Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Lf67qXwINZjJ3ZbCT9PuhMHjgsk.roa
File: Lf67qXwINZjJ3ZbCT9PuhMHjgsk.roa (raw, json)
Hash identifier: VJRW2mvd1XYVVc5koJ8HOcpaAzcRC2KB6PGaqKthrkM=
Subject key identifier: 2D:FE:BB:A9:7C:08:35:98:C9:DD:96:C2:4F:D3:EE:84:C1:E3:82:C9
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018BB2D0E856E94EAA522C18014DCDC4B54B
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Lf67qXwINZjJ3ZbCT9PuhMHjgsk.roa
Signing time: Thu 09 Nov 2023 06:41:57 +0000
ROA not before: Thu 09 Nov 2023 06:41:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a13:9680::/29 maxlen: 29
2a0f:3d83::/32 maxlen: 32
2a12:ac40::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a10:67c5:1::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a0f:3d84::/32 maxlen: 32
2a13:18c0:1::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0c:9247:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0f:3d87::/32 maxlen: 32
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a12:ac41::/32 maxlen: 32
2a12:ac40:f::/48 maxlen: 48
2a0f:ea42::/32 maxlen: 32
2a0c:4880::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a12:ecc2::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a13:1940::/29 maxlen: 29
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a13:18c3::/32 maxlen: 32
2a07:f306:123::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b2:d0:e8:56:e9:4e:aa:52:2c:18:01:4d:cd:c4:b5:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 9 06:41:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2dfebba97c083598c9dd96c24fd3ee84c1e382c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f0:39:c3:35:7c:5d:66:a8:ee:f9:69:95:f2:
be:3d:cd:f0:37:39:b2:78:08:bd:e6:4e:8f:ce:97:
f6:50:97:1c:81:ae:2a:60:3f:89:69:8e:f4:b8:84:
a3:54:0f:28:96:d2:db:bd:ba:63:6a:30:83:83:1a:
ad:9f:7f:4d:45:4c:a1:ce:02:52:77:5c:0b:6e:53:
73:f9:13:07:8c:31:d3:c1:9a:5d:01:08:40:20:87:
60:92:a6:ea:20:4b:4a:dd:39:13:87:ee:e3:07:12:
83:6b:28:26:a6:dc:a8:de:4b:ca:06:8a:9c:d2:35:
9b:af:5b:64:f4:d4:28:1c:ad:66:45:31:04:93:7b:
14:1e:f4:bc:c9:ae:c3:38:65:7f:e5:f3:a8:b0:69:
ba:32:5a:cd:13:b0:2c:9f:b1:d8:ee:12:cb:7a:d7:
3f:4e:54:dd:27:65:86:c9:d3:04:4f:05:51:3b:6f:
90:23:3e:33:0e:f7:7b:f2:b7:fe:3e:9f:10:7d:f6:
0c:24:0e:d8:3c:0b:d1:d6:a7:89:e9:e8:ba:21:db:
98:54:e7:ce:d4:e1:c8:cb:d0:ed:a2:c4:f7:0b:a9:
c3:b8:86:59:bf:0a:11:39:bf:33:b0:7e:65:87:cb:
b0:73:da:b5:ea:0c:9c:55:39:d9:31:3c:61:7b:f6:
3c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:FE:BB:A9:7C:08:35:98:C9:DD:96:C2:4F:D3:EE:84:C1:E3:82:C9
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Lf67qXwINZjJ3ZbCT9PuhMHjgsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a07:f306:123::/48
2a0c:4880::/29
2a0c:9247:1::/48
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:3d80:123::/48
2a0f:3d82::-2a0f:3d84:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:3d87::/32
2a0f:e940::/29
2a0f:ea42::/32
2a10:67c5:1::/48
2a10:6d40::/29
2a12:ac40::/48
2a12:ac40:f::/48
2a12:ac41::/32
2a12:ecc2::/32
2a13:18c0:1::/48
2a13:18c3::/32
2a13:1940::/29
2a13:4900::/29
2a13:9680::/29
Signature Algorithm: sha256WithRSAEncryption
7d:75:08:33:1a:5a:7f:8b:f8:61:84:f0:34:34:d6:51:45:2a:
35:3c:53:16:27:fb:7f:dd:f6:98:66:13:6f:1b:8a:33:9b:a7:
e1:df:5f:b9:b4:b5:5b:d0:f4:95:f0:60:3a:dc:17:ce:33:cd:
c1:a7:a7:e7:7a:53:35:ce:8b:38:e5:fc:81:ca:c2:d5:c5:f5:
37:24:cf:dd:cc:e4:f6:b7:e3:e8:56:15:89:c7:bf:8e:2c:4d:
57:c4:54:5f:04:f8:3f:f6:fa:10:17:d2:9c:a0:73:24:7b:fb:
89:db:e1:86:10:ee:af:32:3c:ed:f9:5d:72:ae:a9:82:1d:de:
ed:af:2a:75:b0:42:8d:bb:be:5f:bf:d8:f6:ab:12:b9:6b:53:
bd:24:cd:b2:3e:44:cd:c2:54:7e:2d:ff:c8:3d:81:64:73:66:
82:1d:7d:3f:53:e7:92:66:15:ef:9e:90:ed:c0:08:62:83:82:
6a:ab:cd:34:1e:21:15:be:88:c4:68:ef:68:56:ab:65:4b:9e:
54:bc:3a:5c:ce:38:f4:bd:c2:bd:4c:c2:98:a6:d4:24:7d:0e:
b0:63:3f:ce:54:ba:63:ed:3e:99:f2:7d:28:ad:da:14:e4:fb:
83:a8:34:d3:40:a7:ee:45:8d:12:2b:f3:e6:7c:42:3a:d0:4e:
66:76:5b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:28 2025 by rpki-client