Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ffjIOV-tkXioHkX1cgM-Vauqx_Y.roa
File: ffjIOV-tkXioHkX1cgM-Vauqx_Y.roa (raw, json)
Hash identifier: SdxKnS14NNr1PtesCasw+AguqBr4y/2KH8P7fcQnG8Y=
Subject key identifier: 7D:F8:C8:39:5F:AD:91:78:A8:1E:45:F5:72:03:3E:55:AB:AA:C7:F6
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01884C7E97CD23B4F60826FB2FCF7298C8A5
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ffjIOV-tkXioHkX1cgM-Vauqx_Y.roa
Signing time: Wed 24 May 2023 06:42:24 +0000
ROA not before: Wed 24 May 2023 06:42:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:39c1::/32 maxlen: 32
2a0e:c780::/32 maxlen: 32
2a0f:7f00::/32 maxlen: 32
2a12:ac40::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0f:e847:ffff::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a0f:3d84::/32 maxlen: 32
2a0e:5a80::/29 maxlen: 29
2a0f:1e01:1::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0c:9247:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a12:d540::/29 maxlen: 29
2a0f:7d04:1::/48 maxlen: 48
2a0f:39c0::/32 maxlen: 32
2a0f:1e81:cdae::/48 maxlen: 48
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0f:3d87::/32 maxlen: 32
2a13:8200::/29 maxlen: 29
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a12:ac40:f::/48 maxlen: 48
2a0f:2100::/29 maxlen: 29
2a0c:4880::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a13:1940:1::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a0f:7f01::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4c:7e:97:cd:23:b4:f6:08:26:fb:2f:cf:72:98:c8:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 24 06:42:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7df8c8395fad9178a81e45f572033e55abaac7f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:a8:f7:9b:7f:d6:31:08:1c:81:39:af:b3:59:
b9:36:e1:c9:d4:ec:a0:5c:07:f7:06:45:62:9d:4a:
f0:60:5a:5e:fe:89:8b:5b:76:89:e0:47:cc:ef:1a:
be:e5:cf:fb:67:66:c9:73:c3:2f:87:e0:86:90:0d:
b9:0d:49:4b:54:05:2b:b6:c4:9e:91:3a:f9:15:ab:
b8:61:1b:b3:f0:63:2a:a9:04:80:bb:dc:17:dd:84:
ce:47:5f:0c:c8:53:7e:b8:43:94:97:e4:b9:45:67:
a3:f6:1a:05:14:13:c1:72:88:43:a7:3b:bb:e8:f2:
05:cc:dc:8e:5b:ae:f8:a6:ac:ad:6d:d0:7b:5f:0a:
79:92:72:1f:1a:19:3e:11:2a:0b:e1:75:32:15:fe:
08:68:a0:1a:29:c0:29:9d:7b:6d:67:7c:3b:6a:87:
da:ce:b9:13:a4:7e:bb:f3:22:12:b8:51:03:66:e0:
8b:41:18:47:85:6c:27:e9:52:66:ba:b1:b3:1e:76:
94:c8:3b:7f:27:e8:3d:e6:30:45:19:21:04:25:14:
af:71:df:e5:59:5f:bb:93:8c:fc:23:7f:21:df:d1:
06:58:5b:80:84:ea:e1:b5:ee:23:f6:02:0b:af:d9:
6a:2d:c0:9f:09:12:a6:03:47:2b:8b:03:77:00:85:
65:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:F8:C8:39:5F:AD:91:78:A8:1E:45:F5:72:03:3E:55:AB:AA:C7:F6
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ffjIOV-tkXioHkX1cgM-Vauqx_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a0c:4880::/29
2a0c:9247:1::/48
2a0e:1a80::/32
2a0e:5a80::/29
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:39c0::/31
