Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/_0MIkEsAYN1hWmprBVuijJpNUk8.roa
File: _0MIkEsAYN1hWmprBVuijJpNUk8.roa (raw, json)
Hash identifier: ysPzK8q/l74VobLaj5RPqf4HjW762bZOViuV6WJ2H4Q=
Subject key identifier: FF:43:08:90:4B:00:60:DD:61:5A:6A:6B:05:5B:A2:8C:9A:4D:52:4F
Certificate issuer: /CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Certificate serial: 01877CC64576BE2309A927BF88EF7A6694C9
Authority key identifier: D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/_0MIkEsAYN1hWmprBVuijJpNUk8.roa
Signing time: Thu 13 Apr 2023 22:39:41 +0000
ROA not before: Thu 13 Apr 2023 22:39:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42313
IP address blocks: 79.106.242.0/23 maxlen: 23
79.106.244.0/23 maxlen: 23
79.106.240.0/21 maxlen: 21
79.106.246.0/23 maxlen: 23
79.106.255.0/24 maxlen: 24
79.106.254.0/24 maxlen: 24
185.171.146.0/24 maxlen: 24
185.171.144.0/23 maxlen: 23
79.106.84.0/24 maxlen: 24
79.106.90.0/24 maxlen: 24
79.106.95.0/24 maxlen: 24
79.106.94.0/23 maxlen: 23
79.106.104.0/24 maxlen: 24
79.106.107.0/24 maxlen: 24
79.106.118.0/23 maxlen: 23
79.106.117.0/24 maxlen: 24
79.106.125.0/24 maxlen: 24
79.106.123.0/24 maxlen: 24
79.106.124.0/24 maxlen: 24
79.106.122.0/24 maxlen: 24
79.106.120.0/24 maxlen: 24
79.106.127.0/24 maxlen: 24
79.106.128.0/19 maxlen: 19
79.106.126.0/24 maxlen: 24
79.106.64.0/24 maxlen: 24
79.106.77.0/24 maxlen: 24
79.106.192.0/19 maxlen: 19
79.106.195.0/24 maxlen: 24
79.106.194.0/23 maxlen: 23
79.106.196.0/24 maxlen: 24
79.106.205.0/24 maxlen: 24
79.106.204.0/24 maxlen: 24
79.106.210.0/24 maxlen: 24
79.106.211.0/24 maxlen: 24
79.106.209.0/24 maxlen: 24
79.106.207.0/24 maxlen: 24
79.106.215.0/24 maxlen: 24
79.106.214.0/24 maxlen: 24
79.106.218.0/23 maxlen: 23
79.106.220.0/24 maxlen: 24
79.106.229.0/24 maxlen: 24
79.106.230.0/24 maxlen: 24
79.106.228.0/24 maxlen: 24
79.106.232.0/22 maxlen: 22
79.106.240.0/23 maxlen: 23
79.106.160.0/19 maxlen: 19
79.106.176.0/21 maxlen: 21
217.24.240.0/21 maxlen: 21
217.24.240.0/20 maxlen: 20
217.24.248.0/21 maxlen: 21
217.24.248.0/24 maxlen: 24
217.24.254.0/24 maxlen: 24
2a05:fdc0::/32 maxlen: 32
2a05:fdc0:2200::/40 maxlen: 40
2a05:fdc0:3100::/40 maxlen: 40
2a05:fdc0:3200::/40 maxlen: 40
2a05:fdc2:6000::/36 maxlen: 36
2a05:fdc2:1000::/36 maxlen: 36
2a05:fdc2:9000::/36 maxlen: 36
2a05:fdc2:8000::/36 maxlen: 36
2a05:fdc2:7000::/36 maxlen: 36
2a05:fdc2:2000::/36 maxlen: 36
2a05:fdc2::/32 maxlen: 32
2a05:fdc2:3000::/36 maxlen: 36
2a05:fdc2:4000::/36 maxlen: 36
2a05:fdc0::/29 maxlen: 29
2a05:fdc1::/32 maxlen: 32
