Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0O6dBc_3bvZ1ZJjW73Nv4petQek.roa
File: 0O6dBc_3bvZ1ZJjW73Nv4petQek.roa (raw, json)
Hash identifier: rjMKw72peIab2irM8/47ro1CdokdiWTHkK2hF9h0ps0=
Subject key identifier: D0:EE:9D:05:CF:F7:6E:F6:75:64:98:D6:EF:73:6F:E2:97:AD:41:E9
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 02C7AC51
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0O6dBc_3bvZ1ZJjW73Nv4petQek.roa
Signing time: Sat 16 Apr 2022 10:29:06 +0000
ROA not before: Sat 16 Apr 2022 10:29:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 193.39.209.0/24 maxlen: 24
185.164.59.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.154.230.0/24 maxlen: 24
45.130.253.0/24 maxlen: 24
185.136.204.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.157.37.0/24 maxlen: 24
45.153.219.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
45.95.98.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
91.212.107.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
113.30.152.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
113.30.155.0/24 maxlen: 24
113.30.154.0/24 maxlen: 24
113.30.153.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.158.198.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
2a0f:ac00::/29 maxlen: 29
2a0f:e1c2::/32 maxlen: 32
2a0f:1f80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a09:17c0::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:e6c0:fe1::/48 maxlen: 48
2a0f:2100:171::/48 maxlen: 48
2a0f:e1c0::/32 maxlen: 32
2a0f:a03::/32 maxlen: 32
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a0e:f200:2::/48 maxlen: 48
2a0f:e6c0:991::/48 maxlen: 48
2a0f:e842::/32 maxlen: 32
2a0e:2440::/29 maxlen: 29
2a0e:e980::/29 maxlen: 29
2a0f:a200::/29 maxlen: 29
2a0f:df40::/29 maxlen: 29
2a0f:a02::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:e6c0:123::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0f:e143::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46640209 (0x2c7ac51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 16 10:29:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0ee9d05cff76ef6756498d6ef736fe297ad41e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c1:cc:1d:b8:02:3e:a6:14:9e:0e:ba:10:27:
96:ef:f0:02:1d:67:72:be:bc:55:5e:12:a6:c3:66:
87:07:8a:2b:33:5d:da:5a:d0:ab:ce:2f:5e:41:67:
0d:72:ad:bc:eb:ac:24:79:59:99:6b:5a:61:e4:1e:
67:bc:8c:ba:bc:24:0b:2f:0d:4c:2a:66:6f:64:69:
fa:43:28:4a:28:08:6d:91:90:f4:c8:72:4d:66:79:
ea:3c:e2:71:43:7d:44:7a:b4:86:7d:87:10:59:5a:
d4:64:0f:d9:ed:37:2a:48:03:f6:f0:6e:c5:a1:13:
4a:50:4a:7c:b7:e3:38:27:e7:b6:46:4e:28:28:8c:
27:69:80:08:ac:35:0e:86:02:33:ed:2c:20:fd:a9:
0b:38:b4:15:5a:1b:91:80:86:eb:2f:e3:de:47:35:
4c:f3:9c:73:e9:4d:97:73:92:96:75:fd:8d:88:e7:
48:5b:21:d0:8d:af:1b:3d:59:6f:86:4b:a3:f0:e5:
a9:e9:64:10:a8:b2:ad:e3:46:df:5a:4e:04:c1:3e:
4a:e8:7e:17:b9:04:57:45:ae:e4:b8:cc:7e:7a:96:
c3:43:a1:a0:d6:f6:0f:4b:ec:1d:28:1d:47:eb:19:
0d:d2:ea:c1:98:6d:2b:e9:64:73:e8:07:50:82:09:
42:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:EE:9D:05:CF:F7:6E:F6:75:64:98:D6:EF:73:6F:E2:97:AD:41:E9
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0O6dBc_3bvZ1ZJjW73Nv4petQek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.91.208.0/24
45.91.211.0/24
45.95.98.0/24
45.128.77.0/24
45.130.253.0/24
45.137.41.0/24
45.137.86.0/24
45.153.21.0/24
45.153.23.0/24
45.153.218.0/23
45.154.230.0/24
45.157.37.0-45.157.38.255
45.158.197.0-45.158.198.255
91.212.107.0/24
113.30.152.0/22
185.136.204.0/24
185.164.59.0/24
193.39.209.0/24
193.41.39.0/24
193.111.4.0/23
193.111.18.0/23
IPv6:
2a09:17c0::/29
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:2::/48
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1f80::/29
2a0f:2100:171::/48
2a0f:a200::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:dac0::/29
2a0f:df40::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c2::/32
2a0f:e1c7::/32
2a0f:e600:1::/48
2a0f:e6c0:123::/48
2a0f:e6c0:991::/48
2a0f:e6c0:fe1::/48
2a0f:e842::/32
2a0f:e940::/29
Signature Algorithm: sha256WithRSAEncryption
4c:d0:6f:15:6b:08:e5:13:72:95:39:66:a4:a6:96:0c:bc:73:
98:b0:fb:12:6b:01:f1:dd:e3:df:57:7b:3d:aa:90:c5:52:f4:
d2:63:bc:56:35:f8:a5:b7:43:27:f8:f0:2e:2d:55:c0:98:5e:
0b:00:f7:6e:46:3d:5c:f0:f1:5a:55:76:71:47:14:9b:be:d8:
56:17:64:b8:26:86:ea:7c:b7:55:ae:56:78:bb:23:62:02:1d:
42:11:fb:8d:4b:5a:fd:df:a0:6b:cd:e3:51:92:2b:bf:85:be:
0f:d2:0b:38:9c:d9:27:13:33:3d:18:c5:6b:99:d4:47:8f:c3:
3e:42:8f:c4:80:2b:41:25:55:d1:d2:f0:15:3c:99:b8:fd:a0:
e7:56:31:76:04:7e:21:ee:dc:6e:b0:d3:79:59:79:ed:a8:2b:
3c:2b:93:8f:b7:d7:f9:e1:b2:4b:d9:81:67:cf:e2:23:d6:92:
46:bc:8a:56:9b:1d:4f:b6:c8:38:63:a5:30:5f:b9:a0:de:79:
3e:86:59:9e:db:31:51:ec:37:e5:36:8d:ad:36:a0:c9:b0:43:
10:9a:e9:2d:9e:21:d4:8a:5f:dc:a2:91:3e:93:c3:f3:00:72:
a3:80:88:20:b9:c1:71:c7:82:e2:f2:09:f5:80:a5:ad:ed:2d:
50:63:da:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:12:00 2025 by rpki-client