Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Dw1E7X3BFzqSWGJ2pSdRwaxteac.roa
File: Dw1E7X3BFzqSWGJ2pSdRwaxteac.roa (raw, json)
Hash identifier: W/y3i13y9f3vkp1/bSQ0MzMtPmN845LuJUK0qCJ9wkk=
Subject key identifier: 0F:0D:44:ED:7D:C1:17:3A:92:58:62:76:A5:27:51:C1:AC:6D:79:A7
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 063F76CB
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Dw1E7X3BFzqSWGJ2pSdRwaxteac.roa
Signing time: Sat 12 Mar 2022 17:45:11 +0000
ROA not before: Sat 12 Mar 2022 17:45:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.149.0/24 maxlen: 24
78.159.150.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
94.190.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104822475 (0x63f76cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Mar 12 17:45:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f0d44ed7dc1173a92586276a52751c1ac6d79a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1b:66:c3:29:01:98:79:81:20:47:92:b3:ab:
cb:42:27:9e:fa:d5:7c:84:50:8c:c1:c9:63:c5:bf:
e7:fb:01:8b:d2:fb:43:eb:40:20:16:40:82:e2:31:
dc:55:bd:1f:ec:6f:3f:d5:33:a0:87:15:84:dd:50:
f2:58:6e:11:e7:88:a8:6d:c0:2b:b8:48:0f:66:93:
bc:1d:5f:7b:f2:af:cf:44:de:7a:ea:3d:69:0f:51:
45:07:ea:93:50:2d:1f:08:b5:91:60:4a:0a:51:83:
58:b8:98:f2:55:9e:d5:f8:d9:b7:81:a2:59:3b:3b:
5a:48:ad:05:ff:58:95:cf:c0:73:54:9f:64:6f:29:
de:6d:ee:70:9d:5b:c0:ea:ea:27:39:c3:cb:a8:ed:
1f:e8:8a:03:64:a2:47:04:2e:3c:db:cd:8e:90:77:
8a:c9:83:d1:f0:b9:a6:69:60:4f:36:a3:cb:72:d4:
0d:69:42:bd:c8:7e:5f:7c:c7:e7:8f:71:d2:b1:b1:
06:df:60:79:7e:0b:69:5d:45:63:d0:c4:bd:81:23:
5f:47:18:1d:73:6d:a5:17:81:9b:31:34:2f:45:ae:
92:a1:2d:60:f5:5f:b3:b4:6e:a8:06:fa:4f:67:8d:
0c:43:46:bc:54:2f:ba:7b:be:96:81:7f:92:97:e2:
3b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:0D:44:ED:7D:C1:17:3A:92:58:62:76:A5:27:51:C1:AC:6D:79:A7
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Dw1E7X3BFzqSWGJ2pSdRwaxteac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.128.0/23
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/22
78.159.157.0-78.159.158.255
91.92.35.0/24
91.92.40.0/21
91.92.50.0-91.92.53.255
93.152.206.0/24
93.152.209.0/24
93.152.212.0-93.152.216.255
93.152.220.0/23
93.152.224.0-93.152.226.255
94.26.28.0/23
94.26.76.0/22
94.190.195.0/24
185.96.252.0/23
185.96.255.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
36:7b:92:4a:c7:eb:86:15:96:67:00:67:0e:8c:2c:3d:48:92:
64:52:38:17:54:b1:54:0b:cc:37:b8:19:99:77:3a:1f:d5:97:
93:4c:4a:ae:8c:fc:7e:a2:5a:3b:0e:9c:22:d8:72:31:44:b7:
2c:de:fb:33:56:15:74:3b:2e:ce:8f:f4:e8:b0:53:dd:fc:6a:
40:d2:86:51:f1:3a:d5:64:7d:e1:fa:ec:60:df:e5:f3:7c:b7:
bd:f6:ed:e9:ea:da:b1:f2:8e:6c:54:14:0c:8c:56:05:9b:70:
66:36:fe:19:70:91:0e:f4:07:76:91:d7:a9:c2:6f:05:91:d2:
54:3b:62:db:96:77:d8:17:ff:28:ef:ff:95:44:71:61:a9:d3:
91:4c:31:6a:71:3e:ae:1a:cf:5d:d8:81:49:e7:d6:30:65:58:
e1:05:b1:b3:33:9d:26:b8:89:00:e6:d1:5f:95:a4:6a:82:94:
b8:41:26:2d:15:96:60:73:03:72:4d:00:dd:b6:a5:d1:5c:0a:
8a:f8:56:a1:34:dc:22:dd:47:54:11:5e:2c:0e:14:0d:54:9b:
c6:36:bc:62:5c:6e:43:c1:c9:62:ce:24:58:07:73:28:48:bf:
dc:f9:fd:36:1a:02:bf:f8:4e:82:49:89:30:19:b6:42:3c:4e:
09:a9:14:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:07 2023 by rpki-client on console-fra.rpki-client.org