Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/lN85_Dcf7lEka5_6Lw-lb3TjvHA.roa
File: lN85_Dcf7lEka5_6Lw-lb3TjvHA.roa (raw, json)
Hash identifier: GDKSmDGxBFKqUXc7dGSweppNNXE7O6ZXyRZfyCS/1E0=
Subject key identifier: 94:DF:39:FC:37:1F:EE:51:24:6B:9F:FA:2F:0F:A5:6F:74:E3:BC:70
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018A4A93092F30BF17917196CB88FED044CE
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/lN85_Dcf7lEka5_6Lw-lb3TjvHA.roa
Signing time: Thu 31 Aug 2023 07:51:04 +0000
ROA not before: Thu 31 Aug 2023 07:51:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a12:ac40::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:a00::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a10:67c5:1::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0c:9247:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0c:9240::/29 maxlen: 29
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a12:ac41::/32 maxlen: 32
2a12:ac40:f::/48 maxlen: 48
2a0f:ea42::/32 maxlen: 32
2a0c:4880::/29 maxlen: 29
2a0f:a01::/32 maxlen: 32
2a12:ecc2::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a13:1940::/29 maxlen: 29
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a07:f306:123::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4a:93:09:2f:30:bf:17:91:71:96:cb:88:fe:d0:44:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 31 07:51:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94df39fc371fee51246b9ffa2f0fa56f74e3bc70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:45:f9:d4:9b:d6:5f:34:b8:7d:c5:58:69:58:
f2:11:e2:0f:cf:48:81:32:bb:fe:37:84:b9:59:7e:
f7:df:7f:ec:13:a9:c7:0f:b6:bd:61:76:57:53:69:
32:c2:0f:29:1e:0f:a4:bc:3c:4b:10:c9:79:0b:3a:
ea:d0:5b:bc:2a:0f:7b:21:d8:10:ae:1b:6b:93:a1:
00:04:3d:bc:7a:ad:79:6f:61:8c:50:34:b0:ac:96:
ad:a2:e4:b5:97:09:f3:23:bf:2d:30:67:66:be:11:
29:44:25:3f:02:48:2c:96:53:ca:13:6a:6e:d2:15:
a6:c4:1c:9e:96:71:42:43:ab:63:6c:30:86:c3:12:
5d:08:ba:22:6d:a3:67:fe:f7:6d:3f:2c:f0:76:c2:
e0:39:3e:b2:03:ea:19:c4:b1:80:74:ae:e8:bb:ea:
2d:79:e7:b0:75:9b:5b:ba:f2:6b:8e:29:d1:01:92:
cd:b6:29:a2:4b:9b:aa:ee:80:ba:c1:61:bd:f0:5f:
1c:6b:51:11:d0:65:d0:26:cc:1b:5f:a1:fa:32:40:
bf:80:93:91:8e:1b:4c:ef:59:64:40:44:9b:aa:55:
d7:6f:05:e6:8c:a2:7b:7c:d8:88:40:22:a2:1c:cb:
08:f7:2f:e2:fa:6f:a7:b9:8a:ec:d4:9d:10:75:42:
74:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:DF:39:FC:37:1F:EE:51:24:6B:9F:FA:2F:0F:A5:6F:74:E3:BC:70
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/lN85_Dcf7lEka5_6Lw-lb3TjvHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a07:f300::/29
2a0c:4880::/29
2a0c:9240::/29
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:a00::/31
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:e940::/29
