Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/tqrQ3nclFmPDUHZMeJOW_AOBCgM.roa
File: tqrQ3nclFmPDUHZMeJOW_AOBCgM.roa (raw, json)
Hash identifier: GHcY5dwjOkDIreuLuRaRNMylcgWYXda+LQ25JxLGuyM=
Subject key identifier: B6:AA:D0:DE:77:25:16:63:C3:50:76:4C:78:93:96:FC:03:81:0A:03
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184E23BEDFCF7A3C3CD9EF41B9C8644B400
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/tqrQ3nclFmPDUHZMeJOW_AOBCgM.roa
Signing time: Mon 05 Dec 2022 12:21:29 +0000
ROA not before: Mon 05 Dec 2022 12:21:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8263
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
85.26.128.0/17 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
83.169.192.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
94.25.128.0/17 maxlen: 24
93.153.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
109.74.112.0/20 maxlen: 24
178.176.224.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
178.176.226.0/24 maxlen: 24
178.176.225.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
83.229.128.0/17 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:3b:ed:fc:f7:a3:c3:cd:9e:f4:1b:9c:86:44:b4:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 5 12:21:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6aad0de77251663c350764c789396fc03810a03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ad:39:06:c9:f3:d3:c9:40:3d:b6:17:f9:90:
ed:c5:12:9b:ee:dd:8d:b5:38:a7:6f:5f:7f:9c:65:
ad:3b:07:47:f2:11:ab:c7:cd:fe:a0:5f:d0:55:ff:
ac:89:21:85:16:72:c2:63:5c:3e:70:7e:4e:a8:0b:
2f:3d:8c:c7:45:18:23:ff:12:6e:b6:c9:d6:29:59:
f3:d6:5d:7b:67:b7:29:05:a2:7f:a5:ad:99:af:89:
5f:e1:71:db:97:02:43:59:91:4b:f3:d1:22:46:5a:
e5:8d:95:61:f2:36:5d:07:76:6c:a4:e7:0c:bf:a3:
9b:60:80:bd:d5:52:99:fe:a6:57:2c:e8:c2:6d:86:
54:05:b7:e7:eb:a5:e5:d3:94:cb:62:8f:6b:b9:ea:
5c:6c:ff:cc:bc:d9:a2:82:7b:a6:1f:cf:cf:53:ec:
fc:59:82:bb:be:89:fc:21:90:d4:e4:12:d2:74:6d:
c1:b5:c1:e4:4f:de:45:50:d6:25:46:b1:e1:14:cc:
7e:29:1d:d3:bf:1e:da:c9:27:99:61:20:8d:13:0d:
b6:11:03:a9:57:2a:ed:b9:c5:32:86:a3:8e:0e:1e:
5d:76:96:8c:fd:1b:05:37:82:55:59:b5:98:c6:c9:
c6:34:24:be:c6:96:75:fe:7e:24:ca:94:7e:cd:32:
93:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:AA:D0:DE:77:25:16:63:C3:50:76:4C:78:93:96:FC:03:81:0A:03
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/tqrQ3nclFmPDUHZMeJOW_AOBCgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.169.192.0/18
83.222.192.0/19
83.229.128.0/17
85.26.128.0/17
