Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Ur0i3Xw8pQsmVj2jeA-3xhOrO_k.roa
File: Ur0i3Xw8pQsmVj2jeA-3xhOrO_k.roa (raw, json)
Hash identifier: vr/7GZn9AvAdRxU4trkRf0KOaZZfrzfSYgLq6ePAUl0=
Subject key identifier: 52:BD:22:DD:7C:3C:A5:0B:26:56:3D:A3:78:0F:B7:C6:13:AB:3B:F9
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0182D3E1534C59D796D22ED02E7F14BF50DF
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Ur0i3Xw8pQsmVj2jeA-3xhOrO_k.roa
Signing time: Thu 25 Aug 2022 07:22:15 +0000
ROA not before: Thu 25 Aug 2022 07:22:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.89.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
94.190.195.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
93.152.208.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.219.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.150.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
93.152.217.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.222.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
78.159.159.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
78.159.156.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
45.141.232.0/24 maxlen: 24
45.141.233.0/24 maxlen: 24
45.141.235.0/24 maxlen: 24
45.141.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d3:e1:53:4c:59:d7:96:d2:2e:d0:2e:7f:14:bf:50:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Aug 25 07:22:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52bd22dd7c3ca50b26563da3780fb7c613ab3bf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:50:60:5e:51:4e:c6:68:de:2d:b8:14:20:7f:
37:d1:83:16:3f:b6:b5:00:d7:f9:11:2d:2b:25:00:
62:5b:6b:dd:94:be:d6:c6:0f:57:71:e8:a7:89:0b:
4d:23:c2:c5:87:74:cb:0f:53:e0:df:20:7b:a6:b2:
b3:31:fc:86:37:81:46:e2:bd:a0:07:ad:25:f0:9c:
d3:b8:65:7f:36:0e:30:dc:6b:50:0c:ff:3f:80:85:
7e:cd:e0:e4:b8:52:4c:ce:a1:81:9d:8a:f2:c5:f4:
11:8f:87:a3:5d:90:0f:11:36:d8:6f:56:76:df:1d:
48:f1:e8:d7:3d:f5:fd:2a:7f:35:60:60:c6:60:8b:
09:40:d5:67:fb:20:11:f6:d8:8c:00:59:d4:b2:a3:
2a:ee:b9:8f:47:15:20:a5:2b:b2:ea:64:8e:22:5c:
35:a5:f7:23:a6:7f:ea:eb:f4:8a:b6:d1:af:3d:ff:
56:d6:5c:19:c0:46:18:fa:e8:a8:3a:49:e8:6b:e0:
ca:78:11:2d:49:85:fe:96:dd:fa:4a:f1:e4:4a:f9:
3e:5e:1f:ed:86:d0:83:ab:fe:97:46:7b:aa:69:cf:
ee:9a:9c:f4:4a:1f:85:2e:e7:49:9a:68:d0:ad:99:
27:40:e6:8c:3c:72:f1:5c:f9:40:8d:5e:bc:a1:1e:
c5:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:BD:22:DD:7C:3C:A5:0B:26:56:3D:A3:78:0F:B7:C6:13:AB:3B:F9
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Ur0i3Xw8pQsmVj2jeA-3xhOrO_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0/22
78.159.128.0/23
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/21
91.92.33.0-91.92.35.255
91.92.40.0/21
91.92.49.0-91.92.53.255
93.152.205.0-93.152.210.255
93.152.212.0-93.152.227.255
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.89.0-94.26.90.255
94.190.195.0/24
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:86:b0:bc:75:3b:01:86:86:b4:ce:14:f7:61:af:26:c3:fd:
6e:5e:5c:f5:02:b0:b1:1f:f5:3c:77:80:47:d8:e8:bc:a2:a0:
8f:c4:c4:8d:07:2c:a3:2e:66:7d:55:73:21:e0:97:19:13:d6:
a0:f6:70:5f:c6:25:cb:b4:c1:48:4d:05:0a:92:bd:eb:3d:a2:
0a:e8:8e:94:90:ff:c9:cd:2e:ac:a5:75:0b:59:af:40:bc:34:
cb:33:45:dd:33:d5:f5:36:3c:fa:8d:73:f2:79:f2:b4:e8:49:
d2:e7:ba:a1:5f:76:d3:b2:74:2d:6e:7e:4e:65:4a:19:d9:eb:
6a:07:f3:ca:2c:62:a8:ad:04:f4:94:b3:ee:3e:e7:b4:6c:38:
df:2e:c3:30:d3:40:d9:97:21:0c:7a:cc:46:9b:ab:4d:94:1d:
4b:9d:a8:6e:d9:65:b7:ca:ae:07:9b:c2:8b:7d:5e:cd:57:6c:
e7:93:4a:66:c1:33:03:d3:28:ce:d6:a3:69:ef:7d:93:59:00:
83:7d:53:59:ab:68:1a:3a:f1:66:ae:0e:9f:12:ad:26:d0:ea:
66:0c:d2:78:de:b8:cd:9c:fd:89:3a:72:25:c3:aa:f5:10:57:
45:ee:65:1e:b1:62:f6:ae:59:b6:35:da:ea:b0:fc:b3:bd:90:
51:80:57:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:07 2023 by rpki-client on console-fra.rpki-client.org