Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/mbLUIR5sggfybqrdtOcQ9sKn3iE.roa
File: mbLUIR5sggfybqrdtOcQ9sKn3iE.roa (raw, json)
Hash identifier: jBq2ksfE4nB2MEn994GLZSry9hBSW6TouQuDuC/3oh4=
Subject key identifier: 99:B2:D4:21:1E:6C:82:07:F2:6E:AA:DD:B4:E7:10:F6:C2:A7:DE:21
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 08786DC6
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/mbLUIR5sggfybqrdtOcQ9sKn3iE.roa
Signing time: Sat 01 Jan 2022 04:02:34 +0000
ROA not before: Sat 01 Jan 2022 04:02:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31205
IP address blocks: 109.188.0.0/16 maxlen: 24
46.29.192.0/21 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.16.96.0/19 maxlen: 24
77.233.160.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
85.26.128.0/17 maxlen: 24
79.171.8.0/21 maxlen: 24
81.24.128.0/20 maxlen: 24
195.78.116.0/23 maxlen: 24
78.41.100.0/22 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
83.169.192.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
94.25.128.0/17 maxlen: 24
93.153.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
188.94.168.0/21 maxlen: 24
37.29.0.0/17 maxlen: 24
46.232.200.0/21 maxlen: 24
78.25.64.0/18 maxlen: 24
37.28.160.0/19 maxlen: 24
62.64.0.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
80.247.176.0/20 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
212.44.64.0/19 maxlen: 24
46.229.128.0/20 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142110150 (0x8786dc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 1 04:02:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99b2d4211e6c8207f26eaaddb4e710f6c2a7de21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:8a:d1:e1:89:9a:2a:32:54:78:60:03:cc:55:
c7:73:d8:ca:d8:cf:10:00:fa:0d:78:2a:53:40:59:
6f:a2:66:0a:54:c9:e1:10:68:eb:25:c2:52:78:37:
49:4b:8c:e5:a3:04:e6:ba:12:dc:ab:11:b9:9f:e6:
18:7b:43:52:d6:57:b8:9c:36:61:aa:f4:cc:58:ab:
d5:fd:5b:b0:4d:42:96:c2:73:42:fc:aa:8b:c2:2e:
f6:e2:a1:a0:7b:bb:39:1c:14:08:15:ec:77:b9:d7:
03:36:94:7f:26:d8:ae:4f:e2:4e:dd:5b:51:06:bc:
b8:6d:80:9a:b4:bf:fc:57:cf:52:e1:ce:68:ca:3a:
09:bb:76:ac:70:0d:b3:1c:e5:bf:b4:0d:7c:52:6d:
f9:3d:aa:27:83:81:35:25:5b:fc:22:94:a4:38:e9:
5b:de:e5:5f:2f:93:38:8b:bb:fd:e6:69:f7:8c:e1:
38:76:7e:cc:af:d6:af:c4:91:5d:6e:cd:d9:7c:08:
96:f4:59:3b:f7:96:61:7b:ba:37:21:68:04:bc:10:
67:da:d6:95:32:30:4a:c9:fe:32:02:55:c0:86:3b:
22:15:d6:4b:2d:8a:d6:8d:90:9e:91:ea:80:dc:fc:
a8:18:9d:15:93:2f:2e:33:3e:9a:50:29:6a:ff:0d:
02:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:B2:D4:21:1E:6C:82:07:F2:6E:AA:DD:B4:E7:10:F6:C2:A7:DE:21
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/mbLUIR5sggfybqrdtOcQ9sKn3iE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.160.0/19
37.29.0.0/17
46.29.192.0/21
46.229.128.0/20
46.232.200.0/21
62.64.0.0/19
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.24.128.0/20
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
0f:f7:98:cf:6e:a5:0c:53:07:64:95:f8:37:8c:24:2c:b4:91:
53:97:d0:f0:f3:1c:69:98:7c:07:38:8f:d7:79:76:4d:fa:1c:
6e:7c:ef:e3:18:e5:79:84:04:50:1a:c7:0a:6d:62:1e:bb:69:
cf:f4:01:f3:c9:f7:df:5c:09:24:72:ec:68:56:d3:b4:d1:b8:
9e:98:a7:38:d7:c2:55:29:76:57:e2:27:c7:5a:fb:12:1c:2e:
f6:d5:09:18:b1:59:d5:3a:12:06:76:5f:8c:20:90:8b:a5:71:
06:60:91:ff:55:b7:24:07:2c:8c:bf:6b:0e:a5:80:9b:f4:d2:
b4:b6:d0:88:29:31:ab:4f:ad:47:1c:aa:a0:e6:10:b9:3b:5e:
b6:12:c6:a5:d0:b3:05:58:26:f3:1f:c2:9f:51:5b:7d:88:7c:
8f:df:27:a7:a6:06:a4:74:f7:78:c9:0b:0e:5c:43:2c:59:77:
3d:bb:0d:10:74:36:a9:15:61:44:fe:00:01:3e:45:2c:6a:6b:
e4:90:63:8d:86:39:91:e0:3f:f2:bf:3f:e9:9e:d2:5b:08:55:
f1:3f:d1:f9:d3:36:2b:4f:41:09:4a:38:4b:c7:3e:49:23:b3:
0e:90:32:a9:7d:d5:f7:1f:75:e7:9c:23:32:35:92:47:fa:ba:
74:db:67:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:36 2024 by rpki-client on console-ams.rpki-client.org