Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/mHUkzVDURAToHzjA-U0JibKwKcI.roa
File: mHUkzVDURAToHzjA-U0JibKwKcI.roa (raw, json)
Hash identifier: Obg6QdpKeVFQUoYoLQn7Ob5XAjZOAeIKF2MMuGBeG18=
Subject key identifier: 98:75:24:CD:50:D4:44:04:E8:1F:38:C0:F9:4D:09:89:B2:B0:29:C2
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 06F42E80
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/mHUkzVDURAToHzjA-U0JibKwKcI.roa
Signing time: Fri 20 May 2022 04:02:29 +0000
ROA not before: Fri 20 May 2022 04:02:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.130.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.149.0/24 maxlen: 24
78.159.150.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
45.141.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116665984 (0x6f42e80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: May 20 04:02:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=987524cd50d44404e81f38c0f94d0989b2b029c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8a:5c:18:9e:0b:42:71:44:59:b8:af:96:a4:
cb:6c:dd:e7:09:00:e4:6b:b9:5f:05:f5:59:f2:29:
96:b6:c9:2f:07:85:3d:ac:98:5d:1a:1f:d3:75:03:
36:89:e9:3f:2a:14:c3:79:0f:e8:f9:ae:a5:87:2c:
b6:88:07:67:63:1f:e1:3d:bd:b3:2f:ed:10:8e:8f:
68:2e:5b:ef:59:f8:28:ff:6c:15:59:46:1d:11:b4:
f7:90:de:3d:74:8e:32:fe:fa:e7:0b:f7:73:f5:6d:
47:6c:f3:d2:c9:76:45:40:1f:c4:70:58:77:01:71:
0c:f0:fd:33:9e:ce:12:82:2b:20:79:88:4e:01:aa:
47:5b:d6:99:92:02:1a:92:80:52:b2:35:81:d8:74:
31:85:58:4f:05:c5:45:f8:c8:3b:ae:ea:61:0a:c0:
db:d6:37:10:2b:ea:73:fa:04:50:24:b2:35:79:75:
27:fb:24:ec:8e:67:ea:52:34:ac:1a:5a:eb:9b:71:
e7:86:db:e6:2a:7b:d8:04:6f:41:ed:a4:82:42:94:
1b:37:9e:8f:32:a8:11:c5:bb:b7:2e:6b:07:0f:6f:
f5:07:49:75:58:20:ed:ff:ac:54:dd:28:64:06:2a:
19:bf:8b:71:0e:24:23:0c:72:62:37:db:20:37:c8:
08:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:75:24:CD:50:D4:44:04:E8:1F:38:C0:F9:4D:09:89:B2:B0:29:C2
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/mHUkzVDURAToHzjA-U0JibKwKcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.234.0/24
78.159.128.0/22
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/22
78.159.157.0-78.159.158.255
91.92.33.0/24
91.92.35.0/24
91.92.40.0/21
91.92.49.0-91.92.53.255
93.152.205.0-93.152.206.255
93.152.209.0-93.152.216.255
93.152.218.0/24
93.152.220.0/23
93.152.223.0-93.152.227.255
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.90.0/24
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
Signature Algorithm: sha256WithRSAEncryption
09:b1:05:88:1f:d3:28:8a:e9:30:f7:ba:b7:34:e7:f0:be:4b:
66:05:fc:f4:d5:b3:87:76:e8:71:e4:5d:0a:1f:00:0a:fc:60:
e1:a7:04:06:e1:e5:25:20:6f:6a:5e:fc:58:77:ca:30:20:35:
9c:cd:3c:7b:ad:a2:cf:98:5b:4c:c2:d4:1b:6f:3b:48:db:46:
3e:fb:ae:a7:d0:09:ca:7e:28:7c:60:ab:32:d5:c2:bf:34:8a:
d3:d6:87:4e:fb:3d:9a:07:4a:a8:1e:f8:77:33:8e:41:40:bc:
f9:1e:2c:6c:80:b4:b6:10:a3:49:cb:4e:96:2a:c3:83:46:ac:
d7:3a:19:ad:00:d4:2c:0b:8b:e3:90:e7:f1:6c:ca:7b:18:db:
5e:dd:44:e2:a4:01:3a:a0:8a:83:0b:10:68:0d:76:a0:ee:bb:
57:ab:a8:0c:14:d0:e6:a8:94:ee:24:08:2e:78:29:7b:24:16:
02:21:e8:b9:1e:da:70:fe:46:45:e2:d3:bf:65:eb:94:25:5b:
57:e9:fb:b6:4a:a7:ff:3b:de:28:06:a6:ee:26:f5:46:d3:ad:
78:40:a3:a8:4f:bd:b0:4c:9e:4b:d6:41:79:5d:c9:f6:27:ea:
2f:9f:68:41:6f:e2:af:e3:52:12:0d:1e:5e:7c:b4:37:66:5c:
16:11:35:74
-----BEGIN CERTIFICATE-----
MIIFojCCBIqgAwIBAgIEBvQugDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ZDFjYWE2OTM1OGY4Yzk4ZjdhNzE5ZjI1OTdkNWRhZGRiZDAwMThjMB4XDTIyMDUy
MDA0MDIyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTg3NTI0Y2Q1MGQ0
NDQwNGU4MWYzOGMwZjk0ZDA5ODliMmIwMjljMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKCKXBieC0JxRFm4r5aky2zd5wkA5Gu5XwX1WfIplrbJLweF
PayYXRof03UDNonpPyoUw3kP6PmupYcstogHZ2Mf4T29sy/tEI6PaC5b71n4KP9s
FVlGHRG095DePXSOMv765wv3c/VtR2zz0sl2RUAfxHBYdwFxDPD9M57OEoIrIHmI
TgGqR1vWmZICGpKAUrI1gdh0MYVYTwXFRfjIO67qYQrA29Y3ECvqc/oEUCSyNXl1
J/sk7I5n6lI0rBpa65tx54bb5ip72ARvQe2kgkKUGzeejzKoEcW7ty5rBw9v9QdJ
dVgg7f+sVN0oZAYqGb+LcQ4kIwxyYjfbIDfICAECAwEAAaOCArwwggK4MB0GA1Ud
DgQWBBSYdSTNUNREBOgfOMD5TQmJsrApwjAfBgNVHSMEGDAWgBQtHKppNY+MmPen
GfJZfV2t29ABjDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0xSeXFhVFdQakpqM3B4bnlXWDFkcmR2UUFZdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGYvYTkzNjk5LTE4OGItNDcwYS05NmI3LTI5YjA4NWRkMjNhZC8x
L21IVWt6VkRVUkFUb0h6akEtVTBKaWJLd0tjSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGYv
YTkzNjk5LTE4OGItNDcwYS05NmI3LTI5YjA4NWRkMjNhZC8xL0xSeXFhVFdQakpq
M3B4bnlXWDFkcmR2UUFZdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
0QYIKwYBBQUHAQcBAf8EgcEwgb4wgbsEAgABMIG0AwQALY3qAwQCTp+AAwQCTp+I
MAwDBABOn5UDBABOn5YDBAJOn5gwDAMEAE6fnQMEAE6fngMEAFtcIQMEAFtcIwME
A1tcKDAMAwQAW1wxAwQBW1w0MAwDBABdmM0DBABdmM4wDAMEAF2Y0QMEAF2Y2AME
AF2Y2gMEAV2Y3DAMAwQAXZjfAwQCXZjgAwQAXZjmAwQBXhocAwQCXhpMAwQAXhpa
AwQBuWD8AwQAuWD/AwQA1GZpMA0GCSqGSIb3DQEBCwUAA4IBAQAJsQWIH9Moiukw
97q3NOfwvktmBfz01bOHduhx5F0KHwAK/GDhpwQG4eUlIG9qXvxYd8owIDWczTx7
raLPmFtMwtQbbztI20Y++66n0AnKfih8YKsy1cK/NIrT1odO+z2aB0qoHvh3M45B
QLz5HixsgLS2EKNJy06WKsODRqzXOhmtANQsC4vjkOfxbMp7GNte3UTipAE6oIqD
CxBoDXag7rtXq6gMFNDmqJTuJAgueCl7JBYCIei5Htpw/kZF4tO/ZeuUJVtX6fu2
Sqf/O94oBqbuJvVG0614QKOoT72wTJ5L1kF5Xcn2J+ovn2hBb+Kv41ISDR5efLQ3
ZlwWETV0
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:07 2023 by rpki-client on console-fra.rpki-client.org