Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/zYN_G830NpMc5VIeSTmw28GQo0M.roa
File: zYN_G830NpMc5VIeSTmw28GQo0M.roa (raw, json)
Hash identifier: Rp/21ujCIzO08OFnRpamjlnhYWHrjb6Of/ZSzhUfNno=
Subject key identifier: CD:83:7F:1B:CD:F4:36:93:1C:E5:52:1E:49:39:B0:DB:C1:90:A3:43
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018A27C1D6C66504A15D75E083E95F239839
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/zYN_G830NpMc5VIeSTmw28GQo0M.roa
Signing time: Thu 24 Aug 2023 13:35:29 +0000
ROA not before: Thu 24 Aug 2023 13:35:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0e:1a81:1::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a12:ac40::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a10:67c5:1::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0c:9247:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0c:9240::/29 maxlen: 29
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a12:ac41::/32 maxlen: 32
2a12:ac40:f::/48 maxlen: 48
2a0f:ea42::/32 maxlen: 32
2a0c:4880::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a12:ecc2::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a13:1940::/29 maxlen: 29
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:27:c1:d6:c6:65:04:a1:5d:75:e0:83:e9:5f:23:98:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 24 13:35:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd837f1bcdf436931ce5521e4939b0dbc190a343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7c:b9:d2:1e:ef:98:d2:99:c9:71:a6:a8:e1:
8b:0e:13:06:88:ef:ba:4f:a2:f9:ca:f7:c8:2d:2f:
c9:db:78:6f:38:89:93:ad:72:8b:60:e2:bc:c8:8d:
2f:69:40:37:c1:3a:5b:39:2c:fc:2a:4e:6d:5e:57:
c8:18:3c:97:cb:d7:07:9f:cd:89:2d:88:d1:08:96:
da:59:c3:bd:3f:df:8f:c9:2b:18:26:1c:22:8b:92:
73:da:2b:74:a4:24:fd:da:1e:9f:34:3e:d6:d3:bd:
3e:9c:a8:88:4b:1e:c7:a1:f7:77:40:e3:3d:1b:c7:
2b:a2:ce:ad:0f:c6:87:4d:62:95:12:0e:19:b3:f0:
45:6d:37:09:22:dd:8c:53:a4:22:dd:15:14:24:25:
12:d6:6e:65:78:4b:2f:41:87:e2:5a:9c:61:03:3c:
66:18:f9:13:a7:3c:1b:97:f0:83:97:bf:98:dc:85:
cd:6f:38:d9:50:09:d6:93:2a:cf:51:74:26:8e:c7:
aa:ba:b9:34:a1:fc:29:e6:2e:d5:15:96:8b:fe:92:
5e:79:d7:a4:95:ba:3f:2b:60:4e:6d:ff:f9:81:c9:
58:8b:24:ee:81:72:87:b2:8c:14:c2:9e:11:02:26:
61:48:eb:32:89:69:5d:84:14:cd:e1:64:3a:ce:7e:
75:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:83:7F:1B:CD:F4:36:93:1C:E5:52:1E:49:39:B0:DB:C1:90:A3:43
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/zYN_G830NpMc5VIeSTmw28GQo0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a07:f300::/29
2a0c:4880::/29
2a0c:9240::/29
2a0e:1a80::/32
2a0e:1a81:1::/48
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:e940::/29
2a0f:ea42::/32
2a10:67c5:1::/48
2a10:6d40::/29
2a12:ac40::/48
2a12:ac40:f::/48
2a12:ac41::/32
2a12:ecc2::/32
2a13:18c0:1::/48
2a13:1940::/29
2a13:4900::/29
Signature Algorithm: sha256WithRSAEncryption
d0:42:d2:d1:3e:1c:e2:fe:3a:5c:96:94:c9:ae:89:fe:ed:6e:
d1:d4:98:27:32:8d:79:74:f4:49:60:f2:33:b7:ee:ac:fa:b3:
ed:dd:a1:54:37:db:2b:4e:51:38:d1:7e:84:30:4f:2f:f4:a5:
de:c5:0c:db:a3:19:a5:f2:43:49:68:37:80:17:b8:6d:8c:e1:
02:37:77:54:5f:1b:e5:15:e1:e0:10:6f:f0:8b:21:0a:07:69:
7d:1b:1a:a6:20:1f:23:a5:f2:81:b3:c5:cc:cb:4b:e7:59:3a:
e4:f9:7b:00:0a:a7:d1:98:0d:af:a7:53:b7:72:b4:00:f3:f5:
e1:94:30:77:c7:da:25:fa:9f:99:7f:db:b3:14:bb:41:d7:1f:
d7:64:27:c3:70:9d:0f:58:21:0e:68:0c:46:fb:68:2f:fa:f8:
70:6f:a5:48:c3:fa:28:2a:37:61:0f:1c:89:8c:df:c7:ab:e7:
e1:a0:70:43:e2:80:c0:a7:96:43:69:78:17:75:ab:7d:97:96:
9b:35:ef:db:8d:f2:a0:55:bb:63:20:96:2c:4c:b8:0d:e2:79:
22:cc:02:45:ce:0d:d5:bf:e7:7e:c0:f7:93:51:ef:00:07:70:
97:1a:fc:92:a4:6c:3c:77:33:cc:ba:5b:b9:10:df:99:14:c6:
a8:8c:9a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:06:47 2025 by rpki-client