Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/HnXhZFO3TonRHXol8IfKseSKkS0.roa
File: HnXhZFO3TonRHXol8IfKseSKkS0.roa (raw, json)
Hash identifier: 5CxxVq5UA5xWTq4yJDNwqZM1jNu3O/YVgpam0OOIcr0=
Subject key identifier: 1E:75:E1:64:53:B7:4E:89:D1:1D:7A:25:F0:87:CA:B1:E4:8A:91:2D
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018BCDE71D0B63F60B2A9E67FEC1761BFE3A
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/HnXhZFO3TonRHXol8IfKseSKkS0.roa
Signing time: Tue 14 Nov 2023 12:55:57 +0000
ROA not before: Tue 14 Nov 2023 12:55:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 193.164.199.0/24 maxlen: 24
45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a13:9680::/29 maxlen: 29
2a12:ac40::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a0e:f201:1::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a13:fd00::/29 maxlen: 29
2a13:9080::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0f:2f80::/29 maxlen: 29
2a13:8200::/29 maxlen: 29
2a13:9280::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:e540::/29 maxlen: 29
2a12:ac40:f::/48 maxlen: 48
2a0f:ea42::/32 maxlen: 32
2a0f:2100::/29 maxlen: 29
2a0c:4880::/29 maxlen: 29
2a12:ecc2::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a13:1940::/29 maxlen: 29
2a0f:3d82::/32 maxlen: 32
2a07:f306:123::/48 maxlen: 48
2a13:9580::/29 maxlen: 29
2a0f:3d83::/32 maxlen: 32
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a13:4900::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0c:9247:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a10:67c0::/29 maxlen: 29
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:7d01::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a0f:a01::/32 maxlen: 32
2a0f:1e00:def9::/48 maxlen: 48
2a13:18c3::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:cd:e7:1d:0b:63:f6:0b:2a:9e:67:fe:c1:76:1b:fe:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 14 12:55:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e75e16453b74e89d11d7a25f087cab1e48a912d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d8:4e:64:af:60:4e:f5:36:26:1b:1d:cd:8d:
61:5e:c4:e7:65:9d:56:58:64:05:aa:3d:84:b9:b7:
fa:ff:ea:c0:ab:23:22:7c:d5:62:7e:fd:35:4c:3a:
74:09:b9:43:cd:35:58:b9:01:47:81:90:ae:7a:98:
24:78:ad:2c:a2:14:90:07:3d:a1:39:96:b9:c7:f7:
72:9c:7f:fa:83:bb:22:79:b0:9c:54:fd:84:49:62:
ae:f3:f3:20:1e:e7:d1:c3:ae:99:b3:f7:aa:6d:ee:
51:10:eb:60:b0:6d:55:ae:ff:43:ef:e8:45:f3:a8:
5c:d9:0b:e5:ef:be:53:b8:97:23:e3:bd:01:98:f3:
84:fb:fe:37:56:9b:e8:b9:05:f3:f4:66:81:88:e5:
b1:8a:7f:d6:a8:d3:38:0a:0f:7b:4a:1d:a9:5f:4b:
02:1b:91:0c:7e:b0:a6:75:27:d4:d8:04:76:95:0a:
0d:a2:12:f7:22:15:81:54:83:71:52:2b:28:f2:fe:
de:ba:a2:be:f2:b8:c4:d8:60:ee:3b:cb:97:28:57:
6c:9b:17:39:de:c7:49:85:03:e3:9d:39:01:04:47:
04:35:e3:ac:bc:6d:0c:10:21:4f:a3:e9:90:cf:27:
f7:2b:c3:39:59:30:dc:4d:4a:81:01:87:54:d4:7a:
fc:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:75:E1:64:53:B7:4E:89:D1:1D:7A:25:F0:87:CA:B1:E4:8A:91:2D
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/HnXhZFO3TonRHXol8IfKseSKkS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a07:f306:123::/48
2a0c:4880::/29
2a0c:9247:1::/48
