Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/s-2SAaPJBcP7rmpcYbOmaGIETi8.roa
File: s-2SAaPJBcP7rmpcYbOmaGIETi8.roa (raw, json)
Hash identifier: 4Gp2ydwV+9tifI34aHs9P/wCz5a6N+iHErNg+GResvo=
Subject key identifier: B3:ED:92:01:A3:C9:05:C3:FB:AE:6A:5C:61:B3:A6:68:62:04:4E:2F
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F1C2BFA7391102626CEF504AE2846282
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/s-2SAaPJBcP7rmpcYbOmaGIETi8.roa
Signing time: Thu 08 Dec 2022 12:43:02 +0000
ROA not before: Thu 08 Dec 2022 12:43:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31205
IP address blocks: 212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.16.96.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
188.170.247.0/24 maxlen: 24
83.149.50.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
83.149.49.0/24 maxlen: 24
83.149.48.0/24 maxlen: 24
83.149.51.0/24 maxlen: 24
178.176.48.0/24 maxlen: 24
193.201.228.0/22 maxlen: 24
83.169.252.0/22 maxlen: 22
83.169.248.0/22 maxlen: 22
85.26.226.0/24 maxlen: 24
85.26.224.0/24 maxlen: 24
85.26.230.0/24 maxlen: 24
85.26.229.0/24 maxlen: 24
85.26.228.0/24 maxlen: 24
85.26.231.0/24 maxlen: 24
85.26.227.0/24 maxlen: 24
178.23.144.0/21 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
212.69.96.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
46.232.202.0/23 maxlen: 23
46.232.200.0/23 maxlen: 23
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
178.176.240.0/22 maxlen: 22
178.176.244.0/22 maxlen: 22
78.25.92.0/23 maxlen: 23
78.25.94.0/23 maxlen: 23
37.29.86.0/23 maxlen: 23
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
188.170.240.0/22 maxlen: 22
31.173.240.0/23 maxlen: 23
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
31.173.242.0/23 maxlen: 23
128.204.64.0/18 maxlen: 24
31.173.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:c2:bf:a7:39:11:02:62:6c:ef:50:4a:e2:84:62:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 12:43:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3ed9201a3c905c3fbae6a5c61b3a66862044e2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:be:a8:d7:18:cd:56:36:3b:45:2e:9b:fb:0f:
d4:a0:bc:93:4d:f8:cb:08:ac:1d:28:4a:e1:2b:4e:
38:ca:1a:57:41:f5:5a:18:0d:6e:cb:a7:cf:0a:f3:
0c:98:34:54:f8:dd:8c:89:dd:c0:6b:82:2a:25:6c:
a2:1f:fa:8c:1f:bb:32:ab:83:04:3a:80:73:a1:ad:
2d:f8:14:c6:6d:3a:94:66:b7:2e:6c:95:b5:cd:14:
ce:41:c0:4b:58:28:f8:cc:2b:08:bc:f7:c7:13:cc:
a3:f2:6a:84:37:96:b0:f2:0b:0e:a4:d9:21:d7:32:
cd:bc:c9:2a:24:c1:b9:e9:8d:30:1c:2d:9a:82:45:
12:76:c6:86:f8:18:1c:fe:3a:21:10:82:f3:1c:c8:
34:32:1c:04:37:15:0d:f0:75:ff:2d:a8:da:10:1f:
9b:34:c6:36:6d:34:48:a9:48:7d:33:ee:3d:a3:70:
1b:25:85:6f:d5:64:28:4b:97:b4:e8:6d:5c:1f:f2:
4a:9c:7f:38:e3:8b:70:f0:9f:86:03:6b:a6:73:f3:
bc:07:52:86:d6:2d:8f:22:4b:51:db:56:d4:a1:2e:
ae:5c:51:7e:bd:0f:9b:60:15:31:ac:15:5a:52:ea:
7e:29:69:b1:4d:da:91:14:fe:d1:71:ea:d6:26:d4:
92:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:ED:92:01:A3:C9:05:C3:FB:AE:6A:5C:61:B3:A6:68:62:04:4E:2F
