Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/DakWQDh_CoqeaNa1WsAIvGdk5yA.roa
File: DakWQDh_CoqeaNa1WsAIvGdk5yA.roa (raw, json)
Hash identifier: aW4/OJtQQX28xUXLgznSuFCIlUPeBrZLVC9zbOCwgF4=
Subject key identifier: 0D:A9:16:40:38:7F:0A:8A:9E:68:D6:B5:5A:C0:08:BC:67:64:E7:20
Certificate issuer: /CN=85aaadc568f6c928fd764d421d42c71cf5791954
Certificate serial: 019427B550A8339B6B2EAC5485BA082ECAE8
Authority key identifier: 85:AA:AD:C5:68:F6:C9:28:FD:76:4D:42:1D:42:C7:1C:F5:79:19:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/haqtxWj2ySj9dk1CHULHHPV5GVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/DakWQDh_CoqeaNa1WsAIvGdk5yA.roa
Signing time: Thu 02 Jan 2025 15:49:41 +0000
ROA not before: Thu 02 Jan 2025 15:49:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44092
IP address blocks: 45.145.200.0/22 maxlen: 22
45.145.200.0/24 maxlen: 24
45.145.201.0/24 maxlen: 24
45.145.202.0/24 maxlen: 24
45.145.203.0/24 maxlen: 24
77.242.128.0/20 maxlen: 24
77.242.128.0/24 maxlen: 24
77.242.129.0/24 maxlen: 24
77.242.130.0/24 maxlen: 24
77.242.131.0/24 maxlen: 24
77.242.132.0/24 maxlen: 24
77.242.133.0/24 maxlen: 24
77.242.134.0/24 maxlen: 24
77.242.135.0/24 maxlen: 24
77.242.136.0/24 maxlen: 24
77.242.137.0/24 maxlen: 24
77.242.138.0/24 maxlen: 24
77.242.139.0/24 maxlen: 24
77.242.140.0/24 maxlen: 24
77.242.141.0/24 maxlen: 24
77.242.142.0/24 maxlen: 24
77.242.143.0/24 maxlen: 24
85.208.200.0/22 maxlen: 22
85.208.200.0/24 maxlen: 24
85.208.201.0/24 maxlen: 24
85.208.202.0/24 maxlen: 24
85.208.203.0/24 maxlen: 24
89.37.70.0/23 maxlen: 24
89.37.70.0/24 maxlen: 24
89.37.71.0/24 maxlen: 24
178.23.8.0/21 maxlen: 24
185.56.156.0/22 maxlen: 24
185.71.244.0/22 maxlen: 22
185.171.232.0/22 maxlen: 22
185.171.232.0/24 maxlen: 24
185.171.233.0/24 maxlen: 24
185.171.234.0/24 maxlen: 24
185.171.235.0/24 maxlen: 24
185.178.252.0/22 maxlen: 22
185.191.104.0/22 maxlen: 22
185.191.104.0/24 maxlen: 24
185.191.105.0/24 maxlen: 24
185.191.106.0/24 maxlen: 24
185.191.107.0/24 maxlen: 24
185.215.144.0/22 maxlen: 22
185.215.144.0/24 maxlen: 24
185.215.145.0/24 maxlen: 24
185.215.146.0/24 maxlen: 24
185.215.147.0/24 maxlen: 24
185.219.116.0/22 maxlen: 22
185.219.116.0/24 maxlen: 24
185.219.117.0/24 maxlen: 24
185.219.118.0/24 maxlen: 24
185.219.119.0/24 maxlen: 24
185.248.227.0/24 maxlen: 24
185.255.29.0/24 maxlen: 24
188.191.56.0/22 maxlen: 24
188.191.56.0/24 maxlen: 24
188.191.57.0/24 maxlen: 24
188.191.58.0/24 maxlen: 24
188.191.59.0/24 maxlen: 24
217.28.64.0/22 maxlen: 22
217.28.64.0/24 maxlen: 24
217.28.65.0/24 maxlen: 24
217.28.66.0/24 maxlen: 24
217.28.67.0/24 maxlen: 24
2a02:53e0::/32 maxlen: 32
2a05:3680::/29 maxlen: 29
2a0b:7b80::/29 maxlen: 29
2a0f:de80::/29 maxlen: 29
