Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/fe7dfc-1264-4c94-9bcc-96333489e855/1/QObyYoHY1DY2M_Lr-zQz_GlG6pM.roa
File: QObyYoHY1DY2M_Lr-zQz_GlG6pM.roa (raw, json)
Hash identifier: PEl4sI4ISdAV1s6fvzfkkIyTVuy2Fh+BuTyERnYlR9M=
Subject key identifier: 40:E6:F2:62:81:D8:D4:36:36:33:F2:EB:FB:34:33:FC:69:46:EA:93
Certificate issuer: /CN=1c28b07c157a5dc613c9264daf89e7c860e33e63
Certificate serial: 07320610
Authority key identifier: 1C:28:B0:7C:15:7A:5D:C6:13:C9:26:4D:AF:89:E7:C8:60:E3:3E:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCiwfBV6XcYTySZNr4nnyGDjPmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/fe7dfc-1264-4c94-9bcc-96333489e855/1/QObyYoHY1DY2M_Lr-zQz_GlG6pM.roa
Signing time: Sat 01 Jan 2022 13:05:23 +0000
ROA not before: Sat 01 Jan 2022 13:05:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39273
IP address blocks: 78.110.79.0/24 maxlen: 24
81.22.30.0/24 maxlen: 24
81.22.31.0/24 maxlen: 24
81.22.28.0/24 maxlen: 24
81.22.29.0/24 maxlen: 24
81.22.27.0/24 maxlen: 24
81.22.25.0/24 maxlen: 24
81.22.26.0/24 maxlen: 24
77.92.165.0/24 maxlen: 24
77.92.166.0/24 maxlen: 24
77.92.163.0/24 maxlen: 24
77.92.164.0/24 maxlen: 24
77.92.161.0/24 maxlen: 24
77.92.162.0/24 maxlen: 24
77.92.160.0/19 maxlen: 19
77.92.160.0/24 maxlen: 24
77.92.172.0/24 maxlen: 24
77.92.170.0/24 maxlen: 24
77.92.171.0/24 maxlen: 24
77.92.168.0/24 maxlen: 24
77.92.169.0/24 maxlen: 24
77.92.167.0/24 maxlen: 24
77.92.173.0/24 maxlen: 24
77.92.179.0/24 maxlen: 24
77.92.177.0/24 maxlen: 24
77.92.178.0/24 maxlen: 24
77.92.175.0/24 maxlen: 24
77.92.176.0/24 maxlen: 24
77.92.174.0/24 maxlen: 24
77.92.186.0/24 maxlen: 24
77.92.184.0/24 maxlen: 24
77.92.185.0/24 maxlen: 24
77.92.182.0/24 maxlen: 24
77.92.183.0/24 maxlen: 24
77.92.181.0/24 maxlen: 24
77.92.180.0/24 maxlen: 24
77.92.191.0/24 maxlen: 24
77.92.189.0/24 maxlen: 24
77.92.190.0/24 maxlen: 24
77.92.188.0/24 maxlen: 24
77.92.187.0/24 maxlen: 24
81.22.16.0/20 maxlen: 20
81.22.16.0/24 maxlen: 24
81.22.17.0/24 maxlen: 24
81.22.23.0/24 maxlen: 24
81.22.24.0/24 maxlen: 24
81.22.21.0/24 maxlen: 24
81.22.22.0/24 maxlen: 24
81.22.20.0/24 maxlen: 24
81.22.18.0/24 maxlen: 24
81.22.19.0/24 maxlen: 24
78.110.64.0/24 maxlen: 24
78.110.64.0/20 maxlen: 20
78.110.70.0/24 maxlen: 24
78.110.71.0/24 maxlen: 24
78.110.68.0/24 maxlen: 24
78.110.69.0/24 maxlen: 24
78.110.67.0/24 maxlen: 24
78.110.65.0/24 maxlen: 24
78.110.66.0/24 maxlen: 24
78.110.74.0/24 maxlen: 24
78.110.77.0/24 maxlen: 24
77.83.91.0/24 maxlen: 24
78.110.78.0/24 maxlen: 24
78.110.75.0/24 maxlen: 24
78.110.72.0/24 maxlen: 24
78.110.73.0/24 maxlen: 24
77.83.89.0/24 maxlen: 24
78.110.76.0/24 maxlen: 24
77.83.90.0/24 maxlen: 24
77.83.88.0/24 maxlen: 24
77.83.88.0/22 maxlen: 22
87.236.50.0/24 maxlen: 24
87.236.48.0/21 maxlen: 21
87.236.51.0/24 maxlen: 24
87.236.48.0/24 maxlen: 24
87.236.49.0/24 maxlen: 24
185.33.178.0/24 maxlen: 24
