Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/p0Orz7_M4uMspe4xhFLB7qjjEwM.roa
File: p0Orz7_M4uMspe4xhFLB7qjjEwM.roa (raw, json)
Hash identifier: ei35+wNpB+JjlCubW+tqJODxD1xwb6iCkbwQWJvA8ZM=
Subject key identifier: A7:43:AB:CF:BF:CC:E2:E3:2C:A5:EE:31:84:52:C1:EE:A8:E3:13:03
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184D30EAA8C131A344E544D7CC15AE600E2
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/p0Orz7_M4uMspe4xhFLB7qjjEwM.roa
Signing time: Fri 02 Dec 2022 13:37:44 +0000
ROA not before: Fri 02 Dec 2022 13:37:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31195
IP address blocks: 109.188.0.0/16 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
178.178.64.0/24 maxlen: 24
178.178.71.0/24 maxlen: 24
178.178.66.0/24 maxlen: 24
178.178.65.0/24 maxlen: 24
178.178.68.0/24 maxlen: 24
178.178.67.0/24 maxlen: 24
178.178.70.0/24 maxlen: 24
178.178.73.0/24 maxlen: 24
185.3.32.0/22 maxlen: 24
178.178.72.0/24 maxlen: 24
78.25.124.0/22 maxlen: 22
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
78.25.127.0/24 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
31.173.225.0/24 maxlen: 24
31.173.226.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
31.173.132.0/23 maxlen: 23
212.119.160.0/19 maxlen: 24
31.173.134.0/23 maxlen: 23
31.173.135.0/24 maxlen: 24
178.176.233.0/24 maxlen: 24
178.176.235.0/24 maxlen: 24
178.176.234.0/24 maxlen: 24
31.173.143.0/24 maxlen: 24
80.247.176.0/20 maxlen: 24
37.28.188.0/22 maxlen: 22
37.28.191.0/24 maxlen: 24
37.28.190.0/24 maxlen: 24
91.193.212.0/22 maxlen: 24
37.29.89.0/24 maxlen: 24
37.29.91.0/24 maxlen: 24
37.29.88.0/22 maxlen: 22
37.29.95.0/24 maxlen: 24
37.29.92.0/22 maxlen: 22
37.29.94.0/24 maxlen: 24
188.170.233.0/24 maxlen: 24
188.170.231.0/24 maxlen: 24
188.170.228.0/23 maxlen: 23
188.170.232.0/24 maxlen: 24
188.170.230.0/24 maxlen: 24
188.170.236.0/24 maxlen: 24
188.170.234.0/24 maxlen: 24
188.170.239.0/24 maxlen: 24
188.170.237.0/24 maxlen: 24
188.170.235.0/24 maxlen: 24
31.173.231.0/24 maxlen: 24
31.173.228.0/23 maxlen: 23
31.173.228.0/24 maxlen: 24
31.173.230.0/24 maxlen: 24
31.173.232.0/23 maxlen: 23
31.173.229.0/24 maxlen: 24
31.173.239.0/24 maxlen: 24
31.173.236.0/23 maxlen: 23
31.173.238.0/24 maxlen: 24
31.173.235.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
37.29.43.0/24 maxlen: 24
95.137.0.0/17 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
81.24.128.0/20 maxlen: 24
195.78.116.0/23 maxlen: 24
83.149.52.0/22 maxlen: 22
