Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/qaonGf-vvyJomLhj0949m7Z336Q.roa
File: qaonGf-vvyJomLhj0949m7Z336Q.roa (raw, json)
Hash identifier: D5TuO3uDmK+ubwofXJlYgSqhTcVfmM0nmdjPUjht8vU=
Subject key identifier: A9:AA:27:19:FF:AF:BF:22:68:98:B8:63:D3:DE:3D:9B:B6:77:DF:A4
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0185053F75E7DB134EBFEB673E2454B0DE16
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/qaonGf-vvyJomLhj0949m7Z336Q.roa
Signing time: Mon 12 Dec 2022 07:32:03 +0000
ROA not before: Mon 12 Dec 2022 07:32:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31208
IP address blocks: 195.16.96.0/19 maxlen: 24
178.178.84.0/22 maxlen: 22
178.178.82.0/24 maxlen: 24
178.178.80.0/23 maxlen: 23
193.201.228.0/22 maxlen: 24
178.178.131.0/24 maxlen: 24
178.178.130.0/24 maxlen: 24
178.178.129.0/24 maxlen: 24
178.178.132.0/24 maxlen: 24
178.178.128.0/24 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
178.176.230.0/23 maxlen: 23
212.119.160.0/19 maxlen: 24
37.28.186.0/24 maxlen: 24
188.170.50.0/24 maxlen: 24
37.28.184.0/24 maxlen: 24
188.170.48.0/24 maxlen: 24
37.28.185.0/24 maxlen: 24
188.170.49.0/24 maxlen: 24
188.170.54.0/24 maxlen: 24
188.170.55.0/24 maxlen: 24
37.28.187.0/24 maxlen: 24
188.170.56.0/24 maxlen: 24
188.170.52.0/24 maxlen: 24
188.170.57.0/24 maxlen: 24
188.170.53.0/24 maxlen: 24
188.170.62.0/24 maxlen: 24
188.170.63.0/24 maxlen: 24
188.170.59.0/24 maxlen: 24
188.170.60.0/24 maxlen: 24
188.170.61.0/24 maxlen: 24
37.29.75.0/24 maxlen: 24
37.29.74.0/24 maxlen: 24
37.29.73.0/24 maxlen: 24
37.29.72.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.72.0/24 maxlen: 24
128.204.73.0/24 maxlen: 24
178.176.58.0/24 maxlen: 24
178.176.56.0/24 maxlen: 24
178.176.57.0/24 maxlen: 24
178.176.62.0/24 maxlen: 24
178.176.63.0/24 maxlen: 24
178.176.59.0/24 maxlen: 24
178.176.60.0/24 maxlen: 24
178.176.61.0/24 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
83.149.41.0/24 maxlen: 24
83.149.44.0/23 maxlen: 23
83.149.40.0/24 maxlen: 24
83.149.42.0/23 maxlen: 23
195.78.116.0/23 maxlen: 24
83.149.46.0/23 maxlen: 23
83.169.212.0/24 maxlen: 24
83.169.208.0/24 maxlen: 24
83.169.213.0/24 maxlen: 24
83.169.209.0/24 maxlen: 24
83.169.210.0/24 maxlen: 24
83.169.211.0/24 maxlen: 24
83.169.214.0/24 maxlen: 24
83.169.215.0/24 maxlen: 24
188.162.0.0/16 maxlen: 24
178.178.135.0/24 maxlen: 24
178.178.134.0/24 maxlen: 24
178.178.137.0/24 maxlen: 24
178.178.133.0/24 maxlen: 24
178.178.136.0/24 maxlen: 24
178.178.143.0/24 maxlen: 24
178.178.142.0/24 maxlen: 24
212.44.64.0/19 maxlen: 24
46.229.136.0/22 maxlen: 22
46.229.141.0/24 maxlen: 24
46.229.140.0/24 maxlen: 24
46.229.143.0/24 maxlen: 24
