Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/izufD-2iXjBUKJ95agNqp7DOia4.roa
File: izufD-2iXjBUKJ95agNqp7DOia4.roa (raw, json)
Hash identifier: QCg3QpuVEIq1cpk8uxOyORQGzDeQ5StCzRR/3smZMvE=
Subject key identifier: 8B:3B:9F:0F:ED:A2:5E:30:54:28:9F:79:6A:03:6A:A7:B0:CE:89:AE
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F243D31FA042DBFE5287E61F2E2A92B4
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/izufD-2iXjBUKJ95agNqp7DOia4.roa
Signing time: Thu 08 Dec 2022 15:04:01 +0000
ROA not before: Thu 08 Dec 2022 15:04:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31205
IP address blocks: 212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.16.96.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
188.170.247.0/24 maxlen: 24
83.149.50.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
83.149.49.0/24 maxlen: 24
83.149.48.0/24 maxlen: 24
83.149.51.0/24 maxlen: 24
178.176.48.0/24 maxlen: 24
193.201.228.0/22 maxlen: 24
83.169.252.0/22 maxlen: 22
83.169.248.0/22 maxlen: 22
85.26.226.0/24 maxlen: 24
85.26.224.0/24 maxlen: 24
85.26.230.0/24 maxlen: 24
85.26.229.0/24 maxlen: 24
85.26.228.0/24 maxlen: 24
85.26.231.0/24 maxlen: 24
85.26.227.0/24 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
46.232.202.0/23 maxlen: 23
46.232.200.0/23 maxlen: 23
185.210.142.0/23 maxlen: 23
185.210.140.0/23 maxlen: 23
212.119.160.0/19 maxlen: 24
178.176.240.0/22 maxlen: 22
178.176.244.0/22 maxlen: 22
78.25.92.0/23 maxlen: 23
78.25.94.0/23 maxlen: 23
37.29.86.0/23 maxlen: 23
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
188.170.240.0/22 maxlen: 22
31.173.240.0/23 maxlen: 23
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
128.204.66.0/24 maxlen: 24
31.173.242.0/23 maxlen: 23
128.204.67.0/24 maxlen: 24
31.173.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f2:43:d3:1f:a0:42:db:fe:52:87:e6:1f:2e:2a:92:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 15:04:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b3b9f0feda25e3054289f796a036aa7b0ce89ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:25:e9:53:db:5e:a6:95:55:f1:9b:93:74:d1:
1a:53:6b:79:83:e6:4b:60:5f:7b:ae:ec:82:f6:1a:
ae:1c:ae:9b:7f:1c:bd:cb:5d:5d:39:5d:f6:29:1e:
46:5c:1c:b3:a7:6c:3a:46:52:38:72:ca:79:ec:b2:
bc:31:86:16:62:8d:1d:fe:03:30:e4:d0:40:33:91:
b2:53:08:7c:a2:7a:08:bd:22:da:9e:4a:9a:8c:ad:
75:24:f0:ec:6b:d3:61:0f:04:a0:63:2e:db:ac:b9:
70:b0:ff:4e:71:22:05:c4:6c:64:c9:68:59:cf:fe:
e0:02:ac:c4:9e:c2:4b:0b:f0:78:de:13:76:39:d8:
bc:bf:f6:aa:1c:e2:36:bd:79:07:5c:70:75:71:6e:
63:3d:d7:41:7f:ac:27:7b:d6:c0:72:07:b3:b1:38:
9d:e2:c7:17:ff:0c:7f:4a:b9:46:e0:5b:ac:88:e9:
19:56:72:80:22:1f:4d:eb:4e:3c:14:c8:29:a5:fa:
28:68:cb:24:57:7e:d4:de:6e:b7:48:f9:3d:ef:7a:
e7:96:86:0d:3f:0b:8d:a1:82:73:ec:93:4b:54:ed:
88:33:48:78:24:c5:47:78:0f:61:9f:33:c9:a3:fb:
af:d3:24:07:27:bc:0d:d1:cb:c9:dd:e5:55:cf:31:
97:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:3B:9F:0F:ED:A2:5E:30:54:28:9F:79:6A:03:6A:A7:B0:CE:89:AE
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/izufD-2iXjBUKJ95agNqp7DOia4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.240.0/21
37.29.86.0/23
46.232.200.0/22
78.25.92.0/22
83.149.48.0/22
83.169.248.0/21
85.26.224.0/24
85.26.226.0-85.26.231.255
128.204.66.0/23
178.176.48.0/24
178.176.240.0/21
185.210.140.0/22
188.162.0.0/16
188.170.240.0/22
188.170.247.0/24
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
3f:23:06:7d:fa:57:3c:14:1e:01:b6:37:60:be:e8:69:f4:14:
87:e1:ab:42:d2:18:7c:07:cd:cb:65:6f:2a:6e:6a:72:8e:54:
7d:66:b6:24:7f:e2:ae:a9:c7:96:94:03:69:ee:75:ae:ed:43:
12:33:54:a8:9f:36:3b:f8:ab:5c:60:57:97:d1:d8:bc:d2:79:
a1:5b:35:34:58:c5:31:41:5c:34:8a:c1:84:68:74:b2:c7:90:
2c:74:46:91:f7:83:2e:ed:c5:16:5e:00:aa:39:32:e0:54:06:
c9:b8:4b:63:0b:14:2c:4b:6b:c1:28:cb:87:f8:14:9b:66:e8:
6c:79:50:17:08:5e:12:f3:ad:90:5d:93:ac:e8:04:12:c9:6f:
46:b9:30:27:d2:2e:45:9a:0c:9a:84:fd:b6:c4:48:14:41:0e:
62:f7:46:3a:9c:f1:67:78:92:8e:e8:78:df:2e:20:1f:37:f1:
a9:bf:71:bb:00:48:a3:1b:1b:2a:9a:c2:bd:f1:86:f1:a6:24:
60:ef:da:a0:07:eb:9c:84:e6:d2:76:84:8d:8c:c9:19:0d:95:
44:01:30:e8:5a:76:5c:60:73:08:39:da:9d:16:ee:09:72:51:
cf:84:21:8c:72:a2:44:21:c3:04:e7:0d:b1:90:09:68:e1:cb:
94:2e:04:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:36 2024 by rpki-client on console-ams.rpki-client.org