Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Of-5dERBHMRSGE6ze6RPjst8TsA.roa
File: Of-5dERBHMRSGE6ze6RPjst8TsA.roa (raw, json)
Hash identifier: rXq9hsA62nhlMyeKZW0RMGgKCYFCLyYp7tSBrf397wk=
Subject key identifier: 39:FF:B9:74:44:41:1C:C4:52:18:4E:B3:7B:A4:4F:8E:CB:7C:4E:C0
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018C5907185FAEF38EEAD7966690E9BFCFE2
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Of-5dERBHMRSGE6ze6RPjst8TsA.roa
Signing time: Mon 11 Dec 2023 13:18:06 +0000
ROA not before: Mon 11 Dec 2023 13:18:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 193.164.199.0/24 maxlen: 24
45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a12:ac40::/48 maxlen: 48
2a11:fd80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a0e:f201:1::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a06:5280::/29 maxlen: 29
2a13:fd00::/29 maxlen: 29
2a13:9080::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a13:2b40::/29 maxlen: 29
2a0f:2f80::/29 maxlen: 29
2a13:8200::/29 maxlen: 29
2a13:9280::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:e540::/29 maxlen: 29
2a12:ac40:f::/48 maxlen: 48
2a0f:2100::/29 maxlen: 29
2a0c:4880::/29 maxlen: 29
2a0f:1e00:123::/48 maxlen: 48
2a13:1940::/29 maxlen: 29
2a0f:3d82::/32 maxlen: 32
2a0f:3d83::/32 maxlen: 32
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a13:fc00::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0c:9247:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a07:f300::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a10:67c0::/29 maxlen: 29
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:7d01::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a0f:a01::/32 maxlen: 32
2a0f:1e00:def9::/48 maxlen: 48
2a13:18c3::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:59:07:18:5f:ae:f3:8e:ea:d7:96:66:90:e9:bf:cf:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Dec 11 13:18:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39ffb97444411cc452184eb37ba44f8ecb7c4ec0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fc:1e:c4:92:1b:4c:91:85:1a:a3:01:ff:28:
c3:7d:ed:c1:c4:89:55:56:ac:3f:00:5a:c5:64:c2:
fe:44:d2:40:71:0c:f3:ef:fa:85:87:ac:73:5c:c1:
e2:4c:2d:f0:73:e4:a7:6d:ca:11:d2:e7:d0:e1:e0:
bc:18:6d:16:0e:f1:c9:f5:42:4a:7b:bd:18:8a:c2:
b0:88:6d:e1:4e:17:97:ad:4f:ca:2c:e3:d4:e4:ad:
ab:4a:59:3b:62:66:41:1f:4e:24:b7:92:9c:f4:c7:
1e:bc:cb:58:f2:9c:d5:de:e9:3b:06:26:23:1f:55:
ce:b5:c0:d7:64:40:60:0f:7a:b2:64:5e:99:ca:a2:
41:43:c8:c8:80:8a:ae:4c:20:4b:12:4c:36:43:42:
30:da:6e:5b:f6:5b:0e:23:d1:fc:67:7d:4e:05:6f:
4e:b8:47:55:c6:31:76:b8:8e:11:5a:63:04:8f:4f:
da:43:3d:2b:2f:19:f1:b7:55:e9:6c:1d:e9:18:c9:
97:19:99:b5:0e:38:79:7c:3f:86:d8:3d:cf:9d:55:
03:a7:e8:dd:67:83:4b:08:0a:e0:f4:de:50:f7:33:
9a:64:8c:71:aa:b1:35:7c:c9:0e:54:ff:e3:bb:35:
62:e8:cb:15:6b:57:bd:c0:23:5c:5c:74:5b:02:0b:
b3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:FF:B9:74:44:41:1C:C4:52:18:4E:B3:7B:A4:4F:8E:CB:7C:4E:C0
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Of-5dERBHMRSGE6ze6RPjst8TsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a06:5280::/29
2a07:f300::/29
2a0c:4880::/29
2a0c:9247:1::/48
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a01::/32
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:2e80::/29
2a0f:2f80::/29
2a0f:3d80:123::/48
2a0f:3d82::/31
2a0f:3d87::/32
2a0f:7d01::/32
2a0f:e540::/29
2a0f:e940::/29
2a10:67c0::/29
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/48
2a12:ac40:f::/48
2a12:ac41::/32
2a13:18c0:1::/48
2a13:18c3::/32
2a13:1940::/29
2a13:2b40::/29
2a13:4900::/29
2a13:8200::/29
2a13:9080::/29
2a13:9280::/29
2a13:fc00::/29
2a13:fd00::/29
Signature Algorithm: sha256WithRSAEncryption
c8:f0:a5:f5:bc:93:15:e7:6c:be:fd:d1:4e:d0:75:ca:b2:f0:
b8:e9:eb:e5:e6:e1:d9:05:ef:ea:38:f4:0a:e9:0d:82:bc:b3:
18:69:22:b0:19:b1:87:c7:24:4c:3d:a2:68:9e:7a:61:af:07:
8a:65:72:00:dd:14:1d:af:a6:f8:04:7a:bf:05:8a:0e:b9:7e:
00:05:d2:2b:05:5c:54:80:7d:a4:c7:98:9b:eb:0c:ec:6e:34:
5c:92:93:0a:6a:46:68:34:9e:e5:e7:29:52:07:d9:a9:fe:b6:
f9:6a:c5:7c:41:c3:de:f2:c3:28:50:c8:bb:2b:42:9b:d9:74:
e9:dd:e9:2a:98:f0:8a:3f:99:a1:e8:87:a9:8b:1d:4e:2b:73:
e3:17:0c:dc:86:9f:de:f5:bb:b3:85:34:82:d4:b6:58:96:26:
0e:b1:eb:cd:d3:50:5d:dc:08:cc:5e:06:57:bb:e9:11:a9:73:
c2:61:a2:79:62:d8:65:b2:e8:a0:05:c9:37:20:91:d3:21:b8:
ed:8f:c2:3f:5f:56:08:0e:02:1f:ee:97:61:de:43:62:4c:33:
34:33:8f:f0:88:9a:7d:7d:cd:7a:c7:b0:7c:ca:75:8a:bd:32:
dc:df:06:27:6a:59:f3:ed:6f:06:65:a0:77:f2:a9:5d:7a:c6:
6c:9b:a2:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:01:12 2025 by rpki-client