Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/t2SBaI6sKU_Cfrjqf8eQSj4oROk.roa
File: t2SBaI6sKU_Cfrjqf8eQSj4oROk.roa (raw, json)
Hash identifier: IZYSf4flm50muToA4/JZxgpRafQ3sXO4kkfXqwsqt/A=
Subject key identifier: B7:64:81:68:8E:AC:29:4F:C2:7E:B8:EA:7F:C7:90:4A:3E:28:44:E9
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F1C2BBB1E836C71E01E9B6E61F1BC4DA
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/t2SBaI6sKU_Cfrjqf8eQSj4oROk.roa
Signing time: Thu 08 Dec 2022 12:43:01 +0000
ROA not before: Thu 08 Dec 2022 12:43:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29648
IP address blocks: 193.201.228.0/22 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
31.173.119.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
77.233.160.0/19 maxlen: 19
77.233.161.0/24 maxlen: 24
77.233.164.0/24 maxlen: 24
77.233.160.0/24 maxlen: 24
77.233.162.0/24 maxlen: 24
77.233.166.0/24 maxlen: 24
77.233.167.0/24 maxlen: 24
77.233.170.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
31.173.104.0/24 maxlen: 24
31.173.105.0/24 maxlen: 24
31.173.112.0/24 maxlen: 24
31.173.108.0/24 maxlen: 24
31.173.109.0/24 maxlen: 24
31.173.110.0/24 maxlen: 24
31.173.106.0/24 maxlen: 24
31.173.111.0/24 maxlen: 24
31.173.107.0/24 maxlen: 24
31.173.116.0/24 maxlen: 24
31.173.113.0/24 maxlen: 24
31.173.117.0/24 maxlen: 24
31.173.114.0/24 maxlen: 24
31.173.118.0/24 maxlen: 24
31.173.115.0/24 maxlen: 24
77.233.173.0/24 maxlen: 24
77.233.178.0/24 maxlen: 24
77.233.185.0/24 maxlen: 24
77.233.181.0/24 maxlen: 24
77.233.180.0/24 maxlen: 24
77.233.186.0/24 maxlen: 24
77.233.182.0/24 maxlen: 24
77.233.188.0/24 maxlen: 24
77.233.191.0/24 maxlen: 24
77.233.190.0/24 maxlen: 24
212.44.64.0/19 maxlen: 24
195.16.96.0/19 maxlen: 24
178.23.144.0/21 maxlen: 24
185.3.32.0/22 maxlen: 24
188.170.98.0/24 maxlen: 24
86.109.192.0/19 maxlen: 19
86.109.192.0/20 maxlen: 20
188.170.96.0/24 maxlen: 24
188.170.97.0/24 maxlen: 24
188.170.102.0/24 maxlen: 24
86.109.193.0/24 maxlen: 24
188.170.103.0/24 maxlen: 24
188.170.99.0/24 maxlen: 24
188.170.100.0/24 maxlen: 24
188.170.104.0/24 maxlen: 24
86.109.195.0/24 maxlen: 24
188.170.101.0/24 maxlen: 24
188.170.105.0/24 maxlen: 24
188.170.110.0/24 maxlen: 24
188.170.106.0/24 maxlen: 24
188.170.111.0/24 maxlen: 24
188.170.107.0/24 maxlen: 24
86.109.200.0/23 maxlen: 23
188.170.108.0/24 maxlen: 24
212.69.96.0/19 maxlen: 24
188.170.109.0/24 maxlen: 24
188.170.112.0/24 maxlen: 24
188.170.114.0/24 maxlen: 24
86.109.213.0/24 maxlen: 24
188.170.115.0/24 maxlen: 24
188.170.116.0/24 maxlen: 24
86.109.212.0/24 maxlen: 24
86.109.208.0/24 maxlen: 24
188.170.118.0/24 maxlen: 24
188.170.117.0/24 maxlen: 24
188.170.113.0/24 maxlen: 24
86.109.210.0/24 maxlen: 24
