Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/SBQ7kHjOCXKACm2CmKVqPYllyTI.roa
File: SBQ7kHjOCXKACm2CmKVqPYllyTI.roa (raw, json)
Hash identifier: JGhhOnbpxM98Bm2gNYr/oOWSMEgg7vB+04T9AuPzCSU=
Subject key identifier: 48:14:3B:90:78:CE:09:72:80:0A:6D:82:98:A5:6A:3D:89:65:C9:32
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 071CEA9F
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/SBQ7kHjOCXKACm2CmKVqPYllyTI.roa
Signing time: Fri 03 Jun 2022 18:18:43 +0000
ROA not before: Fri 03 Jun 2022 18:18:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.130.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
93.152.219.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.150.0/24 maxlen: 24
93.152.217.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
45.141.232.0/24 maxlen: 24
45.141.233.0/24 maxlen: 24
45.141.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119335583 (0x71cea9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jun 3 18:18:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48143b9078ce0972800a6d8298a56a3d8965c932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:1d:ac:3d:c9:5f:89:c8:56:18:d1:a2:3c:54:
3b:7e:2a:21:39:a0:ec:1f:08:81:3f:9b:62:d6:95:
aa:71:70:70:11:03:54:cb:c9:6a:39:0e:a0:7f:bc:
ab:e0:21:6e:9f:a2:c6:e6:86:3b:ca:bf:5a:a9:a7:
e6:b3:5e:0b:75:6b:f4:31:0f:02:25:53:c5:68:06:
95:de:cb:45:73:b2:db:19:ab:e8:64:69:93:3b:9d:
86:b1:26:96:e3:70:80:e2:df:d2:19:7e:96:3a:91:
26:60:33:a1:b3:2e:98:fe:49:24:2d:36:ff:7c:cb:
e7:06:f3:ab:3c:e1:27:49:c5:c2:9e:17:83:30:f3:
38:2c:1b:7a:e5:c8:c0:c8:36:4c:08:91:20:e7:51:
82:02:9f:d0:d1:38:e9:92:4e:a6:e9:63:21:e1:29:
96:f6:57:7f:2d:15:b8:42:ca:e6:e9:a2:64:4c:ad:
a3:eb:b9:da:e8:c9:d8:6f:4b:b3:4c:2c:ee:10:3b:
aa:74:7f:5a:85:e3:f8:7f:78:99:34:67:ed:b2:a1:
4b:96:b0:6f:ca:42:5e:94:69:20:d8:a7:27:ad:9f:
0b:29:c5:65:6d:fe:2b:3c:24:4e:1e:8d:42:86:6a:
6a:eb:d8:22:0e:70:77:ed:3d:19:11:4a:20:02:0c:
ed:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:14:3B:90:78:CE:09:72:80:0A:6D:82:98:A5:6A:3D:89:65:C9:32
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/SBQ7kHjOCXKACm2CmKVqPYllyTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0-45.141.234.255
78.159.128.0/22
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/22
78.159.157.0-78.159.158.255
91.92.33.0/24
91.92.35.0/24
91.92.40.0/21
91.92.49.0-91.92.53.255
93.152.205.0/24
93.152.209.0-93.152.215.255
93.152.217.0-93.152.221.255
93.152.223.0-93.152.227.255
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.90.0/24
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
Signature Algorithm: sha256WithRSAEncryption
60:ad:f7:02:b1:17:ad:fa:19:71:50:71:19:49:8c:06:29:0e:
8d:64:02:7a:b8:33:51:7e:f9:3d:ad:13:3d:27:4a:5e:bf:c6:
