Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1-XS8l930BiVCXlg5RNJucO3yD60.roa
File: 1-XS8l930BiVCXlg5RNJucO3yD60.roa (raw, json)
Hash identifier: m6b347TqY8in/uCp2/f+2Be6jvoUw50vX2rgGO/MNN4=
Subject key identifier: F9:74:BC:97:DD:F4:06:25:42:5E:58:39:44:D2:6E:70:ED:F2:0F:AD
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0205881E
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1-XS8l930BiVCXlg5RNJucO3yD60.roa
Signing time: Mon 21 Feb 2022 21:08:39 +0000
ROA not before: Mon 21 Feb 2022 21:08:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 45.95.98.0/24 maxlen: 24
193.39.209.0/24 maxlen: 24
194.33.32.0/24 maxlen: 24
45.152.197.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
2a0e:e980::/29 maxlen: 29
2a0f:ac00::/29 maxlen: 29
2a0f:1f80::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:a02::/32 maxlen: 32
2a0f:e1c0::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:a03::/32 maxlen: 32
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a0e:f200:2::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0e:2440::/29 maxlen: 29
2a0f:e143::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33916958 (0x205881e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 21 21:08:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f974bc97ddf40625425e583944d26e70edf20fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:83:a1:5a:a9:53:52:91:0f:68:5e:c1:be:0f:
4b:e9:cb:a3:a4:24:52:35:c1:e7:40:fd:af:a4:a2:
f3:18:39:d2:0c:df:80:77:1f:ab:7d:b1:00:a6:8c:
a8:ea:60:61:4d:25:d5:68:e9:13:f3:71:16:bc:a8:
70:9f:1d:7f:de:c2:45:e8:3e:40:31:f1:b1:e6:80:
35:61:2a:2e:41:36:8b:f2:64:3d:05:bd:4e:d8:f4:
94:db:e0:43:5c:89:cf:ae:fe:79:a3:f0:36:89:d5:
2d:84:48:07:26:3f:30:6e:6a:82:7f:71:99:c5:fa:
88:e9:0d:54:ab:09:29:a3:64:48:8a:34:1d:88:33:
3a:be:e8:11:0e:fd:0f:0b:e9:9a:d6:ff:3d:52:69:
1d:c5:b0:30:9b:cb:fb:d2:11:c0:97:16:fe:a6:49:
54:b5:91:20:6c:54:e5:b2:d1:5a:96:8a:b1:53:ef:
cf:92:e0:b0:8d:3c:53:e4:fd:83:26:e4:d2:24:e5:
b8:60:53:c3:3c:60:9a:ee:05:ec:76:91:df:07:38:
f4:88:73:80:c0:17:2e:79:71:e2:47:37:ce:23:48:
c4:ad:a0:47:fd:63:45:ac:83:85:fd:21:f2:99:90:
64:b7:cc:d0:a5:fe:a4:5c:c4:fa:71:6c:d2:10:54:
42:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:74:BC:97:DD:F4:06:25:42:5E:58:39:44:D2:6E:70:ED:F2:0F:AD
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1-XS8l930BiVCXlg5RNJucO3yD60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.95.98.0/24
45.128.77.0/24
45.137.41.0/24
45.137.86.0/24
45.152.197.0/24
45.153.218.0/24
45.157.38.0/24
193.39.209.0/24
193.111.4.0/23
193.111.18.0/23
194.33.32.0/24
IPv6:
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:2::/48
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1f80::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c7::/32
2a0f:e600:1::/48
