Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/UG9mIJKsPrVJf1hQb9z4ah_FOcQ.roa
File: UG9mIJKsPrVJf1hQb9z4ah_FOcQ.roa (raw, json)
Hash identifier: NvdfWlEKEzm8fbBX6Vo+vIvaQf0kOWH5+KTUtnX771A=
Subject key identifier: 50:6F:66:20:92:AC:3E:B5:49:7F:58:50:6F:DC:F8:6A:1F:C5:39:C4
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 03B66FCD
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/UG9mIJKsPrVJf1hQb9z4ah_FOcQ.roa
Signing time: Wed 29 Jun 2022 11:42:02 +0000
ROA not before: Wed 29 Jun 2022 11:42:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 45.86.246.0/24 maxlen: 24
193.39.209.0/24 maxlen: 24
185.164.59.0/24 maxlen: 24
45.137.85.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.154.231.0/24 maxlen: 24
45.154.230.0/24 maxlen: 24
185.136.204.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.157.37.0/24 maxlen: 24
45.157.36.0/24 maxlen: 24
45.153.219.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
45.95.98.0/24 maxlen: 24
193.41.123.0/24 maxlen: 24
193.41.122.0/24 maxlen: 24
45.118.249.0/24 maxlen: 24
45.152.197.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
91.212.107.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
113.30.152.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
113.30.155.0/24 maxlen: 24
113.30.154.0/24 maxlen: 24
113.30.153.0/24 maxlen: 24
103.229.31.0/24 maxlen: 24
91.212.100.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.158.198.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
2a0f:ac00::/29 maxlen: 29
2a0f:e1c2::/32 maxlen: 32
2a0f:1f80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a0c:7884::/32 maxlen: 32
2a09:17c0::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:e6c0:fe1::/48 maxlen: 48
2a0f:2100:171::/48 maxlen: 48
2a0f:e1c0::/32 maxlen: 32
2a0e:f200:1::/48 maxlen: 48
2a0f:7d00:1::/48 maxlen: 48
2a0f:a03::/32 maxlen: 32
2a0f:6d80::/29 maxlen: 29
2a0e:1a80:123::/48 maxlen: 48
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a12:4ac0::/29 maxlen: 29
2a0a:2d00:1::/48 maxlen: 48
2a0e:f200:2::/48 maxlen: 48
2a0f:e6c0:991::/48 maxlen: 48
2a0f:ea00::/29 maxlen: 29
2a0e:2440::/29 maxlen: 29
2a0c:7883::/32 maxlen: 32
2a0e:e980::/29 maxlen: 29
2a12:d6c0::/29 maxlen: 29
2a0f:a200::/29 maxlen: 29
2a0f:7d00:5::/48 maxlen: 48
2a0f:df40::/29 maxlen: 29
2a0f:a02::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:e6c0:123::/48 maxlen: 48
2a0e:15c0:4::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0f:1200::/32 maxlen: 32
2a0f:7d00:3::/48 maxlen: 48
2a0c:7882:1::/48 maxlen: 48
2a0f:e143::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62287821 (0x3b66fcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 29 11:42:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=506f662092ac3eb5497f58506fdcf86a1fc539c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:45:30:c2:c1:bf:f3:2d:49:0b:1a:75:8a:6c:
86:cb:8a:4f:82:68:93:56:06:2d:7e:0e:c5:bf:03:
94:03:fb:69:fe:3f:af:b0:e7:9f:56:a7:12:1c:6d:
e4:b6:07:d5:6e:94:56:22:c2:61:14:90:93:9e:7c:
72:10:f4:77:8a:32:8c:81:61:fd:80:0a:fa:4c:f9:
9d:96:eb:c5:c7:ab:d1:d2:b9:74:45:54:9b:8c:f4:
c2:f3:cf:e0:ec:af:87:17:15:bf:f3:68:5a:b0:45:
91:4b:59:43:32:12:fd:65:9f:5b:12:29:bc:ed:a2:
a7:c9:03:7c:6f:51:d3:90:27:5c:4c:69:d1:94:9b:
5c:fa:46:30:60:42:d6:92:9e:a0:b4:10:42:6a:61:
de:a1:2b:d3:fb:4f:76:c4:a3:e8:d6:8c:fc:b7:41:
b2:4b:40:2f:a3:96:32:a6:38:3f:a1:ae:ba:d8:42:
84:74:81:ba:1b:a3:24:b2:05:c3:86:52:4e:5a:91:
b1:59:51:e8:09:a9:53:ed:8e:cb:e9:88:f1:92:ea:
34:f0:b8:33:7d:dd:12:06:30:79:f2:37:47:c7:48:
03:ea:f4:fe:c6:b4:24:9c:c8:e5:37:33:5f:73:f3:
1f:ff:8a:be:f4:4d:2f:bd:e8:35:29:f9:6c:a6:16:
43:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:6F:66:20:92:AC:3E:B5:49:7F:58:50:6F:DC:F8:6A:1F:C5:39:C4
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/UG9mIJKsPrVJf1hQb9z4ah_FOcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.86.246.0/24
45.91.208.0/24
45.91.211.0/24
45.95.98.0/24
45.118.249.0/24
45.128.77.0/24
45.137.41.0/24
45.137.85.0-45.137.86.255
45.152.197.0/24
45.153.21.0/24
45.153.23.0/24
45.153.218.0/23
45.154.230.0/23
45.157.36.0-45.157.38.255
45.158.197.0-45.158.198.255
91.212.100.0/24
91.212.107.0/24
103.229.31.0/24
113.30.152.0/22
185.136.204.0/24
185.164.59.0/24
193.39.209.0/24
193.41.39.0/24
193.41.122.0/23
193.111.4.0/23
193.111.18.0/23
IPv6:
2a09:17c0::/29
2a0a:2d00:1::/48
2a0c:7882:1::/48
2a0c:7883::-2a0c:7884:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:15c0:4::/48
2a0e:1a80:123::/48
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:1::-2a0e:f200:2:ffff:ffff:ffff:ffff:ffff
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1200::/32
2a0f:1f80::/29
2a0f:2100:171::/48
2a0f:6d80::/29
2a0f:7d00:1::/48
2a0f:7d00:3::/48
2a0f:7d00:5::/48
2a0f:a200::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:dac0::/29
2a0f:df40::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c2::/32
2a0f:e1c7::/32
2a0f:e600:1::/48
2a0f:e6c0:123::/48
2a0f:e6c0:991::/48
2a0f:e6c0:fe1::/48
2a0f:e940::/29
2a0f:ea00::/29
2a12:4ac0::/29
2a12:d6c0::/29
Signature Algorithm: sha256WithRSAEncryption
7e:68:d7:84:90:a6:6d:c8:5e:61:71:b2:53:30:11:f7:45:f3:
4c:99:b1:bb:fa:c2:36:b1:b3:ff:2a:83:b2:6a:c0:a7:d7:58:
63:ec:43:e5:c8:3d:f6:23:17:7e:d0:2a:8b:57:0e:e8:64:f2:
ca:ae:83:cb:e6:b9:be:e3:38:1b:85:cf:f8:8f:2c:fc:22:56:
11:86:e4:0c:a9:3b:2d:8c:ea:b3:58:37:1b:d6:63:cf:13:02:
0a:9f:a4:ea:a2:70:de:2c:9d:ce:80:71:2c:0d:2a:7a:01:1d:
ca:33:c4:90:1c:17:fe:a6:19:d9:38:d2:c5:9d:e8:0d:9b:66:
eb:d9:b7:27:5f:7d:fc:0d:94:08:71:3d:51:86:ae:2f:b5:66:
24:f9:26:5c:d9:a5:b2:58:f4:84:e8:13:dd:d9:ab:94:d3:3d:
f1:07:5c:7f:d8:07:41:d3:ff:db:22:e8:3a:bb:e2:ea:be:06:
a2:af:4c:36:11:d7:3d:f8:30:a0:9d:1e:8e:a1:f3:01:be:15:
fb:20:8f:57:04:c8:95:05:86:15:e7:f8:52:2f:e8:8a:9b:55:
a8:f3:d9:64:7f:eb:85:99:0b:0a:ab:d2:36:ca:17:d1:14:85:
df:db:45:81:6d:8c:89:06:2f:92:35:55:7a:e4:10:d3:e3:66:
c4:c5:64:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:04:58 2025 by rpki-client