Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/l_hpUAZ-p_lOTcDIgbMJi5WXbEM.roa
File: l_hpUAZ-p_lOTcDIgbMJi5WXbEM.roa (raw, json)
Hash identifier: Rp+0578rPIQpn9VvLdYKkSSSIr5T5LKZq2iqPJGHtRw=
Subject key identifier: 97:F8:69:50:06:7E:A7:F9:4E:4D:C0:C8:81:B3:09:8B:95:97:6C:43
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01E3EB9A
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/l_hpUAZ-p_lOTcDIgbMJi5WXbEM.roa
Signing time: Thu 10 Feb 2022 11:48:30 +0000
ROA not before: Thu 10 Feb 2022 11:48:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 45.95.98.0/24 maxlen: 24
193.39.209.0/24 maxlen: 24
194.33.32.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
45.152.197.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
2a0f:a03::/32 maxlen: 32
2a0f:ac00::/29 maxlen: 29
2a0f:1f80::/29 maxlen: 29
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a0e:2240:2::/48 maxlen: 48
2a0e:f200:2::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0f:a02::/32 maxlen: 32
2a0f:e143::/32 maxlen: 32
2a0f:e1c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31714202 (0x1e3eb9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 10 11:48:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97f86950067ea7f94e4dc0c881b3098b95976c43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d9:11:f9:3b:e2:73:e8:64:06:b9:68:fe:4c:
2d:fe:08:c8:0a:61:42:c3:0c:3e:d7:bd:64:0f:24:
5d:f5:6e:4f:35:f3:10:ce:96:8b:68:95:a5:14:56:
06:2e:8b:ac:9a:16:bb:d0:3d:7b:0c:77:68:1f:fd:
85:69:07:be:99:1d:71:dc:8f:ef:17:34:18:71:41:
06:36:82:48:be:fb:e2:10:26:5c:59:5b:9d:25:4e:
f3:ca:16:be:5f:16:48:39:2b:c0:71:f5:de:9a:5b:
cf:8c:c3:2d:27:af:36:7e:bf:c2:f7:fc:5b:78:b2:
85:90:ba:0f:43:cb:09:b3:c3:dc:7b:c9:d2:81:ac:
42:c0:e6:2b:d3:97:63:d6:4d:d0:36:42:47:0c:8d:
c1:4f:2b:bf:53:2f:1e:3d:55:b9:45:c5:2d:a5:2b:
49:c7:88:88:70:84:89:b3:9a:e1:62:f9:8b:95:5c:
ef:fc:04:c3:6a:0f:c1:08:13:82:7f:ad:ac:b4:13:
dd:4f:de:16:ba:32:1a:f2:b3:3a:cb:b8:0d:b8:ce:
21:4b:4d:7a:7b:4e:5e:2a:56:b1:19:05:c0:e4:bf:
ad:bf:af:71:1b:b5:b8:7f:3e:20:52:d6:a6:8e:d7:
89:25:ad:26:40:cf:cc:f0:75:bd:68:68:61:1f:da:
be:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:F8:69:50:06:7E:A7:F9:4E:4D:C0:C8:81:B3:09:8B:95:97:6C:43
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/l_hpUAZ-p_lOTcDIgbMJi5WXbEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.98.0/24
45.128.77.0/24
45.137.41.0/24
45.137.86.0/24
45.152.197.0/24
193.39.209.0/24
193.111.4.0/23
193.111.18.0/23
194.33.32.0/24
IPv6:
2a0e:2240:2::/48
2a0e:f200:2::/48
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1f80::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c7::/32
Signature Algorithm: sha256WithRSAEncryption
5b:9c:77:2f:a4:11:70:c7:a8:c0:6b:bf:c2:d2:e2:c9:25:46:
40:a2:96:3a:0e:fe:31:b1:ec:0c:71:38:af:8d:fe:ed:c1:12:
69:16:75:e1:9b:64:a6:9b:cc:36:d1:11:1c:58:4c:e1:73:52:
19:b7:1f:ec:d9:24:c2:1c:8f:8c:4d:46:11:26:d1:34:5d:16:
aa:f9:55:22:84:70:66:d5:ae:b8:32:ab:23:61:70:f4:63:9b:
a4:2d:10:f7:2b:a3:cf:35:08:e2:48:fc:40:b5:2c:e3:41:2c:
9c:7f:75:dd:23:11:59:1f:ae:c6:2c:9e:d9:60:b4:11:c6:47:
7b:e5:fc:b3:e5:c5:c0:c1:d1:6d:1c:ca:e6:a3:e4:d2:2a:b0:
d7:71:0e:d2:ca:be:89:01:5a:46:8d:29:36:ee:ec:c1:2a:b6:
93:08:6a:91:5c:29:f9:69:88:5d:87:c7:1a:02:3f:71:09:e1:
72:79:e0:7a:4f:9e:63:7f:d7:c1:e6:50:1a:c5:dc:ad:9e:8c:
78:36:c0:b4:db:d6:a5:c8:d1:a6:d1:55:16:e9:a9:f5:b6:96:
11:43:6e:9b:ce:b9:65:9c:fa:d4:03:0b:28:09:a1:7d:2a:cb:
a6:dc:fb:73:e6:8e:c7:8f:c8:c0:fc:0e:35:69:50:1a:b1:05:
37:88:3b:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:24 2025 by rpki-client