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:2e80::/29
2a0f:2f80::/29
2a0f:3d80:123::/48
2a0f:3d82::/31
2a0f:3d87::/32
2a0f:7d01::/32
2a0f:e540::/29
2a0f:e940::/29
2a0f:ea42::/32
2a10:67c0::/29
2a10:6d40::/29
2a12:ac40::/48
2a12:ac40:f::/48
2a12:ac41::/32
2a12:ecc2::/32
2a13:18c0:1::/48
2a13:18c3::/32
2a13:1940::/29
2a13:4900::/29
2a13:8200::/29
2a13:9080::/29
2a13:9280::/29
2a13:9580::/29
2a13:9680::/29
2a13:fd00::/29
Signature Algorithm: sha256WithRSAEncryption
6c:ff:04:fb:9a:2e:29:10:9a:9d:b3:10:66:35:6a:cb:14:38:
81:18:22:ce:dc:de:74:fc:0a:66:89:29:96:54:39:b6:b8:5b:
ad:1b:8a:55:fc:8c:f0:dc:67:79:3e:6b:49:ba:43:1b:57:c9:
45:be:a7:85:e9:58:a9:84:fc:59:da:43:55:d1:73:05:f6:88:
3c:dd:ab:b3:f6:d1:b5:c3:ed:bc:5a:70:5b:77:fd:af:dc:29:
34:05:79:f9:c4:8a:f6:96:69:79:b1:85:49:a1:84:bc:7c:56:
77:0e:41:e8:08:fd:18:4f:d4:c1:a0:90:13:6a:8b:7b:db:eb:
d0:7e:8a:76:e4:68:78:de:8a:c6:ca:23:24:21:7b:22:71:65:
ce:e8:8b:cb:70:30:3e:f4:12:e1:2b:92:be:c8:48:42:23:9c:
cb:76:56:f9:10:a8:3c:2f:1b:42:0c:e8:a2:a8:c8:0a:79:c1:
33:8b:3e:db:9f:a6:ef:95:90:b0:e7:1d:03:2f:c7:a5:7b:6e:
38:a4:71:2b:85:cd:10:8e:54:0e:6d:f1:d9:60:a2:bc:f8:04:
d5:0f:26:fd:85:ba:f9:41:86:de:42:5e:fe:59:11:67:1d:2e:
2d:c3:ae:48:70:74:b5:c1:f5:f6:be:e0:79:06:21:74:9d:ee:
58:cf:15:ff
-----BEGIN CERTIFICATE-----
MIIGfDCCBWSgAwIBAgISAYvN5x0LY/YLKp5n/sF2G/46MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjMxMTE0MTI1NTU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZTc1ZTE2NDUzYjc0ZTg5ZDExZDdhMjVmMDg3Y2FiMWU0OGE5MTJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyNhOZK9gTvU2JhsdzY1hXsTnZZ1W
WGQFqj2Eubf6/+rAqyMifNVifv01TDp0CblDzTVYuQFHgZCuepgkeK0sohSQBz2h
OZa5x/dynH/6g7siebCcVP2ESWKu8/MgHufRw66Zs/eqbe5REOtgsG1Vrv9D7+hF
86hc2Qvl775TuJcj470BmPOE+/43VpvouQXz9GaBiOWxin/WqNM4Cg97Sh2pX0sC
G5EMfrCmdSfU2AR2lQoNohL3IhWBVINxUiso8v7euqK+8rjE2GDuO8uXKFdsmxc5
3sdJhQPjnTkBBEcENeOsvG0MECFPo+mQzyf3K8M5WTDcTUqBAYdU1Hr8owIDAQAB
o4IDiDCCA4QwHQYDVR0OBBYEFB514WRTt06J0R16JfCHyrHkipEtMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvSG5YaFpGTzNUb25SSFhvbDhJZktzZVNLa1MwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBnAYIKwYBBQUHAQcBAf8EggGLMIIBhzAYBAIAATASAwQA
LYF/AwQALYclAwQAwaTHMIIBaQQCAAIwggFhAwcAKgfzBgEjAwUDKgxIgAMHACoM
kkcAAQMFACoOGoADBQAqDseAAwcAKg7yAQABAwUBKg8KAAMHACoPHgABIwMHACoP
HgAEVgMHACoPHgAJhwMHACoPHgAKvAMHACoPHgDe+QMHACoPHgEAAQMHACoPHoEA
AgMHACoPHoESkwMHACoPHoFDGQMHACoPHoGS6AMHACoPHoGj0AMHACoPHoHNrgMF
AyoPIQADBQMqDy6AAwUDKg8vgAMHACoPPYABIwMFASoPPYIDBQAqDz2HAwUAKg99
AQMFAyoP5UADBQMqD+lAAwUAKg/qQgMFAyoQZ8ADBQMqEG1AAwcAKhKsQAAAAwcA
KhKsQAAPAwUAKhKsQQMFACoS7MIDBwAqExjAAAEDBQAqExjDAwUDKhMZQAMFAyoT
SQADBQMqE4IAAwUDKhOQgAMFAyoTkoADBQMqE5WAAwUDKhOWgAMFAyoT/QAwDQYJ
KoZIhvcNAQELBQADggEBAGz/BPuaLikQmp2zEGY1assUOIEYIs7c3nT8CmaJKZZU
Oba4W60bilX8jPDcZ3k+a0m6QxtXyUW+p4XpWKmE/FnaQ1XRcwX2iDzdq7P20bXD
7bxacFt3/a/cKTQFefnEivaWaXmxhUmhhLx8VncOQegI/RhP1MGgkBNqi3vb69B+
inbkaHjeisbKIyQheyJxZc7oi8twMD70EuErkr7ISEIjnMt2VvkQqDwvG0IM6KKo
yAp5wTOLPtufpu+VkLDnHQMvx6V7bjikcSuFzRCOVA5t8dlgorz4BNUPJv2FuvlB
ht5CXv5ZEWcdLi3DrkhwdLXB9fa+4HkGIXSd7ljPFf8=
-----END CERTIFICATE-----
Generated at Sun May 11 01:19:23 2025 by rpki-client