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:3d84::/32
2a0f:3d87::/32
2a0f:7d04:1::/48
2a0f:7f00::/31
2a0f:e847:ffff::/48
2a10:6d40::/29
2a12:ac40::/48
2a12:ac40:f::/48
2a12:d540::/29
2a13:1940:1::/48
2a13:4900::/29
2a13:8200::/29
Signature Algorithm: sha256WithRSAEncryption
b6:d2:61:41:b9:cc:44:c3:ca:8c:95:67:53:1e:a4:f4:69:de:
64:22:6c:13:48:ad:3e:17:70:30:4f:3a:83:ed:37:98:1f:97:
73:74:fd:1e:28:d6:1d:87:3e:cf:c5:c5:53:09:c0:ec:57:8b:
e4:de:78:be:78:70:ed:8c:e5:c4:e0:38:de:02:5c:6b:01:fc:
7e:3e:45:ed:9c:06:0f:be:7b:9a:f8:50:79:02:f9:d4:01:5f:
4d:35:0d:ef:5d:b9:e8:e2:70:4f:7c:07:24:ca:d8:d8:39:87:
f2:7f:0a:64:e0:49:c0:bd:06:8f:33:43:7e:28:66:e2:0c:fc:
e2:04:eb:19:02:f4:37:5b:ea:77:ea:44:7b:a1:c5:b3:95:f1:
97:67:68:49:cf:5c:9b:ef:86:b0:1d:13:dc:ed:d9:e6:dd:0b:
f9:88:33:41:ec:df:54:8e:cb:83:2b:32:33:f5:96:87:2e:c7:
5b:90:b9:ed:5e:c0:d1:2f:9e:5e:c9:a7:b4:f6:5c:b9:5c:da:
38:82:ec:39:cd:b5:49:6b:28:2d:23:53:83:d0:f1:4e:36:28:
ee:ca:b0:38:fb:c5:c5:5e:35:d5:31:d1:e1:97:99:b6:e2:a6:
db:18:25:8e:15:f6:1a:a2:c6:5b:5b:22:ef:c5:be:41:09:df:
2c:27:54:ef
-----BEGIN CERTIFICATE-----
MIIGODCCBSCgAwIBAgISAYhMfpfNI7T2CCb7L89ymMilMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjMwNTI0MDY0MjI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZGY4YzgzOTVmYWQ5MTc4YTgxZTQ1ZjU3MjAzM2U1NWFiYWFjN2Y2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgaj3m3/WMQgcgTmvs1m5NuHJ1Oyg
XAf3BkVinUrwYFpe/omLW3aJ4EfM7xq+5c/7Z2bJc8Mvh+CGkA25DUlLVAUrtsSe
kTr5Fau4YRuz8GMqqQSAu9wX3YTOR18MyFN+uEOUl+S5RWej9hoFFBPBcohDpzu7
6PIFzNyOW674pqytbdB7Xwp5knIfGhk+ESoL4XUyFf4IaKAaKcApnXttZ3w7aofa
zrkTpH678yISuFEDZuCLQRhHhWwn6VJmurGzHnaUyDt/J+g95jBFGSEEJRSvcd/l
WV+7k4z8I38h39EGWFuAhOrhte4j9gILr9lqLcCfCRKmA0criwN3AIVlfQIDAQAB
o4IDRDCCA0AwHQYDVR0OBBYEFH34yDlfrZF4qB5F9XIDPlWrqsf2MB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvZmZqSU9WLXRrWGlvSGtYMWNnTS1WYXVxeF9ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBWAYIKwYBBQUHAQcBAf8EggFHMIIBQzAYBAIAATASAwQA
LYF/AwQALYclAwQAwaTHMIIBJQQCAAIwggEdAwUDKgxIgAMHACoMkkcAAQMFACoO
GoADBQMqDlqAAwUAKg7HgAMHACoO8gEAAQMFASoPCgADBwAqDx4AASMDBwAqDx4A
BFYDBwAqDx4ACYcDBwAqDx4ACrwDBwAqDx4A3vkDBwAqDx4BAAEDBwAqDx6BAAID
BwAqDx6BEpMDBwAqDx6BQxkDBwAqDx6BkugDBwAqDx6Bo9ADBwAqDx6Bza4DBQMq
DyEAAwUBKg85wAMHACoPPYABIwMFACoPPYIDBQAqDz2EAwUAKg89hwMHACoPfQQA
AQMFASoPfwADBwAqD+hH//8DBQMqEG1AAwcAKhKsQAAAAwcAKhKsQAAPAwUDKhLV
QAMHACoTGUAAAQMFAyoTSQADBQMqE4IAMA0GCSqGSIb3DQEBCwUAA4IBAQC20mFB
ucxEw8qMlWdTHqT0ad5kImwTSK0+F3AwTzqD7TeYH5dzdP0eKNYdhz7PxcVTCcDs
V4vk3ni+eHDtjOXE4DjeAlxrAfx+PkXtnAYPvnua+FB5AvnUAV9NNQ3vXbno4nBP
fAckytjYOYfyfwpk4EnAvQaPM0N+KGbiDPziBOsZAvQ3W+p36kR7ocWzlfGXZ2hJ
z1yb74awHRPc7dnm3Qv5iDNB7N9UjsuDKzIz9ZaHLsdbkLntXsDRL55eyae09ly5
XNo4guw5zbVJaygtI1OD0PFONijuyrA4+8XFXjXVMdHhl5m24qbbGCWOFfYaosZb
WyLvxb5BCd8sJ1Tv
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:09 2025 by rpki-client