Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/uPzTedroe4ziLpAD60olp1723B8.roa
File: uPzTedroe4ziLpAD60olp1723B8.roa (raw, json)
Hash identifier: bpQkYp8X/zlvm/pQ5MJ2KTIL0OzDassEraYcZlX6Gh4=
Subject key identifier: B8:FC:D3:79:DA:E8:7B:8C:E2:2E:90:03:EB:4A:25:A7:5E:F6:DC:1F
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F14640F15515B208EAA624478F2218E8
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/uPzTedroe4ziLpAD60olp1723B8.roa
Signing time: Thu 08 Dec 2022 10:27:03 +0000
ROA not before: Thu 08 Dec 2022 10:27:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35298
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
78.41.100.0/22 maxlen: 22
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
178.176.154.0/23 maxlen: 23
31.173.176.0/20 maxlen: 20
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
37.29.76.0/22 maxlen: 22
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:46:40:f1:55:15:b2:08:ea:a6:24:47:8f:22:18:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 10:27:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8fcd379dae87b8ce22e9003eb4a25a75ef6dc1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:1c:45:59:9f:84:6a:97:65:e7:f1:fd:9b:7b:
9d:8a:c1:a0:44:b2:0c:aa:86:0e:25:7d:56:bb:dd:
b6:fc:6c:12:55:24:87:0c:80:b6:9d:62:f2:99:e0:
e5:c3:5d:de:1c:90:55:e0:04:fd:43:4d:b1:11:b3:
d4:75:8b:1f:b3:78:97:f0:1b:5b:52:77:27:ad:53:
86:a7:6a:bc:78:fa:73:9e:dd:70:a7:1c:61:be:94:
1c:dc:1a:b0:11:ec:2f:ab:c2:17:b9:55:f4:b9:a9:
25:4b:b6:92:9d:be:78:d2:e2:7b:b2:b1:0d:0d:8e:
7a:ec:b5:30:19:ce:d5:8b:8e:28:7f:b6:5f:8b:9a:
3c:69:2c:71:7d:ba:53:e8:16:da:1d:ec:4f:57:53:
0a:cb:91:8b:20:19:e1:2b:44:ad:85:ec:e1:b8:d2:
72:b6:bd:7f:4d:e3:29:04:c9:fc:e7:3f:21:39:ab:
4f:af:40:d2:aa:dd:bd:82:9f:5a:0a:72:62:ff:00:
a1:dc:b9:af:f4:0f:9d:d7:2d:53:e3:7d:9a:82:0e:
86:55:8c:30:7c:40:f5:70:3b:5b:69:29:5d:74:5f:
95:10:f2:34:d7:04:3a:29:b6:52:62:81:aa:f0:0f:
15:2c:c1:5b:9a:86:6f:87:4f:b5:07:0a:3e:2b:ab:
5f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:FC:D3:79:DA:E8:7B:8C:E2:2E:90:03:EB:4A:25:A7:5E:F6:DC:1F
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/uPzTedroe4ziLpAD60olp1723B8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.176.0/20
37.29.76.0/22
78.41.100.0/22
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.154.0/23
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
4c:39:a0:4c:5e:d7:2b:24:ac:11:3f:8a:ed:a8:ab:03:8f:8b:
76:cc:b1:03:f0:6c:5c:c6:d3:57:97:9a:82:bd:52:41:e6:25:
b1:2d:b0:a5:bc:13:01:c6:e8:fd:2b:c9:5f:c5:bb:ad:ad:b9:
f7:a2:cc:4d:1b:2c:82:65:18:af:ef:92:0b:93:36:5a:01:2c:
4b:b7:01:8d:01:68:b6:8c:05:16:54:62:8a:92:ff:64:54:55:
db:84:9d:7a:91:38:48:7b:63:d2:2b:19:c4:4f:31:1b:53:ff:
bf:2b:96:1e:72:2b:86:5c:f9:2f:47:ed:97:f5:f3:4a:d9:52:
d5:f7:e7:a6:91:c0:a8:c6:0b:eb:2f:ea:8d:df:bb:9e:24:38:
45:a1:a7:8b:63:32:99:30:b7:1f:95:bc:47:74:bb:07:04:6f:
9d:40:14:dd:a2:38:e8:a0:2d:12:3a:ce:98:e5:02:1d:3d:a2:
95:b4:73:9d:dd:9b:6d:58:92:a0:86:1d:52:f9:3b:43:7d:64:
1e:b6:97:86:71:a9:23:2e:43:5e:79:29:91:a8:7c:08:d9:de:
3e:dc:43:d9:25:b9:30:ba:fa:85:5d:a9:46:df:12:b5:37:88:
56:cb:24:c2:9d:d2:9b:1d:a1:e3:c8:dd:42:65:7f:80:4f:a2:
e1:be:b5:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:56 2025 by rpki-client