Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/BNBHlKuamDSHxi5caWtrMH7lWdY.roa
File: BNBHlKuamDSHxi5caWtrMH7lWdY.roa (raw, json)
Hash identifier: V2W8pODKVeBEV+qZAkO02UOGAtvRMOfsSGulfV4P968=
Subject key identifier: 04:D0:47:94:AB:9A:98:34:87:C6:2E:5C:69:6B:6B:30:7E:E5:59:D6
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018692180C88F250D7C3EEC7ABCC7F775172
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/BNBHlKuamDSHxi5caWtrMH7lWdY.roa
Signing time: Mon 27 Feb 2023 08:58:15 +0000
ROA not before: Mon 27 Feb 2023 08:58:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 45.86.246.0/24 maxlen: 24
193.39.209.0/24 maxlen: 24
193.39.208.0/24 maxlen: 24
194.33.62.0/24 maxlen: 24
45.154.231.0/24 maxlen: 24
45.154.230.0/24 maxlen: 24
45.134.186.0/24 maxlen: 24
103.59.40.0/24 maxlen: 24
103.59.43.0/24 maxlen: 24
103.59.42.0/24 maxlen: 24
103.59.41.0/24 maxlen: 24
185.214.72.0/24 maxlen: 24
193.5.64.0/24 maxlen: 24
45.146.181.0/24 maxlen: 24
193.39.143.0/24 maxlen: 24
45.153.219.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
45.147.31.0/24 maxlen: 24
45.118.249.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
64.226.159.0/24 maxlen: 24
64.226.158.0/24 maxlen: 24
64.226.157.0/24 maxlen: 24
64.226.156.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
45.146.88.0/24 maxlen: 24
103.227.85.0/24 maxlen: 24
103.227.84.0/24 maxlen: 24
45.146.129.0/24 maxlen: 24
103.227.86.0/24 maxlen: 24
194.45.34.0/24 maxlen: 24
80.253.248.0/24 maxlen: 24
91.212.107.0/24 maxlen: 24
91.212.120.0/24 maxlen: 24
113.30.152.0/24 maxlen: 24
113.30.155.0/24 maxlen: 24
113.30.154.0/24 maxlen: 24
113.30.153.0/24 maxlen: 24
45.145.59.0/24 maxlen: 24
91.212.100.0/24 maxlen: 24
91.233.20.0/24 maxlen: 24
45.158.198.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
45.131.214.0/24 maxlen: 24
64.226.55.0/24 maxlen: 24
64.226.54.0/24 maxlen: 24
91.232.255.0/24 maxlen: 24
185.164.59.0/24 maxlen: 24
45.137.85.0/24 maxlen: 24
45.137.82.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.130.254.0/24 maxlen: 24
209.35.158.0/24 maxlen: 24
185.136.204.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
45.137.62.0/24 maxlen: 24
45.157.37.0/24 maxlen: 24
45.157.36.0/24 maxlen: 24
45.157.39.0/24 maxlen: 24
45.95.98.0/24 maxlen: 24
193.41.123.0/24 maxlen: 24
193.41.122.0/24 maxlen: 24
193.41.69.0/24 maxlen: 24
193.41.68.0/24 maxlen: 24
185.155.202.0/24 maxlen: 24
193.41.86.0/24 maxlen: 24
193.41.115.0/24 maxlen: 24
45.129.125.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
45.13.187.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
167.94.165.0/24 maxlen: 24