188.170.119.0/24 maxlen: 24
188.170.123.0/24 maxlen: 24
86.109.216.0/24 maxlen: 24
188.170.122.0/24 maxlen: 24
86.109.215.0/24 maxlen: 24
86.109.218.0/23 maxlen: 23
188.170.125.0/24 maxlen: 24
188.170.121.0/24 maxlen: 24
188.170.120.0/24 maxlen: 24
86.109.214.0/24 maxlen: 24
188.170.124.0/24 maxlen: 24
188.170.127.0/24 maxlen: 24
86.109.220.0/24 maxlen: 24
188.170.126.0/24 maxlen: 24
86.109.223.0/24 maxlen: 24
86.109.222.0/24 maxlen: 24
78.109.120.0/24 maxlen: 24
78.109.121.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
128.204.64.0/18 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
178.176.98.0/24 maxlen: 24
195.149.111.0/24 maxlen: 24
178.176.96.0/24 maxlen: 24
178.176.97.0/24 maxlen: 24
178.176.102.0/24 maxlen: 24
178.176.103.0/24 maxlen: 24
178.176.99.0/24 maxlen: 24
178.176.100.0/24 maxlen: 24
178.176.101.0/24 maxlen: 24
178.176.118.0/24 maxlen: 24
178.176.114.0/24 maxlen: 24
178.176.115.0/24 maxlen: 24
178.176.116.0/24 maxlen: 24
178.176.117.0/24 maxlen: 24
178.176.122.0/24 maxlen: 24
178.176.123.0/24 maxlen: 24
178.176.119.0/24 maxlen: 24
178.176.124.0/24 maxlen: 24
178.176.120.0/24 maxlen: 24
178.176.125.0/24 maxlen: 24
178.176.121.0/24 maxlen: 24
178.176.126.0/24 maxlen: 24
178.176.127.0/24 maxlen: 24
83.169.217.0/24 maxlen: 24
83.169.218.0/24 maxlen: 24
83.169.219.0/24 maxlen: 24
83.169.220.0/24 maxlen: 24
83.169.221.0/24 maxlen: 24
83.169.222.0/24 maxlen: 24
83.169.223.0/24 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:c2:bb:b1:e8:36:c7:1e:01:e9:b6:e6:1f:1b:c4:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 12:43:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b76481688eac294fc27eb8ea7fc7904a3e2844e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:63:60:2a:a2:52:52:95:a7:6f:39:d3:c7:ad:
96:ad:5b:df:0a:42:41:18:19:85:67:39:cb:80:34:
15:54:91:88:58:ed:fe:b1:a2:08:8c:95:ef:28:09:
42:65:d9:03:f2:61:02:8c:7f:ab:7d:5b:72:71:97:
1e:08:08:b1:a6:4e:73:2d:39:89:63:d1:58:52:81:
4c:5c:c4:65:3f:a2:09:90:09:77:2b:d1:3a:b6:1d:
64:b0:b3:e9:9c:73:8e:03:7b:05:63:cb:2e:31:1b:
21:bd:d8:7d:29:0d:ca:c4:73:6f:7d:d9:4c:32:6a:
90:d6:e4:26:80:12:9b:01:67:d3:c6:09:dd:15:20:
5d:06:7c:d7:80:f1:bc:1b:8a:90:bb:24:a2:63:a8:
83:d7:ab:1c:e5:08:f2:ce:48:07:16:27:5c:ae:e8:
8a:3e:3f:93:d3:ce:d0:a5:f6:93:1b:7c:9e:3f:09:
28:bf:a8:ba:e9:76:b0:48:31:84:ee:8f:a5:27:25:
90:0f:2c:ea:a7:32:3f:e6:48:b2:ca:c1:06:43:f1:
d1:5e:e0:64:03:ea:85:58:25:70:06:db:81:01:7a:
d1:98:83:91:66:c0:24:37:90:05:5c:5c:2a:7b:61:
ab:a0:ba:c4:86:40:39:38:55:cc:f3:a3:8f:dc:ee:
02:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:64:81:68:8E:AC:29:4F:C2:7E:B8:EA:7F:C7:90:4A:3E:28:44:E9
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/t2SBaI6sKU_Cfrjqf8eQSj4oROk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.104.0-31.173.119.255
