Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/JPpr6qeQoGRDmxTk0rjOCtlO9ks.roa
File: JPpr6qeQoGRDmxTk0rjOCtlO9ks.roa (raw, json)
Hash identifier: o/mwgOz4fns0mZpcqZyG0g8pt+plQtnJURK8sVVJX9k=
Subject key identifier: 24:FA:6B:EA:A7:90:A0:64:43:9B:14:E4:D2:B8:CE:0A:D9:4E:F6:4B
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 06EB6E85
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/JPpr6qeQoGRDmxTk0rjOCtlO9ks.roa
Signing time: Wed 18 May 2022 07:36:16 +0000
ROA not before: Wed 18 May 2022 07:36:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.130.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.149.0/24 maxlen: 24
78.159.150.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
45.141.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116092549 (0x6eb6e85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: May 18 07:36:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24fa6beaa790a064439b14e4d2b8ce0ad94ef64b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fb:9b:08:43:5a:41:9f:2a:2f:88:72:89:a8:
04:99:82:21:45:c7:9c:f9:2a:7e:6b:38:00:ce:ce:
c2:ce:bb:08:11:63:57:bb:ad:35:e7:42:1f:c9:22:
1e:06:49:f4:6b:b1:19:ef:1d:19:ee:bd:c8:2d:d0:
e2:56:ce:c3:05:63:3b:89:04:8e:c7:76:91:5e:d1:
4d:49:56:9e:2b:f9:bc:4a:69:1b:d3:4b:f2:7a:54:
e0:8e:e0:9c:92:8a:06:bf:5b:95:93:13:32:e2:1b:
ed:b7:1b:f9:86:f3:57:1c:37:55:56:1c:7f:c0:05:
24:9e:ee:a2:e9:6c:e0:2b:5b:64:59:c6:9a:aa:54:
75:35:14:7f:f7:46:90:8a:fd:44:ab:11:f9:7a:ba:
6a:f9:11:f6:e4:7a:68:4b:31:80:36:6c:56:df:12:
d0:ac:dd:de:ba:55:24:b9:77:b4:31:ac:ee:00:6d:
ce:61:27:3d:7e:6f:1c:60:66:1d:70:63:ed:be:dd:
a0:15:62:f6:d4:0e:c1:f0:ef:72:9c:3e:ec:f5:b3:
af:d2:1b:dd:60:3c:cb:ba:f7:6d:cc:93:8e:67:2b:
ab:94:b6:3d:c6:dd:e5:25:5f:90:a8:e0:37:92:61:
1d:1d:26:28:20:e9:e0:35:cd:e8:2d:cf:e5:ca:af:
84:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:FA:6B:EA:A7:90:A0:64:43:9B:14:E4:D2:B8:CE:0A:D9:4E:F6:4B
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/JPpr6qeQoGRDmxTk0rjOCtlO9ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.234.0/24
78.159.128.0/22
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/22
78.159.157.0-78.159.158.255
91.92.33.0/24
91.92.35.0/24
91.92.40.0/21
91.92.49.0-91.92.53.255
93.152.205.0-93.152.206.255
93.152.209.0-93.152.216.255
93.152.218.0/24
93.152.220.0/23
93.152.223.0-93.152.227.255
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.90.0/24
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:10:0e:9c:72:e3:d9:0f:3e:82:75:75:f3:be:18:c0:47:62:
83:1c:f1:78:c7:c0:0c:09:8d:9f:f1:f4:8a:76:6e:e7:a5:15:
74:d2:3b:f9:95:81:f8:b7:21:1c:d5:8a:9d:55:df:b9:e3:86:
34:19:1b:b0:61:15:fc:b4:e7:83:63:02:dc:f1:63:6d:c9:5c:
e3:9f:a9:cd:4e:22:cc:dd:93:9c:7f:f5:83:0e:29:b2:52:9e:
18:da:db:3e:5e:64:74:bf:09:3d:64:98:69:4b:d6:be:f6:06:
46:17:b1:eb:58:b3:53:66:3f:03:91:ac:2b:eb:6f:58:38:b2:
f0:49:bc:e2:7f:ca:a8:a3:90:fc:82:62:5f:df:ab:76:f3:1e:
35:d0:4e:fa:7b:1a:e5:b7:a7:d8:df:92:6b:17:89:0f:30:ce:
ac:e8:44:e1:7b:0c:9d:7c:50:e8:9d:64:f2:46:2c:ed:e6:1a:
89:01:38:0a:b8:03:d7:c1:19:6a:17:57:97:91:55:39:61:b4:
ae:32:ac:06:f6:30:83:0f:ac:b8:c7:ae:84:74:7b:00:6a:39:
83:f0:65:15:b5:f7:fa:4c:df:19:1c:e9:32:0e:eb:05:02:0a:
c1:98:b3:65:22:86:5c:c5:72:2d:db:59:2e:a4:20:99:46:68:
95:19:35:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:58 2023 by rpki-client on console-ams.rpki-client.org