Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/FpMlCyo1YgzuCd2u9GeEaFWkS34.roa
File: FpMlCyo1YgzuCd2u9GeEaFWkS34.roa (raw, json)
Hash identifier: s1MTvrR/VrNd8KU0ljH6h+sMEMUov1riDGjC5qzziHw=
Subject key identifier: 16:93:25:0B:2A:35:62:0C:EE:09:DD:AE:F4:67:84:68:55:A4:4B:7E
Certificate issuer: /CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Certificate serial: 03F94D34
Authority key identifier: D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/FpMlCyo1YgzuCd2u9GeEaFWkS34.roa
Signing time: Sat 01 Jan 2022 01:52:25 +0000
ROA not before: Sat 01 Jan 2022 01:52:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29667
IP address blocks: 84.22.27.0/24 maxlen: 24
84.22.28.0/24 maxlen: 24
84.22.25.0/24 maxlen: 24
78.130.136.0/22 maxlen: 22
78.130.142.0/24 maxlen: 24
78.130.140.0/23 maxlen: 23
84.22.2.0/23 maxlen: 23
84.22.4.0/23 maxlen: 23
87.116.96.0/20 maxlen: 20
89.25.112.0/21 maxlen: 21
89.25.16.0/22 maxlen: 22
89.25.24.0/21 maxlen: 21
87.118.142.0/24 maxlen: 24
87.118.156.0/22 maxlen: 22
78.130.132.0/22 maxlen: 22
213.145.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66669876 (0x3f94d34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Validity
Not Before: Jan 1 01:52:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1693250b2a35620cee09ddaef467846855a44b7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2c:2f:3d:9e:e5:3f:c1:ff:03:04:c1:66:51:
32:7e:89:d1:01:11:42:bc:22:e0:41:a4:13:60:bd:
8d:f0:b3:13:fb:e0:d3:00:ba:b4:2e:bf:62:b6:3b:
f7:1e:86:17:26:54:a7:f2:09:f1:c0:c8:f9:c1:e4:
a7:78:be:bc:0e:69:a5:c7:21:44:5e:e8:f5:38:1d:
4d:e7:9a:d7:91:d6:a4:a4:85:bf:d6:6a:87:b9:bb:
03:4b:27:24:b9:be:3a:2e:b2:59:d4:0f:25:93:b3:
82:da:24:ec:81:07:5d:0b:02:7d:a8:b3:4c:f3:56:
6d:78:f0:65:96:55:6e:54:f4:c0:7e:19:e0:c9:81:
cb:52:6b:78:2d:ef:be:ad:9f:3c:24:d9:62:38:78:
4d:d0:dc:02:cd:12:22:02:9a:02:3e:bb:c2:4c:3c:
d0:52:de:6b:88:f7:af:cb:d4:04:8e:98:98:93:f9:
1e:91:e5:71:ca:ce:76:fe:64:45:9c:1f:a9:c7:31:
67:54:0b:08:70:8d:89:26:d5:92:0f:31:40:c5:82:
ef:59:10:79:59:95:11:74:88:21:9e:f1:eb:5f:35:
7b:d7:ed:bc:d8:47:f7:a2:54:86:91:9e:f2:75:2b:
0d:3c:99:3a:aa:41:15:19:05:88:2b:f6:bf:a6:61:
7d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:93:25:0B:2A:35:62:0C:EE:09:DD:AE:F4:67:84:68:55:A4:4B:7E
X509v3 Authority Key Identifier:
keyid:D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/FpMlCyo1YgzuCd2u9GeEaFWkS34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/0H11c6rK6CHIfW02Qxz-SygBq0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.130.132.0-78.130.142.255
84.22.2.0-84.22.5.255
84.22.25.0/24
84.22.27.0-84.22.28.255
87.116.96.0/20
87.118.142.0/24
87.118.156.0/22
89.25.16.0/22
89.25.24.0/21
89.25.112.0/21
213.145.105.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:71:d2:2e:25:31:ae:c4:22:8f:53:b1:e2:4b:82:27:eb:9d:
60:f5:2c:18:77:bb:e1:53:97:b1:7f:01:09:c4:d5:e5:80:60:
c8:bd:70:f9:04:54:75:e9:8a:45:b8:68:73:df:59:fe:a3:3c:
98:83:9a:0a:ff:1e:ce:22:ac:73:1c:c5:87:35:7f:45:94:e1:
15:32:7f:11:76:e8:6a:b5:24:98:e0:51:6e:5a:c7:87:aa:68:
d1:91:b0:7d:32:e3:99:aa:a3:4e:a0:65:46:40:5c:60:aa:d2:
f3:4c:37:0e:a3:de:79:3b:48:fe:d3:d6:c7:c2:5d:bd:ed:fd:
cf:8d:1d:a9:49:1c:f7:cd:73:69:71:bd:e9:29:06:95:cb:f8:
c8:8b:70:e0:40:9f:4f:1b:5b:8f:d6:ff:3b:2f:91:31:4d:cf:
9a:7b:1b:c1:b9:be:6f:ec:c8:bd:62:0a:cc:5c:cb:69:d5:64:
ae:0f:30:1f:88:71:08:bb:14:96:a0:6f:55:80:22:42:e7:dc:
9a:a4:95:06:5d:65:93:c8:49:83:0e:10:36:48:17:73:fc:6c:
df:9e:11:72:9d:25:79:11:96:45:7e:a1:68:61:8b:08:4b:4f:
ee:2c:d5:96:e3:9f:3a:15:87:66:82:29:51:9e:49:bf:58:55:
ed:53:08:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 00:19:13 2025 by rpki-client