Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/wByITIO-5b0DdxNgsVIsBl7eDLU.roa
File: wByITIO-5b0DdxNgsVIsBl7eDLU.roa (raw, json)
Hash identifier: H3bIY0D14zCYzaT94YD/0ccMx9XpeIfIi0ll0fimHgc=
Subject key identifier: C0:1C:88:4C:83:BE:E5:BD:03:77:13:60:B1:52:2C:06:5E:DE:0C:B5
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F1C2C5586515ACF599E6CAC513A7037E
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/wByITIO-5b0DdxNgsVIsBl7eDLU.roa
Signing time: Thu 08 Dec 2022 12:43:04 +0000
ROA not before: Thu 08 Dec 2022 12:43:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50928
IP address blocks: 46.29.192.0/21 maxlen: 21
46.29.199.0/24 maxlen: 24
46.29.194.0/24 maxlen: 24
46.29.196.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
188.170.244.0/23 maxlen: 23
188.170.244.0/24 maxlen: 24
188.170.245.0/24 maxlen: 24
188.170.250.0/24 maxlen: 24
188.170.251.0/24 maxlen: 24
188.170.248.0/24 maxlen: 24
188.170.249.0/24 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
212.69.96.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
178.176.250.0/24 maxlen: 24
178.176.251.0/24 maxlen: 24
178.176.252.0/24 maxlen: 24
178.176.248.0/24 maxlen: 24
178.176.253.0/24 maxlen: 24
178.176.249.0/24 maxlen: 24
37.29.81.0/24 maxlen: 24
37.29.80.0/24 maxlen: 24
37.29.83.0/24 maxlen: 24
37.29.80.0/22 maxlen: 22
37.29.82.0/24 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
31.173.248.0/21 maxlen: 21
31.173.248.0/24 maxlen: 24
31.173.252.0/24 maxlen: 24
31.173.253.0/24 maxlen: 24
31.173.249.0/24 maxlen: 24
31.173.250.0/24 maxlen: 24
31.173.251.0/24 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:c2:c5:58:65:15:ac:f5:99:e6:ca:c5:13:a7:03:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 12:43:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c01c884c83bee5bd03771360b1522c065ede0cb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:89:f2:f2:83:3e:7a:ea:57:cc:bf:90:ed:17:
ea:44:6f:e7:9a:d6:f5:ca:a4:46:39:c1:c4:02:4d:
c5:d9:45:99:16:27:42:54:a8:c7:ed:4f:20:84:b8:
f2:cb:1e:d1:8b:f0:21:35:ba:b2:5d:2d:ff:5e:c4:
52:f0:11:13:11:75:54:b8:2e:6c:56:4c:f0:52:98:
5b:cf:04:22:9f:64:c6:da:fc:de:d3:c3:46:17:92:
f4:77:53:10:3d:11:37:aa:87:74:99:31:0c:c8:fe:
6b:e1:67:78:3e:19:79:bc:85:ba:84:ee:a6:ad:21:
f6:dc:9c:e0:6b:e7:30:29:02:4d:ad:08:b9:ca:86:
8c:10:c8:f6:e9:73:fa:b5:77:f6:70:27:82:90:3c:
c2:58:f9:64:88:2b:72:ea:31:23:59:d6:be:0a:ba:
08:46:e5:67:65:55:4f:a7:11:ed:b1:ec:f6:04:dc:
ed:e8:84:e4:b8:2e:49:7d:a5:58:13:c0:99:ef:f7:
77:ea:5d:78:e6:34:3f:a7:06:3f:f5:c1:69:c9:26:
bd:5f:a8:78:2d:3d:b6:1b:a5:dd:b5:1a:aa:3f:21:
a0:d4:71:16:fb:7a:5d:24:cd:5d:7a:1e:2b:8d:a4:
05:00:b6:4f:a8:fe:38:24:6a:c1:f1:51:ae:99:86:
84:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:1C:88:4C:83:BE:E5:BD:03:77:13:60:B1:52:2C:06:5E:DE:0C:B5
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/wByITIO-5b0DdxNgsVIsBl7eDLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.248.0/21
37.29.80.0/22
46.29.192.0/21
128.204.64.0/18
178.23.144.0/21
178.176.248.0-178.176.253.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
188.170.244.0/23
188.170.248.0/22
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
2f:a9:b7:5c:c9:0d:60:e7:ca:be:fa:dd:04:d3:b9:45:58:a8:
54:3c:32:de:4a:86:33:c9:43:95:49:60:51:cc:9b:f2:51:36:
85:ba:bf:6e:b3:39:8b:e0:c9:ed:fa:1d:72:97:59:4b:f3:c0:
52:3a:e9:a0:d3:39:f6:5d:e2:56:47:b1:9c:34:49:25:05:9d:
5b:a2:9c:81:f4:6b:1b:2a:00:74:cb:01:42:ab:d7:5b:52:74:
41:12:6f:ca:10:16:9a:e7:c0:c1:27:68:d5:54:ed:c5:47:a2:
42:05:cf:e3:b8:d3:92:0c:53:7c:a7:f9:50:44:21:97:5f:35:
a4:b8:07:61:31:73:5e:31:80:c0:ac:ec:77:76:13:13:b8:a2:
db:e1:da:05:86:56:82:bb:dc:62:1b:58:d0:83:97:16:08:14:
28:7d:86:f8:ba:a8:c8:73:48:4d:bf:69:0a:00:05:c2:46:67:
7d:48:ca:b0:e8:d9:18:65:63:07:89:72:bd:e4:c1:1d:52:b2:
f7:87:66:85:eb:68:de:0e:ae:cc:f6:f9:ed:4f:47:93:d8:9f:
df:75:df:e0:5f:8e:c6:08:b0:5c:5f:44:65:60:a6:8f:57:94:
b7:85:97:e1:c1:57:fd:b5:b6:ef:8e:f6:f8:3b:bf:4a:31:d6:
b5:11:77:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:36 2024 by rpki-client on console-ams.rpki-client.org