Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ib7447HH2kU5cclr7pGZP_bkYi4.roa
File: ib7447HH2kU5cclr7pGZP_bkYi4.roa (raw, json)
Hash identifier: uTiFm1VxozpGXp8vZ93g0GhGiKei5lN6iByHrveUdHA=
Subject key identifier: 89:BE:F8:E3:B1:C7:DA:45:39:71:C9:6B:EE:91:99:3F:F6:E4:62:2E
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 03A2E420
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ib7447HH2kU5cclr7pGZP_bkYi4.roa
Signing time: Thu 23 Jun 2022 12:55:56 +0000
ROA not before: Thu 23 Jun 2022 12:55:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 45.86.246.0/24 maxlen: 24
193.39.209.0/24 maxlen: 24
185.164.59.0/24 maxlen: 24
45.137.85.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.154.231.0/24 maxlen: 24
45.154.230.0/24 maxlen: 24
185.136.204.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.157.37.0/24 maxlen: 24
45.157.36.0/24 maxlen: 24
45.153.219.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
45.95.98.0/24 maxlen: 24
193.41.123.0/24 maxlen: 24
193.41.122.0/24 maxlen: 24
45.118.249.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
91.212.107.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
113.30.152.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
113.30.155.0/24 maxlen: 24
113.30.154.0/24 maxlen: 24
113.30.153.0/24 maxlen: 24
103.229.31.0/24 maxlen: 24
91.212.100.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.158.198.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
2a0f:ac00::/29 maxlen: 29
2a0f:e1c2::/32 maxlen: 32
2a0f:1f80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a0c:7884::/32 maxlen: 32
2a09:17c0::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:e6c0:fe1::/48 maxlen: 48
2a0f:2100:171::/48 maxlen: 48
2a0f:e1c0::/32 maxlen: 32
2a0e:f200:1::/48 maxlen: 48
2a0f:7d00:1::/48 maxlen: 48
2a0f:a03::/32 maxlen: 32
2a0f:6d80::/29 maxlen: 29
2a0e:1a80:123::/48 maxlen: 48
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a12:4ac0::/29 maxlen: 29
2a0a:2d00:1::/48 maxlen: 48
2a0e:f200:2::/48 maxlen: 48
2a0f:e6c0:991::/48 maxlen: 48
2a0f:ea00::/29 maxlen: 29
2a0f:e842::/32 maxlen: 32
2a0e:2440::/29 maxlen: 29
2a0c:7883::/32 maxlen: 32
2a0e:e980::/29 maxlen: 29
2a12:d6c0::/29 maxlen: 29
2a0f:a200::/29 maxlen: 29
2a0f:7d00:5::/48 maxlen: 48
2a0f:df40::/29 maxlen: 29
2a0f:a02::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:e6c0:123::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0f:1200::/32 maxlen: 32
2a0f:7d00:3::/48 maxlen: 48
2a0c:7882:1::/48 maxlen: 48
2a0f:e143::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61006880 (0x3a2e420)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 23 12:55:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89bef8e3b1c7da453971c96bee91993ff6e4622e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8e:ec:e7:f6:f0:0d:5b:f8:82:d6:92:4b:a9:
4c:3d:ca:aa:78:48:cd:a4:e7:f8:c6:99:29:4d:d7:
55:9c:fe:11:37:9d:e1:9d:a3:8f:dd:3f:ed:36:4e:
