Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/ObFqzTYwl1xRJdYBKMcOreGQhx0.roa
File: ObFqzTYwl1xRJdYBKMcOreGQhx0.roa (raw, json)
Hash identifier: wL3vutPwrl5+flTD7wcIrRZjWHuc0zoITlNRCsjGEPo=
Subject key identifier: 39:B1:6A:CD:36:30:97:5C:51:25:D6:01:28:C7:0E:AD:E1:90:87:1D
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0181EC3EBCE5D2D8AED78F9871C3665591A7
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/ObFqzTYwl1xRJdYBKMcOreGQhx0.roa
Signing time: Mon 11 Jul 2022 07:52:23 +0000
ROA not before: Mon 11 Jul 2022 07:52:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.89.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
94.190.195.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.130.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
93.152.219.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.150.0/24 maxlen: 24
93.152.217.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.222.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
78.159.159.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
78.159.156.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
45.141.232.0/24 maxlen: 24
45.141.233.0/24 maxlen: 24
45.141.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ec:3e:bc:e5:d2:d8:ae:d7:8f:98:71:c3:66:55:91:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jul 11 07:52:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39b16acd3630975c5125d60128c70eade190871d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e1:a3:4a:00:93:cb:09:65:62:7b:c1:a2:09:
63:ca:cb:e2:d0:94:46:79:98:d3:f1:ea:d8:a7:2c:
76:fb:d2:93:ce:cb:5d:e0:34:ce:26:2e:97:38:71:
2d:43:c6:f5:5b:2a:26:93:c4:ec:a1:8a:00:1c:0c:
aa:1a:18:14:ed:9f:48:be:90:f5:f6:f5:46:a0:e6:
15:6c:fb:b2:10:4b:4c:0d:41:56:0b:69:f5:80:e3:
f8:21:28:3d:3c:ec:9b:33:70:06:8f:d6:88:81:4e:
a8:68:64:c3:22:dd:e2:b6:e3:3d:ad:88:61:1c:e4:
84:ea:ac:9b:b3:11:38:ca:87:3d:dc:c6:26:26:cc:
bc:65:84:8e:7a:d8:7c:e3:0c:5b:58:ab:20:99:f9:
1e:cc:59:77:fc:cf:70:c6:5c:f1:4a:01:45:b7:0d:
eb:14:b4:3f:21:10:35:98:3a:c9:51:2c:ea:fc:24:
5b:dc:7e:5d:ab:3a:d2:05:33:06:90:6c:f8:62:4b:
58:61:94:61:f5:4f:07:b1:7c:c2:ed:7c:3a:f2:95:
c1:0a:fb:89:d4:33:74:d2:f7:a2:64:c7:f3:28:e7:
95:bd:a5:75:dc:b3:1d:96:93:ad:2c:1c:26:d4:e0:
7f:e6:83:c0:f6:1a:2d:c7:78:67:d8:ca:64:3b:84:
25:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B1:6A:CD:36:30:97:5C:51:25:D6:01:28:C7:0E:AD:E1:90:87:1D
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/ObFqzTYwl1xRJdYBKMcOreGQhx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0-45.141.234.255
78.159.128.0/22
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/21
91.92.33.0-91.92.35.255
91.92.40.0/21
91.92.49.0-91.92.53.255
93.152.205.0-93.152.207.255
93.152.209.0-93.152.210.255
93.152.212.0/22
93.152.217.0-93.152.227.255
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.89.0-94.26.90.255
94.190.195.0/24
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
Signature Algorithm: sha256WithRSAEncryption
57:ba:f2:d1:41:64:7a:45:f3:59:0a:31:57:e5:4e:9d:f4:32:
4d:71:64:85:b4:02:81:46:fa:05:9b:00:1c:85:f6:8c:60:4b:
dd:73:42:d5:ec:71:e4:2f:e9:68:77:9c:9e:c4:62:6b:c2:55:
51:e2:c7:04:2d:bd:17:2b:36:84:33:94:47:6f:ce:fc:4a:f6:
f5:85:5a:df:e7:43:6a:dd:15:fc:d4:52:93:d3:9b:08:01:d8:
5e:83:7c:94:83:8f:5c:8c:b3:97:77:18:90:b9:1b:ae:cd:7b:
c1:d3:c0:5b:a7:b4:2d:52:cc:e1:7c:6d:6c:fe:29:90:36:17:
7b:85:58:a1:84:be:c6:9b:f4:a8:5d:c9:e1:b2:25:87:37:a9:
7e:cc:fc:ed:c4:56:70:67:7d:39:1e:71:b6:e7:c4:74:9f:85:
2c:48:b2:46:4e:e4:7b:d3:4c:3b:55:a6:75:d8:15:96:16:b7:
61:10:21:9a:d3:fd:c7:fe:a5:d8:a8:df:78:f4:f1:93:a2:6d:
6d:16:10:f5:02:ce:f9:b2:be:25:c6:19:50:f4:fc:e8:6a:06:
43:b8:40:a7:f1:47:c8:00:80:55:f0:b1:d9:05:46:e9:c3:d0:
df:27:97:e3:16:13:7e:b2:7f:2b:a3:3f:ec:e0:47:0b:fa:1a:
e6:fb:95:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:07 2023 by rpki-client on console-fra.rpki-client.org