Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/d68a35-b191-4197-ab78-f4c93601c859/1/7HFiLtVqmGHxNncL5U51xglcvw4.roa
File: 7HFiLtVqmGHxNncL5U51xglcvw4.roa (raw, json)
Hash identifier: kykdmhE5MFfJqngsVtfR2RnqRi8VmWJGJdmj60l/Yvg=
Subject key identifier: EC:71:62:2E:D5:6A:98:61:F1:36:77:0B:E5:4E:75:C6:09:5C:BF:0E
Certificate issuer: /CN=ba7b93402b9218d7f612b4f9626270a71ae6be2d
Certificate serial: 0C42E325
Authority key identifier: BA:7B:93:40:2B:92:18:D7:F6:12:B4:F9:62:62:70:A7:1A:E6:BE:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/unuTQCuSGNf2ErT5YmJwpxrmvi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/d68a35-b191-4197-ab78-f4c93601c859/1/7HFiLtVqmGHxNncL5U51xglcvw4.roa
Signing time: Sat 01 Jan 2022 07:59:11 +0000
ROA not before: Sat 01 Jan 2022 07:59:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12302
IP address blocks: 81.12.216.0/21 maxlen: 21
81.12.224.0/21 maxlen: 21
81.12.231.0/24 maxlen: 24
81.12.230.0/24 maxlen: 24
81.12.229.0/24 maxlen: 24
81.12.228.0/24 maxlen: 24
81.12.232.0/21 maxlen: 21
81.12.245.0/24 maxlen: 24
81.12.240.0/21 maxlen: 21
81.12.246.0/24 maxlen: 24
81.12.248.0/21 maxlen: 21
81.12.247.0/24 maxlen: 24
81.12.160.0/21 maxlen: 21
81.12.168.0/21 maxlen: 21
81.12.176.0/21 maxlen: 21
81.12.184.0/21 maxlen: 21
81.12.192.0/21 maxlen: 21
81.12.195.0/24 maxlen: 24
81.12.199.0/24 maxlen: 24
81.12.200.0/21 maxlen: 21
81.12.208.0/21 maxlen: 21
136.255.224.0/20 maxlen: 20
136.255.251.0/24 maxlen: 24
81.12.128.0/17 maxlen: 17
136.255.0.0/16 maxlen: 24
81.12.128.0/21 maxlen: 21
81.12.136.0/21 maxlen: 21
81.12.144.0/21 maxlen: 21
81.12.152.0/21 maxlen: 21
81.12.153.0/24 maxlen: 24
81.12.159.0/24 maxlen: 24
213.233.123.0/24 maxlen: 24
213.233.122.0/24 maxlen: 24
213.233.121.0/24 maxlen: 24
213.233.120.0/24 maxlen: 24
213.233.119.0/24 maxlen: 24
213.233.125.0/24 maxlen: 24
213.233.124.0/24 maxlen: 24
213.233.127.0/24 maxlen: 24
213.233.126.0/24 maxlen: 24
165.78.160.0/19 maxlen: 19
213.233.67.0/24 maxlen: 24
213.233.66.0/24 maxlen: 24
213.233.65.0/24 maxlen: 24
213.233.71.0/24 maxlen: 24
213.233.70.0/24 maxlen: 24
213.233.69.0/24 maxlen: 24
213.233.68.0/24 maxlen: 24
213.233.74.0/24 maxlen: 24
213.233.73.0/24 maxlen: 24
213.233.72.0/24 maxlen: 24
213.233.78.0/24 maxlen: 24
213.233.77.0/24 maxlen: 24
213.233.76.0/24 maxlen: 24
213.233.75.0/24 maxlen: 24
213.233.81.0/24 maxlen: 24
213.233.80.0/24 maxlen: 24
213.233.79.0/24 maxlen: 24
213.233.85.0/24 maxlen: 24
213.233.84.0/24 maxlen: 24
165.78.96.0/19 maxlen: 19
213.233.83.0/24 maxlen: 24
213.233.82.0/24 maxlen: 24
213.233.88.0/24 maxlen: 24
213.233.87.0/24 maxlen: 24
213.233.86.0/24 maxlen: 24
213.233.91.0/24 maxlen: 24
213.233.90.0/24 maxlen: 24
213.233.89.0/24 maxlen: 24
