Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2sRuFZ8GGWzBuprlB-qY2ewjTh8.roa
File: 2sRuFZ8GGWzBuprlB-qY2ewjTh8.roa (raw, json)
Hash identifier: vqPPiIZWxnM8IZZdUzxfmkLz6ELp5IwP2yqFRRnh+lY=
Subject key identifier: DA:C4:6E:15:9F:06:19:6C:C1:BA:9A:E5:07:EA:98:D9:EC:23:4E:1F
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018C85C198F8BD647D062FB798A2C51286AC
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2sRuFZ8GGWzBuprlB-qY2ewjTh8.roa
Signing time: Wed 20 Dec 2023 05:45:06 +0000
ROA not before: Wed 20 Dec 2023 05:45:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a0f:3d83::/32 maxlen: 32
2a11:fd80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0e:f201:1::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a0f:3d84::/32 maxlen: 32
2a13:fc00::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a06:5280::/29 maxlen: 29
2a0f:3d80:123::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a13:2b40::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:7d01::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a0f:2100::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a12:ac40::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a13:1940::/29 maxlen: 29
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a13:18c3::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:85:c1:98:f8:bd:64:7d:06:2f:b7:98:a2:c5:12:86:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Dec 20 05:45:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dac46e159f06196cc1ba9ae507ea98d9ec234e1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9c:82:6a:ac:bd:2f:f1:e2:e7:22:5d:ce:4b:
e1:b0:eb:56:6d:82:84:5a:18:0d:a0:7b:00:97:33:
50:f0:65:a8:3c:d3:83:87:80:d3:a8:7f:bd:46:00:
bd:fa:6c:07:80:c9:9d:38:a1:19:dd:5d:22:23:1f:
22:b2:02:14:63:26:99:5e:6f:a6:8f:aa:87:dc:15:
16:d1:37:69:5e:63:24:08:13:f7:92:f2:fb:1b:10:
54:e2:a7:91:81:a8:47:dc:9e:8d:fb:51:6f:3b:f5:
3d:ab:4c:7e:8f:eb:ff:a5:b3:af:bf:9b:0b:17:8c:
e9:6d:8d:e7:e0:fa:e9:02:72:a1:44:35:85:c9:c9:
e0:61:d8:e4:78:04:53:72:4d:79:ec:12:9d:e0:98:
d6:d8:12:64:21:4e:4d:f5:b4:c5:77:06:f7:39:73:
f5:d9:d3:42:27:7a:df:c2:68:18:ca:e5:dd:c8:b5:
21:40:74:15:8a:5d:7d:e2:dd:47:ab:04:3c:84:20:
40:3c:67:f8:3c:c3:d9:13:93:ae:69:46:56:15:27:
7c:09:24:ab:74:8c:e0:1a:8c:b2:c4:cc:50:2f:5e:
9c:da:6d:fd:9f:4c:69:08:3a:5a:c7:1e:5b:b3:42:
67:21:2e:30:27:3c:f8:ec:16:2b:9e:1e:c4:74:a8:
22:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:C4:6E:15:9F:06:19:6C:C1:BA:9A:E5:07:EA:98:D9:EC:23:4E:1F
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2sRuFZ8GGWzBuprlB-qY2ewjTh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a06:5280::/29
2a07:f300::/29
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a01::/32
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:2e80::/29
2a0f:3d80:123::/48
