Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/2wCxiB3rrueT5DdaSQ6keejVwSA.roa
File: 2wCxiB3rrueT5DdaSQ6keejVwSA.roa (raw, json)
Hash identifier: sD2P03X09dVmUbMq4PqLrwicQyhtXmEwsncM9j+vtmg=
Subject key identifier: DB:00:B1:88:1D:EB:AE:E7:93:E4:37:5A:49:0E:A4:79:E8:D5:C1:20
Certificate issuer: /CN=17dd9c23af69ec2cdb6fe2b9936eb494cfd1621f
Certificate serial: 09437D71
Authority key identifier: 17:DD:9C:23:AF:69:EC:2C:DB:6F:E2:B9:93:6E:B4:94:CF:D1:62:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F92cI69p7Czbb-K5k260lM_RYh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/2wCxiB3rrueT5DdaSQ6keejVwSA.roa
Signing time: Sat 01 Jan 2022 16:02:40 +0000
ROA not before: Sat 01 Jan 2022 16:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44444
IP address blocks: 157.167.200.0/24 maxlen: 24
157.167.10.0/24 maxlen: 24
157.167.11.0/24 maxlen: 24
157.167.13.0/24 maxlen: 24
157.167.14.0/24 maxlen: 24
157.167.12.0/24 maxlen: 24
157.167.17.0/24 maxlen: 24
157.167.15.0/24 maxlen: 24
157.167.16.0/24 maxlen: 24
157.167.20.0/24 maxlen: 24
157.167.21.0/24 maxlen: 24
157.167.18.0/24 maxlen: 24
157.167.19.0/24 maxlen: 24
157.167.24.0/24 maxlen: 24
157.167.22.0/24 maxlen: 24
157.167.23.0/24 maxlen: 24
157.167.27.0/24 maxlen: 24
157.167.28.0/24 maxlen: 24
157.167.25.0/24 maxlen: 24
157.167.26.0/24 maxlen: 24
157.167.31.0/24 maxlen: 24
157.167.29.0/24 maxlen: 24
157.167.30.0/24 maxlen: 24
157.167.34.0/24 maxlen: 24
157.167.35.0/24 maxlen: 24
157.167.32.0/24 maxlen: 24
157.167.33.0/24 maxlen: 24
157.167.38.0/24 maxlen: 24
157.167.36.0/24 maxlen: 24
157.167.37.0/24 maxlen: 24
157.167.93.0/24 maxlen: 24
157.167.94.0/24 maxlen: 24
157.167.92.0/24 maxlen: 24
157.167.97.0/24 maxlen: 24
157.167.95.0/24 maxlen: 24
157.167.96.0/24 maxlen: 24
157.167.98.0/24 maxlen: 24
157.167.104.0/24 maxlen: 24
157.167.102.0/24 maxlen: 24
157.167.103.0/24 maxlen: 24
157.167.105.0/24 maxlen: 24
157.167.100.0/24 maxlen: 24
157.167.101.0/24 maxlen: 24
157.167.99.0/24 maxlen: 24
157.167.111.0/24 maxlen: 24
157.167.109.0/24 maxlen: 24
157.167.110.0/24 maxlen: 24
157.167.112.0/24 maxlen: 24
157.167.107.0/24 maxlen: 24
157.167.108.0/24 maxlen: 24
157.167.106.0/24 maxlen: 24
157.167.118.0/24 maxlen: 24
157.167.116.0/24 maxlen: 24
157.167.117.0/24 maxlen: 24
157.167.114.0/24 maxlen: 24
157.167.115.0/24 maxlen: 24
157.167.113.0/24 maxlen: 24
157.167.121.0/24 maxlen: 24
157.167.122.0/24 maxlen: 24
157.167.119.0/24 maxlen: 24
157.167.120.0/24 maxlen: 24
157.167.125.0/24 maxlen: 24
157.167.123.0/24 maxlen: 24