eb:45:22:16:5c:ca:7e:90:59:e7:de:e9:4f:ef:5e:5b:9b:11:
b7:9f:fa:55:e7:1a:a0:f9:25:50:5f:2f:40:be:6e:70:19:1c:
43:0a:37:f8:0a:39:83:34:6c:e6:cb:39:52:be:02:50:02:a0:
7a:ff:3b:69:5f:c4:ea:32:78:3d:f2:18:90:b9:6d:49:ef:96:
c1:70:7a:d7:7a:f1:9e:aa:e1:2b:2c:6f:0a:4d:3e:2c:42:bd:
59:b9:b6:9d:fa:71:b1:de:41:ad:10:04:40:82:96:a4:99:11:
6b:a9:ea:8a:11:39:a0:c1:05:4b:1f:9e:82:0f:65:44:e4:58:
58:6f:8c:79:67:17:3d:a6:75:ab:ad:a1:22:a9:ec:a0:79:42:
1e:ac:e4:72:ee:0a:c8:f4:b6:a7:6a:8b:ae:35:73:fa:63:06:
11:33:67:b4:c4:a3:10:e2:b3:66:49:8c:34:33:4c:14:f3:af:
a1:5e:61:16:2a:97:73:33:36:2e:a0:cb:b3:a8:45:39:26:4e:
ff:31:39:d7:f7:5a:82:18:31:76:23:6f:ee:9d:70:30:f4:4b:
ec:c0:db:59
-----BEGIN CERTIFICATE-----
MIIFpDCCBIygAwIBAgIEBxzqnzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ZDFjYWE2OTM1OGY4Yzk4ZjdhNzE5ZjI1OTdkNWRhZGRiZDAwMThjMB4XDTIyMDYw
MzE4MTg0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDgxNDNiOTA3OGNl
MDk3MjgwMGE2ZDgyOThhNTZhM2Q4OTY1YzkzMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANwdrD3JX4nIVhjRojxUO34qITmg7B8IgT+bYtaVqnFwcBED
VMvJajkOoH+8q+Ahbp+ixuaGO8q/Wqmn5rNeC3Vr9DEPAiVTxWgGld7LRXOy2xmr
6GRpkzudhrEmluNwgOLf0hl+ljqRJmAzobMumP5JJC02/3zL5wbzqzzhJ0nFwp4X
gzDzOCwbeuXIwMg2TAiRIOdRggKf0NE46ZJOpuljIeEplvZXfy0VuELK5umiZEyt
o+u52ujJ2G9Ls0ws7hA7qnR/WoXj+H94mTRn7bKhS5awb8pCXpRpINinJ62fCynF
ZW3+KzwkTh6NQoZqauvYIg5wd+09GRFKIAIM7W0CAwEAAaOCAr4wggK6MB0GA1Ud
DgQWBBRIFDuQeM4JcoAKbYKYpWo9iWXJMjAfBgNVHSMEGDAWgBQtHKppNY+MmPen
GfJZfV2t29ABjDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0xSeXFhVFdQakpqM3B4bnlXWDFkcmR2UUFZdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGYvYTkzNjk5LTE4OGItNDcwYS05NmI3LTI5YjA4NWRkMjNhZC8x
L1NCUTdrSGpPQ1hLQUNtMkNtS1ZxUFlsbHlUSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGYv
YTkzNjk5LTE4OGItNDcwYS05NmI3LTI5YjA4NWRkMjNhZC8xL0xSeXFhVFdQakpq
M3B4bnlXWDFkcmR2UUFZdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
0wYIKwYBBQUHAQcBAf8EgcMwgcAwgb0EAgABMIG2MAwDBAMtjegDBAAtjeoDBAJO
n4ADBAJOn4gwDAMEAE6flQMEAE6flgMEAk6fmDAMAwQATp+dAwQATp+eAwQAW1wh
AwQAW1wjAwQDW1woMAwDBABbXDEDBAFbXDQDBABdmM0wDAMEAF2Y0QMEA12Y0DAM
AwQAXZjZAwQBXZjcMAwDBABdmN8DBAJdmOADBABdmOYDBAFeGhwDBAJeGkwDBABe
GloDBAG5YPwDBAC5YP8DBADUZmkwDQYJKoZIhvcNAQELBQADggEBAGCt9wKxF636
GXFQcRlJjAYpDo1kAnq4M1F++T2tEz0nSl6/xutFIhZcyn6QWefe6U/vXlubEbef
+lXnGqD5JVBfL0C+bnAZHEMKN/gKOYM0bObLOVK+AlACoHr/O2lfxOoyeD3yGJC5
bUnvlsFwetd68Z6q4SssbwpNPixCvVm5tp36cbHeQa0QBECClqSZEWup6ooROaDB
BUsfnoIPZUTkWFhvjHlnFz2mdautoSKp7KB5Qh6s5HLuCsj0tqdqi641c/pjBhEz
Z7TEoxDis2ZJjDQzTBTzr6FeYRYql3MzNi6gy7OoRTkmTv8xOdf3WoIYMXYjb+6d
cDD0S+zA21k=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:58 2023 by rpki-client on console-ams.rpki-client.org