Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/CXCDPOaBgm9Xbk6Vx8C_sF4qI7s.roa
File: CXCDPOaBgm9Xbk6Vx8C_sF4qI7s.roa (raw, json)
Hash identifier: gshGIaEYLOz/ivJUE6dT5NzGUzbcLS/7qOdbHdhM7IU=
Subject key identifier: 09:70:83:3C:E6:81:82:6F:57:6E:4E:95:C7:C0:BF:B0:5E:2A:23:BB
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018C485AB1B27EC741E69A1420BCB2FAB21B
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/CXCDPOaBgm9Xbk6Vx8C_sF4qI7s.roa
Signing time: Fri 08 Dec 2023 07:35:52 +0000
ROA not before: Fri 08 Dec 2023 07:35:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 193.164.199.0/24 maxlen: 24
45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a13:9680::/29 maxlen: 29
2a12:ac40::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a0e:f201:1::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a06:5280::/29 maxlen: 29
2a13:fd00::/29 maxlen: 29
2a13:9080::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a13:2b40::/29 maxlen: 29
2a0f:2f80::/29 maxlen: 29
2a13:8200::/29 maxlen: 29
2a13:9280::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:e540::/29 maxlen: 29
2a12:ac40:f::/48 maxlen: 48
2a0f:2100::/29 maxlen: 29
2a0c:4880::/29 maxlen: 29
2a0f:1e00:123::/48 maxlen: 48
2a13:1940::/29 maxlen: 29
2a0f:3d82::/32 maxlen: 32
2a13:9580::/29 maxlen: 29
2a0f:3d83::/32 maxlen: 32
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a13:fc00::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0c:9247:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a07:f300::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a10:67c0::/29 maxlen: 29
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:7d01::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a0f:a01::/32 maxlen: 32
2a0f:1e00:def9::/48 maxlen: 48
2a13:18c3::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:48:5a:b1:b2:7e:c7:41:e6:9a:14:20:bc:b2:fa:b2:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Dec 8 07:35:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0970833ce681826f576e4e95c7c0bfb05e2a23bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:36:f6:f3:fd:13:eb:d7:4f:41:84:ad:87:05:
31:e2:ce:c1:b6:50:40:89:5f:7d:51:29:1b:9f:4d:
25:6d:23:af:fb:89:a4:f5:51:85:4a:fe:44:e4:53:
b5:54:c6:00:d7:18:ad:42:f9:0a:19:ee:15:4f:cc:
6d:90:26:df:c3:d3:aa:bd:32:a2:eb:b2:06:c0:48:
c7:af:58:06:23:bb:92:fa:51:2e:9a:dd:14:d4:e7:
c3:32:d7:8d:67:29:d8:ef:70:91:1d:30:e0:ea:9c:
f4:34:cc:b7:e4:16:b2:32:52:cd:f5:84:99:ec:f1:
5e:d7:af:f0:e7:0f:60:5f:e2:b1:95:35:d5:bb:e7:
07:6d:83:ad:30:05:70:96:3e:a4:52:d9:46:b4:a3:
53:ae:24:59:c9:d9:6f:c9:c3:29:93:e8:f8:73:0f:
7b:dc:f7:f5:96:e4:e1:15:c7:6f:fc:80:05:ba:79:
3a:06:d6:51:68:92:99:cf:25:73:86:cf:98:2e:19:
53:36:43:08:92:0f:16:6b:3a:42:21:51:9b:57:49:
2b:b9:5e:f9:08:78:3d:0e:58:ef:8a:3c:ed:b5:69:
c6:7e:26:0b:d4:87:97:e2:f2:c9:33:f2:80:0b:ba:
f1:cd:90:d5:f0:ab:21:c8:5b:e9:cd:13:42:34:21:
a7:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:70:83:3C:E6:81:82:6F:57:6E:4E:95:C7:C0:BF:B0:5E:2A:23:BB
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/CXCDPOaBgm9Xbk6Vx8C_sF4qI7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a06:5280::/29
2a07:f300::/29
2a0c:4880::/29
2a0c:9247:1::/48
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a01::/32
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:2e80::/29
2a0f:2f80::/29
2a0f:3d80:123::/48
2a0f:3d82::/31
2a0f:3d87::/32
2a0f:7d01::/32
2a0f:e540::/29
2a0f:e940::/29
2a10:67c0::/29
2a10:6d40::/29
2a12:ac40::/48
2a12:ac40:f::/48
2a12:ac41::/32
2a13:18c0:1::/48
2a13:18c3::/32
2a13:1940::/29
2a13:2b40::/29
2a13:4900::/29
2a13:8200::/29
2a13:9080::/29
2a13:9280::/29
2a13:9580::/29
2a13:9680::/29
2a13:fc00::/29
2a13:fd00::/29
Signature Algorithm: sha256WithRSAEncryption
59:b5:5f:40:a5:94:dc:3d:f8:73:08:40:c0:82:1f:80:c0:22:
41:b9:3b:27:22:e0:bb:30:51:96:c9:a1:33:70:4d:91:ac:2b:
5b:d9:3d:08:0d:ff:9b:27:a3:06:f0:92:79:fb:ee:21:d8:1e:
6a:71:34:4c:94:31:65:8f:05:11:f6:33:df:d7:a0:70:8d:57:
2a:47:ed:3e:64:14:b4:9e:07:d2:8f:a8:1f:22:85:6b:61:30:
eb:d1:ae:7f:35:30:7c:5f:64:b0:09:0d:2b:c0:e4:ba:80:bf:
4d:d7:22:4a:86:db:d3:a5:6d:61:a5:ff:65:30:47:b1:71:46:
4f:6c:72:01:be:4c:d9:8a:d3:6d:24:f1:80:6d:4f:07:b5:44:
88:cc:53:01:ab:31:10:06:e4:74:2b:27:0c:41:12:7d:b1:1e:
f6:6f:67:d9:d3:21:81:37:b9:73:9f:00:6a:34:5e:c5:1d:66:
fc:9d:d3:f1:07:c4:0c:0a:8c:77:3c:8b:9e:42:1c:05:ec:54:
f5:fc:40:51:55:80:62:51:a6:d0:a3:f1:7c:7d:40:36:09:aa:
cd:3b:12:ab:48:31:87:7a:a9:d5:d5:99:a7:1c:53:29:0c:18:
8d:8a:ce:d2:99:bd:e0:12:8a:28:03:86:4d:ee:53:8f:19:5e:
03:e0:2a:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:01 2025 by rpki-client