Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/d2Zr2_64TiZdB-GrKNJcvHNgWIc.roa
File: d2Zr2_64TiZdB-GrKNJcvHNgWIc.roa (raw, json)
Hash identifier: 1Slxpb09tsuvXyxUhQ1KH713nHPPuLor6IfbjwNC45k=
Subject key identifier: 77:66:6B:DB:FE:B8:4E:26:5D:07:E1:AB:28:D2:5C:BC:73:60:58:87
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0183C7A4E6E999A723359263CE50BC4946E2
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/d2Zr2_64TiZdB-GrKNJcvHNgWIc.roa
Signing time: Tue 11 Oct 2022 15:23:36 +0000
ROA not before: Tue 11 Oct 2022 15:23:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 193.39.209.0/24 maxlen: 24
194.33.62.0/24 maxlen: 24
193.41.69.0/24 maxlen: 24
193.41.68.0/24 maxlen: 24
193.41.86.0/24 maxlen: 24
45.146.129.0/24 maxlen: 24
45.130.254.0/24 maxlen: 24
80.253.248.0/24 maxlen: 24
103.59.42.0/24 maxlen: 24
103.59.43.0/24 maxlen: 24
103.59.40.0/24 maxlen: 24
103.59.41.0/24 maxlen: 24
91.212.120.0/24 maxlen: 24
45.13.187.0/24 maxlen: 24
45.145.59.0/24 maxlen: 24
103.74.77.0/24 maxlen: 24
103.74.76.0/24 maxlen: 24
45.146.181.0/24 maxlen: 24
85.209.131.0/24 maxlen: 24
194.41.38.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.157.37.0/24 maxlen: 24
45.157.39.0/24 maxlen: 24
45.147.31.0/24 maxlen: 24
2a0f:e540::/32 maxlen: 32
2a0f:e840::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c7:a4:e6:e9:99:a7:23:35:92:63:ce:50:bc:49:46:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 11 15:23:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77666bdbfeb84e265d07e1ab28d25cbc73605887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:dc:85:c6:93:cc:09:13:fd:5f:a0:2d:4f:07:
ba:50:f5:f3:85:a4:7c:9f:6e:62:05:77:b7:f3:a1:
11:0e:97:23:5f:0c:55:97:24:88:6f:46:57:bf:36:
2f:eb:26:7d:96:1c:4f:a2:13:30:2d:cd:ca:bf:22:
81:8a:fc:ec:bb:78:68:c2:0a:ba:b4:bf:f6:b9:1c:
e6:71:4f:57:1d:06:1a:8c:24:8a:1d:fc:65:ae:17:
6a:ed:a4:12:07:ba:49:c0:68:ce:e3:66:35:35:63:
a2:3a:ac:0f:fb:01:b4:cf:3c:09:99:f1:c4:ac:bf:
0a:ad:b1:c0:ea:7e:46:66:1f:39:61:33:fd:56:d3:
88:6c:31:3d:8e:f9:3f:ad:50:c5:8e:eb:43:d6:b6:
6a:8c:8f:1c:fe:0c:a8:ae:68:27:e0:85:7e:da:2c:
4e:fd:04:38:23:44:9d:4a:1f:f4:e4:45:91:fa:ce:
e2:70:05:c6:e8:b0:d9:c2:fe:15:89:fe:69:aa:c5:
5f:07:b3:ff:29:16:68:0d:3c:a4:a7:1e:92:f9:8d:
6d:57:8c:16:3c:a7:0c:41:f9:d8:38:2c:86:2e:b0:
cc:b3:2b:1a:50:b4:5e:9f:94:1d:86:02:c5:a3:15:
27:47:14:bf:69:a5:32:0f:ae:ab:f3:dd:68:a9:59:
96:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:66:6B:DB:FE:B8:4E:26:5D:07:E1:AB:28:D2:5C:BC:73:60:58:87
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/d2Zr2_64TiZdB-GrKNJcvHNgWIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.187.0/24
45.130.254.0/24
45.145.59.0/24
