Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Q4d_JEVLVz9b59aEAKtHAS1sz0I.roa
File: Q4d_JEVLVz9b59aEAKtHAS1sz0I.roa (raw, json)
Hash identifier: sHxc/yfLHu+XPibcKdtlaR58vPGJtC/TmBs3cFLS3do=
Subject key identifier: 43:87:7F:24:45:4B:57:3F:5B:E7:D6:84:00:AB:47:01:2D:6C:CF:42
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0197A5BEE532AE6627BC51E3AA26A037E5C5
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Q4d_JEVLVz9b59aEAKtHAS1sz0I.roa
Signing time: Wed 25 Jun 2025 06:20:40 +0000
ROA not before: Wed 25 Jun 2025 06:20:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210415
IP address blocks: 2.59.195.0/24 maxlen: 24
31.15.7.0/24 maxlen: 24
45.10.104.0/23 maxlen: 23
45.80.80.0/24 maxlen: 24
45.137.12.0/23 maxlen: 24
45.137.139.0/24 maxlen: 24
45.145.135.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
89.42.113.0/24 maxlen: 24
91.132.30.0/24 maxlen: 24
178.19.42.0/24 maxlen: 24
185.226.192.0/24 maxlen: 24
185.246.15.0/24 maxlen: 24
201.49.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Jun 2025 10:27:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:a5:be:e5:32:ae:66:27:bc:51:e3:aa:26:a0:37:e5:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jun 25 06:20:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=43877f24454b573f5be7d68400ab47012d6ccf42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:44:96:07:79:ac:35:19:89:c1:46:31:3e:7c:
ae:40:7f:a2:98:37:6a:31:3d:66:85:36:0d:57:2a:
b3:95:4a:3a:b9:27:f3:da:8e:8c:8c:83:ff:29:a7:
fd:f6:d9:3a:59:88:60:71:1b:25:d6:8c:1b:52:b0:
2d:4a:fa:04:8d:fb:18:d6:61:ba:67:f4:f4:23:e6:
1c:1e:71:7b:b1:1f:bd:50:12:c1:15:f8:57:d3:fc:
df:c3:ee:9b:e1:57:29:3c:5e:0e:3d:a2:d8:99:d2:
55:54:bf:2e:26:d0:77:7e:0f:6b:4e:ef:86:82:57:
22:e8:45:e5:34:26:24:5c:96:7e:68:0c:fb:41:0b:
59:81:0a:c8:44:9f:87:b4:42:6d:19:20:25:f3:94:
d3:3d:08:0b:09:38:7c:75:bb:3f:dc:d6:ae:af:b8:
1b:a8:d8:a9:61:c4:63:0c:81:c6:c5:58:5a:4b:0e:
bf:31:3c:4d:5c:5c:42:8b:2e:f5:69:63:e2:a0:47:
73:4c:5c:4d:51:a1:e1:46:72:4f:26:c7:cd:0a:ee:
53:12:15:02:5f:31:99:51:8e:18:c4:26:19:d2:a5:
3b:ca:6e:d8:e8:9b:84:c7:fa:7b:c5:ac:c2:20:3e:
cb:ce:19:6a:ef:aa:1a:0a:31:c7:5f:37:a9:4e:00:
cf:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:87:7F:24:45:4B:57:3F:5B:E7:D6:84:00:AB:47:01:2D:6C:CF:42
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Q4d_JEVLVz9b59aEAKtHAS1sz0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.195.0/24
31.15.7.0/24
45.10.104.0/23
45.80.80.0/24
45.137.12.0/23
45.137.139.0/24
