Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/sQxsnWeEbEwo_fHsmH-Elsad3As.roa
File: sQxsnWeEbEwo_fHsmH-Elsad3As.roa (raw, json)
Hash identifier: 3Dri3yelghjk+hKmOkbxLtteHNRYqyigzhA/BYZx6sw=
Subject key identifier: B1:0C:6C:9D:67:84:6C:4C:28:FD:F1:EC:98:7F:84:96:C6:9D:DC:0B
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 087C4117
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/sQxsnWeEbEwo_fHsmH-Elsad3As.roa
Signing time: Sat 01 Jan 2022 04:02:36 +0000
ROA not before: Sat 01 Jan 2022 04:02:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35298
IP address blocks: 109.188.0.0/16 maxlen: 24
46.29.192.0/21 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
77.233.160.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
81.24.128.0/20 maxlen: 24
79.171.8.0/21 maxlen: 24
195.78.116.0/23 maxlen: 24
78.41.100.0/22 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
83.169.192.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
93.153.128.0/17 maxlen: 24
94.25.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
46.232.200.0/21 maxlen: 24
37.29.0.0/17 maxlen: 24
37.28.160.0/19 maxlen: 24
62.64.0.0/19 maxlen: 24
78.25.64.0/18 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
80.247.176.0/20 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
46.229.128.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142360855 (0x87c4117)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 1 04:02:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b10c6c9d67846c4c28fdf1ec987f8496c69ddc0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bf:ff:f0:44:0b:fb:8a:14:7c:e2:04:45:a5:
34:e5:2a:f6:14:72:8c:b8:bf:a5:50:f4:3e:50:c1:
ba:e5:0f:c7:6b:b9:a1:b5:43:34:6b:80:20:ac:e3:
6c:57:a5:a2:61:97:b9:f7:d7:39:96:15:02:d7:9f:
76:43:cc:1d:0d:b5:cd:1e:e9:9f:a2:e7:37:71:01:
a3:cb:98:c4:77:c5:12:c1:58:68:ad:94:58:61:c5:
10:20:b4:0b:df:bc:ad:d4:7c:6a:dd:6a:19:4b:bd:
de:91:b8:7d:17:2b:be:07:a1:7c:a8:dd:da:92:e3:
85:f3:f2:bd:cd:5f:29:70:9c:4a:b4:ba:63:a2:c8:
13:1b:32:aa:0b:bf:ce:26:28:9b:0a:59:59:31:63:
c2:af:b2:79:b6:ec:29:a3:05:39:f0:db:8c:3f:ee:
e6:8e:43:01:24:0a:2f:89:d7:78:75:77:bf:cf:16:
8e:22:e6:ae:ab:10:37:9e:3e:f6:ef:29:83:f8:76:
d2:e2:32:13:a6:2e:7b:22:b2:1f:82:f7:55:0d:7d:
2e:13:57:bb:0b:94:e5:30:d6:3c:55:a4:fc:c7:ab:
9a:1b:fd:5e:6a:f1:35:5c:08:ff:83:25:5c:15:f5:
d6:58:6d:e2:29:9c:f3:3a:a2:67:22:36:4d:e7:62:
ef:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:0C:6C:9D:67:84:6C:4C:28:FD:F1:EC:98:7F:84:96:C6:9D:DC:0B
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/sQxsnWeEbEwo_fHsmH-Elsad3As.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.28.160.0/19
37.29.0.0/17
46.29.192.0/21
46.229.128.0/20
46.232.200.0/21
62.64.0.0/19
77.233.160.0/19
78.25.64.0/18
78.41.100.0/22
79.171.8.0/21
80.247.176.0/20
81.24.128.0/20
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
65:22:71:f1:b1:e0:ab:97:cb:90:40:1d:ac:ab:8f:5b:04:91:
d1:c0:a4:ab:c0:41:73:7b:db:39:db:45:d3:4d:79:50:0e:2e:
c9:cf:a5:c9:f8:8f:2e:ae:0c:30:92:cf:2e:c7:1d:97:fa:84:
f4:a9:1e:34:8d:68:24:da:fa:69:fb:e4:83:dd:63:54:cd:6a:
67:d1:78:52:f9:ff:5d:08:67:20:6e:f8:4b:a5:38:98:ae:f9:
90:d1:9f:ee:77:b2:15:0c:5e:90:8b:92:eb:0d:a6:99:61:26:
1a:82:9f:52:46:8f:16:df:53:f3:16:27:0f:03:08:e1:f1:99:
3a:43:c2:99:f4:b0:b6:eb:34:76:15:19:52:da:21:d5:cb:a8:
a5:56:35:a7:70:57:a8:d9:0c:e3:10:c5:9d:43:11:b6:ba:b0:
ce:4d:6e:01:67:ce:a9:15:08:31:65:8a:ad:c5:e9:8d:08:7e:
7a:ea:10:9a:2c:3e:ee:7c:35:1c:54:dc:7b:61:47:f8:22:e5:
fe:71:23:82:3e:f2:05:66:f9:f0:c4:f7:f8:46:2f:18:f0:b1:
11:b4:22:3f:0c:c1:b4:e6:cd:03:b6:a0:b7:11:fd:ca:48:90:
b6:8a:52:24:ce:33:ff:0b:ce:ec:a0:49:5c:49:2a:8b:66:d3:
c2:49:c5:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:41:30 2025 by rpki-client