Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/zOHU-stws1c9Bvx2Wg8PU6BfP_A.roa
File: zOHU-stws1c9Bvx2Wg8PU6BfP_A.roa (raw, json)
Hash identifier: iqBi0xAYh1/cHkYLoQbDVkgKOmWxvWlUONZBG7Egl5c=
Subject key identifier: CC:E1:D4:FA:CB:70:B3:57:3D:06:FC:76:5A:0F:0F:53:A0:5F:3F:F0
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F127185EDBF2B24755DC12A8620F695E
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/zOHU-stws1c9Bvx2Wg8PU6BfP_A.roa
Signing time: Thu 08 Dec 2022 09:53:01 +0000
ROA not before: Thu 08 Dec 2022 09:53:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8263
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
94.25.128.0/17 maxlen: 24
212.69.96.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
109.74.112.0/20 maxlen: 24
178.176.224.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
178.176.226.0/24 maxlen: 24
178.176.225.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:27:18:5e:db:f2:b2:47:55:dc:12:a8:62:0f:69:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 09:53:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cce1d4facb70b3573d06fc765a0f0f53a05f3ff0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d8:3e:23:ad:17:58:a4:17:54:d6:44:e3:7b:
d9:42:0a:b0:2e:76:7a:cb:96:c6:9e:09:ee:37:37:
88:b9:d7:28:6f:6a:0d:57:f9:7e:5e:c4:ee:38:d7:
5c:52:59:f4:a9:78:a2:7a:ea:54:0e:8d:84:ee:4f:
8f:a8:11:4e:2d:ff:ec:5e:64:b7:19:c5:0a:dd:59:
96:94:36:26:23:57:a3:5d:51:04:61:7b:dd:10:f1:
d4:0c:88:89:67:39:d0:e9:ec:73:4f:de:6f:f2:a9:
a9:37:b8:01:cd:21:29:45:dc:25:60:6f:93:5b:42:
e3:7c:0f:66:8a:13:82:af:d8:4f:86:ed:5b:42:78:
6e:f4:5d:5e:5b:16:4f:4f:84:17:3d:22:34:d9:62:
9b:48:5a:f7:5d:81:4c:71:93:c6:f8:e2:ad:24:45:
37:42:d5:23:67:e9:3f:06:69:2c:4c:37:a0:2f:c4:
b3:7c:72:67:0e:a7:19:95:fe:cd:66:da:bd:a2:1a:
2c:62:89:2e:49:63:a7:4e:a8:8a:e1:b6:df:fa:b6:
d1:56:94:22:d3:b6:d3:df:6b:9a:a1:0d:0b:4c:d4:
88:63:77:b7:ed:3b:66:c9:da:c9:22:03:70:96:b8:
8c:62:96:16:38:57:73:36:21:9c:01:20:6c:02:ba:
27:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:E1:D4:FA:CB:70:B3:57:3D:06:FC:76:5A:0F:0F:53:A0:5F:3F:F0
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/zOHU-stws1c9Bvx2Wg8PU6BfP_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
178.176.224.0-178.176.226.255
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
2c:4f:4c:a1:f8:79:08:25:c5:30:41:2c:00:ba:be:d7:df:4b:
ce:48:ed:7d:0f:8d:f1:17:30:ec:dd:56:ed:34:ae:c3:e8:74:
d2:bb:27:44:da:62:3f:5e:8c:ab:82:b6:a6:20:d6:02:38:49:
47:d9:5e:5a:8e:b0:3c:2b:f0:f6:25:1b:25:57:1f:fc:08:15:
8e:44:18:d2:bb:40:78:ef:37:56:11:53:84:ed:43:51:a0:06:
98:1f:52:8c:63:64:15:e8:a7:ba:ef:9f:f8:ad:20:5b:82:f2:
42:4a:35:68:41:de:f9:52:64:39:b0:ae:95:60:73:58:55:33:
54:67:a7:ff:65:b1:8a:3a:6e:08:2d:15:19:92:65:6b:ab:8a:
74:0e:d8:fd:41:24:b6:79:21:db:ed:28:70:3a:18:06:cc:f3:
e2:e5:f7:16:bf:72:26:01:8c:29:2a:68:ba:1a:49:53:6a:71:
9f:0c:90:bf:81:e3:af:d9:e9:0f:08:6a:42:0f:d3:6e:22:4a:
ea:76:22:4f:2d:74:71:14:06:14:5a:6f:de:ea:a5:02:44:8e:
e9:80:25:af:4e:8e:de:8d:f1:04:20:e7:40:ce:e6:00:0c:0f:
42:4d:25:ac:0b:2b:b1:05:ca:fd:56:ef:75:9f:b8:0e:79:c3:
4c:e9:fe:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:26 2024 by rpki-client on console-fra.rpki-client.org