Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/FgmrVOz2VcgcmSwbrY9sZj8tBLs.roa
File: FgmrVOz2VcgcmSwbrY9sZj8tBLs.roa (raw, json)
Hash identifier: Guj07W13fLIjfvyDOadUAMnn7Zjl1KTqC3sdrKmKN6E=
Subject key identifier: 16:09:AB:54:EC:F6:55:C8:1C:99:2C:1B:AD:8F:6C:66:3F:2D:04:BB
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 05B5DB24
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/FgmrVOz2VcgcmSwbrY9sZj8tBLs.roa
Signing time: Sat 29 Jan 2022 06:48:47 +0000
ROA not before: Sat 29 Jan 2022 06:48:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.149.0/24 maxlen: 24
78.159.150.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
45.141.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95804196 (0x5b5db24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jan 29 06:48:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1609ab54ecf655c81c992c1bad8f6c663f2d04bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:54:ef:3e:8d:21:fa:a2:e4:99:ef:ac:ed:ea:
64:41:44:6f:a8:75:53:df:dd:d0:93:eb:46:ed:47:
bd:b7:69:8e:1d:75:30:5a:57:e8:1e:4e:0e:6b:28:
7a:82:1b:c2:5c:74:5f:77:f3:47:0b:6c:4b:c2:af:
eb:43:64:98:cd:66:3f:cd:54:59:f0:cc:c4:4c:1f:
97:54:3f:2d:7a:a2:94:83:ad:5b:c8:96:ff:57:35:
31:5e:7a:3c:ca:07:89:ea:a3:48:79:18:1d:0b:57:
4e:c2:8e:61:61:59:19:13:d0:55:69:fa:e9:c9:38:
c3:f9:7f:20:90:47:f6:bf:f2:df:19:30:a1:e9:8c:
5a:b7:0e:97:d5:13:4c:4f:a1:a5:d3:3a:b2:6a:a2:
e0:e4:01:10:7d:3b:75:55:84:7f:47:5f:28:fb:70:
fc:92:14:7f:eb:fb:70:c2:a0:f0:61:cd:fd:fc:3c:
ef:ac:9b:d4:dd:09:fb:47:09:58:49:19:8b:a6:40:
7f:85:33:2a:ce:ee:de:b4:bf:19:32:1f:47:42:02:
ed:35:8e:6b:e7:2c:7b:a2:b7:8d:c9:05:17:d2:15:
d3:82:70:9b:03:97:87:61:54:96:ae:5f:79:55:02:
58:87:22:3d:a9:a3:4d:29:60:8f:48:a9:20:eb:82:
43:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:09:AB:54:EC:F6:55:C8:1C:99:2C:1B:AD:8F:6C:66:3F:2D:04:BB
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/FgmrVOz2VcgcmSwbrY9sZj8tBLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.235.0/24
78.159.128.0/23
78.159.131.0/24
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/22
78.159.157.0-78.159.158.255
91.92.35.0/24
91.92.40.0/21
93.152.212.0-93.152.214.255
93.152.216.0/24
93.152.220.0/23
93.152.225.0/24
94.26.28.0/23
94.26.76.0/22
185.96.252.0/23
185.96.255.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:cd:a6:cc:f9:0f:bc:8d:c2:34:8f:1c:12:42:bf:51:c8:00:
a4:8b:d2:c4:d6:39:4d:ec:d1:6d:da:0b:02:26:4a:e2:28:a0:
90:ec:b4:d3:a7:f6:b9:e1:72:04:aa:62:70:38:b3:b1:cc:3f:
5c:54:a4:fe:e6:7b:1f:89:0f:33:ee:00:f8:f7:c8:7f:b1:f9:
4e:20:a8:a1:37:0f:f8:d9:d0:6d:d0:ba:0d:d3:5c:5b:07:55:
89:47:60:5d:82:34:4b:c0:8c:5d:63:fc:9c:4e:59:a6:45:5c:
06:27:8d:71:d9:2e:52:97:da:ab:d4:e9:d5:0b:00:a1:bd:12:
bb:ce:2f:d5:fe:97:73:fc:00:fc:a1:40:5d:81:0f:ec:72:da:
d7:e3:76:9f:75:9d:84:f3:51:e7:0e:59:aa:ef:71:87:f7:4b:
34:49:d9:a5:6a:d8:f6:9b:cc:54:05:06:93:67:b0:da:6d:3e:
c7:bb:c6:6a:b1:ca:ec:1f:86:90:4d:b5:e4:a1:ef:ba:68:e0:
7d:1c:25:c1:57:10:b4:1f:52:b4:de:4c:2d:f4:4a:64:40:0a:
4d:36:a2:e1:a4:a9:d8:0d:e7:d5:88:eb:1d:10:dc:6f:d5:f6:
54:b3:d3:20:88:ac:50:b5:b6:60:f0:7b:e5:f7:83:af:2f:99:
53:71:d8:49
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:07 2023 by rpki-client on console-fra.rpki-client.org