Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/LrWgjNHTPfzkkfuY7MYPNha2j9c.roa
File: LrWgjNHTPfzkkfuY7MYPNha2j9c.roa (raw, json)
Hash identifier: ZAF9EGo9GBAo2EtWdOwKE59thf0YbYflnMPeac9wKJE=
Subject key identifier: 2E:B5:A0:8C:D1:D3:3D:FC:E4:91:FB:98:EC:C6:0F:36:16:B6:8F:D7
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018C71D35BD9336F6BC1F69E7583E1A44CB1
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/LrWgjNHTPfzkkfuY7MYPNha2j9c.roa
Signing time: Sat 16 Dec 2023 08:52:06 +0000
ROA not before: Sat 16 Dec 2023 08:52:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a0f:3d83::/32 maxlen: 32
2a11:fd80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0e:f201:1::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a0f:3d84::/32 maxlen: 32
2a13:fc00::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a06:5280::/29 maxlen: 29
2a13:fd00::/29 maxlen: 29
2a0f:3d80:123::/48 maxlen: 48
2a0c:9247:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a13:2b40::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a0f:2f80::/29 maxlen: 29
2a10:67c0::/29 maxlen: 29
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:7d01::/32 maxlen: 32
2a0f:e540::/29 maxlen: 29
2a12:ac41::/32 maxlen: 32
2a0f:2100::/29 maxlen: 29
2a0c:4880::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a12:ac40::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a13:1940::/29 maxlen: 29
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a13:18c3::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:71:d3:5b:d9:33:6f:6b:c1:f6:9e:75:83:e1:a4:4c:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Dec 16 08:52:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2eb5a08cd1d33dfce491fb98ecc60f3616b68fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ed:71:c4:f0:03:af:b6:29:e8:e5:e7:7c:4e:
04:48:de:d3:05:cd:5c:cc:37:85:67:bc:31:7c:9f:
3c:d7:fe:70:5a:30:eb:d7:2c:d0:a6:60:93:f9:5e:
a9:f7:66:5d:36:af:c0:87:36:d0:c4:f1:82:8d:59:
e4:97:4a:bd:df:a3:d6:37:40:93:4e:66:fe:f2:59:
55:5f:d8:64:fc:2a:d7:c8:d6:37:47:b1:9f:43:b2:
b0:5e:6b:91:ea:b2:e2:1a:79:d9:31:eb:bc:8f:11:
da:c8:6b:2d:dc:7e:b0:1b:8b:51:a6:ef:31:c1:87:
a6:e1:51:4a:2d:35:3d:d0:f2:1a:c4:5f:24:c9:36:
3b:2b:6f:9b:77:e3:75:ad:7c:3d:f2:95:50:5c:c0:
56:ed:d3:c5:17:e2:15:89:5d:a4:60:0e:29:56:91:
b5:e4:8f:e0:fd:c5:48:09:9e:50:67:1f:3c:4c:df:
c8:f5:57:a1:06:c0:5c:39:b0:cc:36:a0:80:1a:88:
b1:dc:80:b8:16:a2:37:5e:5e:25:9e:1c:48:57:43:
8a:b0:23:04:12:f3:4e:c2:00:13:d0:c0:e7:82:dc:
31:1b:79:59:ce:42:95:20:b8:2d:df:c9:2e:7a:bf:
df:61:55:81:2c:44:8a:c9:a6:6d:6f:7e:d2:d8:f8:
5f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:B5:A0:8C:D1:D3:3D:FC:E4:91:FB:98:EC:C6:0F:36:16:B6:8F:D7
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/LrWgjNHTPfzkkfuY7MYPNha2j9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a06:5280::/29
2a07:f300::/29
2a0c:4880::/29
2a0c:9247:1::/48
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a01::/32
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:2e80::/29
2a0f:2f80::/29
2a0f:3d80:123::/48
2a0f:3d82::-2a0f:3d84:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:3d87::/32
2a0f:7d01::/32
2a0f:e540::/29
2a0f:e940::/29
2a10:67c0::/29
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a13:18c0:1::/48
2a13:18c3::/32
2a13:1940::/29
2a13:2b40::/29
2a13:4900::/29
2a13:fc00::/29
2a13:fd00::/29
Signature Algorithm: sha256WithRSAEncryption
77:9a:5c:cd:b4:af:17:f0:f0:c4:50:a3:3b:2f:2f:70:98:7f:
6f:43:cf:03:d2:76:b2:a9:6e:97:f7:d9:d0:5e:ef:f0:e2:f0:
a5:fc:3b:d9:60:9c:11:4f:3c:5e:92:75:ad:b9:ad:fe:6d:bb:
8d:17:ff:f1:74:ad:23:36:40:ea:86:b3:50:10:b8:a5:d2:bc:
56:d6:ce:d2:fe:13:fd:31:9b:6f:1d:e0:2a:2b:cb:e2:b3:b6:
a6:8d:4e:9c:bf:15:ec:0c:74:83:f0:61:8e:a7:38:1e:24:ae:
77:57:b2:b2:e4:3d:70:bb:fc:59:5e:3a:85:4b:32:9b:05:9c:
59:38:21:75:77:af:57:af:a3:93:a5:be:85:97:5e:13:fa:b9:
e5:9c:df:63:a6:27:56:36:e4:22:a8:04:6d:97:e9:b7:f0:ab:
ed:5a:06:93:b2:01:18:02:5f:df:c9:1e:7a:54:28:59:d4:8d:
f9:57:7a:a4:d6:0c:da:1c:db:09:3f:ee:93:14:63:e3:82:36:
e7:89:3b:26:ad:e5:17:dd:64:1f:83:2c:01:8a:0f:60:3f:65:
1b:b3:98:49:f5:90:0a:bd:e4:e2:5f:5d:09:0f:49:da:8c:7f:
26:2e:8a:3d:74:09:4b:ef:e8:06:9d:1b:bf:f4:51:6c:14:4c:
38:cc:1e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:14:44 2025 by rpki-client