45.146.129.0/24
45.146.181.0/24
45.147.31.0/24
45.157.37.0/24
45.157.39.0/24
80.253.248.0/24
85.209.131.0/24
91.212.120.0/24
103.59.40.0/22
103.74.76.0/23
193.39.209.0/24
193.41.39.0/24
193.41.68.0/23
193.41.86.0/24
194.33.62.0/24
194.41.38.0/24
IPv6:
2a0f:e540::/32
2a0f:e840::/32
Signature Algorithm: sha256WithRSAEncryption
0f:c3:77:1f:2d:db:02:3d:4d:46:19:7b:30:b5:15:4d:15:a5:
60:6a:35:8a:6b:c8:80:a7:b5:d1:c0:f0:5d:32:07:d5:4e:4d:
37:94:2c:2c:70:70:2f:5d:4b:c8:21:50:77:d7:e6:c2:1e:98:
cf:ae:c2:b1:e8:6d:e0:e9:5c:8e:57:4c:07:59:4f:66:ce:3e:
8b:2c:2f:c7:81:4e:39:17:9a:d4:b4:b5:53:ad:3e:81:1f:92:
73:c7:34:5e:9c:a7:b6:e8:01:47:68:09:46:b4:6e:e6:ac:04:
7e:1b:4e:00:17:08:04:af:37:c0:7d:a5:e8:07:1b:1d:03:01:
1c:c5:5e:c0:68:a7:d0:79:88:7d:99:a1:a4:46:d8:f0:d8:eb:
f5:9a:49:fb:a7:7c:5b:fa:a9:70:c8:b5:87:e5:b5:7d:20:a4:
6d:79:87:0b:5e:b2:cb:b9:14:6d:42:f3:bb:87:92:99:23:2b:
e7:c0:59:d4:90:b8:a7:ad:e6:81:1a:be:ae:5f:44:df:29:c6:
60:4f:f4:14:cf:a9:e2:63:18:da:59:ee:8b:25:93:d2:2b:de:
eb:6b:7b:59:63:9f:18:e0:af:a6:ff:a6:ca:d7:1a:40:c6:46:
74:65:72:e4:a3:81:ee:f5:d0:82:e3:9e:bf:2d:25:21:d0:7c:
d7:60:25:95
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgISAYPHpObpmacjNZJjzlC8SUbiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjIxMDExMTUyMzM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzY2NmJkYmZlYjg0ZTI2NWQwN2UxYWIyOGQyNWNiYzczNjA1ODg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudyFxpPMCRP9X6AtTwe6UPXzhaR8
n25iBXe386ERDpcjXwxVlySIb0ZXvzYv6yZ9lhxPohMwLc3KvyKBivzsu3howgq6
tL/2uRzmcU9XHQYajCSKHfxlrhdq7aQSB7pJwGjO42Y1NWOiOqwP+wG0zzwJmfHE
rL8KrbHA6n5GZh85YTP9VtOIbDE9jvk/rVDFjutD1rZqjI8c/gyormgn4IV+2ixO
/QQ4I0SdSh/05EWR+s7icAXG6LDZwv4Vif5pqsVfB7P/KRZoDTykpx6S+Y1tV4wW
PKcMQfnYOCyGLrDMsysaULRen5QdhgLFoxUnRxS/aaUyD66r891oqVmW+wIDAQAB
o4ICjjCCAoowHQYDVR0OBBYEFHdma9v+uE4mXQfhqyjSXLxzYFiHMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvZDJacjJfNjRUaVpkQi1HcktOSmN2SE5nV0ljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGjBggrBgEFBQcBBwEB/wSBkzCBkDB4BAIAATByAwQALQ27
AwQALYL+AwQALZE7AwQALZKBAwQALZK1AwQALZMfAwQALZ0lAwQALZ0nAwQAUP34
AwQAVdGDAwQAW9R4AwQCZzsoAwQBZ0pMAwQAwSfRAwQAwSknAwQBwSlEAwQAwSlW
AwQAwiE+AwQAwikmMBQEAgACMA4DBQAqD+VAAwUAKg/oQDANBgkqhkiG9w0BAQsF
AAOCAQEAD8N3Hy3bAj1NRhl7MLUVTRWlYGo1imvIgKe10cDwXTIH1U5NN5QsLHBw
L11LyCFQd9fmwh6Yz67Cseht4OlcjldMB1lPZs4+iywvx4FOORea1LS1U60+gR+S
c8c0XpyntugBR2gJRrRu5qwEfhtOABcIBK83wH2l6AcbHQMBHMVewGin0HmIfZmh
pEbY8Njr9ZpJ+6d8W/qpcMi1h+W1fSCkbXmHC16yy7kUbULzu4eSmSMr58BZ1JC4
p63mgRq+rl9E3ynGYE/0FM+p4mMY2lnuiyWT0ive62t7WWOfGOCvpv+mytcaQMZG
dGVy5KOB7vXQguOevy0lIdB812AllQ==
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:51 2025 by rpki-client