Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/2n3m_NnuB_Vf_24oR0B7InL-Ouk.roa
File: 2n3m_NnuB_Vf_24oR0B7InL-Ouk.roa (raw, json)
Hash identifier: CCtd8VXB9+biP2QDg2MQq24uMNfN+B9UC0fdbcuJjms=
Subject key identifier: DA:7D:E6:FC:D9:EE:07:F5:5F:FF:6E:28:47:40:7B:22:72:FE:3A:E9
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 064A9457
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/2n3m_NnuB_Vf_24oR0B7InL-Ouk.roa
Signing time: Thu 17 Mar 2022 07:30:48 +0000
ROA not before: Thu 17 Mar 2022 07:30:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.149.0/24 maxlen: 24
78.159.150.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
94.190.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105550935 (0x64a9457)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Mar 17 07:30:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da7de6fcd9ee07f55fff6e2847407b2272fe3ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b6:d0:ab:be:28:49:d4:5e:08:9d:25:7a:df:
9c:35:3c:fe:a1:04:67:35:81:f7:e7:16:75:0c:35:
ed:b8:41:3a:bf:f2:e9:ea:e1:80:47:de:1a:44:6e:
36:d8:e5:a2:54:3c:9c:68:50:2b:e2:85:c4:2c:f4:
85:a8:d2:a8:a4:1f:f1:67:af:da:e8:1d:4c:aa:15:
7b:69:25:a2:50:67:45:e8:28:ea:fc:a8:d4:7c:b1:
e6:9a:e3:cf:a0:4d:6e:4d:3e:9a:b1:95:1d:14:b3:
6c:e8:64:cd:ae:cf:56:e7:68:41:f5:de:49:06:82:
11:32:9d:67:b5:a7:b1:db:6f:89:c3:0e:a1:c3:36:
05:3d:1a:b6:99:e7:3e:48:3f:9f:5a:62:4b:d7:8f:
c9:b0:15:a0:76:b9:97:d6:e6:54:27:22:8c:67:9a:
55:c5:bc:8d:7e:7d:8e:cc:0a:46:7a:5f:d1:33:e2:
27:d6:c1:a7:33:ed:36:2a:fa:29:fc:73:58:d0:31:
f7:5b:7b:b4:2e:5d:8c:01:76:97:67:14:ad:8c:20:
e1:c8:50:ec:58:c5:e0:cb:43:1d:b4:2e:fd:2c:04:
2d:da:a5:02:e0:1f:7c:af:2d:4f:a8:8e:6d:c8:e0:
61:2b:c6:f2:f8:1a:64:af:a8:d0:c2:50:3d:da:e0:
d5:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:7D:E6:FC:D9:EE:07:F5:5F:FF:6E:28:47:40:7B:22:72:FE:3A:E9
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/2n3m_NnuB_Vf_24oR0B7InL-Ouk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.128.0/23
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/22
78.159.157.0-78.159.158.255
91.92.35.0/24
91.92.40.0/21
91.92.50.0-91.92.53.255
93.152.205.0-93.152.206.255
93.152.209.0/24
93.152.212.0-93.152.216.255
93.152.220.0/23
93.152.224.0-93.152.226.255
94.26.28.0/23
94.26.76.0/22
94.190.195.0/24
185.96.252.0/23
185.96.255.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
90:41:49:38:60:72:7d:0b:bf:92:42:b7:fb:a4:9e:6a:23:24:
94:70:f6:44:f5:24:64:6b:ca:47:e2:07:8a:9e:0f:6b:e0:b5:
02:97:8c:55:35:ff:da:26:ca:13:6c:04:0e:1e:76:ce:21:c9:
97:fd:8f:cf:d3:d5:37:26:be:25:f8:a7:99:6d:b2:f1:86:b7:
5c:6b:53:2c:96:1c:cb:06:ed:87:61:39:82:cf:87:6b:49:6a:
da:f9:b5:da:04:1a:89:32:5a:95:e3:19:a7:83:e6:f7:e8:c4:
19:e1:1d:e4:5b:11:e3:99:40:b8:08:a6:93:ca:2b:82:9e:a6:
55:d9:c1:3c:68:84:00:5e:06:e7:ac:1d:e1:9e:e8:36:cf:9e:
ad:8c:04:83:c8:4e:57:fa:07:df:ea:41:73:81:9a:0f:c2:22:
13:9c:28:4b:c4:3e:ff:11:5f:8a:e2:e2:d0:da:f5:6f:d1:d2:
2d:b7:c1:d0:65:28:dd:b8:c7:18:40:de:4b:50:f0:8c:b9:07:
e4:1d:3e:7a:9b:08:d8:7a:91:92:cc:a6:2b:ad:df:83:4b:a8:
7d:0a:30:b3:76:f4:82:84:51:38:e3:36:4f:b3:c8:57:9e:55:
41:7d:d5:31:24:8a:27:98:d0:5b:db:f7:7c:41:05:f6:14:75:
12:68:ff:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:58 2023 by rpki-client on console-ams.rpki-client.org