Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/tA-nn-7KjWSqBHNiFSYi9J5aSVQ.roa
File: tA-nn-7KjWSqBHNiFSYi9J5aSVQ.roa (raw, json)
Hash identifier: +0IC8Tj4BVg0il6izxNETdBZL0kz6PSIOmuMMkwONvE=
Subject key identifier: B4:0F:A7:9F:EE:CA:8D:64:AA:04:73:62:15:26:22:F4:9E:5A:49:54
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018259935296E0BBEF3E4AA5F9379587E0A8
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/tA-nn-7KjWSqBHNiFSYi9J5aSVQ.roa
Signing time: Mon 01 Aug 2022 13:23:23 +0000
ROA not before: Mon 01 Aug 2022 13:23:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 45.86.246.0/24 maxlen: 24
193.39.209.0/24 maxlen: 24
193.39.208.0/24 maxlen: 24
185.164.59.0/24 maxlen: 24
45.137.85.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.154.231.0/24 maxlen: 24
45.154.230.0/24 maxlen: 24
45.130.253.0/24 maxlen: 24
185.136.204.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
193.39.143.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.157.36.0/24 maxlen: 24
45.153.219.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
45.95.98.0/24 maxlen: 24
193.41.123.0/24 maxlen: 24
193.41.122.0/24 maxlen: 24
45.118.249.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
193.41.115.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
91.212.107.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
113.30.152.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
113.30.155.0/24 maxlen: 24
113.30.154.0/24 maxlen: 24
113.30.153.0/24 maxlen: 24
103.229.31.0/24 maxlen: 24
91.212.100.0/24 maxlen: 24
193.41.38.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.158.198.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
2a0f:ac00::/29 maxlen: 29
2a0f:e540::/32 maxlen: 32
2a0f:e1c2::/32 maxlen: 32
2a0f:1f80::/29 maxlen: 29
2a0c:7884::/32 maxlen: 32
2a09:17c0::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:e6c0:fe1::/48 maxlen: 48
2a0f:2100:171::/48 maxlen: 48
2a0f:e1c0::/32 maxlen: 32
2a0e:f200:1::/48 maxlen: 48
2a0f:7d00:1::/48 maxlen: 48
2a0f:a03::/32 maxlen: 32
2a0f:6d80::/29 maxlen: 29
2a0e:1a80:123::/48 maxlen: 48
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a12:4ac0::/29 maxlen: 29
2a0a:2d00:1::/48 maxlen: 48
2a0e:f200:2::/48 maxlen: 48
2a0f:e6c0:991::/48 maxlen: 48
2a0f:ea00::/29 maxlen: 29
2a0e:2440::/29 maxlen: 29
2a0c:7883::/32 maxlen: 32
2a0e:e980::/29 maxlen: 29
2a12:d6c0::/29 maxlen: 29
2a0f:a200::/29 maxlen: 29
2a0f:7d00:5::/48 maxlen: 48
2a0f:df40::/29 maxlen: 29
2a0f:a02::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:e6c0:123::/48 maxlen: 48
2a0f:e040::/48 maxlen: 48
2a0e:15c0:4::/48 maxlen: 48
2a0f:db40::/29 maxlen: 29
2a0f:a04::/32 maxlen: 32
2a0f:1200::/32 maxlen: 32
2a0f:7d00:3::/48 maxlen: 48
2a0c:7882:1::/48 maxlen: 48
2a0f:e143::/32 maxlen: 32
