Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/y_CGGCydkmfZonOdh-OtyQnjY7Y.roa
File: y_CGGCydkmfZonOdh-OtyQnjY7Y.roa (raw, json)
Hash identifier: KbvVtuGZjKGLrDqOgklZt5XTyWUuPAfAQ0OGRm+hLGk=
Subject key identifier: CB:F0:86:18:2C:9D:92:67:D9:A2:73:9D:87:E3:AD:C9:09:E3:63:B6
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0185053F75895FA6209FB25612C9F7504E43
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/y_CGGCydkmfZonOdh-OtyQnjY7Y.roa
Signing time: Mon 12 Dec 2022 07:32:02 +0000
ROA not before: Mon 12 Dec 2022 07:32:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31205
IP address blocks: 212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.16.96.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
188.170.247.0/24 maxlen: 24
83.149.50.0/24 maxlen: 24
195.78.116.0/23 maxlen: 24
83.149.49.0/24 maxlen: 24
83.149.48.0/24 maxlen: 24
83.149.51.0/24 maxlen: 24
178.176.48.0/24 maxlen: 24
193.201.228.0/22 maxlen: 24
83.169.252.0/22 maxlen: 22
83.169.248.0/22 maxlen: 22
85.26.226.0/24 maxlen: 24
85.26.224.0/24 maxlen: 24
85.26.230.0/24 maxlen: 24
85.26.229.0/24 maxlen: 24
85.26.228.0/24 maxlen: 24
85.26.231.0/24 maxlen: 24
85.26.227.0/24 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
46.232.202.0/23 maxlen: 23
46.232.200.0/24 maxlen: 24
185.210.142.0/23 maxlen: 23
185.210.140.0/23 maxlen: 23
212.119.160.0/19 maxlen: 24
178.176.240.0/22 maxlen: 22
178.176.244.0/22 maxlen: 22
78.25.92.0/23 maxlen: 23
78.25.94.0/23 maxlen: 23
37.29.86.0/23 maxlen: 23
188.170.240.0/22 maxlen: 22
31.173.240.0/23 maxlen: 23
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
128.204.66.0/24 maxlen: 24
31.173.242.0/23 maxlen: 23
128.204.67.0/24 maxlen: 24
31.173.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:3f:75:89:5f:a6:20:9f:b2:56:12:c9:f7:50:4e:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 07:32:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbf086182c9d9267d9a2739d87e3adc909e363b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:52:cd:10:8d:dc:74:74:7a:de:da:ae:d0:81:
c2:dd:c5:fa:e7:a2:8e:63:3b:3b:e9:ac:f6:94:9c:
ac:cd:e6:b4:23:06:61:63:66:13:44:d3:fd:03:b8:
d9:36:75:27:71:c5:f1:d0:a1:a6:71:18:a9:91:63:
4b:40:8b:c6:4b:ff:59:af:88:07:73:3c:7e:a2:68:
aa:3b:82:da:c1:eb:17:b7:15:cd:ab:94:ac:bf:a9:
a4:f4:3f:36:b4:1f:0a:0c:1f:a4:86:7a:51:9a:f0:
db:a9:53:00:ea:29:19:3c:61:07:0a:c8:14:2e:bd:
15:88:90:2e:eb:15:66:8e:4f:8d:9d:ea:d5:a0:9b:
ed:66:be:13:57:1f:9e:22:a1:a7:09:38:72:da:fb:
b8:03:98:12:74:ff:06:0f:b9:13:b3:91:32:27:00:
62:ef:55:3c:dd:76:25:5c:7a:2f:e2:2a:35:67:e8:
db:81:14:cd:fb:86:87:d5:75:08:1e:d4:2c:67:b4:
02:be:41:c2:7a:74:27:b4:3b:56:36:04:85:45:39:
ef:7f:25:4f:74:05:1e:ff:9f:1f:53:33:ce:fa:a7:
2e:d5:78:f4:ff:e1:cd:53:00:e0:90:19:77:ff:20:
ab:cd:35:3f:73:b5:d0:43:45:cb:95:24:f2:09:71:
d2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:F0:86:18:2C:9D:92:67:D9:A2:73:9D:87:E3:AD:C9:09:E3:63:B6