2a13:56c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 09 Jan 2025 09:34:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:50:a8:33:9b:6b:2e:ac:54:85:ba:08:2e:ca:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85aaadc568f6c928fd764d421d42c71cf5791954
Validity
Not Before: Jan 2 15:49:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0da91640387f0a8a9e68d6b55ac008bc6764e720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:74:c5:00:f0:05:e3:39:5b:a8:ad:c1:58:f8:
ae:e6:3e:37:1a:d7:f8:37:9a:77:a5:de:8a:2e:41:
ad:3e:0f:1d:a4:27:d0:00:1a:5a:fa:5d:97:8d:e4:
20:3f:bf:d1:ef:9a:7f:8f:3e:25:68:fd:41:97:ec:
92:61:15:0f:05:bf:a9:9d:bc:cf:cb:2a:85:03:a0:
eb:4e:9b:97:f0:46:3e:5a:cb:ab:31:ae:5f:74:68:
f8:00:22:22:3f:26:c3:0a:51:29:13:3d:bc:52:e4:
21:26:23:31:e0:37:71:7a:c7:1e:78:dc:52:70:72:
37:b8:62:ca:88:b4:5a:02:72:f0:02:c9:26:c6:a4:
76:3b:5e:b3:47:53:a7:f5:ef:3a:ba:5b:5c:51:58:
d8:00:55:3f:fd:b4:f6:46:e1:1d:7c:90:c0:a3:69:
e5:6f:c6:a7:ec:bf:6f:6a:59:67:40:b6:6d:8d:a4:
2e:01:a2:61:97:8f:18:2b:d8:86:c2:25:77:65:84:
e6:ff:a0:c4:1f:5c:a6:f3:8d:fa:d3:48:7b:db:c3:
26:06:c9:99:e9:07:85:7d:12:2f:45:dc:e8:be:12:
f1:7d:5e:ef:3b:be:25:7e:80:27:71:b7:84:8e:e1:
0c:f2:af:e3:d5:02:ae:ba:4a:37:0e:e6:75:3a:3b:
a5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A9:16:40:38:7F:0A:8A:9E:68:D6:B5:5A:C0:08:BC:67:64:E7:20
X509v3 Authority Key Identifier:
keyid:85:AA:AD:C5:68:F6:C9:28:FD:76:4D:42:1D:42:C7:1C:F5:79:19:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/haqtxWj2ySj9dk1CHULHHPV5GVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/DakWQDh_CoqeaNa1WsAIvGdk5yA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/haqtxWj2ySj9dk1CHULHHPV5GVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.200.0/22
77.242.128.0/20
85.208.200.0/22
89.37.70.0/23
178.23.8.0/21
185.56.156.0/22
185.71.244.0/22
185.171.232.0/22
185.178.252.0/22
185.191.104.0/22
185.215.144.0/22
185.219.116.0/22
185.248.227.0/24
185.255.29.0/24
188.191.56.0/22
217.28.64.0/22
IPv6:
2a02:53e0::/32
2a05:3680::/29
2a0b:7b80::/29
2a0f:de80::/29
2a13:56c0::/29
Signature Algorithm: sha256WithRSAEncryption
c6:2b:81:f8:64:3c:ff:5c:87:35:6b:9c:02:0c:4f:5d:2a:53:
92:cf:76:db:fb:8b:23:29:d2:e4:f3:92:5a:c1:46:05:27:ce:
03:a9:3f:0f:53:cd:ac:5b:b7:f9:b9:9d:05:cf:11:14:97:04:
86:b7:cb:f4:ea:2c:94:ba:ae:fc:77:ff:37:16:14:98:aa:cd:
91:4d:2c:a8:69:90:ba:ba:f9:5e:b2:d7:ea:c3:e2:32:1a:f0:
e5:03:f7:f7:74:ac:d8:c3:88:5f:97:47:ca:65:dc:d8:06:f9:
d7:98:17:4b:1f:9c:d5:4b:1a:67:2d:78:31:8e:ac:01:9b:18:
40:6a:19:55:13:5f:cf:c4:47:37:3a:05:06:45:af:c2:e5:bf:
66:a1:f5:cb:9f:7c:0d:24:5b:20:54:06:08:5d:71:bb:92:97:
78:6d:f3:f6:a4:47:89:56:c1:22:dc:27:5b:b5:b6:b3:07:66:
69:22:f5:c9:79:d1:09:ee:e5:0e:c8:d3:78:55:20:55:15:d0:
73:83:0c:74:87:35:79:b4:80:15:24:64:cc:a6:5c:a0:77:98:
8f:1d:e1:bc:1b:ab:21:80:15:74:6e:e5:06:2a:e9:eb:da:ec:
ab:1f:f8:d4:6f:ba:ed:c9:41:18:16:50:c9:c7:fa:01:92:f2:
45:58:2b:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:50:45 2025 by rpki-client