46.229.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:3f:75:e7:db:13:4e:bf:eb:67:3e:24:54:b0:de:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 07:32:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9aa2719ffafbf226898b863d3de3d9bb677dfa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f5:83:12:03:7d:78:7b:4b:f2:54:0e:9c:be:
36:72:9d:a5:9b:ad:c3:19:2b:28:d0:25:68:37:22:
45:9d:f6:b2:b2:dd:cf:ac:db:03:b5:ad:f8:b9:54:
b0:05:b1:46:e5:d7:3a:1e:71:ae:58:2c:f1:af:5d:
f2:e2:54:54:9b:01:b1:ca:18:e8:da:87:fe:65:1c:
c1:87:72:07:8e:41:95:bf:93:1e:ab:5c:e1:7e:f1:
2f:51:46:d5:30:f7:d8:4b:e1:72:52:b5:41:54:13:
e3:a9:9b:28:a6:cf:34:c7:d5:43:85:8a:80:f4:f4:
c5:5b:51:e0:b6:92:cc:ae:61:c0:77:4c:a5:13:bc:
59:2e:77:e8:54:7a:8c:ae:71:24:bf:5c:3c:21:d1:
61:00:32:39:f2:20:c4:93:af:6a:97:a1:83:1e:d9:
d7:8b:20:cf:a0:7a:07:62:58:5a:c9:ea:03:7b:c3:
bd:0e:74:02:21:7e:fd:81:1d:b3:f2:71:de:c6:af:
f4:70:32:1c:74:b5:55:b0:83:55:a0:7a:2a:43:04:
8b:e3:69:e8:61:d8:73:52:37:c5:47:a3:30:f7:f4:
ef:16:20:3a:2e:ee:40:23:06:95:21:99:f4:45:f5:
22:92:3d:55:00:82:b7:db:a8:61:d6:c2:07:a6:6f:
e8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:AA:27:19:FF:AF:BF:22:68:98:B8:63:D3:DE:3D:9B:B6:77:DF:A4
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/qaonGf-vvyJomLhj0949m7Z336Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.184.0/22
37.29.72.0/22
46.229.136.0/21
83.149.40.0/21
83.169.208.0/21
128.204.72.0/23
178.176.56.0/21
178.176.230.0/23
178.178.80.0-178.178.82.255
178.178.84.0/22
178.178.128.0-178.178.137.255
178.178.142.0/23
188.162.0.0/16
188.170.48.0-188.170.50.255
188.170.52.0-188.170.57.255
188.170.59.0-188.170.63.255
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
Signature Algorithm: sha256WithRSAEncryption
1f:a2:f1:5c:1e:e7:bc:c3:fd:44:f8:f1:e4:e7:32:85:d8:21:
99:c7:8f:0e:b3:5e:33:7d:19:c0:70:ff:ab:ac:50:18:a3:43:
c8:93:24:ee:35:4b:1e:1f:ba:0d:a7:77:8c:80:25:f1:c7:9a:
83:41:e9:e0:14:05:40:60:e3:81:8f:96:b1:bc:5e:6b:f0:18:
36:07:3a:d9:25:9f:a0:92:81:72:2d:f2:62:49:6a:9d:2e:a7:
d0:ca:cd:0e:10:b1:12:28:67:29:06:dc:1f:6f:4e:c5:c2:e0:
59:5c:03:86:6d:34:7d:d3:49:23:be:97:d2:36:1e:dd:89:e6:
3d:02:00:30:6b:45:bb:0f:41:a6:13:d3:f5:2f:25:ed:b7:84:
f7:64:11:f9:f7:91:50:7f:ad:ca:36:8d:a6:dc:df:cd:ef:82:
14:ae:52:2f:78:1a:06:48:71:19:34:c5:2e:7a:e4:6f:40:3f:
ca:95:7f:d5:21:a2:6f:df:27:92:f7:f1:b4:db:35:43:3e:f7:
0d:bc:93:ed:52:2e:b8:00:39:d3:f4:be:23:06:69:99:40:3f:
f1:c9:46:47:1c:72:21:f8:27:a8:e7:cc:f5:78:10:4b:de:f5:
e4:59:22:d1:6b:c7:c5:75:2b:1c:e9:ab:95:0d:16:91:4a:7a:
23:c7:7b:1f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:36 2024 by rpki-client on console-ams.rpki-client.org