Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/T5R7Lx2r1Zq9ZvNolLA69P0RK1M.roa
File: T5R7Lx2r1Zq9ZvNolLA69P0RK1M.roa (raw, json)
Hash identifier: l51l/2PHfvijGR+qs/XpwK3e+6wlY7OVBZJ4vGg30YA=
Subject key identifier: 4F:94:7B:2F:1D:AB:D5:9A:BD:66:F3:68:94:B0:3A:F4:FD:11:2B:53
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 06F09405
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/T5R7Lx2r1Zq9ZvNolLA69P0RK1M.roa
Signing time: Thu 19 May 2022 12:06:29 +0000
ROA not before: Thu 19 May 2022 12:06:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211936
IP address blocks: 94.26.90.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116429829 (0x6f09405)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: May 19 12:06:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f947b2f1dabd59abd66f36894b03af4fd112b53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fb:82:dc:2d:c0:7d:8a:a9:49:19:c9:ba:82:
15:60:f3:70:b0:56:38:43:90:5b:f2:89:d6:6a:91:
b6:57:2f:3b:cf:30:b7:e9:e9:bf:58:0e:0a:4c:34:
f7:03:ce:d9:d5:25:30:2d:9c:df:50:81:76:e8:3b:
3a:52:d2:dd:36:95:52:c3:e6:47:41:89:94:9b:8d:
85:22:e0:93:dd:99:4f:47:4a:97:c3:93:5f:1a:79:
dc:bb:4e:15:02:66:46:89:72:c9:f3:99:5c:af:8e:
d7:95:1e:b6:1f:8c:9d:14:65:c3:37:43:32:4b:db:
d3:e7:ae:f4:c0:50:4b:5c:b6:92:b8:a8:3a:04:bf:
c3:79:cd:58:aa:54:62:09:6d:fb:7f:16:d3:0d:89:
d8:a0:c3:aa:c3:8d:c4:05:3b:be:ad:3b:e1:64:f5:
f6:74:19:e1:fb:37:8b:0e:70:1b:ac:03:2e:4c:dc:
72:54:1b:d3:08:c8:48:35:9f:5b:1d:de:6f:d5:7b:
7f:d4:13:07:3f:0f:33:cd:79:ec:37:39:33:97:36:
fd:6f:53:1e:6a:66:fd:fe:ff:73:47:70:7d:49:72:
e3:c2:d8:58:84:15:63:12:de:5b:d5:fe:a4:9b:59:
89:7a:f5:51:dc:15:6f:1d:73:5b:ec:6b:8c:43:08:
70:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:94:7B:2F:1D:AB:D5:9A:BD:66:F3:68:94:B0:3A:F4:FD:11:2B:53
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/T5R7Lx2r1Zq9ZvNolLA69P0RK1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.131.0/24
91.92.33.0/24
91.92.35.0/24
91.92.49.0/24
93.152.205.0/24
93.152.209.0/24
93.152.215.0/24
93.152.221.0/24
93.152.224.0/23
94.26.90.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
95:a0:1d:59:53:55:18:46:f5:f6:2c:0c:0a:f0:03:0f:a2:9e:
6a:ef:7a:8b:0b:f7:e4:77:4b:94:cc:65:62:e8:44:8b:79:23:
32:7f:27:75:46:44:20:ba:11:16:bf:fa:47:8c:e5:d6:a0:b1:
82:21:81:6f:62:bd:03:ae:ce:96:42:f1:d8:9b:e6:94:be:ec:
94:f8:ea:92:5f:50:17:ac:55:9b:c6:66:ee:f8:e0:6a:e8:7a:
cb:62:0c:ef:ce:8b:fa:76:82:d3:2d:24:16:15:94:16:c1:ca:
b1:7a:48:e6:ae:6f:06:44:db:2f:7a:00:8f:f1:f2:dc:3c:7a:
16:be:14:b2:27:13:ca:4d:16:da:7d:45:0d:72:ee:06:67:58:
96:ff:17:06:b8:f3:d2:af:1d:2d:48:21:82:e1:9b:31:5e:f3:
e0:64:67:02:b7:54:8d:e6:06:d7:25:77:db:63:17:7b:3f:28:
e4:52:47:56:fa:85:72:1a:79:00:c1:a6:d4:53:bf:4a:20:4e:
10:85:ac:06:7c:db:79:2e:67:4c:19:08:f1:57:54:7b:6a:9d:
43:4c:8f:9e:ae:00:f6:3c:90:83:fb:57:c0:7a:dc:7e:ad:34:
94:bb:81:da:84:38:50:1e:e7:85:ef:99:e5:bc:6a:06:f4:1b:
e5:d6:bb:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:58 2023 by rpki-client on console-ams.rpki-client.org