Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/qfukXmNcN5IhZuZyPF2T8ZfMcC4.roa
File: qfukXmNcN5IhZuZyPF2T8ZfMcC4.roa (raw, json)
Hash identifier: /quXWl8vTAdd7pzV8zoIuF8fY8jE8WLa27BHQRIkY5M=
Subject key identifier: A9:FB:A4:5E:63:5C:37:92:21:66:E6:72:3C:5D:93:F1:97:CC:70:2E
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0872C412
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/qfukXmNcN5IhZuZyPF2T8ZfMcC4.roa
Signing time: Sat 01 Jan 2022 04:02:28 +0000
ROA not before: Sat 01 Jan 2022 04:02:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8263
IP address blocks: 109.188.0.0/16 maxlen: 24
46.29.192.0/21 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
77.233.160.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
79.171.8.0/21 maxlen: 24
81.24.128.0/20 maxlen: 24
195.78.116.0/23 maxlen: 24
78.41.100.0/22 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
83.169.192.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
94.25.128.0/17 maxlen: 24
93.153.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
109.74.112.0/20 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
37.29.0.0/17 maxlen: 24
46.232.200.0/21 maxlen: 24
78.25.64.0/18 maxlen: 24
62.64.0.0/19 maxlen: 24
37.28.160.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
80.247.176.0/20 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
46.229.128.0/20 maxlen: 24
195.5.128.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141739026 (0x872c412)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 1 04:02:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9fba45e635c37922166e6723c5d93f197cc702e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:75:67:55:66:57:5c:b3:0e:08:6d:c9:7d:f6:
ae:ad:4c:7f:d0:22:c9:31:96:33:39:48:ac:97:65:
6b:72:cc:60:8b:d6:5c:ba:ca:11:57:74:8c:80:8c:
b5:0d:33:78:e4:d6:86:bb:93:43:64:ef:ba:d2:c9:
0a:9d:36:bb:af:74:da:28:b4:a1:92:c2:f8:d8:c9:
4d:1f:b0:41:e8:98:6d:98:49:74:da:cb:62:e8:92:
d3:fe:03:3d:93:68:a3:30:0b:22:e5:7f:76:fa:97:
8b:4b:cd:30:97:15:25:6f:d6:0d:ef:d0:fa:39:bd:
cc:08:7d:ad:95:f7:b7:71:99:be:65:35:32:7a:78:
cc:1e:a3:ca:50:2c:e4:aa:37:7e:87:fc:da:36:62:
a1:e6:4c:0a:9c:6d:6b:65:e9:f1:31:27:ab:de:f9:
b7:cd:81:57:7c:5c:18:34:cd:bf:f3:2b:f2:a4:55:
bd:01:7e:8b:22:85:2d:13:c5:fc:03:8a:67:07:38:
5f:4a:70:a6:10:6d:f0:b2:d0:d6:82:79:19:90:6f:
d0:52:f0:d9:fe:f1:f3:b3:06:88:05:79:07:69:59:
81:3d:1f:17:79:ae:50:f0:63:e8:db:a8:0a:75:2d:
ac:7a:20:29:4c:65:40:5a:82:f9:41:14:b6:5b:e9:
0b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:FB:A4:5E:63:5C:37:92:21:66:E6:72:3C:5D:93:F1:97:CC:70:2E
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/qfukXmNcN5IhZuZyPF2T8ZfMcC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.160.0/19
37.29.0.0/17
46.29.192.0/21
46.229.128.0/20
46.232.200.0/21
62.64.0.0/19
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.24.128.0/20
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