ca:57:86:10:48:58:98:52:fb:ce:d3:18:24:f2:eb:
eb:b8:0e:65:44:b7:8f:76:55:bc:7c:77:f8:f6:5d:
2a:f2:74:de:67:dd:c4:c4:b2:d9:03:6f:57:65:76:
8c:81:41:95:7a:55:3d:ef:64:54:43:dc:a8:03:de:
24:57:61:23:60:10:6f:ed:a4:ac:ec:66:07:d6:72:
f3:5c:f6:d3:17:b9:cc:71:c7:90:34:7c:dc:7b:7a:
3d:63:e1:96:fe:47:95:1b:7d:6b:e7:ab:c9:ea:75:
9b:b2:4d:54:b0:ab:19:f9:d3:91:4d:66:2c:33:09:
bc:27:4e:a7:14:85:13:39:05:38:00:59:8d:94:9d:
27:47:a0:09:ab:12:70:a2:11:ca:7a:85:c5:9d:6f:
55:1b:8c:83:11:8e:53:73:9f:04:85:db:39:bf:5e:
3d:f1:fd:54:bf:3b:f2:34:6d:1f:cc:a7:76:3b:09:
15:90:a6:88:eb:e5:15:94:3f:a7:04:e2:3a:b0:db:
9d:69:75:58:1b:9f:18:9e:da:c6:be:20:3f:3d:ce:
c3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:BE:F8:E3:B1:C7:DA:45:39:71:C9:6B:EE:91:99:3F:F6:E4:62:2E
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ib7447HH2kU5cclr7pGZP_bkYi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.86.246.0/24
45.91.208.0/24
45.91.211.0/24
45.95.98.0/24
45.118.249.0/24
45.128.77.0/24
45.137.41.0/24
45.137.85.0-45.137.86.255
45.153.21.0/24
45.153.23.0/24
45.153.218.0/23
45.154.230.0/23
45.157.36.0-45.157.38.255
45.158.197.0-45.158.198.255
91.212.100.0/24
91.212.107.0/24
103.229.31.0/24
113.30.152.0/22
185.136.204.0/24
185.164.59.0/24
193.39.209.0/24
193.41.39.0/24
193.41.122.0/23
193.111.4.0/23
193.111.18.0/23
IPv6:
2a09:17c0::/29
2a0a:2d00:1::/48
2a0c:7882:1::/48
2a0c:7883::-2a0c:7884:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:1a80:123::/48
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:1::-2a0e:f200:2:ffff:ffff:ffff:ffff:ffff
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1200::/32
2a0f:1f80::/29
2a0f:2100:171::/48
2a0f:6d80::/29
2a0f:7d00:1::/48
2a0f:7d00:3::/48
2a0f:7d00:5::/48
2a0f:a200::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:dac0::/29
2a0f:df40::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c2::/32
2a0f:e1c7::/32
2a0f:e600:1::/48
2a0f:e6c0:123::/48
2a0f:e6c0:991::/48
2a0f:e6c0:fe1::/48
2a0f:e842::/32
2a0f:e940::/29
2a0f:ea00::/29
2a12:4ac0::/29
2a12:d6c0::/29
Signature Algorithm: sha256WithRSAEncryption
9f:c5:e0:7a:36:ba:b3:07:06:08:29:de:c9:da:4a:38:61:22:
d3:db:f1:12:71:ad:0f:9f:55:c4:6e:b6:d2:c2:bf:c0:16:ec:
29:5e:94:61:21:be:c6:5e:0c:dc:90:1e:75:42:98:5c:51:43:
25:c3:0d:bc:4d:9a:13:a5:4b:df:6f:61:0f:71:f0:eb:82:08:
19:71:e5:21:dc:c8:c5:6a:d6:1e:1f:66:d5:ee:6a:a2:3b:c0:
b3:f3:bb:66:8b:ba:72:81:10:1c:14:6f:75:7f:dd:26:7d:f2:
ef:50:4e:1f:15:7f:46:bb:4a:55:ec:0c:52:75:6d:eb:9c:28:
f7:dc:e1:91:b3:65:a0:11:16:be:d8:fb:71:6a:db:41:2d:a3:
05:01:9d:17:76:fd:95:6f:c5:76:e4:81:ec:42:c9:2f:8b:ae:
a8:8b:78:17:31:8a:0f:50:57:27:1a:56:1a:3e:95:17:0e:d4:
99:cb:c1:1e:fe:25:9a:55:22:a5:36:7c:1b:97:27:4e:71:ff:
9a:e7:91:7b:ba:05:3c:35:84:cc:c1:43:df:21:26:ba:19:25:
6c:5d:e4:cb:6c:7f:81:fb:da:ab:52:78:69:fa:42:a6:5b:14:
3a:9a:b7:41:87:b2:06:70:ad:07:c7:3d:a9:40:52:6f:0c:1e:
12:cb:dc:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:13:10 2025 by rpki-client