Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fgYXt7W9dYPw2UKQrXSGonocsWM.roa
File: fgYXt7W9dYPw2UKQrXSGonocsWM.roa (raw, json)
Hash identifier: NCJGKPiojf1/kkMYM4EqhvpvlUIoanufiVZZpbZBz6g=
Subject key identifier: 7E:06:17:B7:B5:BD:75:83:F0:D9:42:90:AD:74:86:A2:7A:1C:B1:63
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01833C36A00E7C4A2BD3EBD191AAC45B12BC
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fgYXt7W9dYPw2UKQrXSGonocsWM.roa
Signing time: Wed 14 Sep 2022 13:35:56 +0000
ROA not before: Wed 14 Sep 2022 13:35:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 193.39.209.0/24 maxlen: 24
194.33.62.0/24 maxlen: 24
193.41.69.0/24 maxlen: 24
193.41.68.0/24 maxlen: 24
193.41.86.0/24 maxlen: 24
45.130.254.0/24 maxlen: 24
80.253.248.0/24 maxlen: 24
103.59.42.0/24 maxlen: 24
103.59.43.0/24 maxlen: 24
103.59.40.0/24 maxlen: 24
103.59.41.0/24 maxlen: 24
91.212.120.0/24 maxlen: 24
45.13.187.0/24 maxlen: 24
45.145.59.0/24 maxlen: 24
103.74.77.0/24 maxlen: 24
103.74.76.0/24 maxlen: 24
85.209.131.0/24 maxlen: 24
194.41.38.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.157.37.0/24 maxlen: 24
45.157.39.0/24 maxlen: 24
45.147.31.0/24 maxlen: 24
2a07:7885::/32 maxlen: 32
2a0f:39c2::/32 maxlen: 32
2a0f:39c1::/32 maxlen: 32
2a07:7884::/32 maxlen: 32
2a07:7887::/32 maxlen: 32
2a0f:e840::/32 maxlen: 32
2a0f:39c6::/32 maxlen: 32
2a0f:39c3::/32 maxlen: 32
2a0f:39c0::/32 maxlen: 32
2a07:7881::/32 maxlen: 32
2a07:7882::/32 maxlen: 32
2a0f:39c5::/32 maxlen: 32
2a0f:39c4::/32 maxlen: 32
2a0f:39c7::/32 maxlen: 32
2a07:7886::/32 maxlen: 32
2a07:7883::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3c:36:a0:0e:7c:4a:2b:d3:eb:d1:91:aa:c4:5b:12:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 14 13:35:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e0617b7b5bd7583f0d94290ad7486a27a1cb163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:63:98:0c:12:7b:2c:67:8a:39:1b:ff:19:6e:
6d:86:cb:32:17:35:b2:0a:e8:c6:ff:0d:9e:63:30:
51:6d:64:c0:b1:bd:e4:5a:18:79:b0:1c:5c:9b:80:
2f:a7:23:09:f4:ad:a9:71:e5:31:c3:90:48:b1:81:
d6:73:e2:1e:b0:8e:a4:1b:5e:a6:47:f9:10:85:62:
78:c6:59:53:f2:c0:64:c1:3e:1f:48:73:51:94:bd:
51:fb:7e:a8:c7:92:29:2b:aa:d2:39:9e:a5:16:e9:
5d:35:cc:e6:c7:9a:38:d0:1e:43:4f:21:9a:77:63:
05:0c:fc:05:b3:9b:d7:36:9a:e9:37:02:b8:fa:ed:
fe:61:8d:ea:d2:38:fa:24:fc:65:f1:a0:72:c1:fc:
bd:ea:53:8a:fb:c8:76:1e:72:cc:ef:b4:67:5e:70:
55:5a:e3:22:dc:30:46:c8:67:9b:a0:99:f6:9a:71:
c3:5f:68:e0:ff:eb:a5:8e:fc:4f:69:24:40:d6:f0:
07:b8:ad:bf:f5:63:da:d3:8f:cd:ee:95:db:39:eb:
10:26:ab:17:e3:1f:60:0c:4a:5f:82:b5:94:73:e3:
a9:93:0f:c5:a3:a0:ee:26:a1:7b:e6:9a:6e:3b:a5:
f5:93:cb:09:2e:9d:e5:94:c3:2d:6c:e5:2c:fb:25:
a1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:06:17:B7:B5:BD:75:83:F0:D9:42:90:AD:74:86:A2:7A:1C:B1:63
