Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/cqS21UUzssgBoDQYlUE569MwyOM.roa
File: cqS21UUzssgBoDQYlUE569MwyOM.roa (raw, json)
Hash identifier: WOoW7kcwASG47NJuNDKyPqmxeVh5U1yEapVr01y5zIc=
Subject key identifier: 72:A4:B6:D5:45:33:B2:C8:01:A0:34:18:95:41:39:EB:D3:30:C8:E3
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 03452DC2
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/cqS21UUzssgBoDQYlUE569MwyOM.roa
Signing time: Wed 25 May 2022 07:16:13 +0000
ROA not before: Wed 25 May 2022 07:16:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 45.86.246.0/24 maxlen: 24
193.39.209.0/24 maxlen: 24
185.164.59.0/24 maxlen: 24
45.137.85.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.154.231.0/24 maxlen: 24
45.154.230.0/24 maxlen: 24
185.136.204.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.157.37.0/24 maxlen: 24
45.157.36.0/24 maxlen: 24
45.153.219.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
45.95.98.0/24 maxlen: 24
193.41.123.0/24 maxlen: 24
193.41.122.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
91.212.107.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
113.30.152.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
113.30.155.0/24 maxlen: 24
113.30.154.0/24 maxlen: 24
113.30.153.0/24 maxlen: 24
103.229.31.0/24 maxlen: 24
91.212.100.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.158.198.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
2a0f:ac00::/29 maxlen: 29
2a0f:e1c2::/32 maxlen: 32
2a0f:1f80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a09:17c0::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:e6c0:fe1::/48 maxlen: 48
2a0f:2100:171::/48 maxlen: 48
2a0f:e1c0::/32 maxlen: 32
2a0e:f200:1::/48 maxlen: 48
2a0f:a03::/32 maxlen: 32
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a0a:2d00:1::/48 maxlen: 48
2a0e:f200:2::/48 maxlen: 48
2a0f:e6c0:991::/48 maxlen: 48
2a0f:e842::/32 maxlen: 32
2a0e:2440::/29 maxlen: 29
2a0c:7883::/32 maxlen: 32
2a0e:e980::/29 maxlen: 29
2a0f:a200::/29 maxlen: 29
2a0f:df40::/29 maxlen: 29
2a0f:a02::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:e6c0:123::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0c:7882:1::/48 maxlen: 48
2a0f:e143::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54865346 (0x3452dc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 25 07:16:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72a4b6d54533b2c801a03418954139ebd330c8e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:3e:ef:7e:f6:d2:8c:51:6e:be:9b:2b:b7:9e:
98:b6:ae:bc:b3:83:0e:00:ce:e6:9d:37:1a:0f:ed:
7c:7d:5a:6e:d6:3e:14:78:2b:0b:b2:81:82:93:f2:
87:00:c2:0b:51:73:07:e8:50:2a:6b:6f:c1:e5:60:
ca:93:d6:27:df:c0:8f:68:de:7e:0f:e0:2a:49:8e:
73:40:fe:bc:f8:ea:76:be:fb:5a:59:97:40:3e:bb:
20:38:8c:7a:bf:f9:02:12:4d:a3:66:e1:2d:23:f9:
e5:97:2c:7c:8e:20:2e:44:a1:e1:ab:e3:68:a0:ad:
77:2f:e1:3d:d0:92:0d:9e:85:d0:4f:c2:4f:11:a3:
1e:da:76:9f:87:07:40:71:af:2e:a5:21:dc:30:f7:
de:2d:a7:1f:32:32:a7:d0:3b:9a:2e:0e:43:b9:e0:
98:a1:75:87:55:8a:d8:8a:34:a9:e4:2b:f1:7d:91:
66:b9:15:3e:bb:1b:b5:b9:f9:b2:52:c8:9e:68:c3:
c3:0a:08:2e:b8:6d:d4:76:60:74:67:56:3a:0f:56:
cd:c2:1f:ef:dc:75:d1:b1:be:2c:76:31:f3:cc:a0:
5d:63:75:bf:c7:76:d8:cb:36:b7:4c:db:71:a5:27:
d7:3d:22:a1:77:c3:9b:b9:4a:1a:8d:7e:8f:44:01:
cb:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:A4:B6:D5:45:33:B2:C8:01:A0:34:18:95:41:39:EB:D3:30:C8:E3
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/cqS21UUzssgBoDQYlUE569MwyOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.86.246.0/24
45.91.208.0/24
45.91.211.0/24
45.95.98.0/24
45.128.77.0/24
45.137.41.0/24
45.137.85.0-45.137.86.255
45.153.21.0/24
45.153.23.0/24
45.153.218.0/23
45.154.230.0/23
45.157.36.0-45.157.38.255
45.158.197.0-45.158.198.255
91.212.100.0/24
91.212.107.0/24
103.229.31.0/24
113.30.152.0/22
185.136.204.0/24
185.164.59.0/24
193.39.209.0/24
193.41.39.0/24
193.41.122.0/23
193.111.4.0/23
193.111.18.0/23
IPv6:
2a09:17c0::/29
2a0a:2d00:1::/48
2a0c:7882:1::/48
2a0c:7883::/32
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:1::-2a0e:f200:2:ffff:ffff:ffff:ffff:ffff
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1f80::/29
2a0f:2100:171::/48
2a0f:a200::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:dac0::/29
2a0f:df40::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c2::/32
2a0f:e1c7::/32
2a0f:e600:1::/48
2a0f:e6c0:123::/48
2a0f:e6c0:991::/48
2a0f:e6c0:fe1::/48
2a0f:e842::/32
2a0f:e940::/29
Signature Algorithm: sha256WithRSAEncryption
23:2d:1b:25:97:19:9d:7a:44:cd:a1:63:f2:d3:42:ae:13:91:
5f:41:60:13:b6:83:6f:67:a7:ab:7a:18:80:2d:7c:50:da:32:
55:b4:d7:76:8f:fc:89:a8:d7:05:cf:55:91:7b:12:2d:53:9b:
c5:57:99:15:b1:b7:71:c7:bc:fe:93:a6:9c:7a:4c:75:3b:67:
e1:c9:d1:15:45:00:9a:e5:19:2d:98:c0:f5:dd:b1:f2:c3:77:
75:16:bd:eb:ad:ef:12:2c:b5:7d:81:3a:c9:7e:d6:7d:2f:5f:
95:e8:63:9f:6c:a9:4b:37:04:12:fd:35:7e:a9:80:6c:f5:b0:
d3:c9:95:d2:fb:59:3f:ac:dd:0b:32:02:18:9a:4c:6b:27:aa:
ff:69:39:60:b4:0a:14:0c:a6:a4:b9:69:86:f2:bd:22:f7:dd:
5b:f0:01:e3:46:7e:16:c5:8d:6a:4b:8b:50:0d:c9:fb:0f:77:
bb:4a:8a:9d:0d:3b:40:e1:5e:3c:2f:25:6f:6c:f9:08:a5:07:
62:28:02:43:c6:ad:cc:3f:1d:f9:a7:fa:38:58:39:c9:e4:b1:
0e:5f:a5:79:91:d6:8a:99:5d:5d:a2:c3:07:b7:96:52:be:23:
ca:31:b0:74:0b:52:30:51:f8:5d:a2:51:2f:0c:e8:0d:73:c7:
ee:aa:44:7e
-----BEGIN CERTIFICATE-----
MIIGhTCCBW2gAwIBAgIEA0UtwjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDU1OWFhZmJmYzA5MzEyNDJlMWQ2MzcyOThjZjFkZDIyM2U0YzI2MB4XDTIyMDUy
NTA3MTYxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzJhNGI2ZDU0NTMz
YjJjODAxYTAzNDE4OTU0MTM5ZWJkMzMwYzhlMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI0+73720oxRbr6bK7eemLauvLODDgDO5p03Gg/tfH1abtY+
FHgrC7KBgpPyhwDCC1FzB+hQKmtvweVgypPWJ9/Aj2jefg/gKkmOc0D+vPjqdr77
WlmXQD67IDiMer/5AhJNo2bhLSP55ZcsfI4gLkSh4avjaKCtdy/hPdCSDZ6F0E/C
TxGjHtp2n4cHQHGvLqUh3DD33i2nHzIyp9A7mi4OQ7ngmKF1h1WK2Io0qeQr8X2R
ZrkVPrsbtbn5slLInmjDwwoILrht1HZgdGdWOg9WzcIf79x10bG+LHYx88ygXWN1
v8d22Ms2t0zbcaUn1z0ioXfDm7lKGo1+j0QByw8CAwEAAaOCA58wggObMB0GA1Ud
DgQWBBRypLbVRTOyyAGgNBiVQTnr0zDI4zAfBgNVHSMEGDAWgBR9VZqvv8CTEkLh
1jcpjPHdIj5MJjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZWV2FyN19Ba3hKQzRkWTNLWXp4M1NJLVRDWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzAvNDlhZGM2LWJhODktNDAzZi1hZGE5LThjNTAwN2MyYTRiNi8x
L2NxUzIxVVV6c3NnQm9EUVlsVUU1NjlNd3lPTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAv
NDlhZGM2LWJhODktNDAzZi1hZGE5LThjNTAwN2MyYTRiNi8xL2ZWV2FyN19Ba3hK
QzRkWTNLWXp4M1NJLVRDWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCC
AbMGCCsGAQUFBwEHAQH/BIIBojCCAZ4wgbUEAgABMIGuAwQALQ26AwQALVb2AwQA
LVvQAwQALVvTAwQALV9iAwQALYBNAwQALYkpMAwDBAAtiVUDBAAtiVYDBAAtmRUD
BAAtmRcDBAEtmdoDBAEtmuYwDAMEAi2dJAMEAC2dJjAMAwQALZ7FAwQALZ7GAwQA
W9RkAwQAW9RrAwQAZ+UfAwQCcR6YAwQAuYjMAwQAuaQ7AwQAwSfRAwQAwSknAwQB
wSl6AwQBwW8EAwQBwW8SMIHjBAIAAjCB3AMFAyoJF8ADBwAqCi0AAAEDBwAqDHiC
AAEDBQAqDHiDAwcAKg4iQAACAwUDKg4kQAMFAyoO6YAwEgMHACoO8gAAAQMHACoO
8gAAAjAOAwUBKg8KAgMFACoPCgQDBQMqDx+AAwcAKg8hAAFxAwUDKg+iAAMFAyoP
rAADBQMqD9pAAwUDKg/awAMFAyoP30ADBQAqD+FDAwUAKg/hwAMFACoP4cIDBQAq
D+HHAwcAKg/mAAABAwcAKg/mwAEjAwcAKg/mwAmRAwcAKg/mwA/hAwUAKg/oQgMF
AyoP6UAwDQYJKoZIhvcNAQELBQADggEBACMtGyWXGZ16RM2hY/LTQq4TkV9BYBO2
g29np6t6GIAtfFDaMlW013aP/Imo1wXPVZF7Ei1Tm8VXmRWxt3HHvP6Tppx6THU7
Z+HJ0RVFAJrlGS2YwPXdsfLDd3UWveut7xIstX2BOsl+1n0vX5XoY59sqUs3BBL9
NX6pgGz1sNPJldL7WT+s3QsyAhiaTGsnqv9pOWC0ChQMpqS5aYbyvSL33VvwAeNG
fhbFjWpLi1ANyfsPd7tKip0NO0DhXjwvJW9s+QilB2IoAkPGrcw/Hfmn+jhYOcnk
sQ5fpXmR1oqZXV2iwwe3llK+I8oxsHQLUjBR+F2iUS8M6A1zx+6qRH4=
-----END CERTIFICATE-----
Generated at Mon Apr 21 19:13:25 2025 by rpki-client