157.167.124.0/24 maxlen: 24
157.167.128.0/24 maxlen: 24
157.167.126.0/24 maxlen: 24
157.167.127.0/24 maxlen: 24
157.167.41.0/24 maxlen: 24
157.167.42.0/24 maxlen: 24
157.167.39.0/24 maxlen: 24
157.167.40.0/24 maxlen: 24
157.167.43.0/24 maxlen: 24
157.167.44.0/24 maxlen: 24
157.167.48.0/24 maxlen: 24
157.167.49.0/24 maxlen: 24
157.167.46.0/24 maxlen: 24
157.167.47.0/24 maxlen: 24
157.167.50.0/24 maxlen: 24
157.167.51.0/24 maxlen: 24
157.167.45.0/24 maxlen: 24
157.167.55.0/24 maxlen: 24
157.167.56.0/24 maxlen: 24
157.167.53.0/24 maxlen: 24
157.167.54.0/24 maxlen: 24
157.167.58.0/24 maxlen: 24
157.167.57.0/24 maxlen: 24
157.167.52.0/24 maxlen: 24
157.167.62.0/24 maxlen: 24
157.167.63.0/24 maxlen: 24
157.167.60.0/24 maxlen: 24
157.167.61.0/24 maxlen: 24
157.167.64.0/24 maxlen: 24
157.167.59.0/24 maxlen: 24
157.167.65.0/24 maxlen: 24
157.167.66.0/24 maxlen: 24
157.167.69.0/24 maxlen: 24
157.167.70.0/24 maxlen: 24
157.167.67.0/24 maxlen: 24
157.167.68.0/24 maxlen: 24
157.167.71.0/24 maxlen: 24
157.167.76.0/24 maxlen: 24
157.167.77.0/24 maxlen: 24
157.167.74.0/24 maxlen: 24
157.167.75.0/24 maxlen: 24
157.167.78.0/24 maxlen: 24
157.167.72.0/24 maxlen: 24
157.167.73.0/24 maxlen: 24
157.167.79.0/24 maxlen: 24
157.167.80.0/24 maxlen: 24
157.167.83.0/24 maxlen: 24
157.167.84.0/24 maxlen: 24
157.167.81.0/24 maxlen: 24
157.167.82.0/24 maxlen: 24
157.167.85.0/24 maxlen: 24
157.167.90.0/24 maxlen: 24
157.167.88.0/24 maxlen: 24
157.167.89.0/24 maxlen: 24
157.167.91.0/24 maxlen: 24
157.167.86.0/24 maxlen: 24
157.167.87.0/24 maxlen: 24
86.111.222.0/24 maxlen: 24
86.111.223.0/24 maxlen: 24
85.115.39.0/24 maxlen: 24
85.115.44.0/24 maxlen: 24
85.115.41.0/24 maxlen: 24
85.115.42.0/24 maxlen: 24
85.115.49.0/24 maxlen: 24
85.115.46.0/24 maxlen: 24
85.115.47.0/24 maxlen: 24
85.115.45.0/24 maxlen: 24
85.115.53.0/24 maxlen: 24
85.115.54.0/24 maxlen: 24
85.115.52.0/24 maxlen: 24
85.115.56.0/24 maxlen: 24
85.115.58.0/24 maxlen: 24
85.115.62.0/24 maxlen: 24
85.115.63.0/24 maxlen: 24
85.115.60.0/24 maxlen: 24
85.115.61.0/24 maxlen: 24
85.115.36.0/24 maxlen: 24
85.115.37.0/24 maxlen: 24
85.115.34.0/24 maxlen: 24
85.115.35.0/24 maxlen: 24
85.115.38.0/24 maxlen: 24
85.115.32.0/24 maxlen: 24
85.115.33.0/24 maxlen: 24
2001:4010::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155417969 (0x9437d71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17dd9c23af69ec2cdb6fe2b9936eb494cfd1621f
Validity
Not Before: Jan 1 16:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db00b1881debaee793e4375a490ea479e8d5c120