2a0f:3d82::-2a0f:3d84:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:3d87::/32
2a0f:7d01::/32
2a0f:e940::/29
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a13:18c0:1::/48
2a13:18c3::/32
2a13:1940::/29
2a13:2b40::/29
2a13:4900::/29
2a13:fc00::/29
Signature Algorithm: sha256WithRSAEncryption
83:d2:e1:82:ff:7c:5d:11:3f:94:15:72:39:3c:a0:a3:db:17:
83:48:53:b3:af:c8:83:87:b6:ea:26:18:8b:54:75:d7:6e:4a:
58:d6:ec:1d:23:35:fd:4a:22:c8:5c:e2:d1:7e:59:f5:e3:09:
cc:f4:96:0b:f8:47:ab:d6:85:bd:a5:7e:f6:22:f7:b6:21:a3:
b5:90:ad:b2:4e:b1:36:92:99:a9:f0:11:c6:77:79:03:5a:ab:
7d:b3:bc:26:1c:cc:1e:28:e7:43:d6:8c:c3:9c:46:39:a1:fa:
b7:f9:0c:8f:1d:ae:61:9b:f0:09:0c:b1:f9:2b:3b:38:2e:97:
fa:b1:5a:f2:c0:1d:b0:3a:91:6d:5f:60:21:34:66:bb:d8:88:
bd:34:90:57:2d:04:70:61:ed:74:8d:81:81:0b:30:ea:9c:38:
50:bd:a8:cc:3f:fa:26:33:51:ac:51:25:2c:57:39:25:72:f3:
80:38:72:49:3c:9a:5d:55:17:1a:4c:36:ca:4a:e5:63:47:3f:
99:70:d1:c7:64:71:06:c9:d5:19:2d:9c:55:f8:9b:91:cb:96:
f5:35:5b:4e:18:8b:f5:ea:46:a5:c0:3d:d0:c3:79:ee:51:f6:
8e:51:c6:f9:30:75:34:fd:95:51:55:e5:8d:1f:7e:cb:e0:69:
f2:93:df:7b
-----BEGIN CERTIFICATE-----
MIIGMDCCBRigAwIBAgISAYyFwZj4vWR9Bi+3mKLFEoasMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjMxMjIwMDU0NTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYWM0NmUxNTlmMDYxOTZjYzFiYTlhZTUwN2VhOThkOWVjMjM0ZTFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpyCaqy9L/Hi5yJdzkvhsOtWbYKE
WhgNoHsAlzNQ8GWoPNODh4DTqH+9RgC9+mwHgMmdOKEZ3V0iIx8isgIUYyaZXm+m
j6qH3BUW0TdpXmMkCBP3kvL7GxBU4qeRgahH3J6N+1FvO/U9q0x+j+v/pbOvv5sL
F4zpbY3n4PrpAnKhRDWFycngYdjkeARTck157BKd4JjW2BJkIU5N9bTFdwb3OXP1
2dNCJ3rfwmgYyuXdyLUhQHQVil194t1HqwQ8hCBAPGf4PMPZE5OuaUZWFSd8CSSr
dIzgGoyyxMxQL16c2m39n0xpCDpaxx5bs0JnIS4wJzz47BYrnh7EdKgidwIDAQAB
o4IDPDCCAzgwHQYDVR0OBBYEFNrEbhWfBhlswbqa5QfqmNnsI04fMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvMnNSdUZaOEdHV3pCdXBybEItcVkyZXdqVGg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBUAYIKwYBBQUHAQcBAf8EggE/MIIBOzAYBAIAATASAwQA
LYF/AwQALYclAwQAwaTHMIIBHQQCAAIwggEVAwUDKgZSgAMFAyoH8wADBQAqDhqA
AwUAKg7HgAMHACoO8gEAAQMFACoPCgEDBwAqDx4AASMDBwAqDx4ABFYDBwAqDx4A
CYcDBwAqDx4ACrwDBwAqDx4A3vkDBwAqDx4BAAEDBwAqDx6BAAIDBwAqDx6BEpMD
BwAqDx6BQxkDBwAqDx6BkugDBwAqDx6Bo9ADBwAqDx6Bza4DBQMqDyEAAwUDKg8u
gAMHACoPPYABIzAOAwUBKg89ggMFACoPPYQDBQAqDz2HAwUAKg99AQMFAyoP6UAD
BQMqEG1AAwUDKhH9gAMFASoSrEADBwAqExjAAAEDBQAqExjDAwUDKhMZQAMFAyoT
K0ADBQMqE0kAAwUDKhP8ADANBgkqhkiG9w0BAQsFAAOCAQEAg9Lhgv98XRE/lBVy
OTygo9sXg0hTs6/Ig4e26iYYi1R1125KWNbsHSM1/UoiyFzi0X5Z9eMJzPSWC/hH
q9aFvaV+9iL3tiGjtZCtsk6xNpKZqfARxnd5A1qrfbO8JhzMHijnQ9aMw5xGOaH6
t/kMjx2uYZvwCQyx+Ss7OC6X+rFa8sAdsDqRbV9gITRmu9iIvTSQVy0EcGHtdI2B
gQsw6pw4UL2ozD/6JjNRrFElLFc5JXLzgDhySTyaXVUXGkw2ykrlY0c/mXDRx2Rx
BsnVGS2cVfibkcuW9TVbThiL9epGpcA90MN57lH2jlHG+TB1NP2VUVXljR9+y+Bp
8pPfew==
-----END CERTIFICATE-----
Generated at Fri May 9 08:22:16 2025 by rpki-client