Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1m-nGMa7pqNFgeX3d3vBmrbfFQs.roa
File: 1m-nGMa7pqNFgeX3d3vBmrbfFQs.roa (raw, json)
Hash identifier: 6YA/b9vINhEzvFxFlsIi57aA+YGd4VhGKU4z7DiH2J4=
Subject key identifier: D6:6F:A7:18:C6:BB:A6:A3:45:81:E5:F7:77:7B:C1:9A:B6:DF:15:0B
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0181ED73A0250781BFA58CE9BBED236FEFE8
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1m-nGMa7pqNFgeX3d3vBmrbfFQs.roa
Signing time: Mon 11 Jul 2022 13:29:46 +0000
ROA not before: Mon 11 Jul 2022 13:29:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 45.86.246.0/24 maxlen: 24
193.39.209.0/24 maxlen: 24
185.164.59.0/24 maxlen: 24
45.137.85.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.154.231.0/24 maxlen: 24
45.154.230.0/24 maxlen: 24
45.130.253.0/24 maxlen: 24
185.136.204.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.157.36.0/24 maxlen: 24
45.153.219.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
45.95.98.0/24 maxlen: 24
193.41.123.0/24 maxlen: 24
193.41.122.0/24 maxlen: 24
45.118.249.0/24 maxlen: 24
45.152.197.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
193.41.115.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
91.212.107.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
113.30.152.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
113.30.155.0/24 maxlen: 24
113.30.154.0/24 maxlen: 24
113.30.153.0/24 maxlen: 24
103.229.31.0/24 maxlen: 24
91.212.100.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.158.198.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
2a0f:ac00::/29 maxlen: 29
2a0f:e1c2::/32 maxlen: 32
2a0f:1f80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a0c:7884::/32 maxlen: 32
2a09:17c0::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:e6c0:fe1::/48 maxlen: 48
2a0f:2100:171::/48 maxlen: 48
2a0f:e1c0::/32 maxlen: 32
2a0e:f200:1::/48 maxlen: 48
2a0f:7d00:1::/48 maxlen: 48
2a0f:a03::/32 maxlen: 32
2a0f:6d80::/29 maxlen: 29
2a0e:1a80:123::/48 maxlen: 48
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a12:4ac0::/29 maxlen: 29
2a0f:e040:2::/48 maxlen: 48
2a0a:2d00:1::/48 maxlen: 48
2a0e:f200:2::/48 maxlen: 48
2a0f:e6c0:991::/48 maxlen: 48
2a0f:ea00::/29 maxlen: 29
2a0e:2440::/29 maxlen: 29
2a0c:7883::/32 maxlen: 32
2a0e:e980::/29 maxlen: 29
2a12:d6c0::/29 maxlen: 29
2a0f:a200::/29 maxlen: 29
2a0f:7d00:5::/48 maxlen: 48
2a0f:df40::/29 maxlen: 29
2a0f:a02::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:e6c0:123::/48 maxlen: 48
2a0f:e040::/48 maxlen: 48
2a0e:15c0:4::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0f:1200::/32 maxlen: 32
2a0f:7d00:3::/48 maxlen: 48
2a0c:7882:1::/48 maxlen: 48
2a0f:e143::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ed:73:a0:25:07:81:bf:a5:8c:e9:bb:ed:23:6f:ef:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 11 13:29:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d66fa718c6bba6a34581e5f7777bc19ab6df150b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:83:4f:0c:4e:89:53:24:35:ee:1e:8c:3f:2e:
03:cc:4f:38:11:75:a9:4a:36:4b:89:5a:b6:42:32:
