Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0jEfbuzwpg9iW9jCAuww_B3BOGU.roa
File: 0jEfbuzwpg9iW9jCAuww_B3BOGU.roa (raw, json)
Hash identifier: 7GHcxqG9uFy5zn7qKJLzEDFZ4eGJpQqRI538f6Il5a0=
Subject key identifier: D2:31:1F:6E:EC:F0:A6:0F:62:5B:D8:C2:02:EC:30:FC:1D:C1:38:65
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018C822313FFDCCE37317731AF17EDEAC20E
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0jEfbuzwpg9iW9jCAuww_B3BOGU.roa
Signing time: Tue 19 Dec 2023 12:53:06 +0000
ROA not before: Tue 19 Dec 2023 12:53:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a0f:3d83::/32 maxlen: 32
2a11:fd80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0e:f201:1::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a0f:3d84::/32 maxlen: 32
2a13:fc00::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a06:5280::/29 maxlen: 29
2a0f:3d80:123::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a13:2b40::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a0f:2f80::/29 maxlen: 29
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:7d01::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a0f:2100::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a12:ac40::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a13:1940::/29 maxlen: 29
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a13:18c3::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:82:23:13:ff:dc:ce:37:31:77:31:af:17:ed:ea:c2:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Dec 19 12:53:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2311f6eecf0a60f625bd8c202ec30fc1dc13865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:8b:62:69:8a:27:d7:06:22:fa:dc:db:68:ba:
f8:dc:22:d5:61:ca:14:61:8a:96:f1:89:2b:02:d1:
b9:db:2a:81:40:b3:47:b3:b0:27:f9:20:b9:5f:38:
90:66:a5:6a:4f:79:ff:9c:6e:ef:3b:d8:33:f3:71:
f6:d1:9b:8a:0b:75:82:c9:d1:5b:5c:4a:9b:72:e5:
78:9d:40:e8:ca:bf:64:7a:34:5a:71:f9:a0:2c:93:
34:6f:ce:4d:0b:30:be:6b:6c:c2:16:13:05:9f:e4:
80:80:26:7c:af:80:16:1b:a9:ed:46:38:c3:1b:be:
71:6d:3f:b5:c9:f6:7d:9a:c0:ee:4c:14:74:27:f2:
ec:a9:af:a3:84:6c:9f:bc:e6:2a:cc:85:ba:49:c8:
db:55:4f:11:11:81:be:bc:20:6f:17:ec:95:34:cd:
e8:38:12:50:18:4e:55:80:3b:65:54:f3:b2:e3:02:
c9:00:9e:9f:61:b8:4f:c1:93:6c:77:a0:45:0c:51:
d9:e5:63:7a:bd:73:59:59:b9:da:23:a0:80:9c:52:
80:71:e4:a8:13:c2:d7:79:26:4f:00:72:6d:3f:10:
8b:c1:fe:fa:2d:0d:9e:f6:c6:58:64:a9:37:ec:0e:
8d:34:c2:a4:db:65:ad:7b:6a:11:20:d3:d8:92:ea:
bd:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:31:1F:6E:EC:F0:A6:0F:62:5B:D8:C2:02:EC:30:FC:1D:C1:38:65
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0jEfbuzwpg9iW9jCAuww_B3BOGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a06:5280::/29
2a07:f300::/29
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a01::/32
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:2e80::/29
2a0f:2f80::/29
2a0f:3d80:123::/48