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/y_CGGCydkmfZonOdh-OtyQnjY7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.240.0/21
37.29.86.0/23
46.232.200.0/24
46.232.202.0/23
78.25.92.0/22
83.149.48.0/22
83.169.248.0/21
85.26.224.0/24
85.26.226.0-85.26.231.255
128.204.66.0/23
178.176.48.0/24
178.176.240.0/21
185.210.140.0/22
188.162.0.0/16
188.170.240.0/22
188.170.247.0/24
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
Signature Algorithm: sha256WithRSAEncryption
9d:f2:6f:f7:2e:5c:7f:0c:38:05:52:2c:ae:20:7a:b4:6e:46:
d8:ff:bc:fa:e8:3e:51:b6:6c:da:cc:16:a5:2d:c6:99:64:38:
8d:3e:4b:d0:37:0c:99:98:6f:c1:ab:32:47:c1:a0:57:d9:91:
85:be:c7:42:e0:3e:59:23:e7:80:09:68:02:9b:14:6e:ac:17:
6d:b8:62:3a:2e:f4:4a:8a:ae:1f:ff:34:f9:29:e2:d8:fa:6f:
cf:17:f7:0a:49:28:d2:ad:2b:86:6c:54:9a:ab:8f:72:1c:15:
b8:e8:c5:12:78:13:97:a5:9d:1d:22:5c:a5:52:80:28:64:59:
e4:7d:e5:d0:a8:d3:03:c2:79:4e:6e:39:b5:41:53:aa:87:f4:
d7:19:12:be:1a:04:59:31:a9:17:66:0e:4e:6f:eb:7c:20:9e:
20:d8:5e:93:37:aa:3a:b1:2f:6e:f2:48:49:6f:2a:24:31:b6:
fa:fa:2c:d6:1d:a1:ff:50:51:f8:e0:1b:fc:9a:ae:56:2c:b7:
63:bd:dd:12:da:77:05:95:62:69:bb:94:3c:1a:54:5b:ee:2e:
67:6b:c1:21:b2:b1:54:b2:73:cd:8c:79:51:3a:17:98:e0:49:
e5:66:5f:f6:90:9b:c8:19:79:1f:54:da:e2:0b:c8:ec:05:f6:
cb:51:52:58
-----BEGIN CERTIFICATE-----
MIIFqzCCBJOgAwIBAgISAYUFP3WJX6Ygn7JWEsn3UE5DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjIxMjEyMDczMjAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYmYwODYxODJjOWQ5MjY3ZDlhMjczOWQ4N2UzYWRjOTA5ZTM2M2I2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiVLNEI3cdHR63tqu0IHC3cX656KO
Yzs76az2lJyszea0IwZhY2YTRNP9A7jZNnUnccXx0KGmcRipkWNLQIvGS/9Zr4gH
czx+omiqO4LawesXtxXNq5Ssv6mk9D82tB8KDB+khnpRmvDbqVMA6ikZPGEHCsgU
Lr0ViJAu6xVmjk+NnerVoJvtZr4TVx+eIqGnCThy2vu4A5gSdP8GD7kTs5EyJwBi
71U83XYlXHov4io1Z+jbgRTN+4aH1XUIHtQsZ7QCvkHCenQntDtWNgSFRTnvfyVP
dAUe/58fUzPO+qcu1Xj0/+HNUwDgkBl3/yCrzTU/c7XQQ0XLlSTyCXHSBQIDAQAB
o4ICtzCCArMwHQYDVR0OBBYEFMvwhhgsnZJn2aJznYfjrckJ42O2MB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEveV9DR0dDeWRrbWZab25PZGgtT3R5UW5qWTdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHMBggrBgEFBQcBBwEB/wSBvDCBuTCBtgQCAAEwga8DBAMf
rfADBAElHVYDBAAu6MgDBAEu6MoDBAJOGVwDBAJTlTADBANTqfgDBABVGuAwDAME
AVUa4gMEA1Ua4AMEAYDMQgMEALKwMAMEA7Kw8AMEArnSjAMDALyiAwQCvKrwAwQA
vKr3AwQCwcnkAwQFwwWAAwQFwxBgAwQBw050AwQAw5VvAwQFw+ZAAwQF1A6gAwQF
1CxAAwQF1EVgAwQF1HegAwQF1ZqgAwQF1aggMA0GCSqGSIb3DQEBCwUAA4IBAQCd
8m/3Llx/DDgFUiyuIHq0bkbY/7z66D5RtmzazBalLcaZZDiNPkvQNwyZmG/BqzJH
waBX2ZGFvsdC4D5ZI+eACWgCmxRurBdtuGI6LvRKiq4f/zT5KeLY+m/PF/cKSSjS
rSuGbFSaq49yHBW46MUSeBOXpZ0dIlylUoAoZFnkfeXQqNMDwnlObjm1QVOqh/TX
GRK+GgRZMakXZg5Ob+t8IJ4g2F6TN6o6sS9u8khJbyokMbb6+izWHaH/UFH44Bv8
mq5WLLdjvd0S2ncFlWJpu5Q8GlRb7i5na8EhsrFUsnPNjHlROheY4EnlZl/2kJvI
GXkfVNriC8jsBfbLUVJY
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:33 2025 by rpki-client