Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RIzuv2C0irSKSO-VmtjPOeAglgw.roa
File: RIzuv2C0irSKSO-VmtjPOeAglgw.roa (raw, json)
Hash identifier: dheNYO03+R5hq2sr1Qvl8tcjOE5sAAIKU38/TuPC63c=
Subject key identifier: 44:8C:EE:BF:60:B4:8A:B4:8A:48:EF:95:9A:D8:CF:39:E0:20:96:0C
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 02A482F6
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RIzuv2C0irSKSO-VmtjPOeAglgw.roa
Signing time: Tue 05 Apr 2022 08:08:23 +0000
ROA not before: Tue 05 Apr 2022 08:08:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 193.39.209.0/24 maxlen: 24
194.33.32.0/24 maxlen: 24
185.164.59.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.154.230.0/24 maxlen: 24
45.130.253.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.157.37.0/24 maxlen: 24
45.153.219.0/24 maxlen: 24
45.147.31.0/24 maxlen: 24
45.147.30.0/24 maxlen: 24
45.95.98.0/24 maxlen: 24
45.152.197.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
91.212.107.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
113.30.152.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
113.30.155.0/24 maxlen: 24
113.30.154.0/24 maxlen: 24
113.30.153.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
2a0f:ac00::/29 maxlen: 29
2a0f:e1c2::/32 maxlen: 32
2a0f:1f80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a09:17c0::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:e6c0:fe1::/48 maxlen: 48
2a0f:e1c0::/32 maxlen: 32
2a0f:a03::/32 maxlen: 32
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a0e:f200:2::/48 maxlen: 48
2a0f:e6c0:991::/48 maxlen: 48
2a0e:2440::/29 maxlen: 29
2a0e:e980::/29 maxlen: 29
2a0f:df40::/29 maxlen: 29
2a0f:a02::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:e6c0:123::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0f:e143::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44335862 (0x2a482f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 5 08:08:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=448ceebf60b48ab48a48ef959ad8cf39e020960c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cd:5b:50:e9:54:28:9e:56:bf:2a:40:8e:7c:
ac:aa:53:e0:c6:7e:8c:3e:79:60:b9:ee:a5:9f:a7:
43:a2:a0:8d:03:ca:4e:25:76:eb:32:54:9e:4d:69:
3b:14:06:cf:dd:95:49:0e:a9:3c:f4:de:4e:3a:00:
54:52:ea:e6:ad:a9:f3:ff:c1:4f:4f:f2:8f:00:f0:
78:c9:b1:d9:37:55:bf:c6:19:13:1a:09:ef:db:2a:
e2:27:fc:90:41:7b:1e:a4:9e:2c:2e:47:af:8e:f2:
f6:81:60:ca:1d:2d:43:82:db:28:e4:fc:00:84:4d:
66:b7:06:50:12:3d:2a:d3:4a:f3:08:3f:37:d5:48:
6a:00:97:cf:b0:85:85:63:41:f2:33:67:29:78:67:
1c:59:2d:a2:36:05:f2:5a:a9:fb:c7:51:43:fa:fc:
ff:56:95:af:01:5b:7f:74:4a:97:f4:37:3a:40:a7:
94:36:6a:08:c6:77:e6:0d:77:ca:14:41:72:8a:8b:
dd:b9:47:ce:3f:1f:ef:d7:76:5b:74:aa:05:cb:51:
51:0a:69:ee:ba:60:a8:2b:fa:26:d7:93:b2:1e:41:
c5:7d:42:64:83:c9:e0:ff:5e:c7:3d:8b:ad:ab:a4:
20:3c:e2:e9:df:ff:78:33:83:fe:95:e4:be:cf:61:
fb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:8C:EE:BF:60:B4:8A:B4:8A:48:EF:95:9A:D8:CF:39:E0:20:96:0C
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RIzuv2C0irSKSO-VmtjPOeAglgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.91.208.0/24
45.91.211.0/24
45.95.98.0/24
45.128.77.0/24
45.130.253.0/24
45.137.41.0/24
45.137.86.0/24
45.147.30.0/23
45.152.197.0/24
45.153.21.0/24
45.153.23.0/24
45.153.219.0/24
45.154.230.0/24
45.157.37.0-45.157.38.255
45.158.197.0/24
91.212.107.0/24
113.30.152.0/22
185.164.59.0/24
193.39.209.0/24
193.41.39.0/24
193.111.4.0/23
193.111.18.0/23
194.33.32.0/24
IPv6:
2a09:17c0::/29
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:2::/48
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1f80::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:dac0::/29
2a0f:df40::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c2::/32
2a0f:e1c7::/32
2a0f:e600:1::/48
2a0f:e6c0:123::/48
2a0f:e6c0:991::/48
2a0f:e6c0:fe1::/48
2a0f:e940::/29
Signature Algorithm: sha256WithRSAEncryption
15:b2:84:62:a5:68:22:51:e7:db:45:df:fa:2c:2b:f1:e0:91:
c8:ea:c8:12:c2:48:d5:01:d3:99:a7:2e:df:9e:4b:11:66:24:
e2:1c:ed:11:ed:53:b0:45:c5:e5:5f:ac:27:31:20:60:aa:37:
cc:42:fe:a2:1e:16:96:a8:27:4f:41:1f:00:cf:07:11:ed:cb:
fa:e1:5b:f2:ed:80:62:12:9e:c7:89:f8:30:e9:c7:be:da:5e:
4b:83:2a:10:e1:7d:45:a3:ab:ec:d2:f3:51:2a:7d:19:c4:42:
6d:10:5e:cc:75:f7:f5:8b:da:9b:28:ba:5b:03:88:ba:9b:ba:
c3:44:1f:24:64:ca:a5:d0:f5:3d:66:d8:f2:40:f5:7b:08:c8:
9c:28:fb:d1:01:2e:c4:ba:c8:1a:f2:8d:2d:f8:09:c8:c0:3c:
b6:f4:fa:d2:af:e2:12:13:8f:56:2b:8d:c7:c0:70:df:02:83:
e0:cc:b0:0c:ca:69:9c:a3:df:5f:76:ac:b4:0f:57:d2:b3:74:
79:0a:82:08:c6:61:26:ec:0a:b0:a2:7d:08:fc:0a:d9:4a:89:
00:4b:d9:18:6a:8d:b5:b9:01:26:1c:2a:92:20:9d:14:44:49:
c4:cc:50:86:bf:b3:e4:91:f1:59:62:ed:eb:8a:87:16:69:ae:
df:2d:10:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:30 2025 by rpki-client