Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/dInKRTUx9BCYm1xJBolSHYHe5L0.roa
File: dInKRTUx9BCYm1xJBolSHYHe5L0.roa (raw, json)
Hash identifier: OMXkiF/K4MXJQ5JZs9dJkQcj117zCb2yfsOUvNLXJI4=
Subject key identifier: 74:89:CA:45:35:31:F4:10:98:9B:5C:49:06:89:52:1D:81:DE:E4:BD
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018920E2A2C74108C48E17AAA47B5127D2BE
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/dInKRTUx9BCYm1xJBolSHYHe5L0.roa
Signing time: Tue 04 Jul 2023 12:31:10 +0000
ROA not before: Tue 04 Jul 2023 12:31:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a12:ac40::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a10:67c5:1::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0c:9247:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0c:9240::/29 maxlen: 29
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a12:ac41::/32 maxlen: 32
2a0f:ea42::/32 maxlen: 32
2a12:ac40:f::/48 maxlen: 48
2a0c:4880::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a12:ecc2::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a13:1940::/29 maxlen: 29
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:e2:a2:c7:41:08:c4:8e:17:aa:a4:7b:51:27:d2:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 4 12:31:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7489ca453531f410989b5c490689521d81dee4bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:78:d9:27:c9:36:ef:eb:d6:4d:ad:67:6e:fa:
ff:53:dc:08:1c:fd:2c:60:39:67:63:9b:b8:e7:65:
75:5e:88:ab:1f:5d:c0:ea:37:9f:29:a8:83:1d:b8:
71:14:e6:48:16:b8:9b:55:75:21:05:50:23:e8:d0:
c1:ff:8e:3f:81:83:00:99:29:78:33:e1:be:8e:f1:
aa:1b:f1:4c:1e:9c:23:7d:a1:ef:2d:e9:fd:61:d0:
ca:a8:c2:bb:aa:18:48:1a:1d:1c:8d:3d:30:44:34:
66:c5:ee:9a:6f:62:3e:4b:89:32:11:d4:23:35:58:
90:2e:53:ed:96:45:78:2b:48:34:4e:02:46:f2:fa:
56:97:5b:eb:24:ae:79:c7:de:14:2f:c2:7e:e1:17:
c4:b5:22:b6:62:32:6c:75:32:0a:6f:0e:04:8d:ea:
f0:3a:f6:c8:6c:1a:28:f6:08:de:f1:69:1c:90:e3:
d4:9a:62:06:9b:ac:00:d2:9f:fa:5e:10:90:ac:3b:
d9:25:df:5e:30:34:6a:1f:06:1a:d6:ed:5b:57:fb:
06:a1:4d:a8:ae:39:a1:86:ac:c9:7f:0a:c2:9d:ff:
ef:bd:f2:2a:83:be:42:f0:6a:d0:07:3e:42:90:4a:
19:a8:33:b5:c1:3c:dd:b1:2c:14:b0:61:17:c0:49:
5d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:89:CA:45:35:31:F4:10:98:9B:5C:49:06:89:52:1D:81:DE:E4:BD
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/dInKRTUx9BCYm1xJBolSHYHe5L0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a07:f300::/29
2a0c:4880::/29
2a0c:9240::/29
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:e940::/29
2a0f:ea42::/32
2a10:67c5:1::/48
2a10:6d40::/29
2a12:ac40::/48
2a12:ac40:f::/48
2a12:ac41::/32
2a12:ecc2::/32
2a13:18c0:1::/48
2a13:1940::/29
2a13:4900::/29
Signature Algorithm: sha256WithRSAEncryption
bb:ef:a4:b1:f9:f2:67:76:52:d1:df:53:1d:8b:0c:fe:ef:dd:
5b:1f:35:d9:6e:5a:55:41:5b:70:94:14:ca:fc:e4:e2:3e:68:
cd:94:64:fe:d7:81:b3:c3:3a:e0:7e:3f:85:91:7b:c8:98:46:
4d:2c:c7:d1:76:61:8d:bf:c5:97:bf:83:c2:3e:a2:29:04:e6:
59:3f:23:d0:73:1e:47:d4:3e:4a:16:a4:e3:ac:2d:93:5a:3a:
95:85:db:82:4d:d9:9f:06:41:ab:64:ca:63:c0:d1:be:7e:c1:
48:b7:8d:10:6a:f8:b6:e6:d7:98:a8:a8:e3:a2:0b:7d:a5:16:
a0:d1:c9:7b:f0:69:00:83:b2:51:57:04:a7:80:a0:8a:21:e0:
ab:6c:2e:0d:72:6b:58:74:6b:90:0f:fc:db:fa:5d:3e:fb:e5:
65:63:c4:5b:e1:0e:33:e1:86:8d:cb:9c:4b:91:cd:7c:fc:fc:
55:09:5e:ad:fe:f4:6c:f3:72:3c:d5:0e:f5:56:f4:7d:06:68:
97:6e:8a:51:f7:7a:32:8e:4e:c7:8f:5c:a0:ec:91:0d:bf:a4:
37:b7:80:d5:19:c9:56:20:42:19:87:13:65:57:77:86:91:3c:
27:17:b7:90:7d:59:02:3b:b3:ad:19:8c:bd:dc:09:c8:b7:35:
83:89:76:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:00:00 2025 by rpki-client