d8:af:54:ba:3c:dd:2e:e2:d9:4c:a3:f0:fa:4c:16:
64:55:03:74:d5:dd:38:5c:c9:c6:cc:58:dc:48:b2:
10:0c:9a:e0:79:6f:b9:53:6d:7b:80:1d:39:c3:69:
c0:b7:e7:f6:47:02:b6:98:b0:4e:47:79:04:c6:67:
61:33:a7:6b:45:27:33:d4:87:31:cf:48:dc:bc:ee:
0e:0e:f0:4a:ea:34:a5:55:56:ca:fe:e7:38:80:0c:
52:09:11:ec:5e:58:29:65:68:8a:fa:b4:17:7b:4d:
2c:9b:30:6a:d4:f9:39:1a:57:d9:20:07:bd:f5:b6:
27:23:9d:9a:cf:46:18:8d:42:68:ac:42:7e:39:78:
e0:f8:f6:f5:6d:1e:04:65:c9:a1:fa:47:04:ae:a4:
a4:01:b1:65:1b:0a:41:f3:6c:d7:64:f8:0c:2d:cb:
35:e1:ac:f3:b8:7a:97:4a:70:c6:95:96:fe:93:71:
cb:e9:5f:9b:4f:a8:1d:2f:a8:23:5a:ae:1c:fc:89:
5d:c1:51:17:85:d6:f9:8d:a2:f2:88:0a:93:cf:ef:
8b:33:d4:af:d8:aa:05:4d:0c:09:5d:fe:d0:49:cd:
cd:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:6F:A7:18:C6:BB:A6:A3:45:81:E5:F7:77:7B:C1:9A:B6:DF:15:0B
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1m-nGMa7pqNFgeX3d3vBmrbfFQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.86.246.0/24
45.91.208.0/24
45.91.211.0/24
45.95.98.0/24
45.118.249.0/24
45.128.77.0/24
45.130.253.0/24
45.137.41.0/24
45.137.85.0-45.137.86.255
45.152.197.0/24
45.153.21.0/24
45.153.23.0/24
45.153.218.0/23
45.154.230.0/23
45.157.36.0/24
45.157.38.0/24
45.158.197.0-45.158.198.255
91.212.100.0/24
91.212.107.0/24
103.229.31.0/24
113.30.152.0/22
185.136.204.0/24
185.164.59.0/24
193.39.209.0/24
193.41.39.0/24
193.41.115.0/24
193.41.122.0/23
193.111.4.0/23
193.111.18.0/23
IPv6:
2a09:17c0::/29
2a0a:2d00:1::/48
2a0c:7882:1::/48
2a0c:7883::-2a0c:7884:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:15c0:4::/48
2a0e:1a80:123::/48
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:1::-2a0e:f200:2:ffff:ffff:ffff:ffff:ffff
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1200::/32
2a0f:1f80::/29
2a0f:2100:171::/48
2a0f:6d80::/29
2a0f:7d00:1::/48
2a0f:7d00:3::/48
2a0f:7d00:5::/48
2a0f:a200::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:dac0::/29
2a0f:df40::/29
2a0f:e040::/48
2a0f:e040:2::/48
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c2::/32
2a0f:e1c7::/32
2a0f:e600:1::/48
2a0f:e6c0:123::/48
2a0f:e6c0:991::/48
2a0f:e6c0:fe1::/48
2a0f:e940::/29
2a0f:ea00::/29
2a12:4ac0::/29
2a12:d6c0::/29
Signature Algorithm: sha256WithRSAEncryption
52:3b:81:9b:f8:b2:e9:ea:42:ab:08:b8:7f:25:32:c2:50:c6:
b2:2d:cb:13:fa:44:0e:fa:ea:df:33:c2:d0:40:c1:87:08:bf:
bb:81:36:c9:a6:b8:4d:0c:cb:27:70:02:60:c6:5d:91:e8:a0:
29:02:55:90:bf:f5:a0:b9:36:95:73:cc:3e:8d:47:15:57:5c:
a7:d1:25:83:a9:23:c2:55:35:98:a5:72:27:dc:b1:7d:5d:3e:
4b:db:53:cf:40:19:c9:23:c5:cb:e5:d4:87:69:73:62:0f:c1:
89:b6:00:e7:69:c0:e8:95:00:d1:eb:dd:cb:ea:74:ce:9c:38:
5b:fe:aa:1e:ed:8a:32:47:4d:82:2c:e8:51:fb:9a:33:f2:19:
02:18:5e:69:15:6b:e2:61:fe:65:d6:f1:98:bb:82:c0:7f:fb:
1c:50:bf:b9:06:96:01:46:0f:ec:7b:d7:7a:25:31:da:8d:b0:
3c:83:43:00:08:e0:df:4c:9c:09:9a:2a:8b:b3:6a:84:e4:9d:
7e:78:54:ae:b7:9a:76:2d:89:5c:a0:b4:e2:61:43:ac:c6:a2:
70:0b:5f:ca:be:93:c5:c4:ed:59:e2:20:74:88:97:61:ca:d6:
91:d2:dd:28:db:fc:f5:37:fc:7f:63:d1:73:3f:4b:a2:ff:c6:
bc:0f:7c:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:17 2025 by rpki-client