Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/XkUTexpCr553YMxYqz_IbJXJqaM.roa
File: XkUTexpCr553YMxYqz_IbJXJqaM.roa (raw, json)
Hash identifier: q0uyEh7GUiuOnlIz4V3vYxSbqn6S26yyfg+ts3GCU7c=
Subject key identifier: 5E:45:13:7B:1A:42:AF:9E:77:60:CC:58:AB:3F:C8:6C:95:C9:A9:A3
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0182D516A99C8A6C5288B02DC3D2991C8B67
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/XkUTexpCr553YMxYqz_IbJXJqaM.roa
Signing time: Thu 25 Aug 2022 13:00:08 +0000
ROA not before: Thu 25 Aug 2022 13:00:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 45.86.246.0/24 maxlen: 24
193.39.209.0/24 maxlen: 24
185.164.59.0/24 maxlen: 24
45.137.85.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.154.231.0/24 maxlen: 24
45.154.230.0/24 maxlen: 24
185.136.204.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.157.36.0/24 maxlen: 24
45.153.219.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
193.41.123.0/24 maxlen: 24
193.41.122.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
193.41.115.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
80.253.248.0/24 maxlen: 24
91.212.107.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
113.30.152.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
113.30.155.0/24 maxlen: 24
113.30.154.0/24 maxlen: 24
113.30.153.0/24 maxlen: 24
91.212.100.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.158.198.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
2a0f:e1c2::/32 maxlen: 32
2a0f:1f80::/29 maxlen: 29
2a0c:7884::/32 maxlen: 32
2a09:17c0::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:e6c0:fe1::/48 maxlen: 48
2a0f:e041::/32 maxlen: 32
2a0f:2100:171::/48 maxlen: 48
2a0f:e1c0::/32 maxlen: 32
2a0e:f200:1::/48 maxlen: 48
2a0f:7d00:1::/48 maxlen: 48
2a0f:a03::/32 maxlen: 32
2a0f:6d80::/29 maxlen: 29
2a0e:1a80:123::/48 maxlen: 48
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a12:4ac0::/29 maxlen: 29
2a0f:e040:2::/48 maxlen: 48
2a0a:2d00:1::/48 maxlen: 48
2a0e:f200:2::/48 maxlen: 48
2a0f:e6c0:991::/48 maxlen: 48
2a0f:ea00::/29 maxlen: 29
2a0c:7883::/32 maxlen: 32
2a0e:2440::/29 maxlen: 29
2a0c:7880::/32 maxlen: 32
2a0e:e980::/29 maxlen: 29
2a12:d6c0::/29 maxlen: 29
2a0f:7d00:5::/48 maxlen: 48
2a0f:df40::/29 maxlen: 29
2a0f:a02::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:e6c0:123::/48 maxlen: 48
2a0f:e040::/48 maxlen: 48
2a0e:15c0:4::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0f:1200::/32 maxlen: 32
2a0f:7d00:3::/48 maxlen: 48
2a0c:7882:1::/48 maxlen: 48
2a0f:e143::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d5:16:a9:9c:8a:6c:52:88:b0:2d:c3:d2:99:1c:8b:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 25 13:00:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e45137b1a42af9e7760cc58ab3fc86c95c9a9a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:41:82:76:91:0c:68:0a:82:05:6e:4a:14:8f:
38:41:0c:06:b9:ca:e8:c1:c2:a3:a2:56:3b:4c:1c:
0b:94:c5:4b:4a:3b:77:d7:03:c6:6c:2b:e8:0a:57:
15:c5:8e:81:64:e7:65:0d:6a:f2:06:28:95:9e:91:
3f:1c:f4:43:b8:a2:2d:57:36:81:2c:ba:04:f3:88:
4a:1f:b6:d1:43:f1:e3:99:28:60:50:e9:b1:47:ea:
2d:5b:eb:42:26:fd:bf:68:e4:4a:43:fd:7a:7e:37:
81:cd:66:06:cc:85:ba:e8:50:3b:46:30:0a:f4:99:
9c:2a:e1:70:94:f4:ab:10:ed:e7:ed:c4:1d:d7:8b:
ef:a4:17:ef:c8:f3:2c:f7:46:f1:ae:df:5d:9f:ca:
09:db:0c:cb:e1:a6:3f:34:09:8e:88:13:fd:f4:90:
69:11:bb:c7:f4:d4:44:90:92:b2:c0:d5:31:22:68:
48:88:b9:aa:2e:42:95:ed:22:fd:ea:95:24:75:58:
fd:7c:8d:da:4e:f1:3e:e8:5a:5a:29:eb:30:20:b3:
94:3b:85:58:69:db:21:7e:c0:96:04:e5:d1:c1:d5:
43:d0:a9:0d:a1:09:c1:94:60:e2:84:c7:a4:4f:60:
98:32:06:e9:2f:6c:b2:cf:ba:43:ff:d3:7a:c2:54:
0b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:45:13:7B:1A:42:AF:9E:77:60:CC:58:AB:3F:C8:6C:95:C9:A9:A3
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/XkUTexpCr553YMxYqz_IbJXJqaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.86.246.0/24
45.91.208.0/24
45.91.211.0/24
45.128.77.0/24
45.137.41.0/24
45.137.85.0-45.137.86.255
45.153.21.0/24
45.153.23.0/24
45.153.218.0/23
45.154.230.0/23
45.157.36.0/24
45.157.38.0/24
45.158.197.0-45.158.198.255
80.253.248.0/24
91.212.100.0/24
91.212.107.0/24
113.30.152.0/22
185.136.204.0/24
185.164.59.0/24
193.39.209.0/24
193.41.39.0/24
193.41.115.0/24
193.41.122.0/23
193.111.4.0/23
193.111.18.0/23
IPv6:
2a09:17c0::/29
2a0a:2d00:1::/48
2a0c:7880::/32
2a0c:7882:1::/48
2a0c:7883::-2a0c:7884:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:15c0:4::/48
2a0e:1a80:123::/48
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:1::-2a0e:f200:2:ffff:ffff:ffff:ffff:ffff
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1200::/32
2a0f:1f80::/29
2a0f:2100:171::/48
2a0f:6d80::/29
2a0f:7d00:1::/48
2a0f:7d00:3::/48
2a0f:7d00:5::/48
2a0f:da40::/29
2a0f:dac0::/29
2a0f:df40::/29
2a0f:e040::/48
2a0f:e040:2::/48
2a0f:e041::/32
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c2::/32
2a0f:e1c7::/32
2a0f:e600:1::/48
2a0f:e6c0:123::/48
2a0f:e6c0:991::/48
2a0f:e6c0:fe1::/48
2a0f:ea00::/29
2a12:4ac0::/29
2a12:d6c0::/29
Signature Algorithm: sha256WithRSAEncryption
57:4b:41:53:1c:55:56:53:7f:9b:97:40:e3:80:56:85:22:f6:
5b:89:9c:48:d9:fa:71:e5:3f:98:c1:c0:7f:f1:c4:93:ca:2e:
8d:d2:22:7b:29:cf:92:5b:41:81:92:d3:e5:2b:8c:a9:22:45:
fa:79:ca:96:66:87:1d:b3:bb:5d:00:24:e2:7a:7a:27:37:ce:
fc:79:21:42:85:90:ea:a1:e7:cf:10:6a:7f:0f:5d:b6:ac:60:
70:27:47:c0:04:64:0c:da:48:ee:ce:a0:4a:4b:db:97:52:c5:
33:6f:9d:a0:ba:d5:a5:98:69:f1:5a:3f:ac:27:69:b7:d2:f8:
d7:48:a7:b7:90:b6:aa:b5:a0:7c:80:8a:bb:b3:6d:08:45:e1:
08:db:a3:32:d5:3a:ba:ee:1a:9a:50:0d:0a:54:69:54:f8:ff:
60:30:da:58:d6:1e:d1:14:50:58:29:fd:ee:f8:57:c0:45:14:
7b:95:3f:b1:95:c4:c1:14:92:d2:8d:df:8c:28:ba:c7:d2:dc:
26:8e:63:6c:ab:81:e4:fc:04:c2:c0:16:20:1a:2a:8b:a0:04:
ce:24:a2:2d:16:a5:48:3a:70:7c:0d:70:f8:c3:fe:e4:9a:7e:
f4:6c:ad:a7:6f:c5:4a:8e:fc:90:19:19:9a:88:f7:4e:bf:82:
7c:73:52:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:14:56 2025 by rpki-client