213.233.95.0/24 maxlen: 24
213.233.94.0/24 maxlen: 24
213.233.93.0/24 maxlen: 24
213.233.92.0/24 maxlen: 24
213.233.98.0/24 maxlen: 24
213.233.97.0/24 maxlen: 24
213.233.96.0/24 maxlen: 24
213.233.102.0/24 maxlen: 24
213.233.101.0/24 maxlen: 24
213.233.100.0/24 maxlen: 24
213.233.99.0/24 maxlen: 24
213.233.105.0/24 maxlen: 24
213.233.104.0/24 maxlen: 24
213.233.103.0/24 maxlen: 24
213.233.109.0/24 maxlen: 24
213.233.108.0/24 maxlen: 24
213.233.107.0/24 maxlen: 24
213.233.106.0/24 maxlen: 24
213.233.112.0/24 maxlen: 24
213.233.111.0/24 maxlen: 24
213.233.110.0/24 maxlen: 24
213.233.118.0/24 maxlen: 24
213.233.117.0/24 maxlen: 24
213.233.116.0/24 maxlen: 24
165.78.128.0/21 maxlen: 21
165.78.128.0/19 maxlen: 19
213.233.115.0/24 maxlen: 24
213.233.114.0/24 maxlen: 24
213.233.113.0/24 maxlen: 24
165.78.192.0/21 maxlen: 21
165.78.192.0/19 maxlen: 19
165.78.224.0/19 maxlen: 19
46.97.232.0/21 maxlen: 21
46.97.240.0/21 maxlen: 21
46.97.176.0/21 maxlen: 21
46.97.184.0/21 maxlen: 21
46.97.192.0/21 maxlen: 21
46.97.200.0/21 maxlen: 21
46.97.208.0/21 maxlen: 21
46.97.216.0/21 maxlen: 21
46.97.224.0/21 maxlen: 21
217.10.192.0/24 maxlen: 24
217.10.193.0/24 maxlen: 24
217.10.199.0/24 maxlen: 24
217.10.198.0/24 maxlen: 24
217.10.197.0/24 maxlen: 24
217.10.196.0/24 maxlen: 24
217.10.195.0/24 maxlen: 24
165.78.32.0/19 maxlen: 19
217.10.194.0/24 maxlen: 24
217.10.200.0/24 maxlen: 24
217.10.206.0/24 maxlen: 24
217.10.205.0/24 maxlen: 24
217.10.204.0/24 maxlen: 24
217.10.203.0/24 maxlen: 24
217.10.202.0/24 maxlen: 24
217.10.201.0/24 maxlen: 24
217.10.207.0/24 maxlen: 24
217.10.213.0/24 maxlen: 24
217.10.212.0/24 maxlen: 24
217.10.211.0/24 maxlen: 24
217.10.210.0/24 maxlen: 24
217.10.209.0/24 maxlen: 24
217.10.208.0/24 maxlen: 24
217.10.214.0/24 maxlen: 24
217.10.219.0/24 maxlen: 24
217.10.218.0/24 maxlen: 24
217.10.217.0/24 maxlen: 24
217.10.216.0/24 maxlen: 24
217.10.215.0/24 maxlen: 24
217.10.221.0/24 maxlen: 24
217.10.220.0/24 maxlen: 24
165.78.64.0/21 maxlen: 21
165.78.64.0/19 maxlen: 19
217.10.223.0/24 maxlen: 24
217.10.222.0/24 maxlen: 24
213.233.64.0/24 maxlen: 24
165.78.0.0/21 maxlen: 21
165.78.0.0/19 maxlen: 19
165.78.0.0/16 maxlen: 16
46.97.16.0/21 maxlen: 21
46.97.24.0/21 maxlen: 21
46.97.32.0/21 maxlen: 21
46.97.40.0/21 maxlen: 21
46.97.48.0/21 maxlen: 21
46.97.56.0/21 maxlen: 21
46.97.64.0/21 maxlen: 21
46.97.0.0/21 maxlen: 21
46.97.8.0/21 maxlen: 21
46.97.0.0/16 maxlen: 16
46.97.120.0/21 maxlen: 21
46.97.136.0/21 maxlen: 21
46.97.144.0/21 maxlen: 21
46.97.152.0/21 maxlen: 21
46.97.160.0/21 maxlen: 21
46.97.168.0/21 maxlen: 21
46.97.72.0/21 maxlen: 21
46.97.80.0/21 maxlen: 21
46.97.88.0/21 maxlen: 21
46.97.96.0/21 maxlen: 21
46.97.104.0/21 maxlen: 21
