Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/d15a62-e2ff-404d-a94c-7fdbf6fb0df8/1/2wLMV8gVNp20-20w-kYMD0N9DrM.roa
File: 2wLMV8gVNp20-20w-kYMD0N9DrM.roa (raw, json)
Hash identifier: YUQFuNTZP4eW0c/OJz14Kk4kDRgG/YuIuekbGGOMxtg=
Subject key identifier: DB:02:CC:57:C8:15:36:9D:B4:FB:6D:30:FA:46:0C:0F:43:7D:0E:B3
Certificate issuer: /CN=78d778fe5754dc3e16d92270424be21b9281ec72
Certificate serial: 33EF81FE
Authority key identifier: 78:D7:78:FE:57:54:DC:3E:16:D9:22:70:42:4B:E2:1B:92:81:EC:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eNd4_ldU3D4W2SJwQkviG5KB7HI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/d15a62-e2ff-404d-a94c-7fdbf6fb0df8/1/2wLMV8gVNp20-20w-kYMD0N9DrM.roa
Signing time: Sat 01 Jan 2022 11:56:53 +0000
ROA not before: Sat 01 Jan 2022 11:56:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51018
IP address blocks: 178.22.36.0/22 maxlen: 22
178.22.32.0/22 maxlen: 22
178.22.32.0/21 maxlen: 21
95.159.97.0/24 maxlen: 24
95.159.95.0/24 maxlen: 24
95.159.96.0/20 maxlen: 20
95.159.96.0/24 maxlen: 24
95.159.93.0/24 maxlen: 24
95.159.94.0/24 maxlen: 24
95.159.92.0/24 maxlen: 24
95.159.98.0/24 maxlen: 24
95.159.104.0/24 maxlen: 24
95.159.102.0/24 maxlen: 24
95.159.104.0/22 maxlen: 22
95.159.103.0/24 maxlen: 24
95.159.100.0/24 maxlen: 24
95.159.101.0/24 maxlen: 24
95.159.99.0/24 maxlen: 24
95.159.105.0/24 maxlen: 24
95.159.111.0/24 maxlen: 24
95.159.109.0/24 maxlen: 24
95.159.110.0/24 maxlen: 24
95.159.107.0/24 maxlen: 24
95.159.108.0/24 maxlen: 24
95.159.106.0/24 maxlen: 24
95.159.112.0/24 maxlen: 24
95.159.117.0/24 maxlen: 24
95.159.118.0/24 maxlen: 24
95.159.116.0/24 maxlen: 24
95.159.114.0/24 maxlen: 24
95.159.115.0/24 maxlen: 24
95.159.112.0/21 maxlen: 21
95.159.112.0/20 maxlen: 20
95.159.113.0/24 maxlen: 24
95.159.124.0/24 maxlen: 24
95.159.125.0/24 maxlen: 24
95.159.123.0/24 maxlen: 24
95.159.120.0/21 maxlen: 21
95.159.121.0/24 maxlen: 24
95.159.122.0/24 maxlen: 24
95.159.119.0/24 maxlen: 24
95.159.120.0/24 maxlen: 24
95.159.126.0/24 maxlen: 24
95.159.127.0/24 maxlen: 24
95.159.64.0/20 maxlen: 20
95.159.64.0/24 maxlen: 24
95.159.69.0/24 maxlen: 24
95.159.70.0/24 maxlen: 24
95.159.67.0/24 maxlen: 24
95.159.68.0/24 maxlen: 24
95.159.65.0/24 maxlen: 24
95.159.66.0/24 maxlen: 24
95.159.64.0/18 maxlen: 18
95.159.71.0/24 maxlen: 24
95.159.76.0/24 maxlen: 24
95.159.74.0/24 maxlen: 24
95.159.75.0/24 maxlen: 24
95.159.72.0/24 maxlen: 24
95.159.73.0/24 maxlen: 24
95.159.77.0/24 maxlen: 24
95.159.78.0/24 maxlen: 24
95.159.83.0/24 maxlen: 24
95.159.81.0/24 maxlen: 24
95.159.82.0/24 maxlen: 24
95.159.82.0/23 maxlen: 23
95.159.84.0/22 maxlen: 22
95.159.84.0/23 maxlen: 23
95.159.84.0/24 maxlen: 24
95.159.85.0/24 maxlen: 24
95.159.79.0/24 maxlen: 24
95.159.80.0/24 maxlen: 24
95.159.80.0/23 maxlen: 23
95.159.80.0/22 maxlen: 22
95.159.80.0/20 maxlen: 20
95.159.90.0/24 maxlen: 24
95.159.91.0/24 maxlen: 24
95.159.88.0/22 maxlen: 22
95.159.88.0/23 maxlen: 23
95.159.88.0/24 maxlen: 24
