Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/E3nAo-M3ct27EbeHpGw5E-C0wfs.roa
File: E3nAo-M3ct27EbeHpGw5E-C0wfs.roa (raw, json)
Hash identifier: U4JMKelv1JFDZoxBrWSCMKEO8HdnSDFFsYOE/K7NVpo=
Subject key identifier: 13:79:C0:A3:E3:37:72:DD:BB:11:B7:87:A4:6C:39:13:E0:B4:C1:FB
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01E15EB7
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/E3nAo-M3ct27EbeHpGw5E-C0wfs.roa
Signing time: Wed 09 Feb 2022 10:05:38 +0000
ROA not before: Wed 09 Feb 2022 10:05:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 45.95.98.0/24 maxlen: 24
193.39.209.0/24 maxlen: 24
194.33.32.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
45.152.197.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
2a0f:a03::/32 maxlen: 32
2a0f:ac00::/29 maxlen: 29
2a0f:1f80::/29 maxlen: 29
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a0e:2240:2::/48 maxlen: 48
2a0e:f200:2::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0f:a02::/32 maxlen: 32
2a0f:e143::/32 maxlen: 32
2a0f:e1c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31547063 (0x1e15eb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 9 10:05:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1379c0a3e33772ddbb11b787a46c3913e0b4c1fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6c:95:0c:b7:5d:10:1c:32:c0:a6:3d:23:8f:
cf:9c:4c:e4:ec:fb:69:23:1c:58:41:e9:a0:1a:a1:
52:b6:41:f2:d8:17:2a:0c:87:67:56:93:3c:b7:99:
32:2f:98:30:36:da:cb:08:21:39:aa:84:c6:16:30:
bd:08:01:fd:6a:4a:6f:3f:32:2e:d7:56:15:c2:23:
57:7d:e2:86:2f:0b:d9:e6:ee:73:cf:45:1e:e7:e0:
51:5d:8e:76:c8:c3:0e:a7:79:ba:1b:09:25:82:52:
ef:62:05:41:60:9c:18:e9:91:0a:c8:73:9b:50:16:
88:92:85:e7:36:83:4c:fd:79:32:21:7c:84:69:33:
ff:7e:d5:cd:88:08:07:50:2f:34:1d:39:bc:2a:de:
d0:f4:1b:57:3d:24:0a:eb:a6:54:ac:3f:b6:23:5b:
32:67:0e:5c:61:9a:a1:cc:c9:89:e1:8c:30:ec:2d:
9a:00:b2:86:e6:80:94:ae:0a:4a:db:e0:f1:e1:d5:
9c:c3:2f:04:d2:94:6a:fb:6a:80:4b:18:43:c3:20:
0f:8b:39:f2:f8:66:cc:26:7f:c8:d9:6b:1c:1a:56:
bf:36:04:bf:62:24:5b:99:98:db:f1:63:a4:02:86:
ad:f4:1c:a2:75:fc:75:a4:6d:35:9e:a0:69:c0:7d:
09:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:79:C0:A3:E3:37:72:DD:BB:11:B7:87:A4:6C:39:13:E0:B4:C1:FB
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/E3nAo-M3ct27EbeHpGw5E-C0wfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.98.0/24
45.128.77.0/24
45.137.86.0/24
45.152.197.0/24
193.39.209.0/24
193.111.4.0/23
193.111.18.0/23
194.33.32.0/24
IPv6:
2a0e:2240:2::/48
2a0e:f200:2::/48
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1f80::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c7::/32
Signature Algorithm: sha256WithRSAEncryption
c5:fa:36:55:93:5e:29:28:68:b4:69:57:62:37:cc:ea:1a:13:
33:17:fe:27:19:5e:af:f8:c8:78:dd:55:9c:3f:92:50:5e:51:
2e:cc:dc:87:5f:0a:db:d0:79:2c:e1:c9:bb:93:ea:fb:98:18:
6f:48:5c:06:02:15:d4:2f:92:3d:1c:e6:68:2c:a4:05:1d:68:
4a:94:15:94:3a:08:8a:a8:4b:64:00:bb:b7:ef:71:4b:48:ee:
33:31:6e:e7:83:13:f9:17:f1:62:19:0a:aa:52:a4:dc:9b:dd:
b2:4f:67:50:2f:f8:fc:22:28:55:93:f6:fe:d4:be:6d:95:43:
b2:6a:1b:64:ae:d3:6d:ea:f0:2a:89:09:14:9a:39:88:4f:87:
32:80:48:f7:ac:57:92:cf:50:4d:82:8d:2c:94:84:2b:45:ef:
b1:27:5d:21:c3:56:99:81:08:7d:6f:1a:b7:20:48:3b:e1:ec:
e6:6e:87:47:44:6f:de:7c:77:87:eb:a2:a0:0e:58:52:5c:4e:
07:fd:2b:26:19:6c:f9:bf:62:1e:47:0d:01:04:45:07:8e:81:
51:02:ad:cf:97:54:c6:d4:08:5a:ca:f9:db:3b:f5:bb:8f:53:
4b:4f:e9:89:45:46:40:2b:7e:03:40:6c:58:69:33:41:b5:68:
fa:7a:69:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:11:36 2025 by rpki-client