Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/gbuNC0aIbv7AyT9f22KbUCod2Gg.roa
File: gbuNC0aIbv7AyT9f22KbUCod2Gg.roa (raw, json)
Hash identifier: yLKO5J2BtBN8OHsjJGqMYouoT5lYwswJVEMHgDG3Rjo=
Subject key identifier: 81:BB:8D:0B:46:88:6E:FE:C0:C9:3F:5F:DB:62:9B:50:2A:1D:D8:68
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018AD6F2F91F537F7ECD30E89FCC4E66E1BF
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/gbuNC0aIbv7AyT9f22KbUCod2Gg.roa
Signing time: Wed 27 Sep 2023 14:02:42 +0000
ROA not before: Wed 27 Sep 2023 14:02:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25159
IP address blocks: 195.16.96.0/19 maxlen: 19
109.188.112.0/23 maxlen: 23
193.201.228.0/22 maxlen: 22
109.188.114.0/24 maxlen: 24
195.16.110.0/23 maxlen: 23
109.188.64.0/19 maxlen: 19
195.16.114.0/23 maxlen: 23
85.26.144.0/20 maxlen: 20
109.188.96.0/21 maxlen: 21
78.25.119.0/24 maxlen: 24
94.25.131.0/24 maxlen: 24
94.25.144.0/20 maxlen: 20
94.25.160.0/24 maxlen: 24
94.25.164.0/24 maxlen: 24
212.69.106.0/24 maxlen: 24
94.25.172.0/22 maxlen: 22
212.69.113.0/24 maxlen: 24
94.25.168.0/22 maxlen: 22
212.69.114.0/24 maxlen: 24
188.170.25.0/24 maxlen: 24
188.170.32.0/21 maxlen: 21
188.170.40.0/21 maxlen: 21
37.28.176.0/21 maxlen: 21
178.177.0.0/18 maxlen: 18
178.177.3.0/24 maxlen: 24
78.25.112.0/22 maxlen: 22
78.25.116.0/23 maxlen: 23
78.25.118.0/24 maxlen: 24
94.25.176.0/21 maxlen: 21
212.69.125.0/24 maxlen: 24
94.25.184.0/21 maxlen: 21
128.204.78.0/23 maxlen: 23
37.29.32.0/21 maxlen: 21
128.204.76.0/23 maxlen: 23
128.204.76.0/22 maxlen: 22
178.176.52.0/22 maxlen: 22
178.176.72.0/21 maxlen: 21
178.176.92.0/22 maxlen: 22
31.173.0.0/21 maxlen: 21
195.230.70.0/23 maxlen: 23
31.173.8.0/21 maxlen: 21
178.176.0.0/19 maxlen: 19
213.243.109.0/24 maxlen: 24
213.243.116.0/24 maxlen: 24
83.229.254.0/24 maxlen: 24
178.176.32.0/21 maxlen: 21
178.176.40.0/21 maxlen: 21
31.173.72.0/21 maxlen: 21
31.173.80.0/21 maxlen: 21
31.173.88.0/21 maxlen: 21
188.170.0.0/19 maxlen: 19
188.170.24.0/24 maxlen: 24
31.173.16.0/21 maxlen: 21
195.230.91.0/24 maxlen: 24
31.173.24.0/21 maxlen: 21
195.230.92.0/24 maxlen: 24
31.173.32.0/19 maxlen: 19
31.173.60.0/24 maxlen: 24
31.173.64.0/21 maxlen: 21
62.64.0.0/20 maxlen: 20
62.64.16.0/20 maxlen: 20
91.205.168.0/23 maxlen: 23
91.205.170.0/23 maxlen: 23
83.229.211.0/24 maxlen: 24
46.229.128.0/22 maxlen: 22
83.222.212.0/22 maxlen: 22