2a0f:ea42::/32
2a10:67c5:1::/48
2a10:6d40::/29
2a12:ac40::/48
2a12:ac40:f::/48
2a12:ac41::/32
2a12:ecc2::/32
2a13:18c0:1::/48
2a13:1940::/29
2a13:4900::/29
Signature Algorithm: sha256WithRSAEncryption
be:c1:92:d9:3e:d4:2e:c1:26:89:d4:f3:ab:a5:11:ae:a6:bd:
bc:da:ec:38:c2:fc:35:ed:5b:e3:a1:59:a6:c7:9f:d8:57:43:
4a:dd:ef:dd:14:fd:63:13:06:83:0a:29:0f:37:a0:63:50:0a:
f5:f0:e4:78:23:c0:49:91:b5:88:3b:d1:06:b3:e3:71:7a:60:
f9:db:48:5b:22:d3:c1:4a:9d:98:33:a7:eb:82:5a:81:7e:e9:
3c:d7:fc:3f:55:9f:bb:19:ad:7a:a2:87:05:3c:d9:0c:75:8b:
42:1b:e1:91:69:ed:9c:3d:12:55:07:4c:3b:16:31:42:ee:1d:
20:2c:b6:91:1c:62:94:11:6e:12:28:df:53:c0:51:ef:5d:22:
70:55:55:ef:c6:81:41:01:dc:20:cc:81:0b:98:7d:75:5f:49:
ae:32:21:c1:0e:60:56:31:00:77:96:de:19:3a:b0:71:0c:ee:
ed:e5:f7:36:7c:2a:9e:65:f7:48:da:56:75:1c:37:f0:f8:c9:
1d:cc:6c:5d:c6:72:d2:17:68:12:f1:7a:9c:b5:0e:ba:11:49:
6d:08:be:d2:b8:db:93:1f:f1:31:2d:39:f2:46:2b:3b:82:72:
47:e8:00:ab:9b:e2:80:9d:d9:10:38:0f:d0:30:a3:1f:1f:c5:
e1:3e:d2:98
-----BEGIN CERTIFICATE-----
MIIGHzCCBQegAwIBAgISAYpKkwkvML8XkXGWy4j+0ETOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjMwODMxMDc1MTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NGRmMzlmYzM3MWZlZTUxMjQ2YjlmZmEyZjBmYTU2Zjc0ZTNiYzcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0X51JvWXzS4fcVYaVjyEeIPz0iB
Mrv+N4S5WX7333/sE6nHD7a9YXZXU2kywg8pHg+kvDxLEMl5Czrq0Fu8Kg97IdgQ
rhtrk6EABD28eq15b2GMUDSwrJatouS1lwnzI78tMGdmvhEpRCU/AkgsllPKE2pu
0hWmxByelnFCQ6tjbDCGwxJdCLoibaNn/vdtPyzwdsLgOT6yA+oZxLGAdK7ou+ot
eeewdZtbuvJrjinRAZLNtimiS5uq7oC6wWG98F8ca1ER0GXQJswbX6H6MkC/gJOR
jhtM71lkQESbqlXXbwXmjKJ7fNiIQCKiHMsI9y/i+m+nuYrs1J0QdUJ0KQIDAQAB
o4IDKzCCAycwHQYDVR0OBBYEFJTfOfw3H+5RJGuf+i8PpW9047xwMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvbE44NV9EY2Y3bEVrYTVfNkx3LWxiM1RqdkhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBPwYIKwYBBQUHAQcBAf8EggEuMIIBKjAYBAIAATASAwQA
LYF/AwQALYclAwQAwaTHMIIBDAQCAAIwggEEAwUDKgfzAAMFAyoMSIADBQMqDJJA
AwUAKg4agAMFACoOx4ADBwAqDvIBAAEDBQEqDwoAAwcAKg8eAAEjAwcAKg8eAARW
AwcAKg8eAAmHAwcAKg8eAAq8AwcAKg8eAN75AwcAKg8eAQABAwcAKg8egQACAwcA
Kg8egRKTAwcAKg8egUMZAwcAKg8egZLoAwcAKg8egaPQAwcAKg8egc2uAwcAKg89
gAEjAwUAKg89ggMFAyoP6UADBQAqD+pCAwcAKhBnxQABAwUDKhBtQAMHACoSrEAA
AAMHACoSrEAADwMFACoSrEEDBQAqEuzCAwcAKhMYwAABAwUDKhMZQAMFAyoTSQAw
DQYJKoZIhvcNAQELBQADggEBAL7Bktk+1C7BJonU86ulEa6mvbza7DjC/DXtW+Oh
WabHn9hXQ0rd790U/WMTBoMKKQ83oGNQCvXw5HgjwEmRtYg70Qaz43F6YPnbSFsi
08FKnZgzp+uCWoF+6TzX/D9Vn7sZrXqihwU82Qx1i0Ib4ZFp7Zw9ElUHTDsWMULu
HSAstpEcYpQRbhIo31PAUe9dInBVVe/GgUEB3CDMgQuYfXVfSa4yIcEOYFYxAHeW
3hk6sHEM7u3l9zZ8Kp5l90jaVnUcN/D4yR3MbF3GctIXaBLxepy1DroRSW0IvtK4
25Mf8TEtOfJGKzuCckfoAKub4oCd2RA4D9Awox8fxeE+0pg=
-----END CERTIFICATE-----
Generated at Sun May 11 17:07:26 2025 by rpki-client