Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/pQpeRd4wFTF6XfhYts4jjxb95uQ.roa
File: pQpeRd4wFTF6XfhYts4jjxb95uQ.roa (raw, json)
Hash identifier: QXC05qcPLRPfJjIGD+nZnGecvGpghEshxgA0hBFEz4M=
Subject key identifier: A5:0A:5E:45:DE:30:15:31:7A:5D:F8:58:B6:CE:23:8F:16:FD:E6:E4
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F14BB6CA478FE18DE8203ABD1E959CEF
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/pQpeRd4wFTF6XfhYts4jjxb95uQ.roa
Signing time: Thu 08 Dec 2022 10:33:01 +0000
ROA not before: Thu 08 Dec 2022 10:33:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24866
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
178.176.229.0/24 maxlen: 24
178.176.228.0/24 maxlen: 24
178.176.227.0/24 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:4b:b6:ca:47:8f:e1:8d:e8:20:3a:bd:1e:95:9c:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 10:33:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a50a5e45de3015317a5df858b6ce238f16fde6e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e4:5b:ad:25:bf:f0:7f:b7:cc:ea:79:12:73:
00:cc:7a:6e:43:ae:75:b1:da:35:ea:db:17:87:35:
82:de:7f:81:df:11:63:17:fd:a9:37:3b:49:91:c4:
b6:63:60:dc:59:1c:73:51:03:f9:d9:86:bc:19:7e:
b9:ea:94:d4:f9:b5:87:44:a4:98:65:85:22:57:61:
43:10:44:6c:4d:5d:bf:fc:61:71:1f:7c:ac:f8:f9:
cf:fc:e7:d1:1f:f7:9a:79:5c:48:93:61:8a:51:bd:
71:24:cb:fe:ed:61:d1:16:e8:11:6e:26:8a:35:f1:
55:e4:8a:aa:dd:45:12:85:95:a1:30:f6:8d:b5:68:
b8:ef:5f:ad:14:79:13:89:4d:c8:d5:97:67:88:4c:
98:4c:e4:96:87:49:ac:c5:45:66:10:aa:ae:a9:86:
c6:fd:47:26:a1:0b:b8:eb:2f:88:59:5a:94:e7:b3:
82:c5:ef:cb:36:2d:86:29:64:b7:13:25:5f:37:12:
31:51:c1:e9:f4:2d:4f:17:ae:43:70:e4:b3:c1:75:
30:84:fe:f2:1f:d1:f6:76:de:01:3c:80:6a:ce:e7:
fc:65:c3:39:20:79:b3:8f:5a:7a:a9:15:01:d3:65:
f5:2d:d3:9a:6b:cb:3f:d4:a2:78:48:b7:02:b0:f4:
ed:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:0A:5E:45:DE:30:15:31:7A:5D:F8:58:B6:CE:23:8F:16:FD:E6:E4
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/pQpeRd4wFTF6XfhYts4jjxb95uQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.227.0-178.176.229.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
4d:0f:d3:b9:be:19:61:b5:2a:39:40:c7:e8:d1:0f:fb:d0:eb:
4d:57:fe:00:54:83:1e:b3:9f:ac:b5:c9:67:c7:a5:75:3e:b8:
1a:8d:22:0e:92:1d:ab:5b:bd:fb:8a:8f:c7:8c:e3:e8:3a:0c:
ea:ff:ff:1e:fc:cd:c8:da:ff:fa:af:a8:91:ad:e0:c2:06:ed:
85:db:60:7c:54:c9:47:31:04:ec:bb:96:73:7d:5f:78:6f:37:
5e:65:18:f2:6b:a3:21:10:48:b6:8b:db:19:10:9c:be:8a:49:
66:ad:ef:2e:99:05:df:aa:81:f6:33:fb:5f:bf:3d:b2:42:9e:
c1:31:ce:bb:07:cc:fe:69:72:e7:0c:55:b6:ce:5b:83:f6:0b:
82:6f:85:01:f6:a2:fe:5f:17:cc:ba:03:16:1a:dd:73:cf:b6:
83:8b:ac:eb:5c:a5:db:76:19:5a:4d:14:a0:9f:77:ee:49:78:
73:35:94:6c:7d:fe:db:eb:22:2c:e0:86:51:5f:58:b2:57:b6:
59:75:01:80:b0:47:50:82:66:5b:ff:9a:61:dc:62:db:77:42:
13:f5:a9:63:3f:e0:2d:72:e4:b0:76:f5:41:50:34:62:9e:84:
ca:88:c5:21:3c:43:0a:86:98:91:fb:dd:73:a2:ca:09:a3:ad:
90:ba:c9:7c
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgISAYTxS7bKR4/hjeggOr0elZzvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjA4MTAzMzAxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNTBhNWU0NWRlMzAxNTMxN2E1ZGY4NThiNmNlMjM4ZjE2ZmRlNmU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlORbrSW/8H+3zOp5EnMAzHpuQ651
sdo16tsXhzWC3n+B3xFjF/2pNztJkcS2Y2DcWRxzUQP52Ya8GX656pTU+bWHRKSY
ZYUiV2FDEERsTV2//GFxH3ys+PnP/OfRH/eaeVxIk2GKUb1xJMv+7WHRFugRbiaK
NfFV5Iqq3UUShZWhMPaNtWi471+tFHkTiU3I1ZdniEyYTOSWh0msxUVmEKquqYbG
/UcmoQu46y+IWVqU57OCxe/LNi2GKWS3EyVfNxIxUcHp9C1PF65DcOSzwXUwhP7y
H9H2dt4BPIBqzuf8ZcM5IHmzj1p6qRUB02X1LdOaa8s/1KJ4SLcCsPTtlQIDAQAB
o4ICmDCCApQwHQYDVR0OBBYEFKUKXkXeMBUxel34WLbOI48W/ebkMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvcFFwZVJkNHdGVEY2WGZoWXRzNGpqeGI5NXVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGtBggrBgEFBQcBBwEB/wSBnTCBmjCBlwQCAAEwgZADBAZt
fEADAwBtvAMEBoDMQAMEA7IXkDAMAwQAsrDjAwQBsrDkAwQCuQMgAwQCudKMAwQD
vF6oAwMAvKIDBALByeQDBAXDBYADBAXDEGADBAHDTnQDBADDlW8DBAXD5kADBAXU
DqADBAXULEADBAXURWADBAXUd6ADBAXVmqADBAXVqCADBAbV80ADBATZc1AwDQYJ
KoZIhvcNAQELBQADggEBAE0P07m+GWG1KjlAx+jRD/vQ601X/gBUgx6zn6y1yWfH
pXU+uBqNIg6SHatbvfuKj8eM4+g6DOr//x78zcja//qvqJGt4MIG7YXbYHxUyUcx
BOy7lnN9X3hvN15lGPJroyEQSLaL2xkQnL6KSWat7y6ZBd+qgfYz+1+/PbJCnsEx
zrsHzP5pcucMVbbOW4P2C4JvhQH2ov5fF8y6AxYa3XPPtoOLrOtcpdt2GVpNFKCf
d+5JeHM1lGx9/tvrIizghlFfWLJXtll1AYCwR1CCZlv/mmHcYtt3QhP1qWM/4C1y
5LB29UFQNGKehMqIxSE8QwqGmJH73XOiygmjrZC6yXw=
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:03 2025 by rpki-client