Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/8Fc9Ng9iZkj2pDUUcb2jS5rjJZA.roa
File: 8Fc9Ng9iZkj2pDUUcb2jS5rjJZA.roa (raw, json)
Hash identifier: tf9tZ/sJFbKnuJDLq00dzPFoCNJSjrp9p+Hn7j7KP5M=
Subject key identifier: F0:57:3D:36:0F:62:66:48:F6:A4:35:14:71:BD:A3:4B:9A:E3:25:90
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01AEB928
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/8Fc9Ng9iZkj2pDUUcb2jS5rjJZA.roa
Signing time: Tue 01 Feb 2022 13:40:45 +0000
ROA not before: Tue 01 Feb 2022 13:40:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.39.208.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
193.41.38.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
193.39.143.0/24 maxlen: 24
2a0f:a203::/32 maxlen: 32
2a0e:2240:5::/48 maxlen: 48
2a0f:3d83::/32 maxlen: 32
2a0e:2240:3::/48 maxlen: 48
2a0f:3d81::/32 maxlen: 32
2a0f:3d84::/32 maxlen: 32
2a0f:a201::/32 maxlen: 32
2a0f:a204::/32 maxlen: 32
2a0e:f201::/32 maxlen: 32
2a0f:3d86::/32 maxlen: 32
2a0f:a207::/32 maxlen: 32
2a0f:3d87::/32 maxlen: 32
2a0f:a200::/32 maxlen: 32
2a0f:a206::/32 maxlen: 32
2a0e:2240:4::/48 maxlen: 48
2a0f:a205::/32 maxlen: 32
2a0f:3d85::/32 maxlen: 32
2a0f:a202::/32 maxlen: 32
2a0f:3d82::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28227880 (0x1aeb928)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 1 13:40:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0573d360f626648f6a4351471bda34b9ae32590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4d:68:9e:f2:5c:0e:c1:30:5b:f9:1f:2d:84:
0e:11:63:9a:88:66:27:4e:82:25:b8:90:79:bd:4a:
3a:2f:1c:59:51:7b:be:89:ba:56:3e:9d:fb:00:00:
8f:f7:16:2a:06:8a:c5:d5:28:3f:de:a1:99:06:32:
be:25:dd:cd:b7:ae:83:55:5a:11:29:f4:95:0f:f5:
ff:0e:2b:81:c5:9c:93:74:e3:56:01:2b:e2:f2:7c:
f1:d6:0b:fe:70:72:76:eb:48:01:a3:fd:00:e6:fe:
e5:d1:ae:e7:e8:9a:d8:e3:25:07:6d:a7:b9:ef:cb:
d8:aa:27:e6:a2:35:a8:8a:44:0f:82:65:22:9a:29:
22:af:66:18:9c:11:6e:a8:e1:45:cf:e1:2c:2a:5b:
3e:1c:22:38:62:88:4f:d8:50:b9:9a:52:73:3f:41:
bf:98:96:cf:9a:87:3e:a5:37:d9:45:44:c6:25:dd:
7d:9f:6b:83:6a:59:a7:f5:a7:36:f1:8f:f8:82:7a:
f5:93:f8:c7:08:29:ee:0b:44:83:7f:d5:32:e1:33:
50:7b:92:7b:ea:b7:9e:68:04:1d:6e:ea:8a:0b:f8:
25:93:95:f6:c9:14:6f:f9:3c:a8:76:c7:f4:34:ce:
ae:56:44:6b:5d:08:81:87:66:42:07:3f:78:31:81:
0d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:57:3D:36:0F:62:66:48:F6:A4:35:14:71:BD:A3:4B:9A:E3:25:90
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/8Fc9Ng9iZkj2pDUUcb2jS5rjJZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.208.0/24
45.91.211.0/24
193.39.143.0/24
193.39.208.0/24
193.41.38.0/23
IPv6:
2a0e:2240:3::-2a0e:2240:5:ffff:ffff:ffff:ffff:ffff
2a0e:f201::/32
