Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/pEoTAc02iED6DTWKqfhWvrr4EmQ.roa
File: pEoTAc02iED6DTWKqfhWvrr4EmQ.roa (raw, json)
Hash identifier: Yyh7hRZiawMl1QctRtizXCp80eZbRW3xIfH7+/1WSok=
Subject key identifier: A4:4A:13:01:CD:36:88:40:FA:0D:35:8A:A9:F8:56:BE:BA:F8:12:64
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018C676783C11931DD55371CC0050C6F72B1
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/pEoTAc02iED6DTWKqfhWvrr4EmQ.roa
Signing time: Thu 14 Dec 2023 08:18:06 +0000
ROA not before: Thu 14 Dec 2023 08:18:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 193.164.199.0/24 maxlen: 24
45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a11:fd80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a0e:f201:1::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a06:5280::/29 maxlen: 29
2a13:fd00::/29 maxlen: 29
2a13:9080::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a13:2b40::/29 maxlen: 29
2a0f:2f80::/29 maxlen: 29
2a13:8200::/29 maxlen: 29
2a13:9280::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:e540::/29 maxlen: 29
2a0f:2100::/29 maxlen: 29
2a0c:4880::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a13:1940::/29 maxlen: 29
2a0f:3d82::/32 maxlen: 32
2a0f:3d83::/32 maxlen: 32
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a0f:3d84::/32 maxlen: 32
2a13:fc00::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0c:9247:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a07:f300::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a10:67c0::/29 maxlen: 29
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:7d01::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a0f:a01::/32 maxlen: 32
2a0f:1e00:def9::/48 maxlen: 48
2a13:18c3::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:67:67:83:c1:19:31:dd:55:37:1c:c0:05:0c:6f:72:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Dec 14 08:18:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a44a1301cd368840fa0d358aa9f856bebaf81264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:32:9b:66:01:e8:fc:e4:d5:10:35:a3:bf:1e:
7e:59:1c:bc:fa:b0:33:2b:1d:8c:ed:2a:ce:fd:27:
3a:38:3a:10:6f:a6:c7:66:70:b2:33:12:58:33:c4:
01:c4:f5:1f:8c:b9:ee:60:7c:c3:cd:07:24:7b:57:
c1:8e:84:b7:27:56:63:43:11:f9:7e:f9:57:ff:af:
83:03:b0:a9:35:4c:57:f3:d8:f8:b1:1f:0a:5e:90:
bc:46:8b:a8:cb:29:f5:5e:b5:54:a5:af:69:b7:5a:
0c:54:8f:c1:d3:87:54:fc:86:5e:9c:63:1d:e8:9c:
ce:3c:86:d3:5b:5d:08:5b:c9:d9:c2:b1:a9:81:d1:
60:e2:90:2c:9f:16:16:5b:9a:ac:8a:78:ab:40:8d:
79:0e:c1:a4:f5:b3:af:62:da:e4:ba:08:58:d9:5b:
19:4e:c0:06:54:f2:67:e9:3a:3f:34:3f:30:f1:ff:
3b:e7:21:14:6c:1b:a1:70:22:cb:d9:10:85:c7:84:
85:2d:e4:1a:0c:95:a0:e5:af:a6:0e:d2:10:97:2f:
1d:75:90:86:78:01:de:3f:8d:d9:60:dd:0d:ac:1e:
db:5a:82:ec:27:7b:96:87:ca:a0:6f:07:e0:6e:b9:
ff:00:c5:11:53:c6:06:56:3b:41:51:66:c8:42:2f:
a7:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:4A:13:01:CD:36:88:40:FA:0D:35:8A:A9:F8:56:BE:BA:F8:12:64
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/pEoTAc02iED6DTWKqfhWvrr4EmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a06:5280::/29
2a07:f300::/29
2a0c:4880::/29
2a0c:9247:1::/48
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a01::/32
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:2e80::/29
2a0f:2f80::/29
2a0f:3d80:123::/48
2a0f:3d82::-2a0f:3d84:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:3d87::/32
2a0f:7d01::/32
2a0f:e540::/29
2a0f:e940::/29
2a10:67c0::/29
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a13:18c0:1::/48
2a13:18c3::/32
2a13:1940::/29
2a13:2b40::/29
2a13:4900::/29
2a13:8200::/29
2a13:9080::/29
2a13:9280::/29
2a13:fc00::/29
2a13:fd00::/29
Signature Algorithm: sha256WithRSAEncryption
46:a0:e4:bf:48:26:38:52:93:2d:2e:b5:fa:93:22:96:f5:61:
91:86:5c:1d:bb:77:f7:79:fc:de:da:5a:b6:ff:c1:93:63:62:
60:61:17:7a:c6:86:0c:9d:10:12:9b:e3:9c:90:45:5e:7d:d9:
ce:ce:c9:6a:65:b5:31:72:e9:12:04:d2:ff:9d:17:40:43:0d:
58:3b:70:11:f8:9f:61:28:4a:3c:63:5f:a5:ab:50:7f:3b:3b:
2c:f9:86:49:4b:d3:e8:47:3b:33:9d:d5:1b:62:c3:fb:10:26:
5c:10:61:f3:fd:66:44:3a:05:80:a8:25:62:c0:16:37:bd:1f:
31:9f:83:0c:b7:13:12:cb:92:48:46:60:18:b0:57:73:a3:a8:
9d:eb:c6:d9:cc:a2:32:2b:93:c7:b4:96:98:6b:df:c1:66:31:
eb:6f:ad:82:0f:af:fb:0a:6f:ca:b3:1e:4c:ea:51:51:57:e8:
20:96:bb:0a:7e:30:4f:ff:42:73:ee:e5:6a:51:ee:19:9e:31:
4c:bb:c7:f0:47:38:0c:c4:77:1d:36:5a:95:7d:d5:ee:82:b7:
c2:36:8a:fc:e7:ad:46:26:83:a4:38:97:af:1e:0a:16:44:ba:
0f:52:d5:f6:4e:3a:42:82:cd:7e:fe:5c:2b:82:7e:43:db:f4:
a0:1a:92:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 05:08:49 2025 by rpki-client