Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/xgYcgMJZlac0DTpPniOllteuKX8.roa
File: xgYcgMJZlac0DTpPniOllteuKX8.roa (raw, json)
Hash identifier: 3RO6PxK409NJDQHsD4nuTwIhKbWOzYhubeCBqGDSyEA=
Subject key identifier: C6:06:1C:80:C2:59:95:A7:34:0D:3A:4F:9E:23:A5:96:D7:AE:29:7F
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F12728D7541BB24AEB41202DD3E3A54F
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/xgYcgMJZlac0DTpPniOllteuKX8.roa
Signing time: Thu 08 Dec 2022 09:53:05 +0000
ROA not before: Thu 08 Dec 2022 09:53:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47395
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
94.25.128.0/17 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
109.74.112.0/20 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:27:28:d7:54:1b:b2:4a:eb:41:20:2d:d3:e3:a5:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 09:53:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6061c80c25995a7340d3a4f9e23a596d7ae297f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a4:cf:8e:63:47:4c:ec:04:50:25:d2:4c:97:
1c:11:7c:49:a1:ab:c6:66:75:c8:ee:d5:6f:40:74:
27:1b:ca:cf:e9:c2:c5:f3:9d:7f:a8:ee:86:26:15:
da:ae:1e:9a:d1:75:4b:3c:3e:71:f5:12:34:7d:fd:
3a:ae:61:aa:6a:c2:e6:e1:9a:bc:e4:1a:05:71:85:
26:91:e0:73:f7:36:dc:bb:a5:f7:8f:5a:4a:53:cc:
db:db:20:1c:30:31:a0:68:9c:5a:08:2a:aa:5c:72:
9b:a8:21:9f:25:36:b8:4d:fe:03:c2:5c:38:16:c1:
11:45:df:8e:36:21:ab:3e:fa:f6:34:25:7c:d6:3a:
da:aa:d4:dc:6e:df:ac:c4:d0:f4:20:24:f2:47:e3:
b8:b6:ea:c9:83:52:80:cf:ca:ac:8d:84:ff:0b:99:
7e:b1:da:78:39:24:7c:54:b6:62:f7:5c:a2:79:16:
6f:67:5e:c0:ce:cd:a7:49:3b:bb:78:b2:6b:7a:e1:
77:f9:23:07:c2:81:76:7d:cb:fc:6b:5b:db:70:c2:
ed:97:7e:7d:d7:20:b2:24:e8:64:21:88:b3:bc:40:
66:e1:b7:75:64:31:19:eb:a0:59:c4:26:af:dd:ad:
9f:30:a9:5b:66:31:06:e6:b8:15:de:18:32:34:8d:
3a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:06:1C:80:C2:59:95:A7:34:0D:3A:4F:9E:23:A5:96:D7:AE:29:7F
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/xgYcgMJZlac0DTpPniOllteuKX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
34:af:7e:5a:4a:35:db:c1:f6:20:c3:af:49:ac:6a:f9:4d:9c:
89:99:81:55:07:5e:4b:df:63:dc:36:b1:0d:bc:8a:3a:93:f1:
29:ce:c8:50:ee:ad:cf:f5:32:1e:cf:d6:df:7e:7f:da:23:bc:
62:bc:78:2d:cc:10:58:75:fe:47:f0:33:82:2e:52:01:6a:3e:
19:ac:c9:f4:d2:69:60:cd:85:90:e5:89:a3:ef:bd:82:a9:e4:
40:8b:26:cf:c4:33:e9:8a:5e:2d:c0:c0:3c:4c:d0:61:5d:ff:
65:5c:b8:98:10:c0:34:c7:54:15:6c:63:43:6a:41:d9:d0:70:
1e:7b:ef:f1:a1:1f:ac:44:4d:8a:85:d5:a7:50:1d:ae:94:aa:
42:c6:ad:34:67:b3:e0:e8:46:2d:b3:f5:8b:f3:3a:94:cd:02:
57:8f:4a:8f:c2:f3:92:e6:ed:ea:82:94:69:cb:8d:92:4f:a0:
51:40:53:6e:29:ca:a7:27:a2:91:b8:cb:af:19:aa:85:81:c0:
c6:3f:41:97:63:4b:98:dc:90:2b:35:10:58:c8:17:bc:4b:42:
37:e0:88:93:b4:87:c9:b4:87:c6:bd:92:c2:02:df:1e:d2:20:
4d:77:b2:93:5b:09:c3:f2:8b:b1:ba:ad:e4:56:33:05:72:7e:
7b:fc:c1:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:26 2024 by rpki-client on console-fra.rpki-client.org