Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/uvunioclpNcaMdnsLf48kc2pd2w.roa
File: uvunioclpNcaMdnsLf48kc2pd2w.roa (raw, json)
Hash identifier: a3cRJKm0SSGoJzUBlqnGcr7rBzHsBfYG/FRfu8Se36A=
Subject key identifier: BA:FB:A7:8A:87:25:A4:D7:1A:31:D9:EC:2D:FE:3C:91:CD:A9:77:6C
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0188F74642153AAA3D46767F775CA7E81872
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/uvunioclpNcaMdnsLf48kc2pd2w.roa
Signing time: Mon 26 Jun 2023 10:35:56 +0000
ROA not before: Mon 26 Jun 2023 10:35:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a12:ac40::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0e:f201:1::/48 maxlen: 48
2a10:67c5:1::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0c:9247:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0c:9240::/29 maxlen: 29
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a12:ac41::/32 maxlen: 32
2a12:ac40:f::/48 maxlen: 48
2a0c:4880::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a13:1940::/29 maxlen: 29
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f7:46:42:15:3a:aa:3d:46:76:7f:77:5c:a7:e8:18:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 26 10:35:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bafba78a8725a4d71a31d9ec2dfe3c91cda9776c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:90:db:98:53:f8:2c:8e:17:2a:9e:bc:d5:6c:
15:3f:e7:d7:48:36:26:c4:ef:23:ec:d4:77:64:89:
ec:1f:18:03:31:e0:e3:56:8f:bc:f3:c1:b4:d0:18:
55:88:1f:fd:dc:9c:99:fc:7d:a7:2e:bb:2c:ff:74:
7b:b7:3b:3b:0f:07:20:ce:69:07:65:80:c5:3c:a7:
39:8d:9f:63:ac:b0:33:1b:7b:ca:3e:7b:9b:34:cc:
e2:23:ad:19:69:c2:f7:21:ca:9c:2b:93:2c:fe:8b:
61:18:e5:a8:83:c6:07:e4:e0:5a:a8:5b:28:7a:73:
b2:78:e2:d2:23:1d:cb:ec:b5:19:9b:08:64:7c:96:
1d:2c:ce:6c:8c:a6:77:6b:1e:07:38:35:4a:7b:eb:
ea:13:41:5d:83:f1:2d:53:97:26:84:6b:d9:7c:56:
21:40:1b:ff:80:60:3a:8a:9d:58:46:68:2a:e8:23:
de:69:53:98:05:5e:92:df:8c:f2:ce:6f:2a:3f:f1:
88:de:09:40:27:22:49:45:b4:c6:9d:36:55:0c:32:
6f:13:65:ed:18:d4:10:88:e2:19:ea:41:ed:2d:51:
7f:b5:9b:42:51:e3:42:b0:cd:6c:f0:a9:b2:39:f2:
da:bf:86:3a:3b:7c:2d:d3:7a:1c:f7:d4:6b:cd:70:
05:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:FB:A7:8A:87:25:A4:D7:1A:31:D9:EC:2D:FE:3C:91:CD:A9:77:6C
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/uvunioclpNcaMdnsLf48kc2pd2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a07:f300::/29
2a0c:4880::/29
2a0c:9240::/29
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a01::/32
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:e940::/29
2a10:67c5:1::/48
2a10:6d40::/29
2a12:ac40::/48
2a12:ac40:f::/48
2a12:ac41::/32
2a13:18c0:1::/48
2a13:1940::/29
2a13:4900::/29
Signature Algorithm: sha256WithRSAEncryption
95:f5:aa:40:7d:84:3b:7f:34:93:df:57:fc:cb:bf:6e:be:dc:
a0:2d:07:ea:24:9d:b4:49:37:f0:67:7f:c4:a7:93:30:49:65:
8a:da:be:5b:36:67:3b:4a:b5:b7:c0:41:3d:de:b6:ce:ee:68:
6d:22:77:bf:df:d1:78:cf:4f:ad:f0:3d:fa:c7:ee:67:31:8b:
bc:7b:3b:c3:42:73:0c:93:f8:97:91:f2:d0:be:b1:37:a8:53:
88:77:45:72:8a:b1:cd:d4:fc:e0:e8:17:f5:66:84:bf:d7:67:
3e:f6:c2:df:b7:73:b7:f5:a4:9b:11:1b:6c:a9:d5:9b:6f:4e:
05:12:1d:1a:70:ee:1e:86:dc:b4:2e:36:33:00:12:bf:48:0d:
6d:3c:34:40:26:3b:49:d7:40:d7:11:8a:38:1d:2a:29:c0:1f:
16:66:56:00:0c:fd:50:65:1c:8f:63:1d:1c:62:0e:94:2e:7d:
da:fa:66:1f:72:18:08:fc:9f:7e:24:2d:03:3a:ab:ae:6b:b0:
41:e2:59:b7:f8:17:1a:92:70:1a:2f:16:2b:71:7d:a0:2f:77:
8a:78:83:f0:f4:7e:bb:6a:79:b0:93:70:bd:4e:18:12:44:4c:
66:18:99:18:a4:82:09:36:4f:fd:c7:b9:1b:9a:81:94:5b:d1:
e9:70:86:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:00:39 2025 by rpki-client