Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1-IbymYgEJxHOkRJF3rmM7D8wslI.roa
File: 1-IbymYgEJxHOkRJF3rmM7D8wslI.roa (raw, json)
Hash identifier: 0lOyn826Hy29ZoU5O2/yJEfj3iaTVZCeTz8U1eFjYD0=
Subject key identifier: F8:86:F2:99:88:04:27:11:CE:91:12:45:DE:B9:8C:EC:3F:30:B2:52
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 024E6324
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1-IbymYgEJxHOkRJF3rmM7D8wslI.roa
Signing time: Fri 11 Mar 2022 14:41:19 +0000
ROA not before: Fri 11 Mar 2022 14:41:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 45.95.98.0/24 maxlen: 24
193.39.209.0/24 maxlen: 24
194.33.32.0/24 maxlen: 24
45.152.197.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.154.230.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
113.30.152.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
113.30.155.0/24 maxlen: 24
113.30.154.0/24 maxlen: 24
113.30.153.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.153.219.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
2a0e:e980::/29 maxlen: 29
2a0f:ac00::/29 maxlen: 29
2a0f:e1c2::/32 maxlen: 32
2a0f:1f80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:a02::/32 maxlen: 32
2a0f:e1c0::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:a03::/32 maxlen: 32
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a0e:f200:2::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0e:2440::/29 maxlen: 29
2a0f:e143::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38691620 (0x24e6324)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 11 14:41:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f886f29988042711ce911245deb98cec3f30b252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9f:8b:d9:94:18:75:e5:64:38:42:3e:2c:7b:
11:1a:b6:53:fe:27:9b:d2:93:c5:3e:e2:1c:25:7d:
1e:38:df:a9:43:88:0a:79:78:c1:55:4a:81:c6:28:
55:ba:7e:9d:07:60:d5:e6:ee:64:c4:27:26:c5:8b:
d2:eb:10:a4:30:86:ae:28:6c:6f:46:72:f0:5e:21:
27:ad:22:50:1c:1d:78:bc:dc:fb:9f:ca:6c:fa:ee:
d5:9c:3f:dc:9d:5d:4b:c6:92:5c:2b:30:31:3b:03:
b6:1f:b6:28:8c:42:cc:1c:63:c9:75:dc:b8:62:91:
f7:77:ee:f1:cc:1d:05:4d:67:52:df:6b:82:55:d4:
d8:10:54:b8:4c:11:c4:bd:01:ad:db:e1:fd:3c:63:
d2:d2:cd:c8:91:b4:0c:47:19:1d:ab:fe:3e:5a:6f:
b8:29:e6:9b:b3:c2:5d:f5:bd:27:8b:50:72:f3:42:
3c:45:80:ed:0e:b1:28:2c:b8:75:9c:c1:0a:76:be:
90:f8:1e:26:8e:a9:e4:63:d7:53:8e:97:31:91:d1:
a0:34:f4:23:07:e1:5c:79:c6:05:89:ae:8c:c5:74:
28:88:02:17:a2:a5:61:63:ca:cd:f2:42:47:1d:3a:
f5:90:28:cd:ad:15:68:35:9f:c3:cb:6d:55:1d:99:
50:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:86:F2:99:88:04:27:11:CE:91:12:45:DE:B9:8C:EC:3F:30:B2:52
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1-IbymYgEJxHOkRJF3rmM7D8wslI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.91.208.0/24
45.91.211.0/24
45.95.98.0/24
45.128.77.0/24
45.137.41.0/24
45.137.86.0/24
45.152.197.0/24
45.153.21.0/24
45.153.23.0/24
45.153.218.0/23
45.154.230.0/24
45.157.38.0/24
45.158.197.0/24
113.30.152.0/22
193.39.209.0/24
193.41.39.0/24
193.111.4.0/23
193.111.18.0/23
194.33.32.0/24
IPv6:
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:2::/48
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1f80::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:dac0::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c2::/32
2a0f:e1c7::/32
2a0f:e600:1::/48
2a0f:e940::/29
Signature Algorithm: sha256WithRSAEncryption
7d:d4:d3:27:c4:45:96:fb:a1:4e:b0:9d:15:a4:88:de:88:24:
2c:5f:08:e8:3c:4d:52:8b:62:00:0f:f5:a3:56:5f:87:22:68:
1d:0d:90:f7:03:18:2e:33:70:17:49:56:c8:9c:d5:27:9c:35:
cd:0c:f6:57:06:ee:ff:2f:14:42:14:a8:22:22:4b:bc:0c:fc:
7b:61:dd:a7:9b:07:ee:f5:b8:67:ee:22:6e:5c:d0:0c:23:de:
2b:60:0e:74:98:b7:c1:9b:d8:6c:8f:4a:22:8c:cb:35:71:b4:
40:0d:cf:c7:a6:6d:06:97:ad:d9:31:32:c7:ff:39:1f:1f:6b:
c1:42:37:b6:11:f5:9e:1d:9c:4f:c3:e4:8b:09:37:2b:00:98:
0e:fc:b1:c6:8d:0d:46:37:e2:33:cc:b6:a6:dc:53:a7:80:82:
26:80:54:71:ce:29:27:4d:4a:c7:4c:4b:ce:5b:49:65:0c:82:
45:ba:0c:d4:05:7f:71:bd:fa:55:10:5f:61:01:8a:d4:eb:d3:
ec:c4:26:62:19:ed:8d:9d:24:b6:de:bf:26:24:e9:c1:a7:c7:
6c:75:6b:d2:fe:ba:27:9a:09:21:9d:ad:6c:1c:2c:84:44:b1:
68:87:48:27:1a:f7:e4:74:a0:f6:5d:b5:0a:a3:fc:18:e1:b4:
ea:c6:ca:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:01:01 2025 by rpki-client