Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/mQJhqwe9IbZnaJMt-hTy9MV7P10.roa
File: mQJhqwe9IbZnaJMt-hTy9MV7P10.roa (raw, json)
Hash identifier: fNwcZOH2bquuyJWYwXGsLHviT4ktJYmNyfldd8+m21k=
Subject key identifier: 99:02:61:AB:07:BD:21:B6:67:68:93:2D:FA:14:F2:F4:C5:7B:3F:5D
Certificate issuer: /CN=174847f8667d52fa2cf9cf9afcc43a07915575ca
Certificate serial: 01852A2326E7422D3A17FEFC4869E7AB9829
Authority key identifier: 17:48:47:F8:66:7D:52:FA:2C:F9:CF:9A:FC:C4:3A:07:91:55:75:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/mQJhqwe9IbZnaJMt-hTy9MV7P10.roa
Signing time: Mon 19 Dec 2022 11:27:04 +0000
ROA not before: Mon 19 Dec 2022 11:27:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15685
IP address blocks: 82.208.56.0/24 maxlen: 24
82.208.58.0/24 maxlen: 24
82.208.60.0/22 maxlen: 24
109.123.202.0/23 maxlen: 24
109.123.205.0/24 maxlen: 24
82.208.4.0/22 maxlen: 22
109.123.206.0/23 maxlen: 24
82.208.8.0/22 maxlen: 22
109.123.208.0/22 maxlen: 24
82.208.14.0/24 maxlen: 24
109.123.216.0/21 maxlen: 24
82.208.16.0/23 maxlen: 23
82.208.17.0/24 maxlen: 24
82.208.12.0/24 maxlen: 24
82.208.16.0/24 maxlen: 24
109.123.214.0/23 maxlen: 24
82.208.18.0/24 maxlen: 24
82.208.28.0/23 maxlen: 23
82.208.26.0/23 maxlen: 23
82.208.32.0/22 maxlen: 22
82.208.44.0/24 maxlen: 24
82.208.39.0/24 maxlen: 24
82.208.40.0/23 maxlen: 23
82.208.50.0/24 maxlen: 24
82.208.46.0/23 maxlen: 23
82.208.48.0/23 maxlen: 23
217.11.254.0/24 maxlen: 24
217.11.224.0/23 maxlen: 23
217.11.230.0/24 maxlen: 24
217.11.232.0/23 maxlen: 23
217.11.227.0/24 maxlen: 24
217.11.228.0/23 maxlen: 23
217.11.236.0/24 maxlen: 24
217.11.235.0/24 maxlen: 24
217.11.246.0/23 maxlen: 23
217.11.242.0/23 maxlen: 23
217.11.251.0/24 maxlen: 24
217.11.248.0/23 maxlen: 23
109.123.192.0/21 maxlen: 24
81.0.217.0/24 maxlen: 24
81.0.214.0/24 maxlen: 24
81.0.226.0/24 maxlen: 24
81.0.225.0/24 maxlen: 24
81.0.230.0/23 maxlen: 23
77.78.96.0/20 maxlen: 20
81.0.232.0/21 maxlen: 21
77.78.94.0/23 maxlen: 23
81.0.228.0/24 maxlen: 24
81.0.240.0/22 maxlen: 22
77.78.112.0/21 maxlen: 21
81.0.250.0/24 maxlen: 24
77.78.123.0/24 maxlen: 24
77.78.124.0/22 maxlen: 22
81.0.254.0/23 maxlen: 23
85.239.227.0/24 maxlen: 24
81.0.192.0/22 maxlen: 22
81.0.199.0/24 maxlen: 24
81.0.206.0/23 maxlen: 23
77.78.76.0/22 maxlen: 22
85.239.252.0/23 maxlen: 23
81.0.208.0/23 maxlen: 23
81.0.212.0/23 maxlen: 23
2001:1528::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:23:26:e7:42:2d:3a:17:fe:fc:48:69:e7:ab:98:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=174847f8667d52fa2cf9cf9afcc43a07915575ca
Validity
Not Before: Dec 19 11:27:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=990261ab07bd21b66768932dfa14f2f4c57b3f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:00:f9:77:35:31:8b:28:f2:90:f6:93:fb:fd:
d0:07:a6:04:6e:b4:48:0e:62:8c:8c:98:a6:08:b8:
3a:ef:8b:a3:f9:34:06:22:ac:03:fe:92:28:a1:dc:
68:39:9d:4a:26:82:3a:47:c5:6e:fd:0e:94:43:ca:
cd:50:d0:17:c9:e8:89:c7:7c:b4:b0:f8:45:61:1c:
c6:d0:f4:26:9b:32:f2:b5:81:69:b6:a6:f7:d6:ad:
1d:45:eb:0a:e9:60:ba:e0:8d:a6:d5:0c:f0:41:9d:
81:a3:46:b5:1c:5b:1a:fb:5a:8e:0e:e2:82:39:59:
28:42:6a:9a:4b:c2:92:98:2a:07:96:12:a6:bc:ef:
95:78:8f:5a:32:51:25:f2:a7:83:1d:a1:e6:72:5a:
97:4f:9a:02:7f:2b:45:82:5b:f8:27:63:07:55:37:
db:b2:43:db:c7:6a:b7:f2:43:54:b1:92:47:01:c2:
07:dc:08:bf:7f:f9:bb:d8:f3:33:83:00:e6:b3:ae:
b9:be:51:44:8a:c7:2b:da:3b:e9:27:4e:7c:76:fa:
90:fd:b5:84:fa:cd:e5:bc:c9:ce:0f:dc:75:c5:24:
37:b5:c5:e3:94:d0:d0:1f:92:42:f1:66:29:c3:c1:
e5:1b:b2:ec:7a:54:11:a4:90:7e:51:23:d2:80:84:
55:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:02:61:AB:07:BD:21:B6:67:68:93:2D:FA:14:F2:F4:C5:7B:3F:5D
X509v3 Authority Key Identifier:
keyid:17:48:47:F8:66:7D:52:FA:2C:F9:CF:9A:FC:C4:3A:07:91:55:75:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/mQJhqwe9IbZnaJMt-hTy9MV7P10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.78.76.0/22
77.78.94.0-77.78.119.255
77.78.123.0-77.78.127.255
81.0.192.0/22
81.0.199.0/24
81.0.206.0-81.0.209.255
81.0.212.0-81.0.214.255
81.0.217.0/24
81.0.225.0-81.0.226.255
81.0.228.0/24
81.0.230.0-81.0.243.255
81.0.250.0/24
81.0.254.0/23
82.208.4.0-82.208.12.255
82.208.14.0/24
82.208.16.0-82.208.18.255
82.208.26.0-82.208.29.255
82.208.32.0/22
82.208.39.0-82.208.41.255
82.208.44.0/24
82.208.46.0-82.208.50.255
82.208.56.0/24
82.208.58.0/24
82.208.60.0/22
85.239.227.0/24
85.239.252.0/23
109.123.192.0/21
109.123.202.0/23
109.123.205.0-109.123.211.255
109.123.214.0-109.123.223.255
217.11.224.0/23
217.11.227.0-217.11.230.255
217.11.232.0/23
217.11.235.0-217.11.236.255
217.11.242.0/23
217.11.246.0-217.11.249.255
217.11.251.0/24
217.11.254.0/24
IPv6:
2001:1528::/32
Signature Algorithm: sha256WithRSAEncryption
57:eb:94:73:d6:52:71:b8:99:e6:03:16:e3:45:a8:87:4e:c2:
8f:6d:d8:c7:b7:77:b3:d8:5c:ee:6e:0c:ad:cf:c6:6a:f8:3c:
04:34:a7:62:2f:95:44:85:16:e3:60:db:64:85:e0:d3:db:7b:
4d:f3:ed:60:29:10:f9:54:b4:37:d2:8a:e4:d5:ee:54:4d:9b:
cd:42:3d:58:d8:b4:f7:65:cb:7d:a3:be:95:39:4d:90:d5:72:
4c:f3:6c:fb:91:48:67:2b:3e:c6:6a:99:15:0d:01:a3:f7:8f:
0b:83:a0:f9:84:a6:3b:a0:63:f4:d0:98:1a:1e:9f:2c:5c:9f:
ab:67:88:b5:c4:1f:56:17:8c:7c:c0:7b:92:37:47:0a:64:9f:
71:25:1d:79:6b:1e:a1:16:e9:81:31:c2:e6:77:eb:aa:77:4b:
16:0f:90:97:11:02:9c:ba:66:0a:27:ba:51:c4:e1:5f:9b:26:
07:cc:2f:8e:86:01:fe:e9:d4:91:9b:2a:dc:e1:93:0d:7f:50:
70:bd:e3:4e:e0:aa:33:21:b6:f8:1d:b8:95:cd:1d:9c:29:c8:
1d:2d:0e:a0:66:8a:f3:23:62:20:0d:fb:bd:d8:ab:4c:89:72:
a5:37:58:53:c0:41:4a:b1:4f:d0:f7:70:83:4f:3c:39:c6:9b:
17:c8:f6:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:54 2025 by rpki-client