Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/LeCT9_1LX2PAytrN17VJvW-sEyk.roa
File: LeCT9_1LX2PAytrN17VJvW-sEyk.roa (raw, json)
Hash identifier: kFMdAi0toy4ahNorEy9pLaDsyTJckOrbsDbfypow1j4=
Subject key identifier: 2D:E0:93:F7:FD:4B:5F:63:C0:CA:DA:CD:D7:B5:49:BD:6F:AC:13:29
Certificate issuer: /CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Certificate serial: 018C256D2F63A40C4022378B68CB36D991B5
Authority key identifier: F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/LeCT9_1LX2PAytrN17VJvW-sEyk.roa
Signing time: Fri 01 Dec 2023 12:49:21 +0000
ROA not before: Fri 01 Dec 2023 12:49:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5607
IP address blocks: 93.96.224.0/23 maxlen: 23
93.96.224.0/19 maxlen: 19
93.96.228.0/23 maxlen: 23
87.80.0.0/15 maxlen: 15
51.198.0.0/16 maxlen: 16
51.198.0.0/15 maxlen: 15
176.255.240.0/24 maxlen: 24
176.255.242.0/24 maxlen: 24
176.255.241.0/24 maxlen: 24
151.224.0.0/13 maxlen: 13
51.194.0.0/16 maxlen: 16
93.96.0.0/17 maxlen: 17
78.86.0.0/16 maxlen: 16
51.241.0.0/16 maxlen: 16
149.241.0.0/16 maxlen: 16
2.120.0.0/13 maxlen: 13
176.248.0.0/13 maxlen: 13
93.96.128.0/18 maxlen: 18
51.19.0.0/16 maxlen: 16
51.199.224.0/20 maxlen: 20
188.220.0.0/14 maxlen: 14
51.146.0.0/16 maxlen: 16
51.199.240.0/21 maxlen: 21
51.199.248.0/22 maxlen: 22
90.192.0.0/11 maxlen: 11
51.199.192.0/19 maxlen: 19
51.190.0.0/15 maxlen: 15
5.64.0.0/13 maxlen: 13
51.199.0.0/17 maxlen: 17
46.64.0.0/15 maxlen: 15
94.192.0.0/14 maxlen: 14
51.182.0.0/15 maxlen: 15
2.216.0.0/13 maxlen: 13
51.199.128.0/18 maxlen: 18
51.186.0.0/15 maxlen: 15
94.0.0.0/12 maxlen: 12
176.24.0.0/14 maxlen: 14
78.105.0.0/16 maxlen: 16
2a06:5902::/31 maxlen: 31
2a06:5904::/31 maxlen: 31
2a02:c7e:8000::/33 maxlen: 33
2a02:c7e::/33 maxlen: 33
2a06:5901::/33 maxlen: 33
2a02:c78::/29 maxlen: 29
2a02:c7b::/32 maxlen: 32
2a02:c7a::/32 maxlen: 32
2a02:c7d:8000::/33 maxlen: 33
2a02:c7d::/33 maxlen: 33
2a06:5906::/31 maxlen: 31
2a02:c7c::/30 maxlen: 30
2a02:c7f:8000::/33 maxlen: 33
2a02:c7f::/33 maxlen: 33
2a06:5900::/32 maxlen: 32
2a02:c7c:8000::/33 maxlen: 33
2a02:c7c::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:25:6d:2f:63:a4:0c:40:22:37:8b:68:cb:36:d9:91:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Validity
Not Before: Dec 1 12:49:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2de093f7fd4b5f63c0cadacdd7b549bd6fac1329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:5f:a2:c9:ea:58:cd:e1:65:ae:b8:d9:ea:26:
