Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/VW0ZinwE8oFk880ceCDdnoOK04k.roa
File: VW0ZinwE8oFk880ceCDdnoOK04k.roa (raw, json)
Hash identifier: TOl2l4awHuVw+CqNOvs2hvVmk7z8CieVWe2/LtJeyQ4=
Subject key identifier: 55:6D:19:8A:7C:04:F2:81:64:F3:CD:1C:78:20:DD:9E:83:8A:D3:89
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 02AA71CF
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/VW0ZinwE8oFk880ceCDdnoOK04k.roa
Signing time: Thu 07 Apr 2022 06:42:26 +0000
ROA not before: Thu 07 Apr 2022 06:42:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 193.39.209.0/24 maxlen: 24
194.33.32.0/24 maxlen: 24
185.164.59.0/24 maxlen: 24
45.137.86.0/24 maxlen: 24
193.111.4.0/24 maxlen: 24
193.111.5.0/24 maxlen: 24
193.111.19.0/24 maxlen: 24
193.111.18.0/24 maxlen: 24
45.154.230.0/24 maxlen: 24
45.130.253.0/24 maxlen: 24
45.137.41.0/24 maxlen: 24
45.157.38.0/24 maxlen: 24
45.157.37.0/24 maxlen: 24
45.153.219.0/24 maxlen: 24
45.147.31.0/24 maxlen: 24
45.147.30.0/24 maxlen: 24
45.153.218.0/24 maxlen: 24
45.95.98.0/24 maxlen: 24
45.152.197.0/24 maxlen: 24
45.91.211.0/24 maxlen: 24
45.91.208.0/24 maxlen: 24
45.153.23.0/24 maxlen: 24
45.153.21.0/24 maxlen: 24
91.212.107.0/24 maxlen: 24
45.13.186.0/24 maxlen: 24
113.30.152.0/24 maxlen: 24
45.128.77.0/24 maxlen: 24
113.30.155.0/24 maxlen: 24
113.30.154.0/24 maxlen: 24
113.30.153.0/24 maxlen: 24
193.41.39.0/24 maxlen: 24
45.158.198.0/24 maxlen: 24
45.158.197.0/24 maxlen: 24
2a0f:ac00::/29 maxlen: 29
2a0f:e1c2::/32 maxlen: 32
2a0f:1f80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a09:17c0::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0e:2240:2::/48 maxlen: 48
2a0f:e6c0:fe1::/48 maxlen: 48
2a0f:e1c0::/32 maxlen: 32
2a0f:a03::/32 maxlen: 32
2a0f:da40::/29 maxlen: 29
2a0f:e1c7::/32 maxlen: 32
2a0e:f200:2::/48 maxlen: 48
2a0f:e6c0:991::/48 maxlen: 48
2a0e:2440::/29 maxlen: 29
2a0e:e980::/29 maxlen: 29
2a0f:df40::/29 maxlen: 29
2a0f:a02::/32 maxlen: 32
2a0f:e600:1::/48 maxlen: 48
2a0f:e6c0:123::/48 maxlen: 48
2a0f:a04::/32 maxlen: 32
2a0f:e143::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44724687 (0x2aa71cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 7 06:42:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=556d198a7c04f28164f3cd1c7820dd9e838ad389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:12:cb:90:de:1d:94:25:29:4f:bf:15:f9:69:
92:de:8e:8a:e7:f2:e0:b7:a3:62:63:58:a1:cc:62:
bd:31:f6:88:2a:95:51:bc:57:85:83:e7:bc:36:72:
7a:dc:64:d9:62:79:a4:1a:06:95:2d:ee:97:44:5f:
df:75:f8:71:7a:37:dd:49:2d:4e:48:89:1f:2e:23:
ab:dc:8b:24:5f:e8:ee:33:64:75:8f:dc:d4:c5:35:
41:29:62:cf:ba:a9:ab:6d:e6:4e:2c:6a:ed:da:10:
da:b7:88:05:e0:75:4c:9f:ee:90:56:18:a2:e4:c0:
82:de:9c:2a:57:fc:a7:78:a5:8f:70:ab:84:a6:8e:
d4:ce:6e:bd:31:0c:2b:11:ce:50:4f:83:24:f8:b7:
50:eb:32:c3:dd:17:99:93:2f:57:77:21:99:76:e1:
fb:59:11:d1:a0:20:89:df:17:51:b0:1c:39:77:44:
0c:18:0b:e3:80:88:ba:36:61:81:11:d0:15:2d:46:
97:00:a4:df:21:b9:7b:81:f5:8e:e8:1a:b3:d6:0d:
11:2b:57:72:43:83:48:bd:0f:e0:6d:77:a5:8d:15:
b4:a8:61:0c:b8:4d:1a:f1:45:e7:3f:90:07:9d:ac:
af:3a:f6:7a:f8:f5:93:d3:5d:bb:e0:4a:9f:40:42:
a1:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:6D:19:8A:7C:04:F2:81:64:F3:CD:1C:78:20:DD:9E:83:8A:D3:89
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/VW0ZinwE8oFk880ceCDdnoOK04k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.186.0/24
45.91.208.0/24
45.91.211.0/24
45.95.98.0/24
45.128.77.0/24
45.130.253.0/24
45.137.41.0/24
45.137.86.0/24
45.147.30.0/23
45.152.197.0/24
45.153.21.0/24
45.153.23.0/24
45.153.218.0/23
45.154.230.0/24
45.157.37.0-45.157.38.255
45.158.197.0-45.158.198.255
91.212.107.0/24
113.30.152.0/22
185.164.59.0/24
193.39.209.0/24
193.41.39.0/24
193.111.4.0/23
193.111.18.0/23
194.33.32.0/24
IPv6:
2a09:17c0::/29
2a0e:2240:2::/48
2a0e:2440::/29
2a0e:e980::/29
2a0e:f200:2::/48
2a0f:a02::-2a0f:a04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:1f80::/29
2a0f:ac00::/29
2a0f:da40::/29
2a0f:dac0::/29
2a0f:df40::/29
2a0f:e143::/32
2a0f:e1c0::/32
2a0f:e1c2::/32
2a0f:e1c7::/32
2a0f:e600:1::/48
2a0f:e6c0:123::/48
2a0f:e6c0:991::/48
2a0f:e6c0:fe1::/48
2a0f:e940::/29
Signature Algorithm: sha256WithRSAEncryption
17:ad:c2:fb:c3:5b:2b:f0:61:2f:ec:d2:47:50:42:59:6d:57:
6a:4b:86:34:aa:72:dc:99:97:c5:f6:5e:a0:2c:f1:2f:3f:0b:
01:4e:ca:34:3e:fe:3f:13:ef:dc:f9:ac:49:b6:1b:3d:3a:08:
b5:5d:df:aa:ed:f0:80:77:e0:80:8e:98:5d:36:3e:e7:48:86:
f4:77:3d:a9:14:77:f6:5f:65:37:da:39:7a:f4:d0:a6:f6:b2:
69:f6:bc:1c:84:3e:6f:0a:16:df:b5:d8:a9:76:50:6e:fd:9a:
8d:cb:f9:9e:82:ec:da:34:2e:b5:c6:f4:61:e8:3e:15:9b:42:
af:bf:15:c6:e4:41:dd:d6:da:b5:f1:6d:34:3b:f4:e6:01:90:
24:9e:48:02:01:25:aa:08:20:9f:9d:3d:1c:b2:8f:80:ec:04:
fe:09:71:3b:9a:08:f2:39:28:ec:0f:a2:b1:1f:f1:f1:05:51:
f6:f7:b4:fd:58:95:d8:fd:e4:80:10:0d:3c:ae:f4:b7:7d:c1:
ce:ab:29:13:cf:66:33:31:73:f9:a4:0f:a0:c1:8a:80:26:2a:
f8:d5:10:ad:fd:a3:57:4d:e4:aa:bd:e5:85:d9:85:95:b7:76:
4c:0a:a9:50:5d:98:ec:d7:77:d6:ee:df:f1:d0:a9:ea:3b:55:
55:3e:ab:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 01:23:46 2025 by rpki-client