Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/fzqnRU4qzVlQsMwhwiKGtJcXQVQ.roa
File: fzqnRU4qzVlQsMwhwiKGtJcXQVQ.roa (raw, json)
Hash identifier: eXCif6OLKypTCzaZK0BVF2iKPXg6fK7QsPUC942blQ8=
Subject key identifier: 7F:3A:A7:45:4E:2A:CD:59:50:B0:CC:21:C2:22:86:B4:97:17:41:54
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01841D9459A93428B8791C99C68A7CEBAD9B
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/fzqnRU4qzVlQsMwhwiKGtJcXQVQ.roa
Signing time: Fri 28 Oct 2022 07:52:52 +0000
ROA not before: Fri 28 Oct 2022 07:52:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50928
IP address blocks: 109.188.0.0/16 maxlen: 24
46.29.192.0/21 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
79.171.8.0/21 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
94.25.128.0/17 maxlen: 24
93.153.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
37.29.0.0/17 maxlen: 24
37.28.160.0/19 maxlen: 24
78.25.64.0/18 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
80.247.176.0/20 maxlen: 24
178.176.250.0/24 maxlen: 24
91.193.212.0/22 maxlen: 24
178.176.251.0/24 maxlen: 24
178.176.252.0/24 maxlen: 24
178.176.253.0/24 maxlen: 24
178.176.249.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
31.173.248.0/21 maxlen: 21
31.173.248.0/24 maxlen: 24
31.173.252.0/24 maxlen: 24
31.173.253.0/24 maxlen: 24
31.173.249.0/24 maxlen: 24
31.173.250.0/24 maxlen: 24
31.173.251.0/24 maxlen: 24
95.137.0.0/17 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
77.233.160.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
81.24.128.0/20 maxlen: 24
78.41.100.0/22 maxlen: 24
195.78.116.0/23 maxlen: 24
83.169.192.0/18 maxlen: 24
109.74.112.0/20 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
46.232.200.0/21 maxlen: 24
62.64.0.0/19 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
46.229.128.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1d:94:59:a9:34:28:b8:79:1c:99:c6:8a:7c:eb:ad:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 28 07:52:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f3aa7454e2acd5950b0cc21c22286b497174154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0b:d9:df:94:16:7e:05:de:bc:92:be:3a:f9:
4e:1c:34:0c:11:2b:c1:18:e0:4f:3d:28:3f:7f:5c:
be:73:9c:90:6e:06:ea:11:47:40:ed:1d:10:ba:19:
84:26:1b:31:6a:93:ff:82:c1:88:36:51:13:7a:5e:
27:ff:a7:e5:74:90:e6:c0:ff:57:9a:53:c0:e1:db:
25:29:f5:f9:61:f7:94:2d:87:7c:b2:9e:87:24:6a:
e0:2b:9b:6e:eb:39:de:a5:eb:df:c6:a4:c5:9c:d9:
b8:5b:20:7b:a1:58:48:92:40:66:22:20:db:93:6f:
c7:5b:6b:3a:f7:da:fc:8e:aa:16:e6:4d:cb:ff:2f:
7b:02:1b:8f:cb:3e:12:79:75:8e:c8:d0:a1:82:ba:
d3:71:39:5e:c3:a5:ca:36:c3:30:cf:d6:25:f3:bc:
16:85:ec:40:56:40:e5:96:ca:92:a6:8b:48:60:c6:
e4:70:ca:3e:d2:25:f2:3e:68:62:98:17:73:54:08:
91:ff:77:3a:f3:22:ed:dc:98:4a:61:85:13:39:ee:
dc:d0:0d:a1:c1:4c:2a:38:1a:d1:33:eb:2e:ed:ed:
30:80:68:95:4b:4a:1c:28:29:5f:0b:e6:0f:05:eb:
ba:1a:f5:81:d0:a9:12:1d:8e:df:5b:2b:b2:b8:23:
28:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:3A:A7:45:4E:2A:CD:59:50:B0:CC:21:C2:22:86:B4:97:17:41:54
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/fzqnRU4qzVlQsMwhwiKGtJcXQVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.248.0/21
37.28.160.0/19
37.29.0.0/17
46.29.192.0/21
46.229.128.0/20
46.232.200.0/21
62.64.0.0/19
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.24.128.0/20
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.249.0-178.176.253.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
50:ab:5f:f2:c3:a9:3d:1f:a5:9b:eb:72:b5:7e:1b:2d:3a:85:
b0:9f:75:5b:eb:ba:02:18:54:5f:b4:48:4a:4b:4b:86:93:df:
dd:1b:69:dc:bd:c2:a0:a5:68:e6:27:f6:ea:4c:58:83:27:c8:
c4:36:4c:19:d8:85:72:11:d6:2f:0f:f8:7c:20:e9:30:0f:13:
62:06:c8:1c:5b:33:2b:07:87:ea:b7:8a:31:f6:d9:e6:ad:a4:
d3:36:fa:cf:5e:e4:f0:84:46:7b:7a:2d:76:ed:f4:28:a1:a1:
d2:34:e6:7b:0f:2b:12:d8:7e:d6:39:38:c9:2e:6a:c2:35:b4:
61:c1:77:a5:73:62:81:0b:87:84:6d:d9:8d:1f:93:39:1e:c4:
ed:4d:b8:72:0b:ea:95:48:f5:e6:56:27:8a:cf:9a:52:14:01:
1a:71:ea:46:05:99:ef:3f:e2:64:c9:61:74:8b:71:87:0e:49:
a5:54:b1:15:31:93:b5:f7:7a:75:33:e0:2f:c3:76:eb:a6:ec:
fb:c5:3d:7d:d0:90:92:69:02:16:9f:0d:1b:17:77:dd:2d:ac:
fb:69:08:53:67:d0:59:d9:db:61:0f:4c:c5:c5:57:af:73:28:
82:fc:0b:61:52:62:ad:69:0a:53:4e:9c:5d:53:e6:b6:7f:40:
ac:a2:ad:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:26 2024 by rpki-client on console-fra.rpki-client.org