Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/OdOK0_mvxzJ4mNbKs_gEXfDWs7k.roa
File: OdOK0_mvxzJ4mNbKs_gEXfDWs7k.roa (raw, json)
Hash identifier: Nb5kngkVbdwR0eij4W5927iQ1wAahsXGtTjb+bewTns=
Subject key identifier: 39:D3:8A:D3:F9:AF:C7:32:78:98:D6:CA:B3:F8:04:5D:F0:D6:B3:B9
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 02460B59
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/OdOK0_mvxzJ4mNbKs_gEXfDWs7k.roa
Signing time: Thu 10 Mar 2022 11:32:28 +0000
ROA not before: Thu 10 Mar 2022 11:32:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 45.95.98.0/24 maxlen: 24
193.39.209.0/24 maxlen: 24
194.33.32.0/24 maxlen: 24
45.152.197.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
2a0e:e980::/29 maxlen: 29
2a0f:ac00::/29 maxlen: 29
2a0f:e1c2::/32 maxlen: 32
2a0f:1f80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:a02::/32 maxlen: 32
2a0f:e1c0::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:a03::/32 maxlen: 32
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a0e:f200:2::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0e:2440::/29 maxlen: 29
2a0f:e143::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38144857 (0x2460b59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 10 11:32:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39d38ad3f9afc7327898d6cab3f8045df0d6b3b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2d:ab:3f:f1:67:8b:ea:39:2d:03:64:92:12:
12:08:bb:41:dd:c9:74:5d:e9:f4:d6:65:a8:4f:d4:
1e:d9:03:0a:4f:f1:19:60:50:6d:0a:fd:ec:84:71:
57:b0:1b:0c:5f:2c:39:e1:3c:ee:c9:be:22:92:b4:
3f:c5:99:e9:ee:8a:3a:a0:de:d3:bf:32:52:dd:90:
c5:0d:6f:c0:39:29:2a:f6:b6:4f:30:6b:20:d3:a9:
ae:b8:5e:6a:e6:8b:f4:7e:2a:ad:7d:cb:6c:92:b3:
2b:17:81:39:ef:eb:e2:3a:66:a2:ca:27:51:31:5b:
c9:bb:3a:43:d6:81:20:2a:a9:f6:0c:e0:9b:8a:31:
d5:71:0a:af:86:6b:e7:cf:03:07:80:aa:ec:34:db:
23:2e:40:0a:36:ed:40:73:27:eb:24:08:8d:73:36:
b6:c6:c4:8a:5e:0b:26:71:13:47:8f:1b:26:e5:13:
83:47:9e:5b:79:ab:77:55:26:1a:b0:b3:50:a9:83:
64:fc:55:6c:c2:b1:e7:2e:1b:75:62:e2:3c:60:f4:
39:92:34:5a:7e:10:05:25:e5:bb:4a:24:85:5d:ec:
61:97:e6:48:50:e9:1d:de:3a:77:a5:5b:f8:16:9d:
6d:8b:86:47:b3:a4:30:97:32:bd:64:b5:0b:e9:26:
41:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D3:8A:D3:F9:AF:C7:32:78:98:D6:CA:B3:F8:04:5D:F0:D6:B3:B9
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/OdOK0_mvxzJ4mNbKs_gEXfDWs7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.91.208.0/24
45.91.211.0/24
45.95.98.0/24
45.128.77.0/24
45.137.41.0/24
45.137.86.0/24
45.152.197.0/24
45.153.21.0/24
45.153.23.0/24
45.153.218.0/24
45.157.38.0/24
45.158.197.0/24
193.39.209.0/24
193.41.39.0/24
193.111.4.0/23
193.111.18.0/23
194.33.32.0/24
IPv6:
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:2::/48
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1f80::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:dac0::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c2::/32
2a0f:e1c7::/32
2a0f:e600:1::/48
2a0f:e940::/29
Signature Algorithm: sha256WithRSAEncryption
5b:4c:54:d1:50:af:72:12:b2:d2:03:b3:5a:b3:18:9a:b9:da:
c8:65:55:04:cb:13:d1:b8:c2:0a:cf:0b:fa:95:38:45:dd:90:
a3:8f:a3:ca:4c:2e:08:e5:f7:34:18:11:d7:5b:9d:1a:f7:0d:
3b:d2:8a:52:ba:51:e7:4b:3c:c2:20:a0:9e:4d:5d:2e:65:2f:
5c:dc:84:13:d9:3a:83:c5:ca:00:1c:e8:6e:38:a1:d0:ab:c5:
20:5a:9c:4a:5a:d7:24:05:40:fd:83:23:9d:ec:78:7f:ee:f6:
58:7f:74:f7:67:4d:ad:8a:97:c8:fe:04:2a:83:59:d4:5c:99:
ab:79:28:4e:a7:e2:e5:82:69:e6:af:6b:07:a1:52:a4:fa:25:
fa:47:a7:aa:a6:89:6b:56:c6:17:2f:8a:b0:70:91:e4:87:db:
9d:ef:4e:5b:d6:42:29:c2:69:1a:9d:cf:5f:0d:cc:d8:17:04:
b2:04:b2:6c:3d:e6:7e:e9:2f:7b:e0:5e:9c:5a:68:1b:d8:66:
b3:88:19:f7:e2:0b:0c:9e:10:63:07:71:b6:c9:02:ad:83:ee:
d4:64:46:12:e1:16:d9:bf:e4:f9:49:7f:47:2d:db:ae:25:49:
2c:67:6d:a4:6a:bf:89:7f:37:1e:a9:83:e8:6b:0c:1c:b2:dd:
0b:10:3d:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:14:57 2025 by rpki-client