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d0:87:67:af:db:37:d3:25:5f:32:dc:4a:41:
68:7f:2e:18:0e:32:92:7b:80:66:45:05:a6:54:4f:
fc:24:ab:4f:d0:f4:16:b4:a0:70:6e:c2:54:dd:70:
74:de:f6:f5:58:d8:f1:f2:65:38:85:c0:9c:2a:2d:
bd:d7:b0:e3:11:15:cc:91:09:8d:6e:0d:84:3a:cd:
7f:54:d5:ed:05:ed:8b:e7:41:06:3f:7b:fe:54:d2:
c3:ba:e1:08:f4:93:4d:01:44:a3:6b:6c:03:00:9a:
88:34:1f:a6:a4:64:34:ee:6a:e9:c2:b1:0e:96:1e:
d2:3e:2b:96:86:99:96:23:53:45:b5:81:f4:b7:fd:
b6:64:a3:44:de:2c:6a:91:59:f3:23:92:63:1b:b9:
94:09:4a:97:1f:aa:40:f0:d9:e3:cb:11:43:c2:33:
30:5e:b9:90:c3:a7:b0:d7:0c:f2:85:9c:af:0d:e9:
16:94:db:e2:1b:e5:5e:6f:f7:3f:a4:ed:c4:4e:5d:
5a:5d:ae:03:ac:3d:77:99:ed:f7:a0:c9:2d:40:b1:
3b:47:13:6c:cd:d5:8c:b8:7e:2c:e4:21:0b:fd:cf:
be:b0:05:68:98:c3:18:0c:5e:71:26:ca:52:3e:52:
fa:0b:56:f4:c3:48:26:e3:26:df:3e:56:cc:82:8f:
4e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:00:B1:88:1D:EB:AE:E7:93:E4:37:5A:49:0E:A4:79:E8:D5:C1:20
X509v3 Authority Key Identifier:
keyid:17:DD:9C:23:AF:69:EC:2C:DB:6F:E2:B9:93:6E:B4:94:CF:D1:62:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F92cI69p7Czbb-K5k260lM_RYh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/2wCxiB3rrueT5DdaSQ6keejVwSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/F92cI69p7Czbb-K5k260lM_RYh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.32.0/21
85.115.41.0-85.115.42.255
85.115.44.0/22
85.115.49.0/24
85.115.52.0-85.115.54.255
85.115.56.0/24
85.115.58.0/24
85.115.60.0/22
86.111.222.0/23
157.167.10.0-157.167.128.255
157.167.200.0/24
IPv6:
2001:4010::/32
Signature Algorithm: sha256WithRSAEncryption
90:1e:35:12:e5:59:b4:01:c3:36:39:38:b9:24:28:05:c7:45:
c2:bc:fb:b8:77:24:56:b7:84:f9:a7:d0:60:1b:82:a6:6b:f2:
e6:1b:bc:d4:5f:16:56:71:ef:19:a1:82:b2:48:45:44:cc:a5:
05:82:78:15:47:c6:19:c3:8e:19:4b:0d:c9:ec:3a:36:2e:c9:
1b:be:fe:1c:05:f8:59:5b:79:63:71:38:5d:67:ef:4f:dd:fe:
62:d1:0e:d7:83:34:29:7c:18:ac:5a:da:f9:3b:96:3b:ed:0b:
69:b4:38:52:83:2e:4e:85:de:ea:ad:bf:1a:2f:4c:68:8c:17:
fa:ba:51:cb:2a:19:a1:b7:50:5a:27:71:22:3e:f6:9f:45:a3:
52:a4:b7:d2:af:ae:e0:26:0f:2c:d4:cc:7f:d1:81:76:92:46:
c1:a1:75:21:7d:68:93:07:1a:a9:d1:22:97:42:f3:d8:ee:9c:
08:a6:a7:73:e0:75:cc:48:f4:dc:78:21:db:9b:5f:99:29:49:
fc:e8:22:f8:ba:0c:6b:54:09:e0:b8:0c:f9:9f:3e:45:e5:64:
cc:ff:aa:8c:a8:8a:be:e1:f2:f6:30:55:6c:cc:d5:61:7e:2a:
6a:8c:e2:01:a5:aa:97:a4:d9:b1:1b:97:06:73:30:9b:24:34:
7f:8d:f2:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:21 2024 by rpki-client on console-fra.rpki-client.org