Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/xdQy8E0LrSErPrraNE8-LRXUzhw.roa
File: xdQy8E0LrSErPrraNE8-LRXUzhw.roa (raw, json)
Hash identifier: WMn9FQQKdK3UjnC7i7JxcYIMXsL9xvXaCDMOERMu/E8=
Subject key identifier: C5:D4:32:F0:4D:0B:AD:21:2B:3E:BA:DA:34:4F:3E:2D:15:D4:CE:1C
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01F5E785
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/xdQy8E0LrSErPrraNE8-LRXUzhw.roa
Signing time: Wed 16 Feb 2022 10:04:47 +0000
ROA not before: Wed 16 Feb 2022 10:04:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 45.95.98.0/24 maxlen: 24
193.39.209.0/24 maxlen: 24
194.33.32.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
45.152.197.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
2a0e:e980::/29 maxlen: 29
2a0f:a03::/32 maxlen: 32
2a0f:ac00::/29 maxlen: 29
2a0f:1f80::/29 maxlen: 29
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a0e:2240:2::/48 maxlen: 48
2a0e:f200:2::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0f:a02::/32 maxlen: 32
2a0f:e143::/32 maxlen: 32
2a0f:e1c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32892805 (0x1f5e785)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 16 10:04:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5d432f04d0bad212b3ebada344f3e2d15d4ce1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3b:4f:0c:d6:41:64:84:7c:d4:29:6b:2c:a3:
4f:a2:73:60:c2:12:3c:64:1f:0a:5c:9e:89:23:56:
2c:fb:9c:ef:64:21:f2:d0:2a:1d:20:a2:86:99:1c:
50:a1:23:09:f8:ad:16:64:06:ea:25:ff:47:07:6e:
b1:81:6f:60:89:2a:c6:d1:1a:e1:d7:05:64:d2:2a:
80:00:b9:aa:57:38:2a:9a:ac:fd:63:d7:61:6e:8c:
c4:61:8f:4f:0c:e1:fa:05:21:cc:80:c6:64:30:5e:
af:a3:99:23:4c:4e:a5:74:7c:87:6e:f8:14:80:8f:
1c:3a:f0:a9:71:b2:13:9c:25:1e:9d:14:00:b0:17:
43:0c:a0:82:04:ad:0b:8e:50:1d:29:f4:ca:21:31:
a5:1d:e2:93:b5:95:a6:a8:b4:3d:05:c2:80:37:67:
27:50:dd:66:88:66:5c:ac:e8:c8:ee:05:76:bd:d9:
ae:ee:56:77:a1:9a:67:27:5d:06:9e:2b:ac:47:83:
b4:f1:85:c9:2a:db:0f:04:c3:d7:3b:38:b4:35:53:
26:98:37:f7:6e:43:4f:b0:9b:5d:d9:da:5b:68:60:
5e:fc:25:44:23:63:a3:22:2c:cd:93:04:d1:c2:3a:
5e:4d:f4:52:b5:f0:33:64:b0:be:a4:13:3c:e4:ac:
48:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:D4:32:F0:4D:0B:AD:21:2B:3E:BA:DA:34:4F:3E:2D:15:D4:CE:1C
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/xdQy8E0LrSErPrraNE8-LRXUzhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.98.0/24
45.128.77.0/24
45.137.41.0/24
45.137.86.0/24
45.152.197.0/24
45.157.38.0/24
193.39.209.0/24
193.111.4.0/23
193.111.18.0/23
194.33.32.0/24
IPv6:
2a0e:2240:2::/48
2a0e:e980::/29
2a0e:f200:2::/48
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1f80::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c7::/32
Signature Algorithm: sha256WithRSAEncryption
c4:10:86:21:4e:61:68:94:44:78:fb:ff:73:42:1b:e8:7a:84:
63:1b:42:a3:89:16:2b:fe:e0:3e:0c:ef:82:0b:30:9b:be:ab:
b7:1a:d6:e9:fe:90:73:a5:b9:dd:49:e7:92:4f:6a:96:74:de:
bd:a9:d8:a5:27:ce:92:82:8d:d0:f2:59:c2:f9:14:95:36:68:
f1:2f:5a:87:26:ac:9e:fb:4f:9d:ab:4a:1c:71:19:ba:21:5e:
59:86:25:6f:c3:36:31:44:87:93:d1:60:ff:62:d7:04:47:55:
06:da:69:f3:15:80:66:49:46:d3:4f:d8:d5:83:2e:c5:eb:ed:
b6:8e:89:b8:cc:5a:78:5e:2f:d0:b0:4c:d4:f7:c4:b3:2c:9d:
bf:c6:a7:77:20:40:fb:c0:19:57:45:93:10:56:e3:fe:b3:5a:
d1:27:c2:9f:7b:aa:6d:f6:ca:92:59:66:3f:dd:85:37:ee:f1:
12:3b:1d:ba:17:be:a9:07:0d:7e:d7:a0:42:86:6f:89:04:8f:
12:ef:f0:e2:be:f2:63:8b:44:91:c2:4d:83:aa:12:ca:ed:f0:
4a:cc:21:36:b1:83:04:6c:fd:ce:4d:72:3f:0f:01:4e:34:30:
bd:0a:ac:ff:53:9f:e2:d5:ea:0d:e7:a6:b7:21:d3:6e:8e:f6:
11:40:47:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 13:45:03 2025 by rpki-client