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fgYXt7W9dYPw2UKQrXSGonocsWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.187.0/24
45.130.254.0/24
45.145.59.0/24
45.147.31.0/24
45.157.37.0/24
45.157.39.0/24
80.253.248.0/24
85.209.131.0/24
91.212.120.0/24
103.59.40.0/22
103.74.76.0/23
193.39.209.0/24
193.41.39.0/24
193.41.68.0/23
193.41.86.0/24
194.33.62.0/24
194.41.38.0/24
IPv6:
2a07:7881::-2a07:7887:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:39c0::/29
2a0f:e840::/32
Signature Algorithm: sha256WithRSAEncryption
c2:86:71:5c:3b:0b:52:19:fd:dd:0c:79:f3:ad:df:43:6a:dd:
ff:fd:50:ad:68:9f:51:19:75:bc:85:70:78:16:3b:32:6b:40:
d3:24:33:d8:5f:f6:b8:9e:1e:24:ce:4b:83:80:9f:fe:5b:7e:
e7:cb:30:aa:bd:55:fe:8c:1a:fd:f1:77:5b:97:3b:e0:6b:57:
73:5f:e5:27:4e:90:b0:67:92:3e:ea:4b:07:f8:e2:be:2b:b0:
09:03:2c:bd:1d:dc:d8:74:95:1c:a6:cf:21:fb:8d:04:ff:ff:
b4:6f:5c:7d:41:79:0c:c0:53:27:dd:c0:20:be:39:0a:d6:61:
6c:de:33:0e:cb:f9:be:25:f9:fe:f6:38:67:21:e9:a6:16:92:
05:9e:c2:14:ae:4e:9a:37:2f:5b:51:19:b3:b6:46:5c:6c:4e:
57:ad:96:c7:80:4c:c1:e1:2e:9b:0d:4b:ce:70:c8:8d:64:b1:
55:b7:81:e9:eb:6c:ad:8c:52:e3:a8:6a:fb:f8:1a:19:2d:c9:
48:b1:e6:00:f9:d4:57:d7:5c:7e:d7:46:55:43:38:82:8b:5c:
18:0d:47:0a:ee:13:e7:b3:ad:c2:03:8a:37:48:c3:82:a3:13:
a2:32:a7:32:16:65:62:64:49:7c:d1:e8:69:aa:b8:46:35:be:
dd:87:cc:90
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgISAYM8NqAOfEor0+vRkarEWxK8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjIwOTE0MTMzNTU2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTA2MTdiN2I1YmQ3NTgzZjBkOTQyOTBhZDc0ODZhMjdhMWNiMTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgGOYDBJ7LGeKORv/GW5thssyFzWy
CujG/w2eYzBRbWTAsb3kWhh5sBxcm4AvpyMJ9K2pceUxw5BIsYHWc+IesI6kG16m
R/kQhWJ4xllT8sBkwT4fSHNRlL1R+36ox5IpK6rSOZ6lFuldNczmx5o40B5DTyGa
d2MFDPwFs5vXNprpNwK4+u3+YY3q0jj6JPxl8aBywfy96lOK+8h2HnLM77RnXnBV
WuMi3DBGyGeboJn2mnHDX2jg/+uljvxPaSRA1vAHuK2/9WPa04/N7pXbOesQJqsX
4x9gDEpfgrWUc+Opkw/Fo6DuJqF75ppuO6X1k8sJLp3llMMtbOUs+yWhmQIDAQAB
o4ICkjCCAo4wHQYDVR0OBBYEFH4GF7e1vXWD8NlCkK10hqJ6HLFjMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvZmdZWHQ3VzlkWVB3MlVLUXJYU0dvbm9jc1dNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGnBggrBgEFBQcBBwEB/wSBlzCBlDBsBAIAATBmAwQALQ27
AwQALYL+AwQALZE7AwQALZMfAwQALZ0lAwQALZ0nAwQAUP34AwQAVdGDAwQAW9R4
AwQCZzsoAwQBZ0pMAwQAwSfRAwQAwSknAwQBwSlEAwQAwSlWAwQAwiE+AwQAwikm
MCQEAgACMB4wDgMFACoHeIEDBQMqB3iAAwUDKg85wAMFACoP6EAwDQYJKoZIhvcN
AQELBQADggEBAMKGcVw7C1IZ/d0MefOt30Nq3f/9UK1on1EZdbyFcHgWOzJrQNMk
M9hf9rieHiTOS4OAn/5bfufLMKq9Vf6MGv3xd1uXO+BrV3Nf5SdOkLBnkj7qSwf4
4r4rsAkDLL0d3Nh0lRymzyH7jQT//7RvXH1BeQzAUyfdwCC+OQrWYWzeMw7L+b4l
+f72OGch6aYWkgWewhSuTpo3L1tRGbO2RlxsTletlseATMHhLpsNS85wyI1ksVW3
genrbK2MUuOoavv4GhktyUix5gD51FfXXH7XRlVDOIKLXBgNRwruE+ezrcIDijdI
w4KjE6IypzIWZWJkSXzR6GmquEY1vt2HzJA=
-----END CERTIFICATE-----
Generated at Mon Apr 21 14:59:59 2025 by rpki-client