46.97.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 205710117 (0xc42e325)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba7b93402b9218d7f612b4f9626270a71ae6be2d
Validity
Not Before: Jan 1 07:59:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec71622ed56a9861f136770be54e75c6095cbf0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cb:f4:45:e8:60:fa:3f:cc:c1:2c:f9:12:29:
32:28:e8:54:ed:64:0d:f2:ac:c8:e7:f5:24:c6:f6:
b8:a5:39:a4:56:91:5d:23:3d:58:b5:69:93:2b:0b:
79:6f:9b:3b:80:9c:8e:88:8d:cd:90:42:bf:58:2c:
88:23:c7:d4:33:89:ae:25:5d:87:36:6f:43:73:9f:
62:cc:58:f1:23:76:e2:90:72:99:50:41:9a:33:77:
99:56:56:99:00:aa:78:cb:94:03:2f:4b:b4:2b:93:
ed:2b:e6:2c:17:19:30:75:04:7c:88:18:fe:23:a7:
0f:03:9a:bd:03:40:94:92:3d:4b:4d:49:d1:f1:75:
ba:40:32:15:ff:8f:27:2a:df:03:a6:a5:26:6e:1b:
61:41:3e:d1:a6:f0:42:31:56:2d:2a:00:8b:e3:4a:
37:3d:9d:94:eb:99:56:59:fe:57:b1:4e:12:dd:84:
bf:92:44:0b:ee:4e:79:d2:60:1b:96:d8:d9:54:5e:
6b:12:9e:62:7d:38:eb:e0:22:23:d8:83:32:5b:65:
25:7c:ea:8b:ab:c0:87:08:47:d6:1d:c6:77:87:a9:
90:28:03:fe:fd:be:d5:5b:5f:3f:f8:7f:bf:a8:d5:
7f:b8:fd:84:bf:23:fb:32:b0:83:8d:15:77:af:79:
eb:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:71:62:2E:D5:6A:98:61:F1:36:77:0B:E5:4E:75:C6:09:5C:BF:0E
X509v3 Authority Key Identifier:
keyid:BA:7B:93:40:2B:92:18:D7:F6:12:B4:F9:62:62:70:A7:1A:E6:BE:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/unuTQCuSGNf2ErT5YmJwpxrmvi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/d68a35-b191-4197-ab78-f4c93601c859/1/7HFiLtVqmGHxNncL5U51xglcvw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/d68a35-b191-4197-ab78-f4c93601c859/1/unuTQCuSGNf2ErT5YmJwpxrmvi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.97.0.0/16
81.12.128.0/17
136.255.0.0/16
165.78.0.0/16
213.233.64.0/18
217.10.192.0/19
Signature Algorithm: sha256WithRSAEncryption
75:60:13:d3:e4:77:45:9d:fc:b6:56:6b:14:53:cf:ea:3b:ee:
b8:90:47:e3:d9:9f:82:7e:23:0c:a0:52:68:b5:72:68:ed:47:
7b:26:2e:a8:0f:25:38:32:f4:a7:42:d0:55:14:9e:73:c2:81:
f5:76:c7:ba:e4:4f:e1:37:a1:b9:e0:c0:b2:5b:c0:4f:71:f2:
8b:8c:d3:f7:81:e0:c0:1e:5c:bf:c7:60:a3:cd:ae:72:81:aa:
d3:a7:24:c6:c8:92:70:08:71:6c:27:bf:34:f7:03:d4:80:59:
92:cd:a3:16:ce:84:94:fd:af:5d:20:c2:73:20:c8:91:05:69:
f6:b5:4d:8e:4d:31:b1:03:62:2b:b8:47:a7:62:3e:db:36:88:
62:31:45:e8:c0:b3:84:74:61:69:f1:57:7f:3f:9d:38:4e:b7:
2d:ed:e9:f6:09:c9:2f:7e:ed:f5:58:84:d1:64:4e:c8:7e:3c:
90:8b:87:20:98:b0:81:8a:3a:a3:14:63:0f:47:3b:8c:e4:ed:
6b:75:c4:9a:07:6b:9d:4d:a6:f6:f5:70:f4:8a:52:7b:98:5e:
1e:45:43:18:be:30:1e:84:ec:17:09:6d:1c:d6:34:84:11:70:
c9:fb:c7:5f:db:c9:a4:a8:ae:5f:22:9e:3a:b7:15:56:43:cc:
be:b2:da:02
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:34 2023 by rpki-client on console.sobornost.net