Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ENW0jzZCok8retiXIROPL2kg8-o.roa
File: ENW0jzZCok8retiXIROPL2kg8-o.roa (raw, json)
Hash identifier: r1rUtu73dYXsEzRVailn/yAfuWqJoSkNSM3GkcKBHI4=
Subject key identifier: 10:D5:B4:8F:36:42:A2:4F:2B:7A:D8:97:21:13:8F:2F:69:20:F3:EA
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01876AE5907AB704661C4A83F73175873D2A
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ENW0jzZCok8retiXIROPL2kg8-o.roa
Signing time: Mon 10 Apr 2023 11:20:42 +0000
ROA not before: Mon 10 Apr 2023 11:20:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:39c1::/32 maxlen: 32
2a0e:c780::/32 maxlen: 32
2a0f:7f00::/32 maxlen: 32
2a12:ac40::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a0f:3d84::/32 maxlen: 32
2a0e:5a80::/29 maxlen: 29
2a0f:1e01:1::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0c:4880::/32 maxlen: 32
2a0f:1e81:2::/48 maxlen: 48
2a12:d540::/29 maxlen: 29
2a0f:39c0::/32 maxlen: 32
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0f:3d87::/32 maxlen: 32
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a12:ac40:f::/48 maxlen: 48
2a0f:a01::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a0f:7f01::/32 maxlen: 32
2a0f:e00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6a:e5:90:7a:b7:04:66:1c:4a:83:f7:31:75:87:3d:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 10 11:20:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10d5b48f3642a24f2b7ad89721138f2f6920f3ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:5e:10:c9:8b:bd:22:c7:71:8d:0d:82:fa:4d:
16:b0:7f:d2:81:c8:3d:74:0f:97:37:a4:dd:e4:04:
1c:46:8c:75:27:28:e2:ce:fe:d4:8b:08:07:08:21:
41:bb:cf:cd:18:04:62:1e:fc:18:66:3c:b2:4d:e4:
e4:c4:63:1a:86:cf:82:18:90:c6:49:2b:02:94:e3:
be:41:06:5d:ad:81:dc:b4:e0:7e:09:64:63:66:de:
ca:82:a1:ea:f1:76:61:38:7b:68:fe:1d:ef:67:a9:
46:e3:d3:d6:69:fe:6c:d6:62:50:eb:74:23:0c:da:
a2:9a:8e:7f:ab:ef:df:c7:33:96:31:fd:8b:7b:02:
29:71:3d:5b:3a:ec:ec:c9:8d:59:18:88:50:fe:7a:
c6:f5:07:86:58:b7:05:76:78:fc:ca:de:1e:d3:82:
a3:16:0f:e2:e3:1c:68:dc:61:e8:bf:7f:47:c0:69:
0f:7c:c4:d3:e1:4e:5b:49:81:22:34:e6:93:ef:75:
8e:c9:37:4d:6f:55:c7:8f:02:d9:15:44:27:07:34:
8c:1b:af:2d:aa:df:fa:f5:7f:68:5d:f3:1e:fa:60:
85:cc:24:99:3f:dd:71:94:0a:48:a0:7a:0f:2b:75:
57:32:00:97:cd:b8:72:1a:00:68:50:91:74:d0:19:
57:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:D5:B4:8F:36:42:A2:4F:2B:7A:D8:97:21:13:8F:2F:69:20:F3:EA
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ENW0jzZCok8retiXIROPL2kg8-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a07:f300::/29
2a0c:4880::/32
2a0e:1a80::/32
2a0e:5a80::/29
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a00::/31
2a0f:e00::/29
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:39c0::/31
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:3d84::/32
2a0f:3d87::/32
2a0f:7f00::/31
2a10:6d40::/29
2a12:ac40::/48
2a12:ac40:f::/48
2a12:d540::/29
2a13:4900::/29
Signature Algorithm: sha256WithRSAEncryption
46:ed:7c:4e:e8:b9:57:8b:42:c2:4f:02:c1:c0:e1:31:88:9b:
4f:7d:ff:d8:31:2b:01:f2:a1:11:be:3e:f1:e5:4c:36:ca:9f:
b2:4b:cc:f2:7b:95:34:e4:6b:de:39:a4:8e:52:ef:bf:8b:54:
3d:0e:d1:c5:76:a3:7e:3f:1d:64:8d:57:d5:25:96:5f:c9:ac:
6e:e6:03:28:b7:d6:aa:d4:62:4d:06:10:5a:6e:00:89:b7:3c:
01:dd:c0:5e:ad:7a:13:63:c8:40:7b:17:ef:84:20:67:fb:21:
fc:ea:b5:2d:b8:f9:ae:e7:88:a9:5e:c8:d8:64:33:04:3c:28:
80:cf:4a:4f:ac:99:b7:5b:0f:a2:e2:a3:f7:a4:78:df:f7:ea:
11:e2:8f:d0:79:10:ca:11:6e:3e:bc:22:7d:b9:24:60:e3:29:
6e:b7:eb:b5:85:dc:05:43:86:79:fe:ca:44:5f:f0:62:8f:0c:
48:31:74:e8:ee:27:46:f4:d7:1c:f8:5c:2e:b0:9c:08:0c:31:
86:1f:a9:30:1b:f4:e9:88:7e:f8:7d:e3:b4:a3:06:57:c0:85:
b9:63:de:56:89:76:bd:6e:ba:53:0e:31:3a:8e:55:43:5a:08:
0e:ee:1f:77:53:8b:5b:69:8d:db:37:ba:35:96:bd:e1:c3:75:
24:d9:c2:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:14:38 2025 by rpki-client