Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/oIxakaBpCcQIKahmYiY0WOcOa34.roa
File: oIxakaBpCcQIKahmYiY0WOcOa34.roa (raw, json)
Hash identifier: AcSn4EFLOdYbKhjsL/mzyFqAL+hw2dECuj8w7uVXsI0=
Subject key identifier: A0:8C:5A:91:A0:69:09:C4:08:29:A8:66:62:26:34:58:E7:0E:6B:7E
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 087541CA
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/oIxakaBpCcQIKahmYiY0WOcOa34.roa
Signing time: Sat 01 Jan 2022 04:02:30 +0000
ROA not before: Sat 01 Jan 2022 04:02:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24767
IP address blocks: 109.188.0.0/16 maxlen: 24
46.29.192.0/21 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.16.96.0/19 maxlen: 24
77.233.160.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
85.26.128.0/17 maxlen: 24
79.171.8.0/21 maxlen: 24
81.24.128.0/20 maxlen: 24
195.78.116.0/23 maxlen: 24
78.41.100.0/22 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
83.169.192.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
94.25.128.0/17 maxlen: 24
93.153.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
188.94.168.0/21 maxlen: 24
37.29.0.0/17 maxlen: 24
46.232.200.0/21 maxlen: 24
62.64.0.0/19 maxlen: 24
78.25.64.0/18 maxlen: 24
37.28.160.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
80.247.176.0/20 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
46.229.128.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141902282 (0x87541ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 1 04:02:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a08c5a91a06909c40829a86662263458e70e6b7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:47:ce:7c:34:07:87:92:06:6c:9f:37:d0:b7:
05:11:48:73:70:82:af:86:e3:60:69:8a:28:ba:d8:
33:3e:0f:66:ec:ad:97:8e:23:fd:fe:d1:5c:13:ba:
8e:4e:59:0f:08:8e:39:cd:f0:4d:5b:cc:b9:97:ea:
19:3e:04:e9:10:9b:5c:26:73:b3:f5:c8:f9:c0:c5:
e7:dd:23:e4:81:e7:45:74:98:ca:bb:32:29:ca:db:
c2:79:90:76:ff:cb:e3:6e:2d:ff:28:60:0e:da:7a:
ed:90:50:cf:69:4f:35:5f:18:6b:31:20:a0:de:e5:
8b:b3:fe:10:20:5d:8b:3f:5f:c7:a0:94:07:96:9b:
76:61:87:49:23:e6:e4:01:a2:24:f8:54:97:a6:9e:
49:97:29:68:20:ef:32:95:46:af:4f:28:24:17:99:
33:27:1b:18:e9:d5:9b:eb:1c:dc:e8:d7:54:b0:cd:
ee:3a:fa:ff:b1:62:d0:47:ef:8d:1b:12:ad:82:ad:
4e:26:f3:0d:3d:41:56:7f:a2:98:8b:3c:34:12:d5:
fe:72:96:35:8b:04:cb:2b:a1:e1:a8:21:da:99:f4:
f8:5b:05:aa:e6:30:dc:62:6a:97:d6:cd:c9:f8:8e:
e8:24:4e:ac:54:43:cd:0e:f3:db:ed:95:b0:d2:c8:
7a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:8C:5A:91:A0:69:09:C4:08:29:A8:66:62:26:34:58:E7:0E:6B:7E
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/oIxakaBpCcQIKahmYiY0WOcOa34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.160.0/19
37.29.0.0/17
46.29.192.0/21
46.229.128.0/20
46.232.200.0/21
62.64.0.0/19
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.24.128.0/20
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
94:d7:06:dd:11:c4:e1:10:d8:ce:75:28:c2:bc:6c:b7:c4:79:
ec:2a:f2:d3:bb:a3:81:26:dd:a9:68:4f:5f:37:1a:4b:2b:15:
02:12:ef:02:e8:bb:ed:12:45:62:61:5b:fa:e0:01:fa:6a:a4:
89:57:dd:b6:9c:17:46:df:81:cb:a0:be:98:9b:a3:7e:f3:59:
9d:0d:5c:9d:d9:0d:83:95:13:aa:56:fd:61:c0:ee:60:df:ec:
46:d7:85:a6:a3:71:78:ed:70:06:14:11:95:5f:93:23:58:2f:
14:23:98:02:e6:3a:21:e0:f4:1c:59:fc:02:3e:c8:7f:00:6b:
5e:ef:af:a4:60:ce:84:f9:46:71:8c:93:05:64:2a:6b:43:62:
22:43:a6:29:37:76:c4:a4:3f:a9:d2:a7:b7:4e:cb:79:96:eb:
b1:b6:8c:a4:a6:89:87:83:2d:be:b2:fa:31:c8:73:f8:ca:a8:
bd:17:ec:50:9d:de:45:63:17:5e:03:2c:09:af:05:03:16:89:
bd:24:bb:bb:05:ac:a6:0a:9e:29:d0:84:b8:9a:ae:9d:14:f6:
69:fe:29:40:10:49:50:b1:00:7f:d9:9b:17:81:38:1f:c8:0c:
68:df:14:2a:48:9e:27:45:d8:a6:35:63:eb:8d:73:4e:00:aa:
bb:36:f4:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:36 2024 by rpki-client on console-ams.rpki-client.org