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/s-2SAaPJBcP7rmpcYbOmaGIETi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.240.0/21
37.29.86.0/23
46.232.200.0/22
78.25.92.0/22
83.149.48.0/22
83.169.248.0/21
85.26.224.0/24
85.26.226.0-85.26.231.255
128.204.64.0/18
178.23.144.0/21
178.176.48.0/24
178.176.240.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.240.0/22
188.170.247.0/24
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
55:7e:e9:de:a0:4f:df:c7:ed:b4:d3:83:2f:4b:f1:ed:37:d2:
1a:2e:ed:2e:53:b9:36:58:25:5a:69:c3:c7:4b:0b:a9:1e:e7:
c6:81:25:ed:f6:27:b4:1a:c7:f9:5f:bc:e6:22:c6:bd:d8:5b:
57:b5:5a:d2:8b:89:26:e6:2f:5f:2b:96:49:a7:12:0d:08:57:
a9:fb:b2:d9:d4:1c:91:cb:a5:98:17:75:40:07:37:06:62:11:
97:d1:c0:fa:8d:3a:24:d2:4d:e4:4d:a6:8a:13:f2:43:6d:b8:
17:60:9b:33:c5:8b:3e:29:b5:1b:02:54:dd:be:d7:14:96:80:
81:ab:00:57:bd:a1:a3:64:f2:4f:7f:56:43:fa:af:56:58:7b:
8f:ff:ef:d7:cc:4c:7f:ca:bd:24:1b:d3:d8:22:ab:6b:c8:b4:
1c:df:e8:75:4f:f4:10:24:80:d9:d2:69:91:e0:9b:89:1f:5a:
f0:79:60:44:6f:9e:57:02:42:63:50:14:8a:af:6e:68:22:c5:
8c:1e:2b:97:f1:18:24:73:aa:92:78:29:7e:d1:76:d6:af:36:
08:ec:c3:db:cc:04:b8:44:6c:b4:2e:64:4e:99:65:10:95:4f:
35:fc:2f:f8:fb:8b:62:cb:3a:b8:c7:3d:29:24:14:51:0c:92:
6c:26:89:8a
-----BEGIN CERTIFICATE-----
MIIFwzCCBKugAwIBAgISAYTxwr+nORECYmzvUErihGKCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjA4MTI0MzAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiM2VkOTIwMWEzYzkwNWMzZmJhZTZhNWM2MWIzYTY2ODYyMDQ0ZTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqr6o1xjNVjY7RS6b+w/UoLyTTfjL
CKwdKErhK044yhpXQfVaGA1uy6fPCvMMmDRU+N2Mid3Aa4IqJWyiH/qMH7syq4ME
OoBzoa0t+BTGbTqUZrcubJW1zRTOQcBLWCj4zCsIvPfHE8yj8mqEN5aw8gsOpNkh
1zLNvMkqJMG56Y0wHC2agkUSdsaG+Bgc/johEILzHMg0MhwENxUN8HX/LajaEB+b
NMY2bTRIqUh9M+49o3AbJYVv1WQoS5e06G1cH/JKnH8444tw8J+GA2umc/O8B1KG
1i2PIktR21bUoS6uXFF+vQ+bYBUxrBVaUup+KWmxTdqRFP7RcerWJtSSpQIDAQAB
o4ICzzCCAsswHQYDVR0OBBYEFLPtkgGjyQXD+65qXGGzpmhiBE4vMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvcy0yU0FhUEpCY1A3cm1wY1liT21hR0lFVGk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHkBggrBgEFBQcBBwEB/wSB1DCB0TCBzgQCAAEwgccDBAMf
rfADBAElHVYDBAIu6MgDBAJOGVwDBAJTlTADBANTqfgDBABVGuAwDAMEAVUa4gME
A1Ua4AMEBoDMQAMEA7IXkAMEALKwMAMEA7Kw8AMEArkDIAMEArnSjAMEA7xeqAMD
ALyiAwQCvKrwAwQAvKr3AwQCwcnkAwQFwwWAAwQFwxBgAwQBw050AwQAw5VvAwQF
w+ZAAwQF1A6gAwQF1CxAAwQF1EVgAwQF1HegAwQF1ZqgAwQF1aggAwQG1fNAAwQE
2XNQMA0GCSqGSIb3DQEBCwUAA4IBAQBVfuneoE/fx+2004MvS/HtN9IaLu0uU7k2
WCVaacPHSwupHufGgSXt9ie0Gsf5X7zmIsa92FtXtVrSi4km5i9fK5ZJpxINCFep
+7LZ1ByRy6WYF3VABzcGYhGX0cD6jTok0k3kTaaKE/JDbbgXYJszxYs+KbUbAlTd
vtcUloCBqwBXvaGjZPJPf1ZD+q9WWHuP/+/XzEx/yr0kG9PYIqtryLQc3+h1T/QQ
JIDZ0mmR4JuJH1rweWBEb55XAkJjUBSKr25oIsWMHiuX8Rgkc6qSeCl+0XbWrzYI
7MPbzAS4RGy0LmROmWUQlU81/C/4+4tiyzq4xz0pJBRRDJJsJomK
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:26 2024 by rpki-client on console-fra.rpki-client.org