Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/6Qb8-g0a7G6Xpts_D4fmnfwGros.roa
File: 6Qb8-g0a7G6Xpts_D4fmnfwGros.roa (raw, json)
Hash identifier: RTCeh+EL8tKRp0oD/6fOZDPZW8lp6QjQOdP4yC0/49s=
Subject key identifier: E9:06:FC:FA:0D:1A:EC:6E:97:A6:DB:3F:0F:87:E6:9D:FC:06:AE:8B
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 03AE8A54
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/6Qb8-g0a7G6Xpts_D4fmnfwGros.roa
Signing time: Tue 28 Jun 2022 06:52:41 +0000
ROA not before: Tue 28 Jun 2022 06:52:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30633
IP address blocks: 45.147.31.0/24 maxlen: 24
45.147.30.0/24 maxlen: 24
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a12:ac40::/29 maxlen: 29
2a0f:1e81:cdae::/48 maxlen: 48
2a07:f300::/29 maxlen: 29
2a0f:1e81:1293::/48 maxlen: 48
2a0c:9240::/29 maxlen: 29
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:e841::/32 maxlen: 32
2a0f:a01::/32 maxlen: 32
2a0e:5a80::/29 maxlen: 29
2a0f:1e00:123::/48 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a12:d540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61770324 (0x3ae8a54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 28 06:52:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e906fcfa0d1aec6e97a6db3f0f87e69dfc06ae8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:20:04:92:38:54:7a:65:be:03:0f:a8:e8:63:
31:4f:e7:49:62:19:05:fc:f5:d7:d7:b5:66:af:56:
1c:54:35:ec:d6:90:ca:6c:a0:44:a6:da:20:5e:30:
eb:23:e3:bf:80:aa:87:1c:7d:6d:5f:a5:f2:ef:3c:
2c:42:60:92:bc:59:7a:72:10:8a:a2:13:a2:bc:59:
4b:29:55:37:34:94:38:bb:ce:1e:a1:4d:5a:cb:56:
9e:9a:2a:12:65:1a:1d:43:ef:be:ea:e4:fb:04:28:
97:a0:db:50:0a:d5:ce:9c:49:09:cf:fa:fb:96:29:
8d:82:e4:6e:1b:63:90:28:22:b5:ea:96:f9:b5:fb:
c9:2a:32:27:01:7d:42:13:9f:d9:45:6d:47:84:13:
6c:4c:4f:d4:df:0c:18:c9:5f:0e:60:8d:96:38:9d:
c4:a6:84:d9:a3:e6:a6:00:2b:96:8c:47:2f:ba:b8:
da:17:ac:29:76:38:9e:70:56:30:0e:10:7e:e2:a5:
6b:8c:ac:05:fc:ef:52:d5:0a:6d:dc:ae:b8:3a:07:
bc:10:27:a0:32:f6:c6:77:aa:a8:50:5c:d3:c6:65:
74:78:60:d0:f5:55:79:f4:42:df:6d:2c:6c:18:4e:
e6:22:fd:d8:d4:4e:e8:54:93:ba:e7:37:a0:c6:41:
73:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:06:FC:FA:0D:1A:EC:6E:97:A6:DB:3F:0F:87:E6:9D:FC:06:AE:8B
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/6Qb8-g0a7G6Xpts_D4fmnfwGros.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.30.0/23
IPv6:
2a07:f300::/29
2a0c:9240::/29
2a0e:5a80::/29
2a0f:a01::/32
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:3d80:123::/48
2a0f:3d82::/32
2a0f:e841::/32
2a12:ac40::/29
2a12:d540::/29
Signature Algorithm: sha256WithRSAEncryption
48:b8:c5:f4:32:60:cd:2f:56:6b:3f:05:9c:bd:ab:60:21:f8:
ab:6b:91:59:8c:4d:8d:7b:ad:96:12:17:c3:f5:3c:59:53:59:
1a:78:6d:01:21:67:cc:15:27:7b:89:4f:84:d4:49:24:2c:4c:
06:36:6d:65:14:55:07:f0:18:a5:18:2f:8e:15:aa:8f:0e:b4:
14:7c:f7:ee:5d:69:59:71:52:3f:f3:54:27:5a:d0:e0:3d:60:
ad:ce:42:11:f6:5a:61:84:4a:aa:b3:40:cc:d0:6b:bd:9a:12:
9f:13:0d:8a:72:12:a5:ac:80:77:80:c9:c0:d2:e8:7e:50:d2:
57:66:93:40:16:8f:93:9a:d0:39:00:ec:99:f3:dd:a7:1e:d4:
3b:c4:1f:d0:a1:d3:05:d3:0c:73:23:98:47:54:b9:ee:17:1e:
de:08:c7:14:06:00:bc:f1:49:3c:7e:f4:0c:94:87:f9:a3:52:
10:95:3e:41:62:7b:3f:d2:24:74:0f:d8:b7:2f:a4:50:0a:6a:
24:6f:e5:29:16:84:37:1b:47:3f:65:da:ed:43:3a:b7:e1:b2:
7d:8c:99:7d:f7:cd:97:34:0f:05:1d:ce:26:93:38:83:4a:b2:
29:3f:49:b3:f9:94:98:8a:02:43:d6:a5:fd:da:99:8e:7b:87:
ed:8f:fe:f5
-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgIEA66KVDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDU1OWFhZmJmYzA5MzEyNDJlMWQ2MzcyOThjZjFkZDIyM2U0YzI2MB4XDTIyMDYy
ODA2NTI0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTkwNmZjZmEwZDFh
ZWM2ZTk3YTZkYjNmMGY4N2U2OWRmYzA2YWU4YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMcgBJI4VHplvgMPqOhjMU/nSWIZBfz119e1Zq9WHFQ17NaQ
ymygRKbaIF4w6yPjv4Cqhxx9bV+l8u88LEJgkrxZenIQiqITorxZSylVNzSUOLvO
HqFNWstWnpoqEmUaHUPvvurk+wQol6DbUArVzpxJCc/6+5YpjYLkbhtjkCgiteqW
+bX7ySoyJwF9QhOf2UVtR4QTbExP1N8MGMlfDmCNljidxKaE2aPmpgArloxHL7q4
2hesKXY4nnBWMA4QfuKla4ysBfzvUtUKbdyuuDoHvBAnoDL2xneqqFBc08ZldHhg
0PVVefRC320sbBhO5iL92NRO6FSTuuc3oMZBc00CAwEAAaOCArEwggKtMB0GA1Ud
DgQWBBTpBvz6DRrsbpem2z8Ph+ad/AauizAfBgNVHSMEGDAWgBR9VZqvv8CTEkLh
1jcpjPHdIj5MJjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZWV2FyN19Ba3hKQzRkWTNLWXp4M1NJLVRDWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzAvNDlhZGM2LWJhODktNDAzZi1hZGE5LThjNTAwN2MyYTRiNi8x
LzZRYjgtZzBhN0c2WHB0c19ENGZtbmZ3R3Jvcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAv
NDlhZGM2LWJhODktNDAzZi1hZGE5LThjNTAwN2MyYTRiNi8xL2ZWV2FyN19Ba3hK
QzRkWTNLWXp4M1NJLVRDWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
xgYIKwYBBQUHAQcBAf8EgbYwgbMwDAQCAAEwBgMEAS2THjCBogQCAAIwgZsDBQMq
B/MAAwUDKgySQAMFAyoOWoADBQAqDwoBAwcAKg8eAAEjAwcAKg8eAARWAwcAKg8e
AAmHAwcAKg8eAAq8AwcAKg8eAN75AwcAKg8egRKTAwcAKg8egUMZAwcAKg8egZLo
AwcAKg8egaPQAwcAKg8egc2uAwcAKg89gAEjAwUAKg89ggMFACoP6EEDBQMqEqxA
AwUDKhLVQDANBgkqhkiG9w0BAQsFAAOCAQEASLjF9DJgzS9Waz8FnL2rYCH4q2uR
WYxNjXutlhIXw/U8WVNZGnhtASFnzBUne4lPhNRJJCxMBjZtZRRVB/AYpRgvjhWq
jw60FHz37l1pWXFSP/NUJ1rQ4D1grc5CEfZaYYRKqrNAzNBrvZoSnxMNinISpayA
d4DJwNLoflDSV2aTQBaPk5rQOQDsmfPdpx7UO8Qf0KHTBdMMcyOYR1S57hce3gjH
FAYAvPFJPH70DJSH+aNSEJU+QWJ7P9IkdA/Yty+kUApqJG/lKRaENxtHP2Xa7UM6
t+GyfYyZfffNlzQPBR3OJpM4g0qyKT9Js/mUmIoCQ9al/dqZjnuH7Y/+9Q==
-----END CERTIFICATE-----
Generated at Mon Apr 21 15:00:04 2025 by rpki-client