83.169.192.0/18 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d3:0e:aa:8c:13:1a:34:4e:54:4d:7c:c1:5a:e6:00:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 2 13:37:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a743abcfbfcce2e32ca5ee318452c1eea8e31303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:70:cb:4a:a3:9a:7f:77:92:71:f4:19:10:f4:
bb:0e:0c:ad:88:7e:6d:f5:c7:51:45:42:08:a9:dc:
c8:ef:e9:1d:5f:63:6e:ae:73:81:49:ef:b7:d9:08:
a7:70:a6:74:4f:2b:eb:6a:de:59:7d:ed:dc:82:dd:
5a:3d:b7:d0:97:84:c7:65:d7:8a:5e:f9:ad:67:3b:
72:57:ad:d4:b9:5b:d1:30:8e:84:d5:70:ee:34:99:
9f:60:36:48:63:02:11:6a:40:cc:d0:b7:48:38:a7:
30:1a:38:87:54:d9:3d:85:d9:09:ad:ec:62:b8:93:
c0:dc:c1:c8:b3:9e:4d:f6:27:03:f6:de:24:24:e3:
70:4a:a4:c8:5c:0e:e4:ec:ce:6d:24:9f:f4:44:f8:
21:f7:f3:6b:68:dc:0e:33:51:49:54:57:e1:2d:ca:
c3:09:6a:51:df:9e:3a:28:60:6b:92:d6:b6:8e:36:
df:4e:9c:b3:7d:c1:13:b9:86:b9:8c:da:4f:90:3f:
5d:5f:02:77:05:0e:d5:47:f5:84:0c:f2:46:61:a6:
c1:98:42:35:66:24:be:9e:0b:f0:51:07:8d:c2:1d:
a2:1d:f0:fa:bd:49:51:3c:d8:f5:82:25:7f:0e:2f:
f1:d0:e4:1e:aa:15:b9:34:9c:68:05:af:45:d7:6d:
9d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:43:AB:CF:BF:CC:E2:E3:2C:A5:EE:31:84:52:C1:EE:A8:E3:13:03
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/p0Orz7_M4uMspe4xhFLB7qjjEwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.132.0/22
31.173.143.0/24
31.173.225.0-31.173.226.255
31.173.228.0-31.173.233.255
31.173.235.0-31.173.239.255
37.28.188.0/22
37.29.43.0/24
37.29.88.0/21
78.25.124.0/22
80.247.176.0/20
81.24.128.0/20
83.149.52.0/22
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.233.0-178.176.235.255
178.178.64.0-178.178.68.255
178.178.70.0-178.178.73.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.228.0-188.170.237.255
188.170.239.0/24
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
9d:7e:07:a2:a5:c1:b6:5f:c4:82:4f:c4:17:a2:1e:76:7d:25:
0a:4c:07:dc:42:d7:26:17:ab:5d:06:eb:d8:6e:fb:31:0f:be:
e8:a1:11:1e:20:7a:52:a7:58:f8:65:7b:2c:83:96:29:9f:95:
a7:cd:80:ee:8c:b0:92:83:30:02:14:8c:a4:2c:ba:f9:a5:0b:
a5:65:77:91:ed:df:a1:e8:e6:e2:20:a9:1e:d3:e0:fb:d8:59:
dd:79:cf:7a:10:05:3e:62:be:0a:93:43:9e:42:53:7a:d6:9c:
c7:fa:7c:05:69:9e:c0:81:27:e1:df:02:46:3b:71:9c:7f:87:
03:c5:b5:21:eb:b3:92:cf:72:22:e7:2b:40:f8:99:5f:34:a8:
d0:42:0c:8b:9a:1a:be:43:7c:07:37:a9:c7:8a:36:17:b6:da:
b5:4a:56:1e:d1:28:ed:95:8c:83:10:2d:24:c6:49:06:1c:b9:
e7:99:94:41:a9:2e:82:84:89:15:e3:3c:64:84:4c:31:42:c6:
a6:c7:44:3c:36:27:71:59:14:b6:f1:5b:6f:b1:92:17:bc:72:
62:40:f7:a4:cc:82:21:7f:33:de:ad:d9:b8:f5:82:ca:a8:b7:
e8:14:be:63:a4:80:21:85:cb:1b:42:9e:b8:ba:2c:43:10:07:
db:88:41:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:26 2024 by rpki-client on console-fra.rpki-client.org