2a0f:3d82::-2a0f:3d84:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:3d87::/32
2a0f:7d01::/32
2a0f:e940::/29
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a13:18c0:1::/48
2a13:18c3::/32
2a13:1940::/29
2a13:2b40::/29
2a13:4900::/29
2a13:fc00::/29
Signature Algorithm: sha256WithRSAEncryption
0d:55:31:8e:bd:ab:7f:c3:e2:08:cf:c0:07:b7:fb:cc:f4:ef:
6a:c4:78:1f:da:af:b6:59:5b:ae:a4:7a:c4:59:dd:d9:71:b3:
6c:ed:a5:85:c2:bd:72:20:2c:96:a9:83:ae:7b:2f:63:e6:5b:
e6:15:5f:e3:cd:38:39:88:fa:17:e8:7a:44:79:22:70:4b:56:
f1:59:2d:ad:6b:b7:c2:41:bd:30:d9:b7:ff:8e:07:aa:70:de:
2d:86:12:75:d4:55:88:f3:15:7a:3d:64:07:c2:48:2b:44:25:
0f:e6:6e:6b:bd:45:68:b1:c3:d9:ed:14:c9:af:ac:8f:ee:c1:
f6:7b:a7:56:31:82:89:a2:a2:1b:59:8a:ff:14:91:6c:8c:b5:
8e:14:31:84:1b:37:03:e4:bc:4f:06:f7:7e:66:f5:8b:46:2c:
3f:e7:bb:ef:ff:8d:e4:5f:28:a6:0a:ef:16:07:c7:90:c7:95:
10:d5:19:ec:ec:ab:c0:67:7a:a0:6f:e6:fd:71:12:8c:24:0f:
c8:62:72:26:81:68:b8:3f:09:a3:c9:7a:e0:b4:06:41:31:fe:
e0:e4:87:71:c6:ce:e2:da:fa:e0:6b:02:70:ed:83:6d:62:05:
c3:6d:9c:04:66:93:11:19:c3:aa:0c:f1:18:06:06:f9:71:a8:
a6:87:6b:b0
-----BEGIN CERTIFICATE-----
MIIGNzCCBR+gAwIBAgISAYyCIxP/3M43MXcxrxft6sIOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjMxMjE5MTI1MzA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMjMxMWY2ZWVjZjBhNjBmNjI1YmQ4YzIwMmVjMzBmYzFkYzEzODY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6YtiaYon1wYi+tzbaLr43CLVYcoU
YYqW8YkrAtG52yqBQLNHs7An+SC5XziQZqVqT3n/nG7vO9gz83H20ZuKC3WCydFb
XEqbcuV4nUDoyr9kejRacfmgLJM0b85NCzC+a2zCFhMFn+SAgCZ8r4AWG6ntRjjD
G75xbT+1yfZ9msDuTBR0J/Lsqa+jhGyfvOYqzIW6ScjbVU8REYG+vCBvF+yVNM3o
OBJQGE5VgDtlVPOy4wLJAJ6fYbhPwZNsd6BFDFHZ5WN6vXNZWbnaI6CAnFKAceSo
E8LXeSZPAHJtPxCLwf76LQ2e9sZYZKk37A6NNMKk22Wte2oRINPYkuq9/wIDAQAB
o4IDQzCCAz8wHQYDVR0OBBYEFNIxH27s8KYPYlvYwgLsMPwdwThlMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvMGpFZmJ1endwZzlpVzlqQ0F1d3dfQjNCT0dVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBVwYIKwYBBQUHAQcBAf8EggFGMIIBQjAYBAIAATASAwQA
LYF/AwQALYclAwQAwaTHMIIBJAQCAAIwggEcAwUDKgZSgAMFAyoH8wADBQAqDhqA
AwUAKg7HgAMHACoO8gEAAQMFACoPCgEDBwAqDx4AASMDBwAqDx4ABFYDBwAqDx4A
CYcDBwAqDx4ACrwDBwAqDx4A3vkDBwAqDx4BAAEDBwAqDx6BAAIDBwAqDx6BEpMD
BwAqDx6BQxkDBwAqDx6BkugDBwAqDx6Bo9ADBwAqDx6Bza4DBQMqDyEAAwUDKg8u
gAMFAyoPL4ADBwAqDz2AASMwDgMFASoPPYIDBQAqDz2EAwUAKg89hwMFACoPfQED
BQMqD+lAAwUDKhBtQAMFAyoR/YADBQEqEqxAAwcAKhMYwAABAwUAKhMYwwMFAyoT
GUADBQMqEytAAwUDKhNJAAMFAyoT/AAwDQYJKoZIhvcNAQELBQADggEBAA1VMY69
q3/D4gjPwAe3+8z072rEeB/ar7ZZW66kesRZ3dlxs2ztpYXCvXIgLJapg657L2Pm
W+YVX+PNODmI+hfoekR5InBLVvFZLa1rt8JBvTDZt/+OB6pw3i2GEnXUVYjzFXo9
ZAfCSCtEJQ/mbmu9RWixw9ntFMmvrI/uwfZ7p1YxgomiohtZiv8UkWyMtY4UMYQb
NwPkvE8G935m9YtGLD/nu+//jeRfKKYK7xYHx5DHlRDVGezsq8BneqBv5v1xEowk
D8hiciaBaLg/CaPJeuC0BkEx/uDkh3HGzuLa+uBrAnDtg21iBcNtnARmkxEZw6oM
8RgGBvlxqKaHa7A=
-----END CERTIFICATE-----
Generated at Mon Apr 21 16:18:02 2025 by rpki-client