2a0f:3d81::-2a0f:3d87:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:a200::/29
Signature Algorithm: sha256WithRSAEncryption
17:50:dc:a4:68:fb:62:a9:de:60:68:7f:b8:a3:b7:80:5a:5c:
ec:37:ab:5b:84:65:6b:60:13:92:5f:3f:37:ac:1c:e9:8a:2c:
bb:4e:32:10:7b:aa:08:35:7f:ef:1e:9e:ea:8a:0d:81:6a:2d:
47:1c:09:f3:f6:91:56:c1:e6:a1:bf:14:62:97:54:88:b0:d2:
c6:6f:25:5a:55:ce:31:65:50:58:44:74:1b:ac:96:f4:ad:f6:
3d:3c:03:ee:26:63:10:83:94:56:af:90:c2:a4:13:dd:a2:2c:
75:47:0a:6d:bc:6e:96:11:a6:d5:f1:c2:ab:c3:9a:1b:bc:16:
f9:f7:0a:57:de:f4:e4:47:f4:ce:3f:76:ab:04:d8:bd:d9:87:
95:64:89:e9:7e:77:98:df:64:25:33:ae:64:4d:dd:ed:f0:aa:
19:fc:06:46:86:ed:b5:20:56:22:d9:a4:21:6d:71:e0:6b:5b:
b5:c3:d4:f0:28:c0:9d:41:bb:d0:17:2a:62:ae:ca:28:7c:90:
aa:34:f7:4e:b5:59:ae:3a:8b:22:a8:ac:9d:76:b9:03:f9:2b:
5d:d7:8f:fd:ef:36:4a:e9:45:ec:51:9a:1e:c3:9f:a1:00:c1:
05:b8:1f:72:58:20:51:19:06:48:69:00:74:29:f4:9f:fd:b3:
43:b1:0b:33
-----BEGIN CERTIFICATE-----
MIIFQTCCBCmgAwIBAgIEAa65KDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDU1OWFhZmJmYzA5MzEyNDJlMWQ2MzcyOThjZjFkZDIyM2U0YzI2MB4XDTIyMDIw
MTEzNDA0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjA1NzNkMzYwZjYy
NjY0OGY2YTQzNTE0NzFiZGEzNGI5YWUzMjU5MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJNNaJ7yXA7BMFv5Hy2EDhFjmohmJ06CJbiQeb1KOi8cWVF7
vom6Vj6d+wAAj/cWKgaKxdUoP96hmQYyviXdzbeug1VaESn0lQ/1/w4rgcWck3Tj
VgEr4vJ88dYL/nBydutIAaP9AOb+5dGu5+ia2OMlB22nue/L2Kon5qI1qIpED4Jl
IpopIq9mGJwRbqjhRc/hLCpbPhwiOGKIT9hQuZpScz9Bv5iWz5qHPqU32UVExiXd
fZ9rg2pZp/WnNvGP+IJ69ZP4xwgp7gtEg3/VMuEzUHuSe+q3nmgEHW7qigv4JZOV
9skUb/k8qHbH9DTOrlZEa10IgYdmQgc/eDGBDUUCAwEAAaOCAlswggJXMB0GA1Ud
DgQWBBTwVz02D2JmSPakNRRxvaNLmuMlkDAfBgNVHSMEGDAWgBR9VZqvv8CTEkLh
1jcpjPHdIj5MJjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZWV2FyN19Ba3hKQzRkWTNLWXp4M1NJLVRDWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzAvNDlhZGM2LWJhODktNDAzZi1hZGE5LThjNTAwN2MyYTRiNi8x
LzhGYzlOZzlpWmtqMnBEVVVjYjJqUzVyakpaQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAv
NDlhZGM2LWJhODktNDAzZi1hZGE5LThjNTAwN2MyYTRiNi8xL2ZWV2FyN19Ba3hK
QzRkWTNLWXp4M1NJLVRDWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBx
BggrBgEFBQcBBwEB/wRiMGAwJAQCAAEwHgMEAC1b0AMEAC1b0wMEAMEnjwMEAMEn
0AMEAcEpJjA4BAIAAjAyMBIDBwAqDiJAAAMDBwEqDiJAAAQDBQAqDvIBMA4DBQAq
Dz2BAwUDKg89gAMFAyoPogAwDQYJKoZIhvcNAQELBQADggEBABdQ3KRo+2Kp3mBo
f7ijt4BaXOw3q1uEZWtgE5JfPzesHOmKLLtOMhB7qgg1f+8enuqKDYFqLUccCfP2
kVbB5qG/FGKXVIiw0sZvJVpVzjFlUFhEdBuslvSt9j08A+4mYxCDlFavkMKkE92i
LHVHCm28bpYRptXxwqvDmhu8Fvn3Clfe9ORH9M4/dqsE2L3Zh5Vkiel+d5jfZCUz
rmRN3e3wqhn8BkaG7bUgViLZpCFtceBrW7XD1PAowJ1Bu9AXKmKuyih8kKo09061
Wa46iyKorJ12uQP5K13Xj/3vNkrpRexRmh7Dn6EAwQW4H3JYIFEZBkhpAHQp9J/9
s0OxCzM=
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:35 2025 by rpki-client