45.145.135.0/24
80.66.125.0/24
89.42.113.0/24
91.132.30.0/24
178.19.42.0/24
185.226.192.0/24
185.246.15.0/24
201.49.188.0/24
Signature Algorithm: sha256WithRSAEncryption
25:60:cb:72:73:68:f1:15:59:97:52:fd:d8:30:7c:a2:ba:52:
70:7a:b5:a7:f2:99:80:61:43:8a:bb:30:2e:68:1f:62:2d:03:
6d:60:c0:67:cd:30:27:79:b6:af:4e:8d:bb:fe:b4:3f:f6:df:
f5:4a:4a:bf:d9:2c:8f:3a:2d:7e:2b:cd:88:99:c4:6b:ae:b4:
01:19:7c:4a:b2:a9:a0:cc:ab:44:f0:9c:98:de:82:20:aa:c7:
a3:49:90:c8:68:c8:8b:13:c6:e1:d2:bd:ce:e0:7f:19:bb:c8:
c5:95:14:09:d2:44:c5:42:b8:07:33:ed:ac:99:bc:57:cd:b2:
46:dc:fa:49:05:bb:62:de:0c:78:7f:e8:ea:45:f9:99:62:29:
8a:3c:eb:42:ab:d8:5e:54:d4:7b:f1:ec:ba:fa:f2:65:67:69:
b1:93:29:8d:8e:7e:d4:cc:3a:f6:46:dc:e1:1f:99:50:eb:9a:
8e:97:ce:e3:ed:db:5d:6f:fb:f5:82:f8:4b:e7:5e:44:2b:57:
b0:22:c8:97:e9:ee:b5:10:12:6f:39:78:23:b5:7f:27:c8:bd:
40:eb:c3:e6:66:35:89:cc:b0:79:b6:5e:74:98:ba:8f:61:62:
ad:ce:00:63:86:e5:70:c6:f6:2e:90:d4:07:92:d0:3b:c1:96:
9e:b0:33:02
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgISAZelvuUyrmYnvFHjqiagN+XFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy
N2E0NjcwHhcNMjUwNjI1MDYyMDQwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Mzg3N2YyNDQ1NGI1NzNmNWJlN2Q2ODQwMGFiNDcwMTJkNmNjZjQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUSWB3msNRmJwUYxPnyuQH+imDdq
MT1mhTYNVyqzlUo6uSfz2o6MjIP/Kaf99tk6WYhgcRsl1owbUrAtSvoEjfsY1mG6
Z/T0I+YcHnF7sR+9UBLBFfhX0/zfw+6b4VcpPF4OPaLYmdJVVL8uJtB3fg9rTu+G
glci6EXlNCYkXJZ+aAz7QQtZgQrIRJ+HtEJtGSAl85TTPQgLCTh8dbs/3Naur7gb
qNipYcRjDIHGxVhaSw6/MTxNXFxCiy71aWPioEdzTFxNUaHhRnJPJsfNCu5TEhUC
XzGZUY4YxCYZ0qU7ym7Y6JuEx/p7xazCID7Lzhlq76oaCjHHXzepTgDPVQIDAQAB
o4ICVzCCAlMwHQYDVR0OBBYEFEOHfyRFS1c/W+fWhACrRwEtbM9CMB8GA1UdIwQY
MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt
Y2Q3ZTA2Y2JiNTMxLzEvUTRkX0pFVkxWejliNTlhRUFLdEhBUzFzejBJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx
LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQAAjvDAwQA
Hw8HAwQBLQpoAwQALVBQAwQBLYkMAwQALYmLAwQALZGHAwQAUEJ9AwQAWSpxAwQA
W4QeAwQAshMqAwQAueLAAwQAufYPAwQAyTG8MA0GCSqGSIb3DQEBCwUAA4IBAQAl
YMtyc2jxFVmXUv3YMHyiulJwerWn8pmAYUOKuzAuaB9iLQNtYMBnzTAnebavTo27
/rQ/9t/1Skq/2SyPOi1+K82ImcRrrrQBGXxKsqmgzKtE8JyY3oIgqsejSZDIaMiL
E8bh0r3O4H8Zu8jFlRQJ0kTFQrgHM+2smbxXzbJG3PpJBbti3gx4f+jqRfmZYimK
POtCq9heVNR78ey6+vJlZ2mxkymNjn7UzDr2RtzhH5lQ65qOl87j7dtdb/v1gvhL
515EK1ewIsiX6e61EBJvOXgjtX8nyL1A68PmZjWJzLB5tl50mLqPYWKtzgBjhuVw
xvYukNQHktA7wZaesDMC
-----END CERTIFICATE-----
Generated at Sun Jul 27 05:52:24 2025 by rpki-client