Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_L41iuRXMk6CXAcJQUa-20jc0EM.roa
File: _L41iuRXMk6CXAcJQUa-20jc0EM.roa (raw, json)
Hash identifier: JBrn99CxMt00v42cnbQKIxBUY7ltoKC4+yew7vj7EhA=
Subject key identifier: FC:BE:35:8A:E4:57:32:4E:82:5C:07:09:41:46:BE:DB:48:DC:D0:43
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018AD1B2C011E64EB787ECD2D2C258328F4E
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_L41iuRXMk6CXAcJQUa-20jc0EM.roa
Signing time: Tue 26 Sep 2023 13:34:27 +0000
ROA not before: Tue 26 Sep 2023 13:34:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a12:ac40::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a10:67c5:1::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0c:9247:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0c:9240::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a12:ac41::/32 maxlen: 32
2a12:ac40:f::/48 maxlen: 48
2a0f:ea42::/32 maxlen: 32
2a0c:4880::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a12:ecc2::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a13:1940::/29 maxlen: 29
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a13:18c3::/32 maxlen: 32
2a07:f306:123::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d1:b2:c0:11:e6:4e:b7:87:ec:d2:d2:c2:58:32:8f:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 26 13:34:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fcbe358ae457324e825c07094146bedb48dcd043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:3f:cc:b5:e2:76:05:6b:07:b1:13:c0:ee:b7:
b9:cb:da:a1:04:f6:02:b3:25:a1:d7:29:a2:de:bd:
ff:8f:f8:61:75:7c:01:0e:ba:20:ee:e5:3a:fd:89:
c9:0b:74:34:8e:7e:e7:d6:48:35:28:54:9e:dc:eb:
50:83:14:b1:db:d7:f0:38:31:25:41:30:11:3e:35:
d4:48:4b:bc:0f:34:4c:c5:b9:bd:20:67:23:1d:4e:
75:d7:c5:49:1b:64:d1:01:86:47:45:c3:22:52:19:
84:53:75:1e:12:8f:9b:78:5a:e3:32:c8:fa:c2:80:
ec:0c:bf:25:6a:c1:38:41:5c:54:0b:ac:ef:42:49:
55:b9:cc:10:c4:b6:79:75:a6:65:46:e5:9c:ef:8d:
fb:95:51:8b:fe:c8:65:21:0e:20:b0:fb:20:e0:15:
c4:26:db:03:7b:1a:22:21:16:4d:f9:08:10:cb:0c:
c7:d9:68:a9:c1:30:0f:e0:86:57:92:56:10:e2:2d:
6b:4d:17:3b:b9:0e:4c:d1:dc:c0:99:73:71:dd:26:
0f:e9:e0:1e:2b:1c:4b:dd:91:ed:39:64:19:19:88:
51:97:c7:59:22:97:e9:4f:40:f0:53:ac:da:de:76:
ed:7d:2d:d9:7f:ca:eb:9e:58:71:17:f0:90:ad:95:
99:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:BE:35:8A:E4:57:32:4E:82:5C:07:09:41:46:BE:DB:48:DC:D0:43
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_L41iuRXMk6CXAcJQUa-20jc0EM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a07:f300::/29
2a0c:4880::/29
2a0c:9240::/29
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:3d87::/32
2a0f:e940::/29
2a0f:ea42::/32
2a10:67c5:1::/48
2a10:6d40::/29
2a12:ac40::/48
2a12:ac40:f::/48
2a12:ac41::/32
2a12:ecc2::/32
2a13:18c0:1::/48
2a13:18c3::/32
2a13:1940::/29
2a13:4900::/29
Signature Algorithm: sha256WithRSAEncryption
0a:a7:03:46:19:a1:c3:c5:bc:e9:c5:95:16:fe:fa:c5:3c:ef:
69:12:3f:d2:cf:da:db:ac:23:53:9e:5b:6a:cf:96:e8:6f:b9:
59:b7:17:24:d5:f7:30:8c:d1:58:b4:98:0e:d4:7e:6f:28:ab:
d5:59:12:f4:22:ed:e7:0f:c0:e3:3c:83:95:ce:52:b0:d2:ae:
67:5b:4c:27:e2:21:e8:11:c5:d6:d3:aa:13:fa:8f:7f:5b:23:
36:05:9d:d1:0f:5a:01:c8:70:25:86:5c:03:4e:03:1d:66:b5:
03:bd:22:f0:4c:3c:51:49:e3:31:21:dd:e6:3c:10:ba:00:7e:
e1:1b:66:54:6b:49:fb:b4:fb:32:5e:0a:24:3f:ee:29:7a:7a:
b5:c2:b1:93:9b:db:b1:0f:b5:a8:b1:62:56:75:29:31:72:4e:
7d:81:dd:d0:85:59:dc:a2:ac:52:db:b5:82:35:75:59:15:37:
23:64:a9:c2:3c:51:0c:bf:9c:54:bd:13:40:9b:8e:28:a1:0d:
9f:9c:83:3a:23:f5:89:28:5b:e7:79:4c:a8:40:75:62:fb:71:
b6:24:66:e8:b5:9d:b5:10:7a:2a:80:0e:d7:39:1c:96:16:6a:
66:f1:75:5b:cd:38:f9:89:10:71:c3:8f:1c:d9:6f:53:bc:2e:
4a:13:2d:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:14:54 2025 by rpki-client