Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fq9roYLqip9qaCYOAClrBSe19v4.roa
File: fq9roYLqip9qaCYOAClrBSe19v4.roa (raw, json)
Hash identifier: 9wMTCPRb8AVQ0IUHYxW/b5EfPo9nlzMP16hAzq7qCdY=
Subject key identifier: 7E:AF:6B:A1:82:EA:8A:9F:6A:68:26:0E:00:29:6B:05:27:B5:F6:FE
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 02EA17FE
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fq9roYLqip9qaCYOAClrBSe19v4.roa
Signing time: Tue 26 Apr 2022 12:35:01 +0000
ROA not before: Tue 26 Apr 2022 12:35:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 45.86.246.0/24 maxlen: 24
193.39.209.0/24 maxlen: 24
185.164.59.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.154.231.0/24 maxlen: 24
45.154.230.0/24 maxlen: 24
45.130.253.0/24 maxlen: 24
185.136.204.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.157.37.0/24 maxlen: 24
45.153.219.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
45.95.98.0/24 maxlen: 24
193.41.123.0/24 maxlen: 24
193.41.122.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
91.212.107.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
113.30.152.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
113.30.155.0/24 maxlen: 24
113.30.154.0/24 maxlen: 24
113.30.153.0/24 maxlen: 24
103.229.31.0/24 maxlen: 24
91.212.100.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.158.198.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
2a0f:ac00::/29 maxlen: 29
2a0f:e1c2::/32 maxlen: 32
2a0f:1f80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a09:17c0::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:e6c0:fe1::/48 maxlen: 48
2a0f:2100:171::/48 maxlen: 48
2a0f:e1c0::/32 maxlen: 32
2a0f:a03::/32 maxlen: 32
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a0e:f200:2::/48 maxlen: 48
2a0f:e6c0:991::/48 maxlen: 48
2a0f:e842::/32 maxlen: 32
2a0e:2440::/29 maxlen: 29
2a0e:e980::/29 maxlen: 29
2a0f:a200::/29 maxlen: 29
2a0f:df40::/29 maxlen: 29
2a0f:a02::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:e6c0:123::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0c:7882:1::/48 maxlen: 48
2a0f:e143::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48895998 (0x2ea17fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 26 12:35:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7eaf6ba182ea8a9f6a68260e00296b0527b5f6fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4b:ea:bc:66:eb:42:6e:e2:c8:c9:14:9b:db:
d1:be:9b:8a:68:c4:73:e4:31:52:33:21:a1:73:06:
53:3c:0b:7a:fb:66:bf:c1:86:e2:44:51:98:d3:b4:
bc:15:49:19:c0:4a:07:a2:a7:1d:fc:33:8c:fd:31:
63:76:e6:27:7a:a5:30:ad:53:60:b5:0c:07:d9:26:
89:9b:3c:7e:b0:fb:44:f4:a5:52:c5:76:37:21:0c:
ea:f6:14:66:dd:07:03:6e:e1:7c:70:e8:84:2e:e7:
b8:3c:dd:37:55:6f:88:ae:d5:e4:5d:c6:0f:28:4f:
a2:2e:48:6c:7a:a7:f6:e6:ac:85:3e:f4:05:3f:33:
fe:a3:c9:1b:e6:3c:21:77:d4:73:9c:43:50:c4:57:
8a:11:55:c2:53:8b:13:81:a8:32:83:6f:5d:19:dd:
5f:f2:92:16:22:05:40:46:8d:4b:a0:c6:48:bd:44:
79:3c:f5:af:2f:e6:6a:fd:67:c9:f8:d9:2c:49:a0:
0c:94:1f:f7:25:a1:c3:f0:64:0f:92:08:39:d3:3b:
77:c7:45:ca:a0:7c:2c:af:6f:02:bc:4f:0c:8e:6f:
e0:b8:1d:cd:4e:de:2e:a9:02:ef:53:46:bf:b5:fa:
72:6e:ec:eb:ba:4e:2c:1e:dd:4a:6c:55:8a:50:40:
0d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:AF:6B:A1:82:EA:8A:9F:6A:68:26:0E:00:29:6B:05:27:B5:F6:FE
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fq9roYLqip9qaCYOAClrBSe19v4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.86.246.0/24
45.91.208.0/24
45.91.211.0/24
45.95.98.0/24
45.128.77.0/24
45.130.253.0/24
45.137.41.0/24
45.137.86.0/24
45.153.21.0/24
45.153.23.0/24
45.153.218.0/23
45.154.230.0/23
45.157.37.0-45.157.38.255
45.158.197.0-45.158.198.255
91.212.100.0/24
91.212.107.0/24
103.229.31.0/24
113.30.152.0/22
185.136.204.0/24
185.164.59.0/24
193.39.209.0/24
193.41.39.0/24
193.41.122.0/23
193.111.4.0/23
193.111.18.0/23
IPv6:
2a09:17c0::/29
2a0c:7882:1::/48
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:2::/48
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1f80::/29
2a0f:2100:171::/48
2a0f:a200::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:dac0::/29
2a0f:df40::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c2::/32
2a0f:e1c7::/32
2a0f:e600:1::/48
2a0f:e6c0:123::/48
2a0f:e6c0:991::/48
2a0f:e6c0:fe1::/48
2a0f:e842::/32
2a0f:e940::/29
Signature Algorithm: sha256WithRSAEncryption
9e:ae:21:3e:39:7c:75:5c:5a:fd:bb:3d:55:86:e7:b6:aa:70:
90:dc:28:9b:fc:e1:a9:07:17:90:1b:36:02:ac:0b:c6:ed:b8:
32:a0:6c:66:49:35:5b:b8:e1:11:4b:f1:15:71:80:90:32:d3:
38:12:a5:b2:df:20:32:23:38:c8:d7:71:fe:b1:05:ae:13:9c:
ff:e1:b0:65:b3:a6:8a:97:92:33:46:49:de:7f:f2:bf:91:da:
6b:eb:21:ae:63:19:83:ff:34:45:8a:5c:3b:b6:2b:c7:ee:85:
dd:f2:8e:29:24:ad:22:50:59:77:90:4b:0e:21:dd:b3:3b:c1:
57:88:ae:a9:93:53:4a:5f:91:3f:df:d3:c4:c2:5d:b6:c0:31:
7a:34:4c:63:e5:b5:d0:a3:c8:dd:22:b0:b9:79:d1:77:24:eb:
73:de:cc:6a:09:c9:1c:d5:f9:28:84:ae:3a:da:90:55:e2:ba:
d2:97:0b:01:5d:8e:14:ae:e8:23:ba:03:d8:61:6c:61:97:34:
7b:0f:ef:d4:f8:9f:f5:f1:e9:a5:4e:e3:e5:74:99:38:18:ac:
56:e1:7c:b4:d5:6c:b1:29:fe:cb:00:0a:fa:11:8b:6d:18:43:
8c:15:c0:92:2a:83:70:65:7b:b2:fe:fe:d0:d6:88:97:93:01:
4a:29:96:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:13:28 2025 by rpki-client