Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/zS2Wg6A4ERXYow0s1YOe4Ai-jX4.roa
File: zS2Wg6A4ERXYow0s1YOe4Ai-jX4.roa (raw, json)
Hash identifier: LNzzLECqe3fM+2SMyYRYHHy0kRawpiHFLoNia933/GQ=
Subject key identifier: CD:2D:96:83:A0:38:11:15:D8:A3:0D:2C:D5:83:9E:E0:08:BE:8D:7E
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0621547E
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/zS2Wg6A4ERXYow0s1YOe4Ai-jX4.roa
Signing time: Wed 02 Mar 2022 15:05:51 +0000
ROA not before: Wed 02 Mar 2022 15:05:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 94.26.79.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
91.92.47.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
93.152.212.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
94.26.76.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.149.0/24 maxlen: 24
78.159.150.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102847614 (0x621547e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Mar 2 15:05:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd2d9683a0381115d8a30d2cd5839ee008be8d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8b:59:22:ad:6f:54:0c:80:81:b1:db:3c:73:
77:64:37:a8:49:3f:05:86:37:76:22:b2:fe:45:c0:
44:03:a9:67:65:6c:6f:a1:fd:6d:c4:d6:bc:e3:6b:
22:da:2c:3b:40:9a:1c:c4:9c:1c:14:4e:cf:1f:57:
57:35:53:b8:89:5d:25:9c:ce:a0:30:76:a6:c3:56:
9e:94:59:d3:30:70:11:78:18:db:4c:1c:a5:2e:a6:
be:3e:f5:a5:f7:47:31:86:b9:fa:3b:2a:58:80:c2:
37:1a:5a:39:09:f3:48:c8:a3:81:4e:84:f2:d5:48:
8e:32:d8:42:e2:f6:7e:12:cf:c9:0f:08:38:99:2b:
1e:40:45:94:a4:21:91:61:2b:a3:56:be:2b:87:71:
5e:3d:0b:7f:c2:a7:94:a4:59:74:c7:28:37:89:5a:
45:78:dc:8e:23:0a:ae:49:56:f0:e6:92:cb:73:be:
3a:c0:f7:79:d1:3c:72:4a:b9:a6:0b:ab:65:6b:b8:
f7:5e:45:f2:87:8d:e0:66:cb:90:98:15:8c:77:1c:
eb:15:f1:95:8c:a7:83:13:de:3f:4f:ca:f8:77:4f:
27:b6:82:f1:3e:e4:98:03:2d:4b:34:36:64:e1:fd:
9e:b0:cf:8a:88:f0:b9:6f:32:97:f8:26:ca:fc:a5:
b8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:2D:96:83:A0:38:11:15:D8:A3:0D:2C:D5:83:9E:E0:08:BE:8D:7E
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/zS2Wg6A4ERXYow0s1YOe4Ai-jX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.128.0/23
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/22
78.159.157.0-78.159.158.255
91.92.35.0/24
91.92.40.0/21
91.92.50.0-91.92.53.255
93.152.209.0/24
93.152.212.0-93.152.216.255
93.152.220.0/23
93.152.224.0-93.152.226.255
94.26.28.0/23
94.26.76.0/22
185.96.252.0/23
185.96.255.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:96:8f:1f:6a:1c:e4:13:3b:60:02:4b:e0:d5:a9:82:32:ff:
95:c9:65:8d:5c:dc:ce:c6:63:c9:4b:cb:a7:8a:ee:f6:2d:54:
0f:28:4b:07:d2:c1:76:0c:6c:05:cb:89:39:7f:65:ed:a5:80:
3f:ee:91:9f:d2:26:bc:f1:68:65:c9:a4:13:f7:4b:3c:7c:87:
56:74:45:4c:b8:e1:06:49:18:1f:c8:2d:35:2d:6c:4c:19:c0:
ba:67:6d:97:19:74:e8:11:88:d0:1d:43:b4:8c:bd:84:9d:88:
7e:3b:7d:e8:23:8e:a6:c0:fa:13:b1:92:00:b7:a0:fc:ee:92:
1b:dc:c8:7b:d4:69:a0:c4:62:b0:5a:4e:0f:21:d7:04:25:f5:
8a:da:27:65:20:dd:df:01:43:47:cd:f9:30:13:3e:9f:86:aa:
b7:2a:8a:c7:52:cd:b8:90:38:71:89:6a:51:28:04:fd:25:a3:
87:6e:b8:34:d0:17:5d:dc:46:aa:55:e4:40:72:2d:e3:7f:ab:
d1:3d:5f:40:20:f9:17:28:f8:11:7a:d1:59:a5:3a:af:fd:ed:
b9:ce:7a:e3:91:fc:85:1a:a9:5e:7c:9d:4c:0b:3d:2f:fd:4f:
f3:88:9f:fa:a6:7d:e3:b1:e3:1c:0d:56:77:e1:27:c0:97:e4:
89:bd:b8:86
-----BEGIN CERTIFICATE-----
MIIFfDCCBGSgAwIBAgIEBiFUfjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ZDFjYWE2OTM1OGY4Yzk4ZjdhNzE5ZjI1OTdkNWRhZGRiZDAwMThjMB4XDTIyMDMw
MjE1MDU1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2QyZDk2ODNhMDM4
MTExNWQ4YTMwZDJjZDU4MzllZTAwOGJlOGQ3ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALWLWSKtb1QMgIGx2zxzd2Q3qEk/BYY3diKy/kXARAOpZ2Vs
b6H9bcTWvONrItosO0CaHMScHBROzx9XVzVTuIldJZzOoDB2psNWnpRZ0zBwEXgY
20wcpS6mvj71pfdHMYa5+jsqWIDCNxpaOQnzSMijgU6E8tVIjjLYQuL2fhLPyQ8I
OJkrHkBFlKQhkWEro1a+K4dxXj0Lf8KnlKRZdMcoN4laRXjcjiMKrklW8OaSy3O+
OsD3edE8ckq5pgurZWu4915F8oeN4GbLkJgVjHcc6xXxlYyngxPeP0/K+HdPJ7aC
8T7kmAMtSzQ2ZOH9nrDPiojwuW8yl/gmyvyluOMCAwEAAaOCApYwggKSMB0GA1Ud
DgQWBBTNLZaDoDgRFdijDSzVg57gCL6NfjAfBgNVHSMEGDAWgBQtHKppNY+MmPen
GfJZfV2t29ABjDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0xSeXFhVFdQakpqM3B4bnlXWDFkcmR2UUFZdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGYvYTkzNjk5LTE4OGItNDcwYS05NmI3LTI5YjA4NWRkMjNhZC8x
L3pTMldnNkE0RVJYWW93MHMxWU9lNEFpLWpYNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGYv
YTkzNjk5LTE4OGItNDcwYS05NmI3LTI5YjA4NWRkMjNhZC8xL0xSeXFhVFdQakpq
M3B4bnlXWDFkcmR2UUFZdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
qwYIKwYBBQUHAQcBAf8EgZswgZgwgZUEAgABMIGOAwQBTp+AAwQCTp+IMAwDBABO
n5UDBABOn5YDBAJOn5gwDAMEAE6fnQMEAE6fngMEAFtcIwMEA1tcKDAMAwQBW1wy
AwQBW1w0AwQAXZjRMAwDBAJdmNQDBABdmNgDBAFdmNwwDAMEBV2Y4AMEAF2Y4gME
AV4aHAMEAl4aTAMEAblg/AMEALlg/wMEANRmazANBgkqhkiG9w0BAQsFAAOCAQEA
rZaPH2oc5BM7YAJL4NWpgjL/lclljVzczsZjyUvLp4ru9i1UDyhLB9LBdgxsBcuJ
OX9l7aWAP+6Rn9ImvPFoZcmkE/dLPHyHVnRFTLjhBkkYH8gtNS1sTBnAumdtlxl0
6BGI0B1DtIy9hJ2Ifjt96COOpsD6E7GSALeg/O6SG9zIe9RpoMRisFpODyHXBCX1
itonZSDd3wFDR835MBM+n4aqtyqKx1LNuJA4cYlqUSgE/SWjh264NNAXXdxGqlXk
QHIt43+r0T1fQCD5Fyj4EXrRWaU6r/3tuc5645H8hRqpXnydTAs9L/1P84if+qZ9
47HjHA1Wd+EnwJfkib24hg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:58 2023 by rpki-client on console-ams.rpki-client.org