77.233.160.0/19
78.109.120.0/23
83.169.217.0-83.169.223.255
86.109.192.0/19
128.204.64.0/18
178.23.144.0/21
178.176.96.0/21
178.176.114.0-178.176.127.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.96.0/19
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
68:f1:73:7f:bc:1e:94:6c:47:51:3e:f2:e4:2f:68:b8:2e:f7:
4e:9d:06:05:cf:ef:82:47:df:e5:67:08:a0:d7:1f:d4:05:3a:
4e:65:9c:b7:04:e8:f3:0e:fd:66:2a:8d:30:8f:69:09:ab:d2:
89:5e:bd:ed:d7:e8:7f:84:de:a2:b8:d3:0d:fa:d3:9c:19:f1:
ac:a3:1a:fe:1e:83:a2:70:f8:5d:37:1b:0c:fb:67:e8:cd:ee:
dd:ec:84:9b:2f:c8:1a:a0:84:39:8e:1c:5a:8c:e6:4f:38:19:
d3:09:3c:5a:e3:1e:48:20:90:8b:62:49:4c:b6:64:cd:a4:f9:
24:ea:54:b9:ea:10:e1:99:43:a0:3c:47:1c:3f:97:cb:e7:f8:
d5:1e:3c:76:c7:21:b8:05:f9:62:ae:87:c9:12:6c:a9:af:fe:
f3:df:6e:48:61:67:97:79:e7:21:36:2d:ab:23:a9:e4:6e:46:
63:0f:54:3a:cd:d0:13:9b:06:82:7c:02:69:fd:ec:cc:88:33:
01:67:9f:fb:71:ce:bb:b1:17:b5:75:2c:5c:7d:8f:52:ce:85:
25:d6:49:ab:7d:4d:43:3d:4d:56:c7:df:c5:ec:23:25:a8:36:
d3:c4:b0:73:bd:43:05:6f:c8:fa:a8:26:4f:6c:d8:ee:47:b6:
0e:56:81:e0
-----BEGIN CERTIFICATE-----
MIIFuzCCBKOgAwIBAgISAYTxwrux6DbHHgHptuYfG8TaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjA4MTI0MzAxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzY0ODE2ODhlYWMyOTRmYzI3ZWI4ZWE3ZmM3OTA0YTNlMjg0NGU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWNgKqJSUpWnbznTx62WrVvfCkJB
GBmFZznLgDQVVJGIWO3+saIIjJXvKAlCZdkD8mECjH+rfVtycZceCAixpk5zLTmJ
Y9FYUoFMXMRlP6IJkAl3K9E6th1ksLPpnHOOA3sFY8suMRshvdh9KQ3KxHNvfdlM
MmqQ1uQmgBKbAWfTxgndFSBdBnzXgPG8G4qQuySiY6iD16sc5QjyzkgHFidcruiK
Pj+T087QpfaTG3yePwkov6i66XawSDGE7o+lJyWQDyzqpzI/5kiyysEGQ/HRXuBk
A+qFWCVwBtuBAXrRmIORZsAkN5AFXFwqe2GroLrEhkA5OFXM86OP3O4CiQIDAQAB
o4ICxzCCAsMwHQYDVR0OBBYEFLdkgWiOrClPwn646n/HkEo+KETpMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvdDJTQmFJNnNLVV9DZnJqcWY4ZVFTajRvUk9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHcBggrBgEFBQcBBwEB/wSBzDCByTCBxgQCAAEwgb8wDAME
Ax+taAMEAx+tcAMEBU3poAMEAU5teDAMAwQAU6nZAwQFU6nAAwQFVm3AAwQGgMxA
AwQDsheQAwQDsrBgMAwDBAGysHIDBAeysAADBAK5AyADBAK50owDBAO8XqgDAwC8
ogMEBbyqYAMEAsHJ5AMEBcMFgAMEBcMQYAMEAcNOdAMEAMOVbwMEBcPmQAMEBdQO
oAMEBdQsQAMEBdRFYAMEBdR3oAMEBdWaoAMEBdWoIAMEBtXzQAMEBNlzUDANBgkq
hkiG9w0BAQsFAAOCAQEAaPFzf7welGxHUT7y5C9ouC73Tp0GBc/vgkff5WcIoNcf
1AU6TmWctwTo8w79ZiqNMI9pCavSiV697dfof4TeorjTDfrTnBnxrKMa/h6DonD4
XTcbDPtn6M3u3eyEmy/IGqCEOY4cWozmTzgZ0wk8WuMeSCCQi2JJTLZkzaT5JOpU
ueoQ4ZlDoDxHHD+Xy+f41R48dschuAX5Yq6HyRJsqa/+899uSGFnl3nnITYtqyOp
5G5GYw9UOs3QE5sGgnwCaf3szIgzAWef+3HOu7EXtXUsXH2PUs6FJdZJq31NQz1N
VsffxewjJag208Swc71DBW/I+qgmT2zY7ke2DlaB4A==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:45 2025 by rpki-client