Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/itadtdCs2-NvSgUcY6hl7DZhU2s.roa
File: itadtdCs2-NvSgUcY6hl7DZhU2s.roa (raw, json)
Hash identifier: Ztp/9wJFt+j1LIeWdhXHbgg5qEhapXgMg421YXHD52c=
Subject key identifier: 8A:D6:9D:B5:D0:AC:DB:E3:6F:4A:05:1C:63:A8:65:EC:36:61:53:6B
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184E2BD0509F5004D857E43064971ADE04E
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/itadtdCs2-NvSgUcY6hl7DZhU2s.roa
Signing time: Mon 05 Dec 2022 14:42:29 +0000
ROA not before: Mon 05 Dec 2022 14:42:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25159
IP address blocks: 109.188.0.0/16 maxlen: 24
195.16.96.0/19 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
85.26.144.0/20 maxlen: 20
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
78.25.119.0/24 maxlen: 24
94.25.128.0/17 maxlen: 24
93.153.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.170.25.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
188.170.32.0/21 maxlen: 21
188.170.40.0/21 maxlen: 21
37.28.176.0/21 maxlen: 21
212.119.160.0/19 maxlen: 24
91.193.212.0/22 maxlen: 24
178.177.0.0/18 maxlen: 18
178.177.3.0/24 maxlen: 24
78.25.112.0/22 maxlen: 22
78.25.116.0/23 maxlen: 23
78.25.118.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
37.29.32.0/21 maxlen: 21
95.137.0.0/17 maxlen: 24
178.176.52.0/22 maxlen: 22
178.176.72.0/21 maxlen: 21
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
31.173.0.0/21 maxlen: 21
31.173.8.0/21 maxlen: 21
178.176.0.0/19 maxlen: 19
83.229.254.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
178.176.32.0/21 maxlen: 21
178.176.40.0/21 maxlen: 21
31.173.72.0/21 maxlen: 21
31.173.80.0/21 maxlen: 21
31.173.88.0/21 maxlen: 21
188.170.0.0/19 maxlen: 19
188.170.24.0/24 maxlen: 24
31.173.16.0/21 maxlen: 21
31.173.24.0/21 maxlen: 21
31.173.32.0/19 maxlen: 19
31.173.60.0/24 maxlen: 24
31.173.64.0/21 maxlen: 21
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
109.74.112.0/20 maxlen: 24
62.64.0.0/20 maxlen: 20
213.243.64.0/18 maxlen: 24
83.229.211.0/24 maxlen: 24
217.115.80.0/20 maxlen: 24
46.229.128.0/22 maxlen: 22
212.44.64.0/19 maxlen: 24
83.222.212.0/22 maxlen: 22
83.222.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:bd:05:09:f5:00:4d:85:7e:43:06:49:71:ad:e0:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 5 14:42:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ad69db5d0acdbe36f4a051c63a865ec3661536b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e7:1e:c4:b1:1e:f2:08:d4:2d:c9:f3:01:10:
54:1a:a4:9f:5b:74:c2:4c:9e:33:ac:38:4e:22:cc:
6d:53:24:c7:00:4c:d1:ab:55:8c:69:47:31:bb:8a:
6e:61:e9:d3:71:98:63:fb:b9:87:b1:42:23:a7:2b:
f3:1a:75:83:c9:0b:4b:42:36:93:5c:7c:17:30:8c:
23:d4:65:f6:eb:8e:a1:7e:e3:01:97:30:84:d4:86:
ac:ce:59:8e:8c:76:66:33:d1:27:6c:65:24:f5:08:
b0:f7:4c:17:96:d3:b1:48:b4:2d:78:b3:bc:c9:8f:
50:97:79:bc:16:83:02:bb:33:75:f8:8e:6f:f4:39:
51:c0:f9:54:91:bf:4b:fa:95:31:42:78:3d:e3:d6:
67:76:65:3f:3c:8e:63:5f:c2:2d:1f:fa:97:45:4c:
38:de:e6:fa:8b:52:78:61:61:61:65:a8:e3:4b:74:
92:c3:52:99:78:ad:52:40:92:1c:fa:dc:fb:20:06:
a6:38:b1:31:28:f0:19:ce:d8:4a:3b:84:cc:87:9d:
c6:67:b9:b3:14:43:fc:f2:19:9c:5b:03:f7:a8:39:
30:ec:f1:b9:8b:e3:9f:a0:7d:97:21:0d:44:9b:37:
51:5e:66:de:0f:22:ae:37:12:86:32:c8:c9:d0:7c:
df:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D6:9D:B5:D0:AC:DB:E3:6F:4A:05:1C:63:A8:65:EC:36:61:53:6B
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/itadtdCs2-NvSgUcY6hl7DZhU2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.0.0-31.173.95.255
37.28.176.0/21
37.29.32.0/21
46.229.128.0/22
62.64.0.0/20
78.25.112.0/21
83.222.212.0-83.222.223.255
83.229.211.0/24
83.229.254.0/24
85.26.144.0/20
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.0.0-178.176.47.255
178.176.52.0/22
178.176.72.0/21
178.177.0.0/18
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.0.0-188.170.47.255
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
76:bb:e1:74:8f:08:49:b4:e1:b7:c6:11:34:05:d3:3d:02:dc:
2f:7d:d4:fe:fe:60:f7:bc:43:1d:6d:29:d4:f6:4f:23:92:08:
52:5c:5a:4d:25:d3:e1:a3:3d:db:82:84:fe:96:18:18:ec:d1:
9a:b2:4a:f9:de:b3:cd:05:4e:a5:ac:02:35:13:51:3a:c9:7b:
4d:9b:f3:e1:fd:45:de:72:6d:ce:66:f8:40:5b:12:f3:cf:26:
07:d4:77:df:bb:47:ae:e7:14:00:3d:19:d6:37:99:21:23:fe:
96:a0:59:93:2b:99:22:db:4a:58:20:32:f3:29:7c:0a:d1:cd:
7e:36:e4:d3:7f:47:2e:22:47:0a:3a:79:d8:32:6b:4c:d7:e2:
1d:ab:e9:e0:73:98:9e:93:d2:13:3c:e0:5e:87:0b:0a:e3:97:
c6:53:07:e7:11:e3:f8:62:38:ca:5a:2b:9e:16:de:2d:47:d8:
9d:1a:8b:2a:b2:9a:83:44:31:ce:0c:b4:9a:8e:53:94:59:00:
3f:8b:34:bc:31:4c:23:19:0c:de:1b:31:67:19:f4:b7:37:82:
49:bd:73:e7:f1:66:ef:b5:ef:72:89:09:f3:fb:aa:44:67:59:
86:2f:4a:e4:7e:26:1f:4b:71:73:77:f2:ea:3c:81:ff:d7:60:
61:a4:ae:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:58 2025 by rpki-client