Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/uXv89g059VEaDQxHMhlB2VZ7Dfc.roa
File: uXv89g059VEaDQxHMhlB2VZ7Dfc.roa (raw, json)
Hash identifier: R9uZ+czI4QombL8kuF6aaL4MFtL4dD04reeUeNxKOAk=
Subject key identifier: B9:7B:FC:F6:0D:39:F5:51:1A:0D:0C:47:32:19:41:D9:56:7B:0D:F7
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 06E9E214
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/uXv89g059VEaDQxHMhlB2VZ7Dfc.roa
Signing time: Tue 17 May 2022 16:19:29 +0000
ROA not before: Tue 17 May 2022 16:19:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
78.159.130.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.149.0/24 maxlen: 24
78.159.150.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
45.141.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115991060 (0x6e9e214)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: May 17 16:19:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b97bfcf60d39f5511a0d0c47321941d9567b0df7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d3:6a:fa:ff:09:23:32:4f:33:9b:93:81:a6:
c6:14:9e:bd:b4:7f:8e:a1:b5:9e:ad:ee:b5:69:99:
36:6c:8f:48:89:d3:ec:2d:4a:8b:5c:bb:a5:81:1e:
02:13:31:d1:5c:d3:2d:cd:3b:52:06:f1:32:e0:12:
30:05:5b:a3:df:f7:27:55:e2:0e:6b:e1:de:ea:8e:
1a:39:82:73:ee:37:86:5b:73:40:5f:2c:d5:07:ca:
b8:6e:d9:c8:2b:ca:17:e4:9b:76:b1:a6:6d:08:cb:
00:11:f7:f2:b6:1c:0d:50:20:52:1e:f2:99:1e:02:
16:d1:f8:bf:65:42:28:61:1d:bf:0e:3b:be:5e:24:
13:bf:80:be:be:71:8a:64:68:30:b5:65:6c:71:1b:
a3:05:da:36:a0:13:10:96:18:63:e1:5f:98:8c:e8:
17:b4:7a:19:c6:42:6b:43:d2:26:4d:00:6a:db:26:
ef:71:88:f4:e4:9e:34:73:cd:6b:1f:24:7e:e7:6b:
2e:ea:75:65:2d:21:f0:be:a2:cc:6f:77:4f:b0:74:
4e:56:05:8b:48:92:35:e4:76:b0:c8:d3:aa:18:be:
b6:cb:23:76:14:49:2a:2e:b6:26:1f:ab:ef:46:42:
ec:44:51:d9:f0:88:45:23:c6:cf:f7:e7:b2:df:81:
11:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:7B:FC:F6:0D:39:F5:51:1A:0D:0C:47:32:19:41:D9:56:7B:0D:F7
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/uXv89g059VEaDQxHMhlB2VZ7Dfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.234.0/24
78.159.128.0/22
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/22
78.159.157.0-78.159.158.255
91.92.33.0/24
91.92.35.0/24
91.92.40.0/21
91.92.49.0-91.92.53.255
93.152.205.0-93.152.206.255
93.152.209.0-93.152.216.255
93.152.218.0/24
93.152.220.0/23
93.152.223.0-93.152.227.255
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.90.0/24
185.96.252.0/23
185.96.255.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
76:b9:10:dd:64:14:03:82:8f:fe:7e:a8:ab:b7:fd:8a:05:1d:
7c:e1:7c:af:ec:16:03:d6:e9:ff:64:ba:75:57:e5:5f:8f:89:
d2:b9:98:8e:44:0c:49:74:b0:c4:74:b8:64:b3:8b:e5:13:86:
bf:16:be:fd:7e:6f:d5:21:c7:9d:af:75:b0:29:63:d2:43:75:
7b:f7:40:ed:3d:3a:d5:34:0b:bd:71:42:6f:39:29:b8:b2:5a:
59:51:09:68:79:ac:79:10:29:71:24:59:b8:e2:4f:95:66:4e:
22:54:20:7d:f4:74:90:90:a0:10:02:ca:08:85:12:55:34:23:
50:68:b5:3b:2d:ba:c8:76:aa:b6:de:f6:36:36:7d:f6:ac:e3:
9c:8d:25:de:f4:12:da:c7:f4:7d:52:d9:da:82:d4:32:fb:28:
86:0d:3d:85:1f:8d:f1:c8:fd:77:93:77:a2:e8:e7:c9:ca:13:
75:aa:e9:fb:ef:2a:68:cf:ca:b7:56:09:32:5e:f1:9b:1d:c2:
68:b1:a8:66:bd:ec:ed:e7:c9:ab:74:29:6a:54:36:96:11:76:
68:a1:0d:aa:45:64:4b:62:a2:89:75:c8:42:19:ef:d7:e2:73:
6d:ef:7f:e8:30:d9:45:7c:ac:c6:ff:c2:2c:3d:3d:6b:b2:55:
43:a4:1e:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:58 2023 by rpki-client on console-ams.rpki-client.org