Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/2cTiNX8v7i6CC86tpNpTa0wWSAI.roa
File: 2cTiNX8v7i6CC86tpNpTa0wWSAI.roa (raw, json)
Hash identifier: QZ0fZmezABWhgGCM5NL0MB41AWfJcQmggEjubGK25FM=
Subject key identifier: D9:C4:E2:35:7F:2F:EE:2E:82:0B:CE:AD:A4:DA:53:6B:4C:16:48:02
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 071185FD
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/2cTiNX8v7i6CC86tpNpTa0wWSAI.roa
Signing time: Mon 30 May 2022 17:07:13 +0000
ROA not before: Mon 30 May 2022 17:07:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.130.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.150.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
45.141.232.0/24 maxlen: 24
45.141.233.0/24 maxlen: 24
45.141.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118588925 (0x71185fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: May 30 17:07:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9c4e2357f2fee2e820bceada4da536b4c164802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9b:ed:ed:c2:f3:9f:a2:c1:0d:88:2e:75:44:
7f:09:f0:bb:e2:3f:38:4d:fe:67:9d:09:20:5a:04:
19:57:82:3f:e9:09:15:2b:3f:84:db:a8:3d:ca:2f:
9d:d9:23:87:21:ee:a1:6b:e6:66:1e:22:1a:39:22:
79:4b:dc:c2:1d:df:b5:c2:a7:73:e8:3b:24:46:ca:
14:55:f3:9c:eb:08:34:3c:19:c6:94:f4:e3:10:4e:
fd:72:21:08:a1:1b:66:ca:9e:3d:66:57:e7:51:6d:
50:b6:d0:14:e3:d6:fa:45:0c:2e:e6:14:b0:a6:4d:
87:63:08:8a:8c:dc:0f:41:80:c5:fa:e7:22:8f:96:
02:36:01:46:3f:63:af:2e:ba:a9:99:c0:77:0a:0f:
85:87:b5:5b:7f:76:2a:a2:ec:e4:ed:73:7f:2a:68:
4c:d7:60:32:fd:49:b5:ee:1c:b3:c8:40:51:22:0e:
dd:43:b3:f1:52:df:68:cb:79:d3:5e:b7:ae:25:ec:
88:db:08:f0:4f:9a:2a:95:db:39:9a:ae:c6:d7:0f:
0f:36:98:b8:ae:95:13:03:73:35:65:83:0f:a5:e0:
32:e5:3e:8c:5e:33:9c:3c:79:3b:45:68:4e:3b:15:
89:ce:14:22:3f:42:2f:03:aa:ca:0e:52:8d:f2:fa:
79:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:C4:E2:35:7F:2F:EE:2E:82:0B:CE:AD:A4:DA:53:6B:4C:16:48:02
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/2cTiNX8v7i6CC86tpNpTa0wWSAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0-45.141.234.255
78.159.128.0/22
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/22
78.159.157.0-78.159.158.255
91.92.33.0/24
91.92.35.0/24
91.92.40.0/21
91.92.49.0-91.92.53.255
93.152.205.0-93.152.206.255
93.152.209.0-93.152.216.255
93.152.218.0/24
93.152.220.0/23
93.152.223.0-93.152.227.255
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.90.0/24
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
Signature Algorithm: sha256WithRSAEncryption
13:15:19:09:ae:3e:d4:80:ee:87:ad:22:f7:05:12:92:a5:40:
75:be:74:8c:70:e7:40:f8:d3:b6:c7:04:ee:42:25:e6:39:ce:
a0:4c:fb:c3:35:b2:c6:b8:36:d6:3a:37:5e:1d:8e:22:ca:d7:
79:b8:c2:5f:17:17:ac:b0:03:2a:a7:83:86:72:8e:00:2a:b9:
f7:16:42:07:c3:b2:28:63:e1:a6:c1:b0:44:e3:a3:6a:46:9e:
66:4a:e7:a3:0e:d0:bc:5d:99:db:9e:96:7c:dd:e4:94:da:51:
53:a4:ea:2d:e1:69:f1:05:18:a3:f5:d1:64:e0:d0:c5:bf:9c:
dc:fa:3f:08:db:f1:d2:ce:fe:da:29:f1:98:b6:72:16:6b:b9:
f3:e8:c5:00:65:d4:28:1e:cb:ef:5e:12:03:9a:2d:fa:2b:5b:
fb:93:14:d3:4d:c7:9b:1e:f4:0d:f6:a0:d9:0c:c9:40:4d:36:
bc:1d:93:14:19:e7:93:a1:99:47:14:47:96:2e:27:b4:67:c1:
e2:3a:90:5c:d8:11:b6:36:eb:9c:43:1a:4b:b9:f4:27:37:c3:
d2:9a:12:bd:78:f8:60:a0:2a:44:da:0d:31:1f:af:7c:54:fa:
ac:03:df:fa:2c:c8:a7:de:39:b5:9a:18:b4:a3:f4:27:c9:d7:
5b:80:0a:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:55:26 2025 by rpki-client