Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/pPVpn3Q3zIzuh_7sTbc6n4GgdIE.roa
File: pPVpn3Q3zIzuh_7sTbc6n4GgdIE.roa (raw, json)
Hash identifier: i8XbjbWllx/IE1iiyD4mWt5mj/QLDdasBdz4pLXxRuM=
Subject key identifier: A4:F5:69:9F:74:37:CC:8C:EE:87:FE:EC:4D:B7:3A:9F:81:A0:74:81
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F127234F4F5CDDC094564743D7D360D4
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/pPVpn3Q3zIzuh_7sTbc6n4GgdIE.roa
Signing time: Thu 08 Dec 2022 09:53:04 +0000
ROA not before: Thu 08 Dec 2022 09:53:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31268
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
94.25.128.0/17 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:27:23:4f:4f:5c:dd:c0:94:56:47:43:d7:d3:60:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 09:53:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4f5699f7437cc8cee87feec4db73a9f81a07481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:cd:ed:9c:7f:50:91:14:c7:b8:d3:30:99:cb:
43:47:a2:62:fd:63:a2:c9:b2:41:04:db:fa:8d:f5:
11:a0:e5:e7:69:db:8d:0a:ba:a9:f4:e8:a0:74:09:
56:56:18:0c:31:f6:87:d8:71:89:70:d2:f3:4f:0e:
8c:ab:89:4b:77:8c:8a:bf:34:e8:e8:87:83:77:f2:
5d:f4:50:ae:24:cb:a3:1d:e6:70:e0:30:7d:f0:93:
fe:e1:11:d3:72:03:17:9d:bd:f1:e1:1c:a3:06:e5:
3a:a9:1c:63:36:b8:57:d3:d8:42:09:40:ec:24:3f:
e7:d2:60:53:a4:b5:ef:7f:0a:07:d0:15:38:22:c7:
a8:81:1a:4e:04:54:a0:58:10:76:14:c5:8b:bc:a5:
f1:32:f4:43:c7:f0:42:91:68:87:78:8a:60:4d:90:
5b:46:18:ae:87:55:a7:69:95:33:db:05:2f:31:ac:
87:59:2e:56:07:76:30:74:bd:57:45:e1:4e:4f:56:
12:09:32:62:cd:1b:dd:6b:23:08:2f:78:c7:af:dd:
50:19:9b:7d:39:4c:9b:e3:6b:4b:fb:64:15:3e:ad:
e0:aa:e7:3a:9d:fc:b2:42:d8:8e:d5:1f:58:c5:2b:
8a:d6:ba:b4:d5:3c:4c:c8:45:1b:fc:4a:5b:4b:9e:
97:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F5:69:9F:74:37:CC:8C:EE:87:FE:EC:4D:B7:3A:9F:81:A0:74:81
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/pPVpn3Q3zIzuh_7sTbc6n4GgdIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
7c:8b:6d:3c:56:83:97:42:98:30:e2:93:bd:86:6a:99:d9:b4:
9b:c5:f3:a2:bc:0c:ca:fd:40:8b:2c:7c:9e:97:c7:1d:7d:be:
d8:3e:80:8d:eb:bb:01:7b:ea:de:9a:93:34:60:91:83:82:9e:
f9:97:c2:51:3c:b6:80:4b:09:d7:30:ed:dc:97:54:18:ae:c3:
99:28:9f:65:d7:21:10:3d:56:31:01:52:16:ae:a0:84:d1:f1:
50:b1:24:d7:ea:85:a3:75:b8:dd:e7:d0:35:24:35:8e:4a:ac:
e9:1c:9d:9e:de:c7:62:82:c7:27:71:67:61:9d:9e:0d:cc:b1:
d0:00:db:52:4d:42:fc:34:59:1d:ad:b8:a4:65:fa:aa:9b:73:
b7:74:f1:7a:5e:f6:6e:5b:58:78:52:dd:64:94:79:00:f1:10:
18:1d:97:12:35:24:29:09:50:ed:f1:35:12:70:0e:b1:65:8d:
b7:e1:14:d7:e3:d7:89:dd:2b:2e:8f:e9:38:61:eb:34:a8:b0:
7c:d2:cc:f0:a4:ea:eb:ab:69:10:b6:f5:39:23:af:b8:83:cd:
2b:30:88:d6:8a:1a:51:62:07:e9:90:40:df:5e:0c:7d:6b:2a:
35:9f:f7:0b:fd:58:f1:67:05:96:b4:fe:ef:55:d1:56:3f:6d:
03:18:1c:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:36 2024 by rpki-client on console-ams.rpki-client.org