Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/rQQeWoKJdVAEjttV1Ke0EoTDLW8.roa
File: rQQeWoKJdVAEjttV1Ke0EoTDLW8.roa (raw, json)
Hash identifier: JHUDKTnNAxHkCcTaN8VBo1Z11vtu6sq8WeElMp1cu9E=
Subject key identifier: AD:04:1E:5A:82:89:75:50:04:8E:DB:55:D4:A7:B4:12:84:C3:2D:6F
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F243D60DE47BEA8424228451FF476C97
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/rQQeWoKJdVAEjttV1Ke0EoTDLW8.roa
Signing time: Thu 08 Dec 2022 15:04:02 +0000
ROA not before: Thu 08 Dec 2022 15:04:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35298
IP address blocks: 31.173.176.0/20 maxlen: 20
212.14.160.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
78.41.100.0/22 maxlen: 22
193.201.228.0/22 maxlen: 24
37.29.76.0/22 maxlen: 22
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
178.176.154.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f2:43:d6:0d:e4:7b:ea:84:24:22:84:51:ff:47:6c:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 15:04:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad041e5a82897550048edb55d4a7b41284c32d6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:55:bf:fc:85:a1:02:ca:93:51:e0:36:8a:61:
5d:bb:72:90:fa:61:61:b1:db:ba:ad:55:31:50:1f:
97:2c:eb:b6:30:c1:a4:23:21:4e:ab:33:2f:e9:ef:
97:e0:65:73:cc:33:8d:ae:d7:95:d2:b0:50:04:17:
86:c0:d7:91:7a:c6:53:ef:1e:4e:77:1d:59:07:ac:
26:bd:d0:dc:a3:8e:c3:9d:10:b6:82:c5:4b:84:48:
6f:6d:54:ee:78:b5:95:29:7b:be:8d:d0:ba:64:a4:
04:da:5d:f7:f8:d2:87:93:66:af:80:db:76:e7:82:
d9:e3:30:f7:2e:da:1f:34:28:85:55:f3:1c:ed:00:
32:65:16:26:d6:a9:85:cc:0f:34:6f:2f:29:ff:66:
b2:bd:ad:fa:f1:6d:a7:37:a6:db:91:7b:13:fa:db:
cc:37:0f:c3:60:08:61:c6:d7:ad:f8:81:b3:40:ae:
f5:9c:a1:b8:88:31:d0:d5:4f:0c:6b:8e:a8:c8:d7:
80:62:10:57:8e:04:29:d2:6c:11:3f:9f:d3:55:3c:
43:78:4f:e8:1d:c9:0d:7f:11:09:65:92:0e:65:f9:
ad:25:bc:b1:52:f0:3a:c5:0e:bd:f6:1f:6d:f7:98:
10:55:4c:c6:e9:cb:36:68:2e:a4:24:f5:ab:3e:d2:
d1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:04:1E:5A:82:89:75:50:04:8E:DB:55:D4:A7:B4:12:84:C3:2D:6F
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/rQQeWoKJdVAEjttV1Ke0EoTDLW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.176.0/20
37.29.76.0/22
78.41.100.0/22
178.176.154.0/23
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
32:f3:3e:ec:90:de:bf:1d:65:68:00:f3:22:7f:43:df:b0:04:
46:65:15:f8:e0:bd:81:af:ac:29:36:e7:68:91:4c:fc:f4:84:
a7:2a:ae:1b:d0:74:b7:1e:d0:30:e7:8d:b4:a8:69:ee:6f:35:
bb:66:30:c5:4e:f0:d3:34:3b:b9:80:e2:c9:81:ba:85:48:27:
92:53:f0:28:34:c1:77:00:56:81:a6:cb:8b:9e:05:a7:b0:cc:
bf:af:81:18:26:5a:4f:06:21:bb:3a:26:08:4f:36:ff:d5:5f:
f8:c2:a2:1a:1f:14:98:44:db:80:cd:2f:20:0f:62:3f:3c:cd:
6d:f3:a5:54:93:d9:e1:85:50:d6:8b:8d:b3:71:19:a1:ef:24:
17:55:4a:3b:cc:2c:ad:78:c3:8f:40:db:fd:6a:c5:fb:7e:f9:
44:0c:d7:97:28:bc:dd:24:3f:1f:86:38:8b:e8:64:6c:57:32:
f0:11:86:ca:21:c0:36:4f:20:dc:aa:94:5e:d1:49:c0:11:f2:
b2:38:91:24:b1:7a:6f:fb:cb:f8:a9:86:98:e5:8a:78:1e:84:
b6:e1:07:a0:a1:94:87:b7:74:42:f9:1f:95:2d:2b:5a:55:0a:
6c:0d:a7:af:47:0a:de:8c:c5:7e:2c:c4:e8:f3:dc:18:f6:af:
aa:0a:6c:f2
-----BEGIN CERTIFICATE-----
MIIFaTCCBFGgAwIBAgISAYTyQ9YN5HvqhCQihFH/R2yXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjA4MTUwNDAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDA0MWU1YTgyODk3NTUwMDQ4ZWRiNTVkNGE3YjQxMjg0YzMyZDZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjVW//IWhAsqTUeA2imFdu3KQ+mFh
sdu6rVUxUB+XLOu2MMGkIyFOqzMv6e+X4GVzzDONrteV0rBQBBeGwNeResZT7x5O
dx1ZB6wmvdDco47DnRC2gsVLhEhvbVTueLWVKXu+jdC6ZKQE2l33+NKHk2avgNt2
54LZ4zD3LtofNCiFVfMc7QAyZRYm1qmFzA80by8p/2ayva368W2nN6bbkXsT+tvM
Nw/DYAhhxtet+IGzQK71nKG4iDHQ1U8Ma46oyNeAYhBXjgQp0mwRP5/TVTxDeE/o
HckNfxEJZZIOZfmtJbyxUvA6xQ699h9t95gQVUzG6cs2aC6kJPWrPtLRUwIDAQAB
o4ICdTCCAnEwHQYDVR0OBBYEFK0EHlqCiXVQBI7bVdSntBKEwy1vMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvclFRZVdvS0pkVkFFanR0VjFLZTBFb1RETFc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGKBggrBgEFBQcBBwEB/wR7MHkwdwQCAAEwcQMEBB+tsAME
AiUdTAMEAk4pZAMEAbKwmgMDALyiAwQCwcnkAwQFwwWAAwQFwxBgAwQBw050AwQA
w5VvAwQFw+ZAAwQF1A6gAwQF1CxAAwQF1EVgAwQF1HegAwQF1ZqgAwQF1aggAwQG
1fNAAwQE2XNQMA0GCSqGSIb3DQEBCwUAA4IBAQAy8z7skN6/HWVoAPMif0PfsARG
ZRX44L2Br6wpNudokUz89ISnKq4b0HS3HtAw5420qGnubzW7ZjDFTvDTNDu5gOLJ
gbqFSCeSU/AoNMF3AFaBpsuLngWnsMy/r4EYJlpPBiG7OiYITzb/1V/4wqIaHxSY
RNuAzS8gD2I/PM1t86VUk9nhhVDWi42zcRmh7yQXVUo7zCyteMOPQNv9asX7fvlE
DNeXKLzdJD8fhjiL6GRsVzLwEYbKIcA2TyDcqpRe0UnAEfKyOJEksXpv+8v4qYaY
5Yp4HoS24QegoZSHt3RC+R+VLStaVQpsDaevRwrejMV+LMTo89wY9q+qCmzy
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:18 2025 by rpki-client