2a0f:dd40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:59:93:52:96:e0:bb:ef:3e:4a:a5:f9:37:95:87:e0:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 1 13:23:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b40fa79feeca8d64aa047362152622f49e5a4954
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:15:ef:12:80:aa:0a:d0:d6:32:85:8f:52:44:
9c:74:e3:23:96:c2:f7:86:70:2b:b8:99:5b:a9:11:
48:a5:05:99:db:a8:15:37:2c:dd:0f:35:65:14:3b:
b2:a2:53:60:63:a5:2c:a0:8b:2f:4c:87:f3:4b:bb:
82:17:1a:2e:c5:a5:c4:94:c1:c9:73:bb:51:8d:0e:
92:47:c0:37:25:fe:68:73:2c:7e:09:c7:67:30:7e:
90:1d:ff:07:09:c4:8a:0a:84:65:cf:7f:ea:f5:5f:
83:a5:8b:ca:e2:ba:3c:34:4e:9c:ce:a6:85:53:20:
fa:0f:5e:8e:ee:1c:3f:54:c2:35:3b:e6:54:b9:94:
2b:a5:ad:c7:ce:bc:f1:2e:1c:8f:45:00:f1:b0:b4:
cf:b3:e0:bc:00:99:8d:b8:22:5a:91:f2:3f:4f:50:
78:5c:43:9f:54:8f:19:2a:b6:39:cf:15:06:78:1d:
0d:1e:36:63:ad:39:21:ee:ae:ca:f8:1d:19:01:10:
1e:25:2e:6f:8d:1f:95:a0:32:b3:d7:de:1b:ed:ed:
bb:8f:4c:88:e3:6a:11:68:3d:f3:76:9c:74:4f:29:
2d:53:30:3f:ca:90:2c:f8:83:3d:67:3a:b9:ab:aa:
08:8f:c6:60:91:36:a8:15:3d:db:54:ce:f7:53:d7:
9a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:0F:A7:9F:EE:CA:8D:64:AA:04:73:62:15:26:22:F4:9E:5A:49:54
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/tA-nn-7KjWSqBHNiFSYi9J5aSVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.86.246.0/24
45.91.208.0/24
45.91.211.0/24
45.95.98.0/24
45.118.249.0/24
45.128.77.0/24
45.130.253.0/24
45.137.41.0/24
45.137.85.0-45.137.86.255
45.153.21.0/24
45.153.23.0/24
45.153.218.0/23
45.154.230.0/23
45.157.36.0/24
45.157.38.0/24
45.158.197.0-45.158.198.255
91.212.100.0/24
91.212.107.0/24
103.229.31.0/24
113.30.152.0/22
185.136.204.0/24
185.164.59.0/24
193.39.143.0/24
193.39.208.0/23
193.41.38.0/23
193.41.115.0/24
193.41.122.0/23
193.111.4.0/23
193.111.18.0/23
IPv6:
2a09:17c0::/29
2a0a:2d00:1::/48
2a0c:7882:1::/48
2a0c:7883::-2a0c:7884:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:15c0:4::/48
2a0e:1a80:123::/48
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:1::-2a0e:f200:2:ffff:ffff:ffff:ffff:ffff
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1200::/32
2a0f:1f80::/29
2a0f:2100:171::/48
2a0f:6d80::/29
2a0f:7d00:1::/48
2a0f:7d00:3::/48
2a0f:7d00:5::/48
2a0f:a200::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:dac0::/29
2a0f:db40::/29
2a0f:dd40::/29
2a0f:df40::/29
2a0f:e040::/48
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c2::/32
2a0f:e1c7::/32
2a0f:e540::/32
2a0f:e600:1::/48
2a0f:e6c0:123::/48
2a0f:e6c0:991::/48
2a0f:e6c0:fe1::/48
2a0f:ea00::/29
2a12:4ac0::/29
2a12:d6c0::/29
Signature Algorithm: sha256WithRSAEncryption
ad:97:d9:09:79:2f:89:7b:bb:79:fc:c3:89:65:e1:6b:ff:12:
9f:d0:c6:d2:34:91:f4:7f:3a:1d:70:dc:df:c5:3b:b8:c0:20:
14:b8:af:8a:76:62:94:92:cf:6c:4f:9f:89:95:39:34:ea:c2:
6b:95:be:f2:ec:e7:39:74:07:47:85:7e:a5:a0:46:72:2c:4e:
ec:1a:20:ec:93:64:58:b5:29:ac:3c:15:b5:27:ee:e8:37:db:
c3:f5:9c:a8:44:78:40:77:4f:1f:c4:88:3d:2d:6f:a2:bd:e4:
27:21:b4:e8:e4:a2:5d:cc:7c:14:6e:58:b2:df:08:c8:cd:f3:
14:4a:4e:8c:4d:0d:73:d3:e3:0f:7f:c9:da:d5:21:99:fb:a0:
27:01:aa:c1:61:da:ee:5a:c8:0f:47:8d:ab:e9:c9:ec:0b:87:
a0:1e:b4:53:e6:3e:77:d7:c1:69:09:ef:52:82:27:02:7b:4c:
ad:28:df:74:fa:77:8c:2d:35:0e:c4:7e:00:aa:18:9a:2c:16:
13:7d:6b:ad:8e:51:d5:2b:66:40:b3:1b:0b:86:cf:d1:92:15:
29:74:7c:0c:5e:96:56:48:de:00:9c:bf:7f:2b:24:e0:85:31:
82:fe:f1:9a:ed:f6:aa:c4:30:3b:d2:d1:cc:8e:af:bf:b1:e3:
02:e2:c0:39
-----BEGIN CERTIFICATE-----
MIIHFDCCBfygAwIBAgISAYJZk1KW4LvvPkql+TeVh+CoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjIwODAxMTMyMzIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDBmYTc5ZmVlY2E4ZDY0YWEwNDczNjIxNTI2MjJmNDllNWE0OTU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmxXvEoCqCtDWMoWPUkScdOMjlsL3
hnAruJlbqRFIpQWZ26gVNyzdDzVlFDuyolNgY6UsoIsvTIfzS7uCFxouxaXElMHJ
c7tRjQ6SR8A3Jf5ocyx+CcdnMH6QHf8HCcSKCoRlz3/q9V+DpYvK4ro8NE6czqaF
UyD6D16O7hw/VMI1O+ZUuZQrpa3HzrzxLhyPRQDxsLTPs+C8AJmNuCJakfI/T1B4
XEOfVI8ZKrY5zxUGeB0NHjZjrTkh7q7K+B0ZARAeJS5vjR+VoDKz194b7e27j0yI
42oRaD3zdpx0TyktUzA/ypAs+IM9Zzq5q6oIj8ZgkTaoFT3bVM73U9easwIDAQAB
o4IEIDCCBBwwHQYDVR0OBBYEFLQPp5/uyo1kqgRzYhUmIvSeWklUMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvdEEtbm4tN0tqV1NxQkhOaUZTWWk5SjVhU1ZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICNAYIKwYBBQUHAQcBAf8EggIjMIICHzCBywQCAAEwgcQD
BAAtDboDBAAtVvYDBAAtW9ADBAAtW9MDBAAtX2IDBAAtdvkDBAAtgE0DBAAtgv0D
BAAtiSkwDAMEAC2JVQMEAC2JVgMEAC2ZFQMEAC2ZFwMEAS2Z2gMEAS2a5gMEAC2d
JAMEAC2dJjAMAwQALZ7FAwQALZ7GAwQAW9RkAwQAW9RrAwQAZ+UfAwQCcR6YAwQA
uYjMAwQAuaQ7AwQAwSePAwQBwSfQAwQBwSkmAwQAwSlzAwQBwSl6AwQBwW8EAwQB
wW8SMIIBTQQCAAIwggFFAwUDKgkXwAMHACoKLQAAAQMHACoMeIIAATAOAwUAKgx4
gwMFACoMeIQDBwAqDhXAAAQDBwAqDhqAASMDBwAqDiJAAAIDBQMqDiRAAwUDKg7p
gDASAwcAKg7yAAABAwcAKg7yAAACMA4DBQEqDwoCAwUAKg8KBAMFACoPEgADBQMq
Dx+AAwcAKg8hAAFxAwUDKg9tgAMHACoPfQAAAQMHACoPfQAAAwMHACoPfQAABQMF
AyoPogADBQMqD6wAAwUDKg/aQAMFAyoP2sADBQMqD9tAAwUDKg/dQAMFAyoP30AD
BwAqD+BAAAADBQAqD+FDAwUAKg/hwAMFACoP4cIDBQAqD+HHAwUAKg/lQAMHACoP
5gAAAQMHACoP5sABIwMHACoP5sAJkQMHACoP5sAP4QMFAyoP6gADBQMqEkrAAwUD
KhLWwDANBgkqhkiG9w0BAQsFAAOCAQEArZfZCXkviXu7efzDiWXha/8Sn9DG0jSR
9H86HXDc38U7uMAgFLivinZilJLPbE+fiZU5NOrCa5W+8uznOXQHR4V+paBGcixO
7Bog7JNkWLUprDwVtSfu6Dfbw/WcqER4QHdPH8SIPS1vor3kJyG06OSiXcx8FG5Y
st8IyM3zFEpOjE0Nc9PjD3/J2tUhmfugJwGqwWHa7lrID0eNq+nJ7AuHoB60U+Y+
d9fBaQnvUoInAntMrSjfdPp3jC01DsR+AKoYmiwWE31rrY5R1StmQLMbC4bP0ZIV
KXR8DF6WVkjeAJy/fysk4IUxgv7xmu32qsQwO9LRzI6vv7HjAuLAOQ==
-----END CERTIFICATE-----
Generated at Mon Apr 21 15:58:00 2025 by rpki-client