83.222.216.0/21 maxlen: 21
2a03:d000:4000::/36 maxlen: 36
2a03:d000:4200::/40 maxlen: 40
2a03:d000:4100::/40 maxlen: 40
2a03:d000:4400::/40 maxlen: 40
2a03:d000:4300::/40 maxlen: 40
2a03:d004::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d6:f2:f9:1f:53:7f:7e:cd:30:e8:9f:cc:4e:66:e1:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Sep 27 14:02:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81bb8d0b46886efec0c93f5fdb629b502a1dd868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:53:0a:44:2c:11:45:28:ed:95:00:ee:2c:a6:
82:c9:c1:97:a1:7d:1e:70:b8:76:38:e2:1e:5f:4c:
05:a8:53:8b:cb:f7:bc:aa:26:68:85:4f:c3:74:bd:
05:62:67:d3:25:0d:7f:fa:b3:4c:da:0a:3c:f3:af:
e2:09:15:ac:62:97:64:08:c5:20:45:d2:b4:57:fe:
e3:0d:26:bd:8b:56:b6:92:c0:4b:ca:cb:50:8e:62:
d8:7f:9e:a0:27:15:e3:8e:9e:0f:fa:7f:fa:5e:3c:
c8:69:0b:3d:fe:b2:cf:c4:e4:5d:b4:0c:2f:bb:53:
f3:dd:42:6a:ab:5f:f3:75:20:3d:56:07:24:c9:3e:
25:a9:85:7e:33:12:4e:99:eb:fa:de:eb:2f:ca:18:
84:8c:25:d7:27:4a:4e:a3:b9:cb:11:27:c0:26:4f:
92:d1:39:4b:6a:15:99:58:b6:45:19:ba:0c:de:12:
95:c6:d6:40:ad:aa:46:42:78:93:1e:2a:62:3d:c9:
fb:79:94:e4:8a:04:f9:c7:f2:65:f2:43:74:6e:ff:
c4:e7:8a:c3:55:d2:b2:90:63:e7:77:73:37:6c:b6:
93:44:84:01:88:47:4a:a0:7c:56:98:87:26:f7:aa:
f2:28:15:d3:52:be:90:78:50:db:0a:ee:32:f1:d0:
1f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:BB:8D:0B:46:88:6E:FE:C0:C9:3F:5F:DB:62:9B:50:2A:1D:D8:68
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/gbuNC0aIbv7AyT9f22KbUCod2Gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.0.0-31.173.95.255
37.28.176.0/21
37.29.32.0/21
46.229.128.0/22
62.64.0.0/19
78.25.112.0/21
83.222.212.0-83.222.223.255
83.229.211.0/24
83.229.254.0/24
85.26.144.0/20
91.205.168.0/22
94.25.131.0/24
94.25.144.0-94.25.160.255
94.25.164.0/24
94.25.168.0-94.25.191.255
109.188.64.0-109.188.103.255
109.188.112.0-109.188.114.255
128.204.76.0/22
178.176.0.0-178.176.47.255
178.176.52.0/22
178.176.72.0/21
178.176.92.0/22
178.177.0.0/18
188.170.0.0-188.170.47.255
193.201.228.0/22
195.16.96.0/19
195.230.70.0/23
195.230.91.0-195.230.92.255
212.69.106.0/24
212.69.113.0-212.69.114.255
212.69.125.0/24
213.243.109.0/24
213.243.116.0/24
IPv6:
2a03:d000:4000::/36
2a03:d004::/40
Signature Algorithm: sha256WithRSAEncryption
aa:54:57:4c:5e:5a:a9:be:92:af:8e:ca:a9:55:bd:bf:09:bd:
d0:f9:d9:20:9c:b1:da:ef:96:64:e7:cf:06:68:63:53:8d:2a:
e7:20:3c:7a:ed:6c:fb:45:34:3d:67:f7:e3:bb:86:e3:50:34:
fc:80:80:9e:66:47:7c:9f:41:b5:11:c3:64:07:4b:bd:8a:c2:
0f:a8:ea:10:f4:e0:6b:e6:41:33:d0:df:20:d4:d2:d2:08:03:
29:a2:8c:c7:19:f8:9b:ed:8c:13:7b:91:e3:20:8e:fe:f0:4e:
a9:27:fe:1f:f7:53:bc:a3:b9:01:b4:e3:ef:52:49:67:2a:35:
90:aa:a7:12:b0:e3:bd:ea:70:1e:8a:31:50:bd:0d:bb:a6:13:
1b:ba:41:df:6b:8a:bc:05:e6:2c:80:0d:92:f7:48:c2:b2:1f:
fd:50:1b:fb:5a:0e:1a:d0:02:93:c7:d9:1c:9b:b9:dc:c5:09:
02:89:7c:d1:64:ea:f1:5c:bf:30:4a:ff:6f:53:e3:34:4d:e0:
01:2b:85:34:00:b5:82:1f:0f:5f:88:a0:35:53:07:5d:40:83:
ae:e9:2e:f1:8a:34:6a:4a:2f:61:53:51:9a:25:fc:9d:90:51:
31:53:d9:fb:cd:95:5e:82:af:40:d2:2f:99:d2:e9:b9:56:a2:
47:8a:89:cd
-----BEGIN CERTIFICATE-----
MIIGLDCCBRSgAwIBAgISAYrW8vkfU39+zTDon8xOZuG/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjMwOTI3MTQwMjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MWJiOGQwYjQ2ODg2ZWZlYzBjOTNmNWZkYjYyOWI1MDJhMWRkODY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjVMKRCwRRSjtlQDuLKaCycGXoX0e
cLh2OOIeX0wFqFOLy/e8qiZohU/DdL0FYmfTJQ1/+rNM2go886/iCRWsYpdkCMUg
RdK0V/7jDSa9i1a2ksBLystQjmLYf56gJxXjjp4P+n/6XjzIaQs9/rLPxORdtAwv
u1Pz3UJqq1/zdSA9VgckyT4lqYV+MxJOmev63usvyhiEjCXXJ0pOo7nLESfAJk+S
0TlLahWZWLZFGboM3hKVxtZArapGQniTHipiPcn7eZTkigT5x/Jl8kN0bv/E54rD
VdKykGPnd3M3bLaTRIQBiEdKoHxWmIcm96ryKBXTUr6QeFDbCu4y8dAf3wIDAQAB
o4IDODCCAzQwHQYDVR0OBBYEFIG7jQtGiG7+wMk/X9tim1AqHdhoMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvZ2J1TkMwYUlidjdBeVQ5ZjIyS2JVQ29kMkdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBTAYIKwYBBQUHAQcBAf8EggE7MIIBNzCCARsEAgABMIIB
EzALAwMAH60DBAUfrUADBAMlHLADBAMlHSADBAIu5YADBAU+QAADBANOGXAwDAME
AlPe1AMEBVPewAMEAFPl0wMEAFPl/gMEBFUakAMEAlvNqAMEAF4ZgzAMAwQEXhmQ
AwQAXhmgAwQAXhmkMAwDBANeGagDBAZeGYAwDAMEBm28QAMEA228YDAMAwQEbbxw
AwQAbbxyAwQCgMxMMAsDAwSysAMEBLKwIAMEArKwNAMEA7KwSAMEArKwXAMEBrKx
ADALAwMBvKoDBAS8qiADBALByeQDBAXDEGADBAHD5kYwDAMEAMPmWwMEAMPmXAME
ANRFajAMAwQA1EVxAwQA1EVyAwQA1EV9AwQA1fNtAwQA1fN0MBYEAgACMBADBgQq
A9AAQAMGACoD0AQAMA0GCSqGSIb3DQEBCwUAA4IBAQCqVFdMXlqpvpKvjsqpVb2/
Cb3Q+dkgnLHa75Zk588GaGNTjSrnIDx67Wz7RTQ9Z/fju4bjUDT8gICeZkd8n0G1
EcNkB0u9isIPqOoQ9OBr5kEz0N8g1NLSCAMpoozHGfib7YwTe5HjII7+8E6pJ/4f
91O8o7kBtOPvUklnKjWQqqcSsOO96nAeijFQvQ27phMbukHfa4q8BeYsgA2S90jC
sh/9UBv7Wg4a0AKTx9kcm7ncxQkCiXzRZOrxXL8wSv9vU+M0TeABK4U0ALWCHw9f
iKA1UwddQIOu6S7xijRqSi9hU1GaJfydkFExU9n7zZVegq9A0i+Z0um5VqJHionN
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:00 2025 by rpki-client