2a05:fdc0:1000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7c:c6:45:76:be:23:09:a9:27:bf:88:ef:7a:66:94:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Validity
Not Before: Apr 13 22:39:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff4308904b0060dd615a6a6b055ba28c9a4d524f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d3:a7:c4:0a:1d:4e:57:75:c3:02:dc:e7:5a:
64:f0:f7:9d:21:b7:4a:57:55:6b:54:e0:b3:d6:08:
88:fb:e3:33:4f:db:dc:63:60:7e:f7:00:51:1d:a0:
43:ae:f6:5d:b7:45:a7:bf:6f:64:ab:8c:89:46:4e:
34:ea:ba:62:c9:1e:f5:66:4c:50:a3:59:6c:f8:65:
3a:05:52:54:1a:04:f1:46:fb:c1:c8:73:03:99:9c:
ce:5c:6d:7b:ec:e7:46:21:8b:61:0a:1e:bb:fe:dc:
4f:31:c1:92:ec:6f:6c:19:ca:ee:33:99:fb:81:f1:
ba:c5:68:0c:c5:e5:67:5c:a7:92:3d:61:f6:cd:3f:
9b:db:4a:c8:42:f6:14:80:d3:53:7e:86:db:b2:24:
b0:54:00:c9:49:61:66:10:41:f7:bc:a1:3a:e6:e8:
0a:8a:d4:e9:2a:71:f7:23:16:2a:b1:7d:c0:4f:a3:
23:67:f9:86:2d:b6:79:23:b6:77:a8:65:03:19:e8:
8a:1e:b9:68:c8:e4:e1:07:9a:46:0e:1a:c8:0f:69:
42:5b:56:44:fc:b6:24:70:16:f4:fe:fc:0a:51:ee:
a1:05:bc:b4:1e:df:8b:34:6c:14:bf:76:20:86:6b:
1a:fd:45:48:d2:ca:91:51:e9:0f:d9:16:3e:59:af:
82:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:43:08:90:4B:00:60:DD:61:5A:6A:6B:05:5B:A2:8C:9A:4D:52:4F
X509v3 Authority Key Identifier:
keyid:D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/_0MIkEsAYN1hWmprBVuijJpNUk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/15ToHXL1nGWg0YFEobJgeYNTa0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.106.64.0/24
79.106.77.0/24
79.106.84.0/24
79.106.90.0/24
79.106.94.0/23
79.106.104.0/24
79.106.107.0/24
79.106.117.0-79.106.120.255
79.106.122.0-79.106.223.255
79.106.228.0-79.106.230.255
79.106.232.0/22
79.106.240.0/21
79.106.254.0/23
185.171.144.0-185.171.146.255
217.24.240.0/20
IPv6:
2a05:fdc0::/29
Signature Algorithm: sha256WithRSAEncryption
56:9e:3e:9d:c5:7f:e7:76:35:95:9b:e0:21:e0:7c:cc:e5:c8:
f6:45:79:c4:0a:75:1d:4b:ea:15:9a:e7:63:29:3d:0c:6f:57:
96:46:d8:e1:c7:ff:23:39:fa:8e:40:0c:12:13:bf:21:32:f2:
b4:fc:c0:13:9d:bc:80:26:7c:8f:b6:95:27:c6:c4:c1:4d:9f:
1a:52:fc:6f:91:bb:4d:bd:72:05:ee:cb:e5:b1:2b:a9:f1:75:
61:74:e8:d3:3a:31:2d:c3:58:44:ce:45:8b:5b:22:e4:fe:df:
5c:5f:4b:16:b4:82:fa:a4:3f:d7:26:d5:45:08:9d:84:51:b7:
c9:e6:2b:dc:07:eb:61:ea:77:2d:45:ad:4b:5d:94:d2:3b:a8:
18:2a:1b:52:3a:68:09:78:38:e7:ce:21:5d:ae:9f:aa:82:fd:
34:ea:2b:fb:a5:d2:72:53:39:7d:d7:0e:1d:b7:6b:9c:41:8f:
83:f5:90:a7:81:99:15:c2:e3:33:7a:e6:30:2d:04:75:83:b7:
ef:c9:af:36:07:d1:92:47:ed:81:c0:30:b8:dd:d1:56:42:14:
83:af:8c:7f:84:6c:8e:ca:de:08:5b:1a:f1:ba:ea:74:77:6e:
d5:43:d8:9d:49:c7:05:8b:8d:0c:1e:e2:2e:b4:48:30:cb:81:
07:24:dd:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 23:34:07 2025 by rpki-client