Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/i913OLMSr0kmQchErBK4oHDeXAY.roa
File: i913OLMSr0kmQchErBK4oHDeXAY.roa (raw, json)
Hash identifier: 4DiShdYdktjzvhMYmeGRyZa4KeyShlx9AAlioWgYd8Q=
Subject key identifier: 8B:DD:77:38:B3:12:AF:49:26:41:C8:44:AC:12:B8:A0:70:DE:5C:06
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 035DB939
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/i913OLMSr0kmQchErBK4oHDeXAY.roa
Signing time: Tue 31 May 2022 22:22:13 +0000
ROA not before: Tue 31 May 2022 22:22:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30633
IP address blocks: 45.152.197.0/24 maxlen: 24
45.147.31.0/24 maxlen: 24
45.147.30.0/24 maxlen: 24
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a12:ac40::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0f:1e81:1293::/48 maxlen: 48
2a0c:9240::/29 maxlen: 29
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:e841::/32 maxlen: 32
2a0f:a01::/32 maxlen: 32
2a0e:5a80::/29 maxlen: 29
2a0f:1e00:123::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a12:d540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56473913 (0x35db939)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 31 22:22:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bdd7738b312af492641c844ac12b8a070de5c06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9a:6d:8d:c8:18:18:0a:d9:9c:03:80:d2:7a:
3b:c8:d7:c6:9f:26:32:f0:7e:11:c3:57:eb:03:6c:
40:0f:66:08:fa:d1:85:8b:35:1a:cd:2f:6a:79:90:
78:36:a0:6b:e3:1b:1a:f4:59:4a:6b:47:96:2e:88:
ae:6c:e3:d4:c5:5a:61:37:48:96:87:96:de:97:d1:
5d:d9:bc:f9:90:6f:6e:0e:87:f6:86:a4:03:52:c7:
34:1c:9f:40:0a:47:42:a9:36:5e:cd:2e:94:4f:6b:
42:b9:eb:f1:83:2a:d2:9d:71:28:a4:92:2a:15:6b:
da:f4:b0:1b:a2:ca:b2:6b:2b:85:2e:c3:34:2e:47:
13:ad:20:97:03:5c:85:54:c5:44:a1:dc:fe:29:a5:
1a:32:75:c6:e1:67:7a:ad:55:35:10:20:86:23:98:
57:6f:16:eb:14:1c:b3:c4:2a:4e:0c:ee:dc:fa:e7:
36:1e:70:62:6b:4c:b7:f1:5b:2a:c5:6e:9d:a9:66:
c3:7a:dc:ac:42:79:35:11:bc:15:0d:74:65:56:b6:
ed:0e:da:be:c1:db:cb:16:06:4e:96:4a:06:90:4d:
20:ae:18:d3:af:ed:04:13:ff:00:c4:08:aa:2a:b6:
46:20:98:86:08:c6:b2:92:64:c2:ef:b2:30:a8:28:
c5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:DD:77:38:B3:12:AF:49:26:41:C8:44:AC:12:B8:A0:70:DE:5C:06
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/i913OLMSr0kmQchErBK4oHDeXAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.30.0/23
45.152.197.0/24
IPv6:
2a07:f300::/29
2a0c:9240::/29
2a0e:5a80::/29
2a0f:a01::/32
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:e841::/32
2a12:ac40::/29
2a12:d540::/29
Signature Algorithm: sha256WithRSAEncryption
4f:2c:a5:3d:8e:ab:15:43:94:1e:bd:a5:c6:d7:c2:6e:7a:e2:
bd:64:ad:22:53:5b:8a:b9:43:15:54:01:8c:0d:50:c6:7a:b8:
aa:71:00:1d:2d:8c:94:e8:a1:3a:fe:b5:e2:f6:72:36:6b:03:
2e:c8:12:63:d8:49:68:f8:b7:58:65:58:60:f7:86:d9:2e:00:
29:80:04:62:00:93:c8:61:23:8f:60:31:98:e4:a1:a0:c0:8f:
44:2e:48:7a:fe:39:92:a1:27:37:a1:5d:f9:43:e5:67:e4:f5:
c0:9d:a0:31:cd:19:42:61:26:48:09:7e:bf:98:ac:50:57:cb:
c8:22:33:5d:14:c3:f7:a2:6e:5c:da:4d:9c:02:a6:9e:64:97:
92:6f:bd:08:42:64:f9:a1:7f:de:df:6c:2c:c4:ce:18:6f:01:
83:86:3d:16:e7:67:0f:b5:dd:74:49:4f:ad:2d:6a:dc:d3:a7:
73:af:ca:82:1c:f5:53:cd:4c:a3:37:e8:8b:60:e5:ef:d3:57:
ed:05:f2:da:50:0a:0f:39:fd:e6:11:78:87:78:2e:5c:67:0b:
af:8e:b4:bc:1a:8f:c3:af:9f:c2:62:c3:2b:f2:10:eb:ea:68:
3c:26:e3:72:e5:48:30:a1:98:41:8b:e6:7d:68:06:44:af:1c:
71:e0:99:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:07:25 2025 by rpki-client