Signature Algorithm: sha256WithRSAEncryption
c1:27:9f:1e:0b:0c:7d:d0:52:ea:3d:06:63:15:fc:ac:74:fe:
31:03:d7:85:23:2a:7e:33:f7:32:1f:d6:0e:4c:04:63:4a:45:
29:60:66:af:2a:c4:a9:c8:46:e5:ca:71:ce:7d:82:e5:cb:56:
50:e7:8e:1c:7d:f4:1b:c8:6d:18:4b:aa:04:d6:5a:3f:35:4a:
fe:29:42:2b:38:42:b7:cc:d4:60:e6:86:bf:12:89:eb:bc:48:
6f:3f:4a:b0:8d:57:fb:ed:64:0a:47:5d:16:db:61:b9:11:df:
1e:e6:04:f2:96:e9:7d:b7:87:92:02:b6:b2:80:d8:33:d8:cf:
5d:bb:32:b9:8f:cf:89:32:1e:fc:c2:59:6c:12:34:3a:ce:b6:
e0:f3:c7:97:03:4d:cd:95:e4:37:a0:c9:bd:71:7c:69:98:7a:
a6:42:14:89:6d:e9:8f:ed:4d:4e:18:c7:c2:18:f0:b4:0b:26:
11:2c:fe:6f:2d:ee:9f:91:35:e4:8e:26:64:d2:4a:db:c5:f8:
45:5c:12:0d:b9:f1:1f:0c:cf:a3:5f:4a:a3:a6:3c:06:72:f7:
ff:81:88:ec:f4:0c:1e:db:f5:84:20:20:11:79:4d:ea:2b:b9:
42:ff:5f:35:90:0a:50:fe:2c:f0:24:d7:9b:05:97:9e:53:be:
d1:7b:96:12
-----BEGIN CERTIFICATE-----
MIIFoDCCBIigAwIBAgIEAgWIHjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDU1OWFhZmJmYzA5MzEyNDJlMWQ2MzcyOThjZjFkZDIyM2U0YzI2MB4XDTIyMDIy
MTIxMDgzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjk3NGJjOTdkZGY0
MDYyNTQyNWU1ODM5NDRkMjZlNzBlZGYyMGZhZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMWDoVqpU1KRD2hewb4PS+nLo6QkUjXB50D9r6Si8xg50gzf
gHcfq32xAKaMqOpgYU0l1WjpE/NxFryocJ8df97CReg+QDHxseaANWEqLkE2i/Jk
PQW9Ttj0lNvgQ1yJz67+eaPwNonVLYRIByY/MG5qgn9xmcX6iOkNVKsJKaNkSIo0
HYgzOr7oEQ79Dwvpmtb/PVJpHcWwMJvL+9IRwJcW/qZJVLWRIGxU5bLRWpaKsVPv
z5LgsI08U+T9gybk0iTluGBTwzxgmu4F7HaR3wc49IhzgMAXLnlx4kc3ziNIxK2g
R/1jRayDhf0h8pmQZLfM0KX+pFzE+nFs0hBUQh8CAwEAAaOCArowggK2MB0GA1Ud
DgQWBBT5dLyX3fQGJUJeWDlE0m5w7fIPrTAfBgNVHSMEGDAWgBR9VZqvv8CTEkLh
1jcpjPHdIj5MJjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZWV2FyN19Ba3hKQzRkWTNLWXp4M1NJLVRDWS5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzAvNDlhZGM2LWJhODktNDAzZi1hZGE5LThjNTAwN2MyYTRiNi8x
LzEtWFM4bDkzMEJpVkNYbGc1Uk5KdWNPM3lENjAucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Mw
LzQ5YWRjNi1iYTg5LTQwM2YtYWRhOS04YzUwMDdjMmE0YjYvMS9mVldhcjdfQWt4
SkM0ZFkzS1l6eDNTSS1UQ1kuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
gc4GCCsGAQUFBwEHAQH/BIG+MIG7ME4EAgABMEgDBAAtDboDBAAtX2IDBAAtgE0D
BAAtiSkDBAAtiVYDBAAtmMUDBAAtmdoDBAAtnSYDBADBJ9EDBAHBbwQDBAHBbxID
BADCISAwaQQCAAIwYwMHACoOIkAAAgMFAyoOJEADBQMqDumAAwcAKg7yAAACMA4D
BQEqDwoCAwUAKg8KBAMFAyoPH4ADBQMqD6wAAwUDKg/aQAMFACoP4UMDBQAqD+HA
AwUAKg/hxwMHACoP5gAAATANBgkqhkiG9w0BAQsFAAOCAQEAwSefHgsMfdBS6j0G
YxX8rHT+MQPXhSMqfjP3Mh/WDkwEY0pFKWBmryrEqchG5cpxzn2C5ctWUOeOHH30
G8htGEuqBNZaPzVK/ilCKzhCt8zUYOaGvxKJ67xIbz9KsI1X++1kCkddFtthuRHf
HuYE8pbpfbeHkgK2soDYM9jPXbsyuY/PiTIe/MJZbBI0Os624PPHlwNNzZXkN6DJ
vXF8aZh6pkIUiW3pj+1NThjHwhjwtAsmESz+by3un5E15I4mZNJK28X4RVwSDbnx
HwzPo19Ko6Y8BnL3/4GI7PQMHtv1hCAgEXlN6iu5Qv9fNZAKUP4s8CTXmwWXnlO+
0XuWEg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:00:25 2025 by rpki-client