Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0Apud5VjjCnCRyRJYjfQ8flSLSM.roa
File: 0Apud5VjjCnCRyRJYjfQ8flSLSM.roa (raw, json)
Hash identifier: bCMhvTznWR/H+VFgcZpejwG4tO2jG6U6ouZrjmAaEy8=
Subject key identifier: D0:0A:6E:77:95:63:8C:29:C2:47:24:49:62:37:D0:F1:F9:52:2D:23
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0188AE51BB8D20F91AF25C6AC549FC69B670
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0Apud5VjjCnCRyRJYjfQ8flSLSM.roa
Signing time: Mon 12 Jun 2023 06:36:11 +0000
ROA not before: Mon 12 Jun 2023 06:36:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:39c1::/32 maxlen: 32
2a0e:c780::/32 maxlen: 32
2a0f:7f00::/32 maxlen: 32
2a12:ac40::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a10:67c5:1::/48 maxlen: 48
2a0f:e847:ffff::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a0f:3d84::/32 maxlen: 32
2a13:18c0:1::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0c:9247:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a12:d540::/29 maxlen: 29
2a0f:39c0::/32 maxlen: 32
2a0f:1e81:cdae::/48 maxlen: 48
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0f:3d87::/32 maxlen: 32
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a12:ac40:f::/48 maxlen: 48
2a0c:4880::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a0f:7f01::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ae:51:bb:8d:20:f9:1a:f2:5c:6a:c5:49:fc:69:b6:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 12 06:36:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d00a6e7795638c29c24724496237d0f1f9522d23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:dd:cc:29:f2:f1:49:52:2b:d6:e6:e9:84:d9:
67:40:fc:1d:80:7f:f4:79:b0:2b:76:1f:10:71:fc:
b1:49:55:a2:9e:ef:7b:60:db:c7:fd:fd:69:cb:67:
f2:d6:a6:8e:d2:9f:cf:1a:f8:aa:e9:c8:54:a1:74:
a4:6a:af:7b:49:05:2c:8a:ba:3a:30:0c:c4:9a:ec:
d2:be:17:ad:ef:ba:4e:88:d9:f6:6e:77:79:ed:1a:
d2:e1:f2:bb:6c:1f:6a:be:6b:67:fe:29:fa:32:e7:
53:cd:d3:f2:69:fe:2d:f2:5d:ca:51:04:ba:4d:dc:
b5:13:48:3d:a4:26:1a:ca:cc:0a:f4:34:51:ab:7a:
1c:4f:e8:4f:44:b5:f6:08:ce:86:6a:07:a7:f3:ff:
6f:3b:24:bd:58:ae:ab:4f:f5:6b:e6:72:31:78:ec:
56:87:fc:4d:27:3f:74:0d:fe:be:22:1e:b3:25:59:
b3:9c:b5:cd:3c:43:cb:e0:68:be:79:79:b8:3a:05:
00:dd:bd:4e:ae:8f:35:24:fd:9a:6d:04:1d:17:82:
a4:87:f2:79:7c:25:19:80:f4:6e:2f:8f:43:68:47:
69:d2:91:06:46:10:88:4f:21:ec:ac:cd:bf:31:c9:
85:ae:f9:d1:47:ac:6b:60:b1:85:e6:ff:ca:8e:1c:
48:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:0A:6E:77:95:63:8C:29:C2:47:24:49:62:37:D0:F1:F9:52:2D:23
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0Apud5VjjCnCRyRJYjfQ8flSLSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a0c:4880::/29
2a0c:9247:1::/48
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:39c0::/31
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:3d84::/32
2a0f:3d87::/32
2a0f:7f00::/31
2a0f:e847:ffff::/48
2a10:67c5:1::/48
2a10:6d40::/29
2a12:ac40::/48
2a12:ac40:f::/48
2a12:d540::/29
2a13:18c0:1::/48
2a13:4900::/29
Signature Algorithm: sha256WithRSAEncryption
5e:9a:75:42:5a:94:e1:e2:9d:62:d7:fa:6d:b8:64:f2:4c:67:
a0:2a:c2:5a:44:80:48:11:e3:b2:39:ef:bf:95:64:49:ae:93:
51:c1:c0:6b:47:62:8d:e8:61:58:10:d9:61:ca:64:00:9f:2a:
bf:1d:b2:4d:c4:29:eb:46:49:20:c7:32:00:3c:37:01:af:5c:
29:6a:7c:32:05:3e:62:db:9f:26:5f:71:f0:ca:31:ee:a8:ad:
29:3c:e4:f0:9e:e8:66:c4:42:96:c5:ae:a6:4e:ff:e6:61:f2:
5a:fc:9c:37:79:40:1c:f7:94:67:24:d5:b3:06:eb:2f:ed:cb:
63:f0:be:3f:52:95:6e:2b:ab:b6:68:11:14:92:42:23:a9:cb:
e3:9c:03:91:ff:bb:b5:ea:58:af:f5:8c:16:96:a8:bb:79:b2:
79:01:56:a1:37:b5:71:8a:84:b2:53:93:07:8f:a2:58:2a:ba:
9a:42:08:41:c8:21:ac:2d:5f:96:28:7d:11:0b:d7:92:0e:e4:
b6:d2:cb:0f:aa:ef:2a:fc:a6:4e:a5:04:9f:09:f4:48:09:9f:
bf:0a:6f:0c:39:68:00:c0:33:45:c9:75:26:8c:06:9c:f8:c5:
22:49:d9:0b:c0:6a:7c:64:a5:23:c5:c0:16:4f:95:45:c0:9b:
de:80:69:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:16:11 2025 by rpki-client