Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/M8AOcicZ78KwkvOLW0iZL2lZ46w.roa
File: M8AOcicZ78KwkvOLW0iZL2lZ46w.roa (raw, json)
Hash identifier: a8GOgXI5TWtNPxIfc4zHfa8MxBi3bKF7lKtKcqM4XKM=
Subject key identifier: 33:C0:0E:72:27:19:EF:C2:B0:92:F3:8B:5B:48:99:2F:69:59:E3:AC
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0691CB22
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/M8AOcicZ78KwkvOLW0iZL2lZ46w.roa
Signing time: Tue 12 Apr 2022 19:02:40 +0000
ROA not before: Tue 12 Apr 2022 19:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.149.0/24 maxlen: 24
78.159.150.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
45.141.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110218018 (0x691cb22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Apr 12 19:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33c00e722719efc2b092f38b5b48992f6959e3ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bb:d9:91:d8:54:9d:de:d6:bf:8c:d3:c6:44:
0d:77:79:1b:c5:47:22:4b:3d:7f:e1:cb:d8:81:7b:
99:82:2d:1e:fa:bc:8b:8c:7f:8c:0a:cb:61:cb:1f:
42:45:cb:9d:19:57:68:71:e6:46:af:8f:c4:41:b3:
fa:39:37:24:15:19:37:5c:a2:74:4d:1f:82:72:8b:
29:fe:af:71:05:5b:e7:f8:33:83:de:eb:21:d4:06:
92:01:23:fc:66:02:b6:17:74:bf:e0:90:cc:47:22:
96:7d:cd:7d:32:f4:f0:a0:1d:e2:22:1d:64:50:fb:
17:68:66:82:7b:27:ff:1f:7c:4a:b7:bb:17:df:92:
2b:fe:cd:c4:dd:ec:0d:a4:95:26:74:c3:1b:0b:4e:
0d:40:ba:be:82:a7:58:39:f9:8f:2f:c6:47:81:5e:
96:ae:64:43:51:60:ef:8e:05:87:3c:78:23:34:34:
b9:20:4b:bb:4b:be:6a:8a:07:92:fb:06:50:a4:18:
37:db:ce:68:4c:67:c5:38:a1:a2:b1:b9:f2:25:e7:
4b:54:70:69:b8:5d:e9:ef:9e:52:05:a8:43:5a:76:
87:fe:1a:cf:12:b0:62:34:58:9d:67:a0:61:cd:16:
f0:87:3d:e6:1e:5b:98:05:c2:79:77:7c:bb:22:31:
43:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:C0:0E:72:27:19:EF:C2:B0:92:F3:8B:5B:48:99:2F:69:59:E3:AC
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/M8AOcicZ78KwkvOLW0iZL2lZ46w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.234.0/24
78.159.128.0/23
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/22
78.159.157.0-78.159.158.255
91.92.35.0/24
91.92.40.0/21
91.92.50.0-91.92.53.255
93.152.205.0-93.152.206.255
93.152.209.0-93.152.216.255
93.152.218.0/24
93.152.220.0/23
93.152.223.0-93.152.227.255
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.90.0/24
185.96.252.0/23
185.96.255.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
08:18:23:5e:ee:61:fa:88:4a:88:49:19:ef:66:a5:4b:0f:a3:
c9:d1:14:a3:32:04:66:3b:44:01:e0:99:c0:79:40:b3:8b:13:
44:17:3c:74:c3:8b:8b:05:12:2e:97:d5:2d:f2:62:d4:18:31:
fc:78:d9:45:54:fd:5c:72:4b:9b:37:01:8f:be:ad:30:fa:47:
69:c5:ab:a6:30:d5:ff:22:30:92:f6:1a:6b:4c:81:5a:59:3c:
4e:89:af:19:8d:e4:79:2d:b3:e9:d0:95:dd:31:42:d8:74:39:
b5:bc:e8:66:84:4c:49:2d:2d:c7:ce:8d:7e:69:86:34:e4:50:
ff:20:7a:7f:00:a0:39:d5:68:fd:db:01:9a:0e:7a:a4:0c:5c:
7a:b4:a3:88:53:24:6b:77:09:85:4b:6b:1c:0d:84:25:ed:c4:
9a:b4:3a:c6:0d:01:3c:a4:f9:42:01:6d:db:14:e7:7a:be:90:
19:af:90:43:94:0b:48:09:9b:2d:61:38:74:94:89:66:a6:aa:
ae:c8:66:69:f5:e8:ab:b9:f3:f8:ae:b7:29:f8:b2:74:5d:c9:
69:07:c7:27:b5:82:03:bd:25:a7:61:97:97:85:75:70:59:59:
60:c0:2d:2c:94:e0:24:66:f6:62:db:43:13:91:0c:7b:be:22:
32:23:eb:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:58 2023 by rpki-client on console-ams.rpki-client.org