103.229.31.0/24 maxlen: 24
103.74.77.0/24 maxlen: 24
103.74.76.0/24 maxlen: 24
85.209.131.0/24 maxlen: 24
193.41.38.0/24 maxlen: 24
194.41.38.0/24 maxlen: 24
2a0a:2d00:3::/48 maxlen: 48
2a0f:e540::/32 maxlen: 32
2a0f:1480::/29 maxlen: 29
2a0f:1f80::/29 maxlen: 29
2a0f:e040::/29 maxlen: 29
2a0f:ee00::/29 maxlen: 29
2a0e:f200:1::/48 maxlen: 48
2a0f:a03::/32 maxlen: 32
2a12:ecc2::/32 maxlen: 32
2a0f:e740::/29 maxlen: 29
2a0f:9600::/29 maxlen: 29
2a0f:3d83::/32 maxlen: 32
2a12:ecc3::/32 maxlen: 32
2a0f:1580::/29 maxlen: 29
2a0f:3940::/29 maxlen: 29
2a0f:e6c0::/29 maxlen: 29
2a0f:a02::/32 maxlen: 32
2a0f:e7c2::/32 maxlen: 32
2a0f:e9c0::/29 maxlen: 29
2a0e:f200::/48 maxlen: 48
2a0f:1200::/32 maxlen: 32
2a0c:7882:1::/48 maxlen: 48
2a0f:4f80::/48 maxlen: 48
2a0f:e1c2::/32 maxlen: 32
2a0c:7884::/32 maxlen: 32
2a0e:2240:2::/48 maxlen: 48
2a06:1180:3::/48 maxlen: 48
2a0f:2700::/29 maxlen: 29
2a0f:e1c0::/32 maxlen: 32
2a0e:15c0:2::/48 maxlen: 48
2a0e:1a80:123::/48 maxlen: 48
2a0f:e1c7::/32 maxlen: 32
2a0e:f200:2::/48 maxlen: 48
2a12:ecc5::/32 maxlen: 32
2a0f:ee00::/32 maxlen: 32
2a0c:7883::/32 maxlen: 32
2a0e:2440::/29 maxlen: 29
2a0f:2300::/29 maxlen: 29
2a0c:7880::/32 maxlen: 32
2a12:f5c0::/29 maxlen: 29
2a0f:df40::/29 maxlen: 29
2a0f:3f80::/29 maxlen: 29
2a12:ecc7::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:3d80:2::/48 maxlen: 48
2a10:67c0::/29 maxlen: 29
2a0e:15c0:4::/48 maxlen: 48
2a0f:db40::/29 maxlen: 29
2a12:ecc6::/32 maxlen: 32
2a0f:e640::/29 maxlen: 29
2a0f:a04::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:92:18:0c:88:f2:50:d7:c3:ee:c7:ab:cc:7f:77:51:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 27 08:58:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04d04794ab9a983487c62e5c696b6b307ee559d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0c:44:ab:d4:af:65:2a:7c:96:ab:ae:16:55:
ee:ad:7e:e9:49:65:74:fd:72:5b:7e:2c:14:61:aa:
b6:2e:e3:b2:d4:37:e2:57:6d:66:a7:2f:34:69:f7:
7b:db:7c:64:69:f4:20:a9:3d:e3:c3:32:88:c9:ce:
ab:75:0d:43:4b:22:87:d7:fe:66:3e:6a:16:ab:2c:
14:a9:18:11:14:c1:60:83:ee:4d:a6:d3:65:8c:14:
c4:25:8e:bf:99:33:26:93:bc:ca:b7:80:cc:3d:15:
4d:dc:1a:6f:aa:90:5b:15:60:08:22:f4:95:a6:18:
bd:97:80:f1:c3:95:a8:54:2b:6b:f3:7a:7f:4f:f5:
41:22:8b:21:7f:dc:fa:c1:e0:d6:d5:fa:1a:87:bd:
de:04:04:89:32:b9:85:62:57:4c:38:63:41:f0:ae:
e8:1a:35:c2:45:c8:cd:17:e8:4e:73:95:3d:2c:23:
97:00:de:2c:95:28:04:dc:29:6b:1b:26:07:54:ff:
d9:92:55:58:c3:7a:96:40:01:b2:c1:f5:ca:8f:53:
cb:c7:2f:1c:e8:71:7d:ef:dc:0c:cd:2e:15:59:52:
2f:dd:df:f1:d8:6f:dd:87:2c:a8:a6:21:6b:93:9d:
8d:40:ce:95:d4:76:9d:65:41:4f:df:12:3a:70:66:
b3:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:D0:47:94:AB:9A:98:34:87:C6:2E:5C:69:6B:6B:30:7E:E5:59:D6
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/BNBHlKuamDSHxi5caWtrMH7lWdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/23
45.86.246.0/24
45.91.208.0/24
45.91.211.0/24
45.95.98.0/24
45.118.249.0/24
45.128.77.0/24
45.129.125.0/24
45.130.254.0/24
45.131.214.0/24
45.134.186.0/24
45.137.41.0/24
45.137.62.0/24
45.137.82.0/24
45.137.85.0-45.137.86.255
45.145.59.0/24
45.146.88.0/24
45.146.129.0/24
45.146.181.0/24
45.147.31.0/24
45.153.21.0/24
45.153.23.0/24
45.153.218.0/23
45.154.230.0/23
45.157.36.0/23
45.157.39.0/24
45.158.197.0-45.158.198.255
64.226.54.0/23
64.226.156.0/22
80.253.248.0/24
85.209.131.0/24
91.212.100.0/24
91.212.107.0/24
91.212.120.0/24
91.232.255.0/24
91.233.20.0/24
103.59.40.0/22
103.74.76.0/23
103.227.84.0-103.227.86.255
103.229.31.0/24
113.30.152.0/22
167.94.165.0/24
185.136.204.0/24
185.155.202.0/24
185.164.59.0/24
185.214.72.0/24
193.5.64.0/24
193.39.143.0/24
193.39.208.0/23
193.41.38.0/24
193.41.68.0/23
193.41.86.0/24
193.41.115.0/24
193.41.122.0/23
193.111.4.0/23
193.111.18.0/23
194.33.62.0/24
194.41.38.0/24
194.45.34.0/24
209.35.158.0/24
IPv6:
2a06:1180:3::/48
2a0a:2d00:3::/48
2a0c:7880::/32
2a0c:7882:1::/48
2a0c:7883::-2a0c:7884:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:15c0:2::/48
2a0e:15c0:4::/48
2a0e:1a80:123::/48
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:f200::-2a0e:f200:2:ffff:ffff:ffff:ffff:ffff
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1200::/32
2a0f:1480::/29
2a0f:1580::/29
2a0f:1f80::/29
2a0f:2300::/29
2a0f:2700::/29
2a0f:3940::/29
2a0f:3d80:2::/48
2a0f:3d83::/32
2a0f:3f80::/29
2a0f:4f80::/48
2a0f:9600::/29
2a0f:db40::/29
2a0f:df40::/29
2a0f:e040::/29
2a0f:e1c0::/32
2a0f:e1c2::/32
2a0f:e1c7::/32
2a0f:e540::/32
2a0f:e600:1::/48
2a0f:e640::/29
2a0f:e6c0::/29
2a0f:e740::/29
2a0f:e7c2::/32
2a0f:e9c0::/29
2a0f:ee00::/29
2a10:67c0::/29
2a12:ecc2::/31
2a12:ecc5::-2a12:ecc7:ffff:ffff:ffff:ffff:ffff:ffff
2a12:f5c0::/29
Signature Algorithm: sha256WithRSAEncryption
60:25:42:e0:03:2e:03:c1:6d:9b:98:b0:1b:4e:d2:7a:85:63:
bf:a7:57:23:e0:4c:c7:74:3f:85:21:2f:68:a4:a1:89:94:99:
8f:aa:4f:fb:92:2c:5e:3d:82:dd:cd:e0:be:01:62:32:fd:0b:
4a:60:2c:0e:ee:b8:46:fa:36:22:5e:db:97:57:fd:92:e6:48:
94:4e:c6:84:c7:32:43:6c:f5:fa:73:2e:b1:d8:f7:20:a4:99:
cc:7e:bf:03:98:b9:d6:29:db:23:8a:bf:cc:11:1a:82:16:1c:
aa:f5:72:74:47:a3:91:f5:44:4c:95:b8:91:9b:8f:ab:03:83:
99:7f:bc:03:49:fd:06:fa:7f:60:21:e1:89:58:8b:52:7b:86:
fb:02:c6:c5:1d:bb:4a:df:25:5d:3e:88:88:00:db:7b:49:28:
90:c5:5f:10:5a:dc:4e:c2:f1:86:3e:37:76:ae:a3:7b:03:1a:
1f:5f:42:07:76:ad:8e:45:b8:84:fd:b1:00:0d:fa:ef:1a:68:
93:7a:89:9c:23:ef:6f:e7:0d:cc:5b:79:f9:69:14:b4:e6:c4:
6b:11:49:d3:6b:31:1d:cc:c2:49:47:88:25:aa:5c:49:15:b4:
a6:01:52:92:8e:be:bd:d0:02:bd:2f:bf:cb:17:00:fd:3c:2a:
4e:3b:31:17
-----BEGIN CERTIFICATE-----
MIIH7DCCBtSgAwIBAgISAYaSGAyI8lDXw+7Hq8x/d1FyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjMwMjI3MDg1ODE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNGQwNDc5NGFiOWE5ODM0ODdjNjJlNWM2OTZiNmIzMDdlZTU1OWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwxEq9SvZSp8lquuFlXurX7pSWV0
/XJbfiwUYaq2LuOy1DfiV21mpy80afd723xkafQgqT3jwzKIyc6rdQ1DSyKH1/5m
PmoWqywUqRgRFMFgg+5NptNljBTEJY6/mTMmk7zKt4DMPRVN3BpvqpBbFWAIIvSV
phi9l4Dxw5WoVCtr83p/T/VBIoshf9z6weDW1foah73eBASJMrmFYldMOGNB8K7o
GjXCRcjNF+hOc5U9LCOXAN4slSgE3ClrGyYHVP/ZklVYw3qWQAGywfXKj1PLxy8c
6HF979wMzS4VWVIv3d/x2G/dhyyopiFrk52NQM6V1HadZUFP3xI6cGazCQIDAQAB
o4IE+DCCBPQwHQYDVR0OBBYEFATQR5Srmpg0h8YuXGlrazB+5VnWMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvQk5CSGxLdWFtRFNIeGk1Y2FXdHJNSDdsV2RZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIDDAYIKwYBBQUHAQcBAf8EggL7MIIC9zCCAYgEAgABMIIB
gAMEAS0NugMEAC1W9gMEAC1b0AMEAC1b0wMEAC1fYgMEAC12+QMEAC2ATQMEAC2B
fQMEAC2C/gMEAC2D1gMEAC2GugMEAC2JKQMEAC2JPgMEAC2JUjAMAwQALYlVAwQA
LYlWAwQALZE7AwQALZJYAwQALZKBAwQALZK1AwQALZMfAwQALZkVAwQALZkXAwQB
LZnaAwQBLZrmAwQBLZ0kAwQALZ0nMAwDBAAtnsUDBAAtnsYDBAFA4jYDBAJA4pwD
BABQ/fgDBABV0YMDBABb1GQDBABb1GsDBABb1HgDBABb6P8DBABb6RQDBAJnOygD
BAFnSkwwDAMEAmfjVAMEAGfjVgMEAGflHwMEAnEemAMEAKdepQMEALmIzAMEALmb
ygMEALmkOwMEALnWSAMEAMEFQAMEAMEnjwMEAcEn0AMEAMEpJgMEAcEpRAMEAMEp
VgMEAMEpcwMEAcEpegMEAcFvBAMEAcFvEgMEAMIhPgMEAMIpJgMEAMItIgMEANEj
njCCAWcEAgACMIIBXwMHACoGEYAAAwMHACoKLQAAAwMFACoMeIADBwAqDHiCAAEw
DgMFACoMeIMDBQAqDHiEAwcAKg4VwAACAwcAKg4VwAAEAwcAKg4agAEjAwcAKg4i
QAACAwUDKg4kQDAPAwQBKg7yAwcAKg7yAAACMA4DBQEqDwoCAwUAKg8KBAMFACoP
EgADBQMqDxSAAwUDKg8VgAMFAyoPH4ADBQMqDyMAAwUDKg8nAAMFAyoPOUADBwAq
Dz2AAAIDBQAqDz2DAwUDKg8/gAMHACoPT4AAAAMFAyoPlgADBQMqD9tAAwUDKg/f
QAMFAyoP4EADBQAqD+HAAwUAKg/hwgMFACoP4ccDBQAqD+VAAwcAKg/mAAABAwUD
Kg/mQAMFAyoP5sADBQMqD+dAAwUAKg/nwgMFAyoP6cADBQMqD+4AAwUDKhBnwAMF
ASoS7MIwDgMFACoS7MUDBQMqEuzAAwUDKhL1wDANBgkqhkiG9w0BAQsFAAOCAQEA
YCVC4AMuA8Ftm5iwG07SeoVjv6dXI+BMx3Q/hSEvaKShiZSZj6pP+5IsXj2C3c3g
vgFiMv0LSmAsDu64Rvo2Il7bl1f9kuZIlE7GhMcyQ2z1+nMusdj3IKSZzH6/A5i5
1inbI4q/zBEaghYcqvVydEejkfVETJW4kZuPqwODmX+8A0n9Bvp/YCHhiViLUnuG
+wLGxR27St8lXT6IiADbe0kokMVfEFrcTsLxhj43dq6jewMaH19CB3atjkW4hP2x
AA367xpok3qJnCPvb+cNzFt5+WkUtObEaxFJ02sxHczCSUeIJapcSRW0pgFSko6+
vdACvS+/yxcA/TwqTjsxFw==
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:07:25 2025 by rpki-client