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.224.0-178.176.226.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
24:7c:f6:a7:80:c1:c2:3b:de:42:32:16:1b:99:2a:18:53:1c:
22:9e:98:0c:0d:e9:75:51:e7:40:19:32:68:d5:91:a1:4d:62:
e4:b3:b8:1a:f1:af:93:02:02:88:3c:6d:96:78:77:4c:75:89:
1a:58:17:4d:31:a9:28:d8:e4:08:13:65:ad:50:36:21:59:6d:
3d:bf:d4:77:aa:90:c7:fd:f2:11:6a:4d:4d:b5:36:0e:13:52:
5e:42:e8:96:d3:5f:7f:45:f2:9d:26:83:9f:7e:dc:de:85:fd:
a5:b5:7b:81:87:ba:67:3c:55:e3:38:ee:8d:a8:9a:2e:c9:6e:
15:68:08:4e:02:f8:3a:51:8e:76:10:f3:99:fb:f1:76:29:73:
7e:39:19:e5:8b:37:67:c8:a7:ca:29:24:73:e5:9c:e6:e5:5b:
eb:4b:89:ca:71:11:32:2b:4b:64:02:02:ec:e0:35:65:34:11:
9f:1c:90:d9:e0:08:ed:58:0e:d1:9e:f4:1c:fa:31:25:5a:91:
8d:21:25:16:23:ef:1a:93:f2:c7:43:d7:1f:6d:45:4c:76:26:
b0:9d:34:e9:1e:2e:5e:44:d4:9a:93:1f:1c:f1:44:23:cb:17:
a4:81:64:2b:ea:f5:64:51:b9:3e:ad:5b:d4:b2:4f:fc:d6:dc:
28:71:de:48
-----BEGIN CERTIFICATE-----
MIIFyDCCBLCgAwIBAgISAYTiO+3896PDzZ70G5yGRLQAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjA1MTIyMTI5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNmFhZDBkZTc3MjUxNjYzYzM1MDc2NGM3ODkzOTZmYzAzODEwYTAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl605Bsnz08lAPbYX+ZDtxRKb7t2N
tTinb19/nGWtOwdH8hGrx83+oF/QVf+siSGFFnLCY1w+cH5OqAsvPYzHRRgj/xJu
tsnWKVnz1l17Z7cpBaJ/pa2Zr4lf4XHblwJDWZFL89EiRlrljZVh8jZdB3ZspOcM
v6ObYIC91VKZ/qZXLOjCbYZUBbfn66Xl05TLYo9ruepcbP/MvNmignumH8/PU+z8
WYK7von8IZDU5BLSdG3BtcHkT95FUNYlRrHhFMx+KR3Tvx7aySeZYSCNEw22EQOp
VyrtucUyhqOODh5ddpaM/RsFN4JVWbWYxsnGNCS+xpZ1/n4kypR+zTKTawIDAQAB
o4IC1DCCAtAwHQYDVR0OBBYEFLaq0N53JRZjw1B2THiTlvwDgQoDMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvdHFyUTNuY2xGbVBEVUhaTWVKT1dfQU9CQ2dNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHpBggrBgEFBQcBBwEB/wSB2TCB1jCB0wQCAAEwgcwDBAZT
qcADBAVT3sADBAdT5YADBAdVGoADBAVWbcADBAJbwdQDBAddmYADBAdeGYADBAdf
iQADBARtSnADBAZtfEADAwBtvAMEBoDMQAMEA7IXkDAMAwQFsrDgAwQAsrDiAwQC
uQMgAwQCudKMAwQDvF6oAwMAvKIDBALByeQDBAXDBYADBAXDEGADBAHDTnQDBADD
lW8DBAXD5kADBAXUDqADBAXULEADBAXURWADBAXUd6ADBAXVmqADBAXVqCADBAbV
80ADBATZc1AwDQYJKoZIhvcNAQELBQADggEBACR89qeAwcI73kIyFhuZKhhTHCKe
mAwN6XVR50AZMmjVkaFNYuSzuBrxr5MCAog8bZZ4d0x1iRpYF00xqSjY5AgTZa1Q
NiFZbT2/1HeqkMf98hFqTU21Ng4TUl5C6JbTX39F8p0mg59+3N6F/aW1e4GHumc8
VeM47o2omi7JbhVoCE4C+DpRjnYQ85n78XYpc345GeWLN2fIp8opJHPlnOblW+tL
icpxETIrS2QCAuzgNWU0EZ8ckNngCO1YDtGe9Bz6MSVakY0hJRYj7xqT8sdD1x9t
RUx2JrCdNOkeLl5E1JqTHxzxRCPLF6SBZCvq9WRRuT6tW9SyT/zW3Chx3kg=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:36 2025 by rpki-client