Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/gIMIELGoMr5dMvgAoqxcA8nDO8k.roa
File: gIMIELGoMr5dMvgAoqxcA8nDO8k.roa (raw, json)
Hash identifier: n74+fJeQOdfjZvWhEi1RIup1PgQ9PcbP0TDzs2wn8rw=
Subject key identifier: 80:83:08:10:B1:A8:32:BE:5D:32:F8:00:A2:AC:5C:03:C9:C3:3B:C9
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 02AB9412
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/gIMIELGoMr5dMvgAoqxcA8nDO8k.roa
Signing time: Thu 07 Apr 2022 21:06:52 +0000
ROA not before: Thu 07 Apr 2022 21:06:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 193.39.209.0/24 maxlen: 24
194.33.32.0/24 maxlen: 24
185.164.59.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.154.230.0/24 maxlen: 24
45.130.253.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.157.37.0/24 maxlen: 24
45.153.219.0/24 maxlen: 24
45.147.31.0/24 maxlen: 24
45.147.30.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
45.95.98.0/24 maxlen: 24
45.152.197.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
91.212.107.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
113.30.152.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
113.30.155.0/24 maxlen: 24
113.30.154.0/24 maxlen: 24
113.30.153.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.158.198.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
2a0f:ac00::/29 maxlen: 29
2a0f:e1c2::/32 maxlen: 32
2a0f:1f80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a09:17c0::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:e6c0:fe1::/48 maxlen: 48
2a0f:e1c0::/32 maxlen: 32
2a0f:a03::/32 maxlen: 32
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a0e:f200:2::/48 maxlen: 48
2a0f:e6c0:991::/48 maxlen: 48
2a0f:e842::/32 maxlen: 32
2a0e:2440::/29 maxlen: 29
2a0e:e980::/29 maxlen: 29
2a0f:df40::/29 maxlen: 29
2a0f:a02::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:e6c0:123::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0f:e143::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44798994 (0x2ab9412)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 7 21:06:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80830810b1a832be5d32f800a2ac5c03c9c33bc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5a:7e:21:31:2f:2c:a9:a9:35:a0:69:81:48:
93:93:cd:7e:55:bd:78:0c:41:e1:c8:3f:11:1b:1f:
6e:ce:81:11:43:a7:03:65:e1:2f:e5:d6:c1:b3:f6:
b6:29:83:0b:62:a4:d2:3c:87:4d:c2:e6:4b:c7:89:
2b:59:dc:9e:93:61:49:dd:ac:c3:2d:1b:02:3a:c0:
70:30:b0:4c:8a:34:2d:ae:57:81:4b:b4:15:00:59:
53:f4:58:8c:a3:da:81:94:c4:20:4c:5a:21:88:8d:
a2:7a:60:bf:7c:fa:70:1a:a6:87:f0:40:46:5e:fe:
b7:68:7d:ca:ec:54:df:99:c0:62:01:3d:07:f1:1e:
97:d8:48:47:cb:ce:ae:64:c6:45:36:31:8b:bd:35:
39:f1:a5:6e:41:34:1d:65:bb:1f:55:a7:b0:4a:2f:
e8:16:3b:10:9f:9f:5b:7c:8f:fa:37:d3:1a:32:1c:
b7:0e:06:4e:5f:56:f6:0d:c5:8d:54:90:02:ac:51:
bc:f5:5d:28:d8:72:54:1a:3e:88:03:cc:63:96:d5:
2d:2f:5b:e3:b4:3f:5c:45:51:50:4f:74:52:50:28:
06:8c:85:d2:f9:93:47:db:51:64:6b:4c:ba:02:d4:
69:8f:bf:bb:09:a0:72:f1:09:d9:96:8d:30:aa:16:
09:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:83:08:10:B1:A8:32:BE:5D:32:F8:00:A2:AC:5C:03:C9:C3:3B:C9
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/gIMIELGoMr5dMvgAoqxcA8nDO8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.91.208.0/24
45.91.211.0/24
45.95.98.0/24
45.128.77.0/24
45.130.253.0/24
45.137.41.0/24
45.137.86.0/24
45.147.30.0/23
45.152.197.0/24
45.153.21.0/24
45.153.23.0/24
45.153.218.0/23
45.154.230.0/24
45.157.37.0-45.157.38.255
45.158.197.0-45.158.198.255
91.212.107.0/24
113.30.152.0/22
185.164.59.0/24
193.39.209.0/24
193.41.39.0/24
193.111.4.0/23
193.111.18.0/23
194.33.32.0/24
IPv6:
2a09:17c0::/29
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:2::/48
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1f80::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:dac0::/29
2a0f:df40::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c2::/32
2a0f:e1c7::/32
2a0f:e600:1::/48
2a0f:e6c0:123::/48
2a0f:e6c0:991::/48
2a0f:e6c0:fe1::/48
2a0f:e842::/32
2a0f:e940::/29
Signature Algorithm: sha256WithRSAEncryption
ca:d1:81:d7:8e:95:7d:dc:dd:6d:b9:18:b7:6a:c9:93:f3:ee:
84:b8:ec:5e:1b:0f:b9:a1:22:93:bc:48:57:8e:70:a0:1a:98:
fa:7b:6a:96:4f:95:7a:01:c8:67:44:36:60:7c:9f:f2:f8:78:
0e:57:c3:4e:96:2c:ec:7c:83:d4:13:ac:b7:b9:dd:4a:26:c9:
5a:21:1f:c7:af:a0:12:d5:e8:cb:2a:24:c2:88:36:9a:e9:27:
55:41:b8:20:71:ee:20:23:d9:f2:16:f6:11:be:9f:f9:ce:f8:
01:11:37:88:69:7a:c8:f9:b4:c5:e1:36:e9:15:4c:98:52:87:
46:e7:f2:86:ce:e2:57:b5:47:54:77:64:3b:33:05:64:fb:ed:
a0:b6:11:71:f9:92:28:de:c8:cc:c8:9d:4f:f5:a6:11:68:18:
6f:bc:51:55:c3:b9:1d:a2:f6:e3:8f:10:65:f9:ec:08:00:71:
44:94:38:f1:a2:43:06:ab:74:77:ab:44:d1:4a:7d:7f:a7:03:
ac:ec:f6:b6:ae:b7:35:f7:34:2f:dc:ad:05:dc:8f:54:be:33:
30:f8:5a:0a:9d:29:99:dc:6d:67:79:69:81:64:c0:3b:28:02:
36:67:30:6c:6e:d8:b7:a2:03:79:1d:63:8b:9b:7c:db:b6:21:
2e:c7:3a:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 09:01:06 2025 by rpki-client