Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/fo4u2KTpK1LivwH8qkJfeMtkFb8.roa
File: fo4u2KTpK1LivwH8qkJfeMtkFb8.roa (raw, json)
Hash identifier: uRqgfLO/BaB3jkJe2gEeUNn402cwuu1erVMz5jkEVv0=
Subject key identifier: 7E:8E:2E:D8:A4:E9:2B:52:E2:BF:01:FC:AA:42:5F:78:CB:64:15:BF
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018C19B9265D8F4EF263E2B008534AC4548B
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/fo4u2KTpK1LivwH8qkJfeMtkFb8.roa
Signing time: Wed 29 Nov 2023 06:16:53 +0000
ROA not before: Wed 29 Nov 2023 06:16:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 95.215.109.0/24 maxlen: 24
45.151.139.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
45.142.210.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
2a09:3d00::/29 maxlen: 36
2a11:207::/32 maxlen: 32
2a11:206::/32 maxlen: 32
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 32
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a11:205::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a0d:5ec0::/29 maxlen: 36
2a06:d900::/29 maxlen: 29
2a09:4e03::/32 maxlen: 32
2a09:3b00::/29 maxlen: 29
2a10:c0c6::/32 maxlen: 32
2a0f:cc81::/32 maxlen: 32
2a0d:8b03::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a11:b80::/29 maxlen: 36
2a09:b680::/29 maxlen: 36
2a09:3800::/32 maxlen: 32
2a11:200:5000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:d000::/36 maxlen: 36
2a11:200:c000::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:200:9000::/36 maxlen: 36
2a11:200:a000::/36 maxlen: 36
2a09:3505:9000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a11:782::/32 maxlen: 32
2a0d:8b04::/32 maxlen: 32
2a09:3802::/32 maxlen: 32
2a0d:8b07::/32 maxlen: 32
2a11:e82::/32 maxlen: 32
2a11:780::/29 maxlen: 36
2a09:3506::/32 maxlen: 32
2a09:3801::/32 maxlen: 32
2a10:c0c5::/32 maxlen: 32
2a09:4e01:3000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:a000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a09:3804::/36 maxlen: 36
2a0c:2104::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:204::/32 maxlen: 32
2a10:c340::/29 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:19:b9:26:5d:8f:4e:f2:63:e2:b0:08:53:4a:c4:54:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Nov 29 06:16:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e8e2ed8a4e92b52e2bf01fcaa425f78cb6415bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bf:15:98:d1:60:e2:82:87:49:8a:eb:3c:ef:
7b:c9:34:8b:eb:e4:fc:16:d9:63:69:af:0c:ef:9b:
88:4e:11:f7:a3:43:b2:5e:f5:ea:44:32:57:ae:b6:
b5:fa:9d:ec:fb:f9:e2:33:b8:7e:8f:26:b8:c3:f4:
7e:8d:93:08:bf:58:fe:27:79:4a:25:ea:9b:79:1e:
9a:52:58:38:66:db:a3:f1:d7:df:56:da:47:10:62:
7b:a8:9a:31:13:6a:b3:f6:a0:28:51:34:a3:de:d0:
6c:ed:6e:5d:c6:9d:91:44:3f:61:39:5e:44:e3:14:
c7:b8:1c:4c:22:e4:63:66:f1:1e:cf:25:c8:fd:d3:
36:98:7b:c5:4f:41:bc:98:89:41:c9:25:b4:cd:ee:
74:6a:b1:86:cc:ae:3a:81:37:15:94:fe:c6:48:ba:
55:b0:60:a5:c8:30:a3:d5:c8:44:0f:a9:66:52:00:
b6:1e:25:ff:77:18:48:23:35:71:13:fa:01:3f:db:
a8:da:b0:9a:4d:c4:c9:e1:7d:af:b5:4d:c2:c0:f0:
3c:cd:ee:a4:40:cc:88:18:0c:3d:d0:fd:88:43:f0:
97:b1:ae:45:7b:5b:c9:89:b2:ac:43:b1:e6:e7:8b:
8f:f2:50:74:b2:66:ef:76:70:f0:85:87:a6:01:55:
e4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:8E:2E:D8:A4:E9:2B:52:E2:BF:01:FC:AA:42:5F:78:CB:64:15:BF
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/fo4u2KTpK1LivwH8qkJfeMtkFb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/24
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
95.215.109.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3506::/32
2a09:3800::-2a09:3802:ffff:ffff:ffff:ffff:ffff:ffff
2a09:3804::/36
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:4e03::/32
2a09:b680::/29
2a0c:2104::/32
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:8b07::/32
2a0f:cc81::/32
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:afff:ffff:ffff:ffff:ffff:ffff
2a11:200:c000::/35
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/30
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::/32
Signature Algorithm: sha256WithRSAEncryption
5e:3d:82:12:fa:22:bb:c2:de:bc:c6:a0:a1:1e:61:11:3e:4a:
61:0c:76:4c:a6:b4:59:7f:18:0a:f2:80:6d:3f:e1:20:28:67:
16:ed:7d:41:c6:17:1b:4a:99:e8:34:3a:77:34:d8:22:c3:57:
f9:ee:74:54:7f:17:2b:51:82:ba:29:79:63:76:81:de:8a:f7:
79:57:73:a9:a4:c9:87:08:eb:17:24:7a:00:9a:25:d1:f3:80:
05:f0:94:67:ca:80:54:51:57:7b:13:7a:c7:ab:b7:9c:2b:7e:
ca:fc:aa:b1:9a:d3:9c:e5:1f:de:eb:ef:49:d7:10:0b:69:e0:
68:1e:84:cf:51:44:33:95:70:82:99:71:a6:da:d0:43:42:80:
51:21:d6:f9:9b:5d:6d:67:fd:fb:1b:51:36:79:7b:16:03:55:
11:69:a4:db:4c:da:9d:a4:29:7b:50:11:ed:f2:db:c3:35:f1:
8e:71:78:e7:e6:2d:84:29:d8:b6:85:6c:c5:46:c7:b9:35:17:
27:17:6e:b2:35:e4:46:3c:c1:77:38:62:a4:ce:59:81:90:30:
9f:f8:fc:76:9f:9f:09:0a:30:33:f6:c3:18:b6:73:4c:2f:9f:
54:98:0e:00:84:75:e4:ff:0a:83:cf:b4:45:bf:cb:b6:80:5b:
7f:ae:f6:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:05:46 2025 by rpki-client