Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/yfWMOUOoOjqCAHuqKuA9jsZ4RMU.roa
File: yfWMOUOoOjqCAHuqKuA9jsZ4RMU.roa (raw, json)
Hash identifier: 7mKuei7yvZsIFAggGwjIEW1kWWXdu7WzRiBEzJIG6As=
Subject key identifier: C9:F5:8C:39:43:A8:3A:3A:82:00:7B:AA:2A:E0:3D:8E:C6:78:44:C5
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F1C2B6AAB7F3E321DFB7D2824D8564AA
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/yfWMOUOoOjqCAHuqKuA9jsZ4RMU.roa
Signing time: Thu 08 Dec 2022 12:43:00 +0000
ROA not before: Thu 08 Dec 2022 12:43:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6854
IP address blocks: 212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
188.162.0.0/16 maxlen: 24
80.253.0.0/20 maxlen: 20
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
62.64.16.0/20 maxlen: 20
62.64.24.0/21 maxlen: 21
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
83.222.192.0/19 maxlen: 19
195.5.128.0/19 maxlen: 24
83.229.128.0/17 maxlen: 17
212.44.64.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:c2:b6:aa:b7:f3:e3:21:df:b7:d2:82:4d:85:64:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 12:43:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9f58c3943a83a3a82007baa2ae03d8ec67844c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:1e:f0:15:1f:8f:86:c6:ee:d6:14:d1:61:4d:
1d:c4:41:fa:57:99:7f:6f:18:fb:3c:ad:e2:30:b3:
ed:22:84:e4:0c:68:f9:dd:7f:57:1b:73:dc:2e:14:
ff:2a:a7:24:12:fe:88:cf:59:3b:6e:ea:28:d2:eb:
6a:c5:cd:b5:af:4a:0e:7e:57:1b:f7:ff:e1:92:33:
c8:18:44:30:cd:a3:d9:20:02:ff:06:e9:30:b8:98:
ce:fd:43:f3:58:f7:80:71:61:b9:e5:1a:f0:95:bf:
4e:e3:4b:c5:e9:5d:a4:31:52:fe:78:21:5a:1c:d7:
03:f1:b9:da:19:60:0d:53:f6:99:19:ee:5d:25:f1:
43:3e:06:4c:e7:69:47:d7:b4:01:4c:49:29:fe:36:
63:b9:11:7f:62:64:e6:e3:7c:c4:e7:5b:99:d3:2a:
13:8b:00:1f:91:ec:16:b5:ab:41:ea:da:f3:cf:e1:
5d:64:46:27:c8:fb:b9:97:08:d3:de:05:aa:19:ec:
48:d7:bc:9c:0b:7e:56:61:04:14:1b:b9:ab:99:29:
db:d4:89:bb:6f:9c:e8:1f:4f:f7:81:a4:eb:5f:86:
21:3d:28:ea:f4:f6:b1:1a:1f:2d:4d:eb:45:b5:f6:
ab:23:b9:16:16:b1:c2:26:6d:31:c8:32:90:7c:e4:
c6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:F5:8C:39:43:A8:3A:3A:82:00:7B:AA:2A:E0:3D:8E:C6:78:44:C5
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/yfWMOUOoOjqCAHuqKuA9jsZ4RMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.64.16.0/20
80.253.0.0/20
83.222.192.0/19
83.229.128.0/17
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
59:62:e2:94:7c:cf:9e:42:4e:a6:c6:53:2a:14:c0:32:b5:89:
8e:9b:7b:d3:6d:2c:f8:cc:f4:1b:cb:4a:f8:a9:9b:97:89:53:
5d:db:35:00:bb:82:94:46:61:a1:ad:93:83:e1:a0:61:9e:8f:
9f:af:3e:71:74:d3:4a:d6:69:b4:f0:e1:42:cc:b3:a3:24:43:
ee:66:ff:61:63:b7:f0:7c:f3:4f:9e:d8:60:07:47:ad:07:61:
a0:4f:4e:a0:7f:c9:84:8d:28:0c:bd:67:40:8c:57:48:6f:e5:
7f:d1:05:c0:09:18:bd:b0:d2:24:c2:40:54:a6:97:1f:a7:13:
58:46:2e:e7:c3:25:32:57:6b:72:59:51:b6:ab:7a:22:8c:af:
e9:e8:af:7b:23:1c:92:2d:d8:fd:bf:d6:8b:16:be:46:98:85:
18:ab:e5:29:e0:f7:14:05:7c:45:10:a0:37:64:2e:92:ad:20:
f8:66:8a:97:79:b6:d3:76:c7:b0:4b:ec:92:11:5f:ce:e3:75:
e9:1a:b6:ae:a7:cd:0c:34:3c:9e:9b:de:27:bd:33:aa:e3:0c:
34:e7:d2:a6:85:9b:66:11:35:06:b3:4d:37:3e:89:67:66:bf:
65:b8:de:17:57:37:33:5f:7a:45:77:39:ca:f6:84:fc:ca:f4:
94:ef:30:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:57 2025 by rpki-client