28:36:5e:b9:e5:fd:75:cc:19:8d:b2:ca:1b:ee:3a:
2b:b9:b3:d7:c4:99:af:87:fd:d5:19:99:00:2c:45:
5b:43:da:d6:5a:e5:e4:03:b0:ae:b1:ab:f9:41:db:
c6:14:c9:5d:41:b2:86:d3:b8:0b:7b:d3:91:ee:4f:
0a:fb:65:9f:4a:5f:c9:7a:7a:b2:0d:c1:bc:68:23:
d8:33:59:6e:07:93:b8:37:88:7a:05:37:78:ea:ea:
2e:80:d9:42:4d:83:02:31:2e:96:84:da:95:92:04:
dd:36:07:74:b4:b8:46:40:bd:5d:cb:4f:cf:b1:19:
1f:b4:5c:63:a8:a0:71:f5:40:c0:08:02:36:bf:24:
81:a1:c6:1c:f6:d1:bd:7d:32:10:c9:44:f2:bb:37:
d9:54:7c:51:ff:af:2e:1d:56:5a:80:e5:06:ae:7c:
38:3a:91:aa:ee:ff:97:f9:79:ea:17:f4:c8:02:0e:
94:ba:9d:90:57:92:f5:b1:43:a9:af:80:7c:72:74:
6e:10:cf:65:14:37:64:af:85:07:5e:39:d0:ed:7b:
4d:af:db:13:50:6b:df:03:e2:e9:cb:5f:5c:51:ad:
00:9a:d2:42:67:5b:b7:7b:ee:0a:d5:b0:c9:44:dc:
a6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E0:93:F7:FD:4B:5F:63:C0:CA:DA:CD:D7:B5:49:BD:6F:AC:13:29
X509v3 Authority Key Identifier:
keyid:F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/LeCT9_1LX2PAytrN17VJvW-sEyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.120.0.0/13
2.216.0.0/13
5.64.0.0/13
46.64.0.0/15
51.19.0.0/16
51.146.0.0/16
51.182.0.0/15
51.186.0.0/15
51.190.0.0/15
51.194.0.0/16
51.198.0.0/15
51.241.0.0/16
78.86.0.0/16
78.105.0.0/16
87.80.0.0/15
90.192.0.0/11
93.96.0.0-93.96.191.255
93.96.224.0/19
94.0.0.0/12
94.192.0.0/14
149.241.0.0/16
151.224.0.0/13
176.24.0.0/14
176.248.0.0/13
188.220.0.0/14
IPv6:
2a02:c78::/29
2a06:5900::-2a06:5901:7fff:ffff:ffff:ffff:ffff:ffff
2a06:5902::-2a06:5907:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
7f:a6:5b:da:54:74:38:c4:3e:8d:48:ae:7e:bc:69:93:14:f6:
b9:82:bd:72:26:54:fd:6b:d7:44:8e:08:d9:60:13:bb:19:ee:
76:0c:25:3e:36:91:4b:d6:78:9f:81:f5:22:be:ea:a9:67:61:
1e:cb:6e:c2:45:e2:4f:2f:33:78:e6:4c:f6:e4:50:b7:ea:3f:
40:e9:56:2e:bd:f1:93:c4:24:6e:b5:01:5c:a5:da:c0:16:b4:
b3:70:a2:11:93:09:2c:e9:3a:b4:bf:d1:89:0f:6b:4a:bd:0c:
68:eb:d5:db:59:bc:5d:59:4f:79:dd:e8:f4:14:5e:3e:f7:dc:
52:e9:94:81:2d:de:c6:8a:94:18:3f:fb:62:70:b6:64:c3:a1:
39:41:5f:65:8d:0e:74:6a:91:c0:e3:5b:c4:a5:00:67:48:e0:
87:f2:de:2b:97:0e:a0:0f:98:ee:77:1c:6d:5e:1e:a4:f1:53:
8a:88:cf:24:03:09:9e:97:5e:d3:ef:55:99:4b:71:c1:20:17:
db:61:6b:b4:4e:15:35:ff:be:98:d0:78:0a:d1:c5:f6:0f:a3:
18:fd:8f:a7:8a:b8:ad:5e:b6:cc:d6:24:2c:9c:ea:c7:9d:54:
a0:c0:7f:9d:7d:0a:da:b9:eb:df:3e:70:e6:c8:89:29:89:aa:
0b:9d:90:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 07:19:06 2025 by rpki-client