Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/BS43Hgofne2eN8Bf_SZzz0iTUrk.roa
File: BS43Hgofne2eN8Bf_SZzz0iTUrk.roa (raw, json)
Hash identifier: KRRQoRjytXbq9x5Mcp5dfuMNIR4iiRsBSsOIvn6gV8k=
Subject key identifier: 05:2E:37:1E:0A:1F:9D:ED:9E:37:C0:5F:FD:26:73:CF:48:93:52:B9
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 02C369D6
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/BS43Hgofne2eN8Bf_SZzz0iTUrk.roa
Signing time: Thu 14 Apr 2022 09:22:41 +0000
ROA not before: Thu 14 Apr 2022 09:22:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 193.39.209.0/24 maxlen: 24
194.33.32.0/24 maxlen: 24
185.164.59.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.154.230.0/24 maxlen: 24
45.130.253.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.157.37.0/24 maxlen: 24
45.153.219.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
45.95.98.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
91.212.107.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
113.30.152.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
113.30.155.0/24 maxlen: 24
113.30.154.0/24 maxlen: 24
113.30.153.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.158.198.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
2a0f:ac00::/29 maxlen: 29
2a0f:e1c2::/32 maxlen: 32
2a0f:1f80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a09:17c0::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:e6c0:fe1::/48 maxlen: 48
2a0f:2100:171::/48 maxlen: 48
2a0f:e1c0::/32 maxlen: 32
2a0f:a03::/32 maxlen: 32
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a0e:f200:2::/48 maxlen: 48
2a0f:e6c0:991::/48 maxlen: 48
2a0f:e842::/32 maxlen: 32
2a0e:2440::/29 maxlen: 29
2a0e:e980::/29 maxlen: 29
2a0f:a200::/29 maxlen: 29
2a0f:df40::/29 maxlen: 29
2a0f:a02::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:e6c0:123::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0f:e143::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46361046 (0x2c369d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 14 09:22:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=052e371e0a1f9ded9e37c05ffd2673cf489352b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f1:69:8e:7a:0d:73:9e:d6:3a:85:90:69:af:
3d:a2:b0:36:00:c1:e1:f2:88:8c:76:58:b7:b1:9c:
51:b1:40:b4:91:83:2c:16:12:f1:cb:e4:2b:de:c0:
b7:ea:be:24:d9:fe:47:b4:e4:69:7f:72:8d:4f:c6:
65:14:e9:be:ad:cf:c3:f3:f2:ca:8c:37:7b:c3:11:
c2:cd:37:36:9f:27:85:b0:b9:7f:20:1f:9d:28:83:
f7:08:b9:bc:2f:8f:03:f1:53:b2:05:14:1d:b2:42:
7a:87:e2:fc:74:85:d3:8d:ae:59:86:51:9f:fa:ff:
33:78:c7:8d:92:f6:10:2a:f0:55:c8:a7:21:94:47:
a3:e6:67:aa:02:31:73:b2:0c:02:dd:c9:7e:47:5c:
43:01:69:d7:55:62:4c:09:cf:20:a7:3d:a7:8d:6b:
bc:19:a5:4c:44:39:3c:b8:db:27:08:f7:35:c3:61:
af:df:29:38:29:98:40:ac:dc:ac:97:f3:75:36:48:
7c:9c:7e:ed:93:e4:fe:46:83:3b:ca:8b:a4:89:95:
6b:c9:ea:22:32:34:79:14:b9:61:ad:fa:da:b0:fc:
21:a5:ff:4a:70:a2:65:72:cb:95:80:56:6b:ed:8b:
a1:67:96:2d:01:d8:be:7c:09:c4:d2:5a:11:83:bc:
a5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:2E:37:1E:0A:1F:9D:ED:9E:37:C0:5F:FD:26:73:CF:48:93:52:B9
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/BS43Hgofne2eN8Bf_SZzz0iTUrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.91.208.0/24
45.91.211.0/24
45.95.98.0/24
45.128.77.0/24
45.130.253.0/24
45.137.41.0/24
45.137.86.0/24
45.153.21.0/24
45.153.23.0/24
45.153.218.0/23
45.154.230.0/24
45.157.37.0-45.157.38.255
45.158.197.0-45.158.198.255
91.212.107.0/24
113.30.152.0/22
185.164.59.0/24
193.39.209.0/24
193.41.39.0/24
193.111.4.0/23
193.111.18.0/23
194.33.32.0/24
IPv6:
2a09:17c0::/29
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:2::/48
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1f80::/29
2a0f:2100:171::/48
2a0f:a200::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:dac0::/29
2a0f:df40::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c2::/32
2a0f:e1c7::/32
2a0f:e600:1::/48
2a0f:e6c0:123::/48
2a0f:e6c0:991::/48
2a0f:e6c0:fe1::/48
2a0f:e842::/32
2a0f:e940::/29
Signature Algorithm: sha256WithRSAEncryption
74:28:bb:64:e2:a0:11:88:e2:20:3c:21:58:f1:be:2d:61:72:
b5:be:9f:81:04:c6:ca:58:e4:76:f1:3e:11:2e:ba:00:43:d9:
f8:52:89:28:42:94:59:75:c5:a8:f9:79:8e:a9:05:f0:d9:42:
b4:05:ab:0a:92:7f:7b:3c:49:8f:d9:ca:e8:a3:60:bc:9f:bc:
dd:a4:bf:ca:e0:b7:fa:56:e2:29:89:cf:b0:9e:aa:e5:23:d6:
f3:b1:34:91:be:b5:44:da:30:69:7c:b6:42:57:af:df:3a:26:
32:50:ae:d4:2f:e7:7d:09:6f:e7:ea:aa:2a:2f:ea:11:a4:6a:
ae:fe:df:d7:43:a7:ef:dc:e7:5e:54:e9:d7:0d:97:ee:31:72:
f0:dd:16:a4:d2:d2:e8:5f:7d:a1:8a:18:d6:86:47:cc:e6:fd:
bb:74:4c:db:0a:a6:51:4e:33:59:29:35:7b:2b:17:12:8d:7c:
3e:4a:bb:7f:24:5a:43:f2:65:39:59:04:ca:79:a5:d5:51:58:
19:43:46:de:b6:62:b2:4b:96:e2:c5:f3:cc:6c:a9:2b:bd:40:
aa:2a:0b:90:89:77:f0:1b:1f:1f:fc:ae:a0:60:fc:e9:cc:41:
ec:82:35:77:2e:20:0b:f6:63:cb:f0:85:09:45:b8:0c:a5:49:
49:5c:ac:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 09:57:15 2025 by rpki-client