Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/j7nkywOwZj2j8PvevnxGnn1hNEo.roa
File: j7nkywOwZj2j8PvevnxGnn1hNEo.roa (raw, json)
Hash identifier: 5YGPTTPjnKHeWjGftZx5xJjfkK0bN0DmT+GlOqQvgxk=
Subject key identifier: 8F:B9:E4:CB:03:B0:66:3D:A3:F0:FB:DE:BE:7C:46:9E:7D:61:34:4A
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 05D4B5C0
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/j7nkywOwZj2j8PvevnxGnn1hNEo.roa
Signing time: Wed 09 Feb 2022 14:59:29 +0000
ROA not before: Wed 09 Feb 2022 14:59:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.149.0/24 maxlen: 24
78.159.150.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97826240 (0x5d4b5c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Feb 9 14:59:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8fb9e4cb03b0663da3f0fbdebe7c469e7d61344a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:42:cf:21:e1:0d:1b:fb:e2:63:d3:41:0d:eb:
5a:78:21:21:52:84:3e:ed:59:b5:b4:78:5c:d1:04:
b5:2a:f9:85:62:6d:63:47:93:ac:e6:42:b7:e8:8c:
c9:7d:32:82:0b:07:40:d0:a6:73:b8:17:9b:6b:1c:
e2:f6:2f:ed:38:f2:91:ca:eb:84:a5:42:4b:13:0e:
69:1c:2d:b2:06:54:2a:fb:89:cb:37:ac:25:e2:61:
6f:c1:2e:3e:7e:48:fe:50:92:a7:f3:d1:cf:60:0d:
e4:bb:2b:be:2b:01:35:71:28:77:8b:5b:e2:9a:0a:
f3:6e:0b:b5:dd:14:a7:97:81:df:6c:8e:b3:33:38:
22:be:4b:05:6d:64:8e:73:57:6f:d9:e5:f5:5d:a9:
91:ea:48:28:84:d6:5a:a9:fd:bd:bf:bc:87:0d:82:
a3:61:36:67:ee:74:d4:ba:63:4d:79:43:f4:8f:58:
14:ec:31:1b:dc:b3:22:c9:c7:4e:af:d9:83:5a:2e:
2e:00:2c:58:d0:5a:7e:8d:a4:95:c7:e6:c5:cf:ec:
fe:c9:e1:25:cf:be:b5:0f:77:23:f2:cc:c5:71:e3:
64:e3:2d:a3:05:5c:a5:0d:9c:a8:db:5d:29:5e:69:
c3:e8:90:85:5c:38:73:7d:82:32:ad:a7:68:27:ab:
8b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B9:E4:CB:03:B0:66:3D:A3:F0:FB:DE:BE:7C:46:9E:7D:61:34:4A
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/j7nkywOwZj2j8PvevnxGnn1hNEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.128.0/23
78.159.131.0/24
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/22
78.159.157.0-78.159.158.255
91.92.33.0/24
91.92.35.0/24
91.92.40.0/21
93.152.212.0-93.152.214.255
93.152.216.0/24
93.152.220.0/23
93.152.225.0/24
94.26.28.0/23
94.26.76.0/22
185.96.252.0/23
185.96.255.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:a3:86:43:77:d3:f4:f1:c1:50:71:91:25:ee:8a:76:e6:13:
3d:4e:05:c0:bf:8f:3a:cc:87:ee:13:f1:f7:53:59:89:21:dc:
6c:5c:0d:fe:a3:14:8a:7f:8a:37:08:80:ca:3a:f3:74:77:a3:
80:d9:ee:93:ba:5f:86:82:2f:ea:ba:3f:73:71:24:54:5f:02:
7e:88:20:9c:aa:da:1f:f0:c5:6f:c2:2c:8b:9e:de:85:3d:2b:
82:1b:d8:35:38:e1:c2:f1:c8:68:7d:db:e1:7c:5c:6e:38:0b:
ad:4b:0c:33:b0:ed:a2:62:4a:4a:22:17:61:86:6c:53:da:ea:
61:d5:4d:0a:06:c6:1f:fc:72:1f:95:61:41:a5:dc:f5:fe:ce:
f9:5c:c1:68:4e:17:96:7c:25:f0:27:3f:42:0a:5a:4e:44:6e:
c0:0a:15:5a:59:1b:7a:38:77:70:70:5c:16:36:37:72:a9:c1:
2f:9d:f7:eb:27:15:e4:99:8b:a1:30:d0:2f:41:08:aa:7c:f4:
32:31:46:3a:0b:9e:6b:aa:5f:05:7a:81:6d:b2:18:e7:28:55:
4b:e3:fb:05:a6:26:f0:07:5f:85:b6:6b:8b:18:4a:ca:0f:b3:
f8:3e:27:c8:ee:eb:30:43:e7:b3:2a:b5:53:a6:2f:3c:b2:45:
c7:6f:48:25
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:55:41 2025 by rpki-client