185.33.179.0/24 maxlen: 24
185.33.177.0/24 maxlen: 24
185.33.176.0/24 maxlen: 24
87.236.54.0/24 maxlen: 24
87.236.52.0/24 maxlen: 24
87.236.53.0/24 maxlen: 24
87.236.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120718864 (0x7320610)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c28b07c157a5dc613c9264daf89e7c860e33e63
Validity
Not Before: Jan 1 13:05:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40e6f26281d8d4363633f2ebfb3433fc6946ea93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:23:2e:67:ec:11:d4:a6:5a:ab:b5:92:a0:1b:
7b:c0:12:b3:d0:ba:ac:04:61:f5:e0:57:fc:bc:c9:
cd:0f:f1:af:79:58:3d:f2:de:e0:b9:79:44:3c:fc:
88:90:38:70:ae:80:a6:f8:ad:69:a6:c0:fd:7f:0e:
9a:1c:58:65:22:1e:17:f9:5f:cc:07:aa:2a:62:40:
e7:39:14:83:29:ea:8d:54:f4:a4:3f:06:ac:b2:59:
d2:73:c2:a1:84:70:d1:82:dc:c2:0f:58:b2:21:9f:
8a:f8:cc:d0:dd:ab:83:dc:36:a3:d7:f3:ec:4d:0f:
3a:a8:bb:56:19:4d:c4:31:94:26:3f:4a:df:ec:a8:
c0:39:f3:eb:d4:84:05:17:38:28:f2:93:26:62:27:
bc:05:5c:0f:df:a8:72:7b:ed:5c:43:9e:48:0d:c4:
07:cf:67:32:c3:e4:f8:26:31:81:fc:e9:fe:fe:dd:
66:8c:5b:29:b8:5c:d9:ab:18:49:30:1b:1a:71:82:
42:36:40:3f:27:de:a7:6f:8a:10:44:5a:2f:c1:56:
5c:9b:32:14:76:b5:f6:4b:19:fe:b9:ba:a4:fd:2f:
35:81:7e:c5:ab:9d:94:4b:4a:5b:a9:34:73:7f:18:
20:3f:a4:e3:1d:15:73:8a:9a:5c:ac:f1:3e:30:85:
2c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:E6:F2:62:81:D8:D4:36:36:33:F2:EB:FB:34:33:FC:69:46:EA:93
X509v3 Authority Key Identifier:
keyid:1C:28:B0:7C:15:7A:5D:C6:13:C9:26:4D:AF:89:E7:C8:60:E3:3E:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCiwfBV6XcYTySZNr4nnyGDjPmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/fe7dfc-1264-4c94-9bcc-96333489e855/1/QObyYoHY1DY2M_Lr-zQz_GlG6pM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/fe7dfc-1264-4c94-9bcc-96333489e855/1/HCiwfBV6XcYTySZNr4nnyGDjPmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.88.0/22
77.92.160.0/19
78.110.64.0/20
81.22.16.0/20
87.236.48.0/21
185.33.176.0/22
Signature Algorithm: sha256WithRSAEncryption
db:fc:58:a5:39:b2:82:1d:ea:43:94:2c:27:cb:b4:ca:d6:5d:
91:38:2a:2d:18:ff:88:98:fb:cc:0d:dd:cc:56:9f:dd:f1:99:
be:e3:c2:fc:f2:ff:9f:4a:d2:e0:a8:b4:f3:e9:d1:e7:25:39:
36:21:84:86:15:2e:3f:b5:8d:a7:e0:28:5b:bc:a2:b8:b8:7f:
36:99:10:c9:01:dd:2f:21:e3:47:15:9b:74:eb:0d:33:b9:85:
dd:da:94:cd:d4:b7:44:ba:1b:af:4a:09:ea:28:4a:e3:10:b3:
a6:f4:fb:1d:e8:8f:55:0d:ca:6b:93:d5:4c:46:0e:16:42:30:
46:5e:77:d9:40:96:8c:55:7b:aa:58:09:e0:9c:a1:02:b7:df:
d5:8b:42:5b:10:9f:4c:c0:7d:27:4b:f7:05:8d:1f:50:d1:19:
c1:57:82:9c:b4:d1:cf:20:bf:62:c3:56:4d:c1:fc:08:b7:a5:
12:4a:3f:89:c6:71:da:c9:b4:50:ca:71:5e:5e:92:f4:b3:24:
84:20:ca:63:0f:a8:49:9d:07:2f:51:12:0d:99:c2:67:e3:10:
9c:46:77:80:ab:ea:17:17:2f:b8:46:b4:4c:e8:75:a9:e3:cc:
73:ff:ad:d4:15:04:98:18:88:28:57:70:61:1e:88:fe:f7:7f:
69:fc:23:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:08 2023 by rpki-client on console.sobornost.net