5a:c4:f2:22:9d:70:c7:c2:d3:a0:77:8b:8d:eb:14:7c:3d:67:
f7:c9:3e:5f:e0:50:c3:29:57:28:c2:91:7d:90:52:32:f9:68:
19:c0:a4:36:a7:07:cc:e4:17:47:86:70:d5:04:37:82:31:f4:
cd:3c:58:29:8a:85:bd:f4:e1:cb:23:e5:4e:28:7f:d6:79:78:
72:4f:a7:74:a2:02:9b:f2:b8:51:97:88:19:0e:a1:45:a3:56:
4e:ca:e8:58:93:41:0e:e6:5e:8e:36:46:2a:ab:14:a3:d3:85:
d1:6d:c6:31:00:28:9b:3a:b5:17:93:c2:d5:bb:3c:d6:78:e6:
d5:f4:b0:00:8e:a6:bd:f5:72:46:46:21:72:b8:f6:f3:a1:72:
41:6d:76:bc:dc:ad:87:15:db:46:c7:01:55:12:60:cf:ab:37:
ba:5e:7f:0b:14:df:a6:5f:3d:d1:21:2f:2e:ab:c7:6f:0e:40:
0c:4f:eb:d7:a7:b1:0b:f1:dd:b8:37:e9:96:81:64:ae:32:7d:
1a:db:91:b2:12:bc:aa:85:01:8e:bf:9e:5c:66:cd:8b:c8:27:
a6:b2:48:1b:e6:41:13:90:a8:2b:3a:7e:58:17:5e:dc:32:52:
68:09:b8:ab:dd:c5:de:3a:ff:29:e4:3a:35:52:53:e9:9a:bc:
30:e4:15:95
-----BEGIN CERTIFICATE-----
MIIF+TCCBOGgAwIBAgIECHLEEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MmQ3YzJhMTA3MmQ3MzUwN2FkYmY2NTA3ZGU2OGFhYWMwMTc4NWMwMB4XDTIyMDEw
MTA0MDIyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTlmYmE0NWU2MzVj
Mzc5MjIxNjZlNjcyM2M1ZDkzZjE5N2NjNzAyZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJx1Z1VmV1yzDghtyX32rq1Mf9AiyTGWMzlIrJdla3LMYIvW
XLrKEVd0jICMtQ0zeOTWhruTQ2TvutLJCp02u6902ii0oZLC+NjJTR+wQeiYbZhJ
dNrLYuiS0/4DPZNoozALIuV/dvqXi0vNMJcVJW/WDe/Q+jm9zAh9rZX3t3GZvmU1
Mnp4zB6jylAs5Ko3fof82jZioeZMCpxta2Xp8TEnq975t82BV3xcGDTNv/Mr8qRV
vQF+iyKFLRPF/AOKZwc4X0pwphBt8LLQ1oJ5GZBv0FLw2f7x87MGiAV5B2lZgT0f
F3muUPBj6NuoCnUtrHogKUxlQFqC+UEUtlvpC5UCAwEAAaOCAxMwggMPMB0GA1Ud
DgQWBBSp+6ReY1w3kiFm5nI8XZPxl8xwLjAfBgNVHSMEGDAWgBSS18KhBy1zUHrb
9lB95oqqwBeFwDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2t0ZkNvUWN0YzFCNjJfWlFmZWFLcXNBWGhjQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzcvOWNmZjdjLWYwNWEtNGUwMi1iZWE3LTg5ZTU2YzgwZDFkMC8x
L3FmdWtYbU5jTjVJaFp1WnlQRjJUOFpmTWNDNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcv
OWNmZjdjLWYwNWEtNGUwMi1iZWE3LTg5ZTU2YzgwZDFkMC8xL2t0ZkNvUWN0YzFC
NjJfWlFmZWFLcXNBWGhjQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCC
AScGCCsGAQUFBwEHAQH/BIIBFjCCARIwggEOBAIAATCCAQYDBAUlHKADBAclHQAD
BAMuHcADBAQu5YADBAMu6MgDBAU+QAADBAVN6aADBAZOGUADBAJOKWQDBANPqwgD
BARQ97ADBARRGIADBAZTqcADBAVT3sADBAdT5YADBAdVGoADBAVWbcADBAJbwdQD
BAddmYADBAdeGYADBAdfiQADBARtSnADBAZtfEADAwBtvAMEBoDMQAMEA7IXkAME
ArkDIAMEArnSjAMEA7xeqAMDALyiAwQCwcnkAwQFwwWAAwQFwxBgAwQBw050AwQA
w5VvAwQFw+ZAAwQF1A6gAwQF1CxAAwQF1EVgAwQF1HegAwQF1ZqgAwQF1aggAwQG
1fNAAwQE2XNQMA0GCSqGSIb3DQEBCwUAA4IBAQBaxPIinXDHwtOgd4uN6xR8PWf3
yT5f4FDDKVcowpF9kFIy+WgZwKQ2pwfM5BdHhnDVBDeCMfTNPFgpioW99OHLI+VO
KH/WeXhyT6d0ogKb8rhRl4gZDqFFo1ZOyuhYk0EO5l6ONkYqqxSj04XRbcYxACib
OrUXk8LVuzzWeObV9LAAjqa99XJGRiFyuPbzoXJBbXa83K2HFdtGxwFVEmDPqze6
Xn8LFN+mXz3RIS8uq8dvDkAMT+vXp7EL8d24N+mWgWSuMn0a25GyEryqhQGOv55c
Zs2LyCemskgb5kETkKgrOn5YF17cMlJoCbir3cXeOv8p5Do1UlPpmrww5BWV
-----END CERTIFICATE-----
Generated at Tue Apr 8 04:53:44 2025 by rpki-client