95.159.89.0/24 maxlen: 24
95.159.86.0/24 maxlen: 24
95.159.86.0/23 maxlen: 23
95.159.87.0/24 maxlen: 24
194.180.40.0/24 maxlen: 24
194.180.40.0/22 maxlen: 22
2a01:58a0::/32 maxlen: 32
2a01:58a0:100::/40 maxlen: 40
2a01:58a0::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 871334398 (0x33ef81fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78d778fe5754dc3e16d92270424be21b9281ec72
Validity
Not Before: Jan 1 11:56:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db02cc57c815369db4fb6d30fa460c0f437d0eb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a5:51:51:44:3b:66:9a:f6:10:33:d9:64:6d:
96:47:a1:a2:ba:73:51:39:3e:75:18:1d:be:52:db:
6b:6f:f8:4a:aa:50:2d:1d:d7:e7:7d:98:78:50:8d:
1d:db:f1:1c:10:1c:d6:b2:41:d0:1a:6f:ba:a2:ff:
63:f0:d9:df:5c:59:cf:f7:7b:9a:ad:d1:1f:42:f7:
e5:e1:db:00:b3:2a:be:ed:12:38:c6:39:2a:92:d8:
5a:a0:c1:cf:e5:6a:18:23:d0:da:cf:fa:6c:f9:37:
2a:c1:63:a5:7d:b9:e0:3d:26:34:b2:b7:0b:46:9c:
72:9f:f3:61:7f:aa:5e:54:ee:af:06:0b:8e:3c:f9:
26:8f:99:5e:27:42:75:1f:db:0d:05:b5:83:95:37:
c4:38:d5:02:f0:c6:c0:52:26:72:4a:89:52:4f:b7:
4c:6b:10:ec:8c:38:9a:f5:54:ab:f6:d1:1a:04:52:
23:51:e5:88:b3:38:e7:db:02:29:2a:ab:c8:92:33:
57:df:30:8c:2c:1b:60:20:9b:3a:a4:6a:86:0d:c7:
7d:5d:fc:b4:f6:03:2f:73:75:94:e4:fc:db:ca:70:
0a:57:27:bb:41:d3:79:11:49:49:ec:9c:0c:a0:ed:
c1:8d:cc:a2:22:7b:d5:26:56:a6:de:90:77:f6:3b:
a7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:02:CC:57:C8:15:36:9D:B4:FB:6D:30:FA:46:0C:0F:43:7D:0E:B3
X509v3 Authority Key Identifier:
keyid:78:D7:78:FE:57:54:DC:3E:16:D9:22:70:42:4B:E2:1B:92:81:EC:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eNd4_ldU3D4W2SJwQkviG5KB7HI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/d15a62-e2ff-404d-a94c-7fdbf6fb0df8/1/2wLMV8gVNp20-20w-kYMD0N9DrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/d15a62-e2ff-404d-a94c-7fdbf6fb0df8/1/eNd4_ldU3D4W2SJwQkviG5KB7HI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.159.64.0/18
178.22.32.0/21
194.180.40.0/22
IPv6:
2a01:58a0::/32
Signature Algorithm: sha256WithRSAEncryption
0a:34:48:98:98:49:8f:90:db:a4:82:b7:f3:70:77:2f:3a:0f:
74:97:91:48:ee:03:45:c2:8c:62:30:22:09:dc:1e:3d:f9:6e:
47:aa:7b:e6:f5:c9:e1:8b:dd:26:ab:3b:ef:b9:e1:37:be:d0:
ab:1a:04:5c:72:a0:de:c6:4e:99:f4:08:f8:7e:74:db:fd:2c:
89:07:c1:f0:c2:c4:ca:cc:14:0f:1f:9a:f3:71:88:7b:98:09:
14:d5:57:24:ba:1e:00:2e:73:b9:25:4b:60:8b:1f:5a:55:7a:
54:5b:bf:31:8f:4c:cc:1b:8b:3e:0a:51:ca:de:fd:25:a2:c9:
4d:b5:6d:c6:c8:4d:9f:8b:22:79:e4:3b:67:66:ff:45:d8:4a:
26:e4:50:8a:15:8d:67:6b:45:9d:b6:6f:7a:ae:44:62:e6:40:
4f:64:25:34:f0:cb:7f:e0:5b:f8:ba:ef:70:99:01:9c:74:fd:
17:33:f5:f9:1a:eb:72:10:fb:7a:48:bf:6b:f4:4d:c3:eb:d7:
46:ae:16:a4:8e:cf:3a:99:63:1a:0c:d4:d2:2e:34:24:c2:72:
0d:1a:ec:0e:3c:98:11:11:f9:31:5d:d7:b1:51:bf:26:d4:ce:
16:84:05:79:5f:17:d3:63:17:bd:95:c8:7c:7b:be:4e:d2:07:
65:3d:fc:60
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:31 2024 by rpki-client on console-ams.rpki-client.org