Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/32NvJE2rqxoJui6J5vS9BtGGe9c.roa
File: 32NvJE2rqxoJui6J5vS9BtGGe9c.roa (raw, json)
Hash identifier: 1l27c9LHndxUSPIKRUzTyQ0geIgO53d/ggyD+XJxtkg=
Subject key identifier: DF:63:6F:24:4D:AB:AB:1A:09:BA:2E:89:E6:F4:BD:06:D1:86:7B:D7
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01D56BF5
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/32NvJE2rqxoJui6J5vS9BtGGe9c.roa
Signing time: Tue 08 Feb 2022 23:16:34 +0000
ROA not before: Tue 08 Feb 2022 23:16:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 45.95.98.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
2a0f:a03::/32 maxlen: 32
2a0f:1f80::/29 maxlen: 29
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a0e:2240:2::/48 maxlen: 48
2a0e:f200:2::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0f:a02::/32 maxlen: 32
2a0f:e143::/32 maxlen: 32
2a0f:e1c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30764021 (0x1d56bf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 8 23:16:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df636f244dabab1a09ba2e89e6f4bd06d1867bd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:5d:30:94:b8:3f:11:c6:ff:b4:45:7c:e4:75:
57:75:ec:e0:ff:bd:89:56:99:24:ad:57:20:72:95:
5d:84:a4:c6:15:a4:23:55:7e:01:8c:34:ea:79:30:
0b:14:da:67:46:bc:00:32:e0:e2:94:78:5f:65:d0:
8a:ec:b0:33:82:22:95:bb:1a:77:33:3e:6b:14:6e:
00:f1:63:92:7f:45:68:5e:c6:b8:e1:bb:bf:8a:82:
1b:8d:96:d6:72:83:00:a4:6e:41:9d:11:76:40:72:
a1:7f:9a:f5:0b:ef:31:10:a1:87:b7:d6:5d:9e:c6:
22:c0:e4:c7:6f:24:79:60:f5:e0:b0:71:a3:26:62:
30:c3:2b:95:81:d0:73:2a:a1:04:1f:86:78:65:8d:
cd:a2:eb:94:98:b3:57:8f:b6:47:4a:d4:74:e7:35:
33:45:4f:fc:16:b7:86:bd:de:4d:34:27:0f:9f:d9:
2f:63:5c:fd:15:37:49:c4:a4:51:39:29:e8:f1:d6:
6f:4b:2a:20:45:1b:1f:d6:0d:6b:59:11:c0:ea:38:
9e:71:86:d7:61:05:28:d3:e6:86:54:ad:50:dd:2e:
d6:9c:75:6e:a3:f4:47:34:ab:0b:05:69:b4:0b:0e:
41:59:c7:ed:98:3d:2a:3c:2d:c0:b1:a3:f6:07:ef:
ca:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:63:6F:24:4D:AB:AB:1A:09:BA:2E:89:E6:F4:BD:06:D1:86:7B:D7
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/32NvJE2rqxoJui6J5vS9BtGGe9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.98.0/24
45.137.86.0/24
193.111.4.0/23
193.111.18.0/23
IPv6:
2a0e:2240:2::/48
2a0e:f200:2::/48
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1f80::/29
2a0f:da40::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c7::/32
Signature Algorithm: sha256WithRSAEncryption
8d:ff:49:ce:0b:2d:1a:94:7e:17:b9:dc:c0:de:08:c7:80:12:
df:2f:89:9e:02:49:0b:ed:67:1e:93:e8:a7:73:53:f0:81:0e:
a4:13:03:9e:3e:09:b0:48:67:24:16:e4:8c:07:b5:22:db:ab:
ec:98:e5:20:2a:5f:ba:bf:4d:64:fc:51:fa:17:91:71:6c:2c:
d6:09:85:9e:d2:9a:48:3a:6d:21:f0:af:46:01:f5:2f:32:c0:
9d:d7:64:44:dc:b7:d3:ff:5e:57:fb:2c:d7:e4:e4:a5:1e:d9:
82:8e:57:db:d5:79:d5:d1:1d:7e:58:ae:bd:eb:6b:12:6d:5a:
d0:2a:b4:0e:1a:a9:dc:07:0f:0b:3f:11:d8:be:c9:31:17:16:
a3:2d:90:d2:5f:6b:31:55:80:8c:3a:59:9b:d4:66:6c:32:bc:
75:d1:05:d1:e5:22:a6:60:2f:a9:32:79:5f:31:7f:3d:69:7f:
8e:16:3f:c7:cc:7c:ef:ff:5f:0d:00:58:df:73:47:c4:0a:be:
27:06:dd:0c:3f:34:4e:b3:fe:6b:9f:57:ce:d7:ab:84:73:a2:
39:4a:ad:77:dd:a4:40:87:1c:ce:75:d6:76:81:0b:71:d6:7e:
99:dc:94:01:b8:54:dc:16:6e:2d:81:7b:64:ad:a2:30:38:39:
88:ae:c4:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 15:34:39 2025 by rpki-client