:D8:AE:EF:CE:60:2C:11:F6:F7:62:8B:28:44:B9:48:A9
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/e4Rg6tiu785gLBH292KLKES5SKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.96.0/23
31.173.99.0-31.173.103.255
31.173.120.0/21
37.29.44.0/22
46.229.132.0/22
78.25.88.0/22
83.149.32.0/21
83.169.216.0/24
85.26.192.0/22
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.104.0-178.176.113.255
178.178.88.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
5a:1f:b1:08:85:f1:74:86:3e:e7:eb:56:be:7a:69:c1:ce:4e:
ba:65:6c:39:26:70:9e:ae:de:8d:36:33:5a:e5:9d:a4:0a:f7:
3f:13:ad:cb:0e:08:1b:20:06:87:60:be:da:37:a1:8e:37:75:
00:4b:a9:21:e7:b4:2b:30:af:31:8e:22:67:1d:c5:e2:67:35:
90:93:03:8f:67:57:55:d5:af:7b:ec:f6:9d:47:1f:79:bd:cb:
66:bc:27:34:e9:a6:17:52:9e:26:f0:6d:d8:11:6c:24:9a:7c:
e7:ab:79:a7:03:98:a5:e5:0a:b9:d5:79:75:6d:c8:5b:64:af:
8f:a8:62:da:75:0f:01:2b:7c:7c:ac:25:f0:e8:5a:a0:31:17:
e4:b9:ca:f4:a0:35:ec:64:01:a5:dd:c3:5e:dc:0d:90:1e:23:
86:c8:55:db:76:10:8f:2a:59:0c:b8:33:3e:2b:da:b8:a5:e9:
86:ce:0a:5d:52:fe:9c:79:34:42:8a:15:da:5e:27:a6:17:b0:
a0:ec:16:92:4e:1c:30:da:fe:1b:aa:af:a8:63:48:5e:54:22:
2d:9e:b7:84:c1:05:b4:63:35:67:18:6b:61:01:6e:b8:42:c3:
37:9b:c8:35:b9:8a:34:1a:49:82:6f:e0:05:5b:ce:8e:c7:c0:
3b:df:5c:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:26 2024 by rpki-client on console-fra.rpki-client.org