Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/X08wkDXO22XHp0GpNExwJ9jxFMw.roa
File: X08wkDXO22XHp0GpNExwJ9jxFMw.roa (raw, json)
Hash identifier: HheTX/kP3OgjgyycJaQ2Ff4Oy6MRdQ1TVBqPKy0oyrA=
Subject key identifier: 5F:4F:30:90:35:CE:DB:65:C7:A7:41:A9:34:4C:70:27:D8:F1:14:CC
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018F78C8060EC03B2768CB0D99FAE896A52D
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/X08wkDXO22XHp0GpNExwJ9jxFMw.roa
Signing time: Tue 14 May 2024 20:25:25 +0000
ROA not before: Tue 14 May 2024 20:25:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a0e:1a80::/32 maxlen: 32
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a0f:2f80::/29 maxlen: 29
2a0f:3d84::/32 maxlen: 32
2a0f:3d87::/32 maxlen: 32
2a0f:7d02:1::/48 maxlen: 48
2a0f:7d07::/32 maxlen: 32
2a0f:e1c6::/32 maxlen: 32
2a0f:e1c7:1::/48 maxlen: 48
2a0f:e847:2::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a12:f540::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a13:18c6::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 27 May 2024 06:37:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:78:c8:06:0e:c0:3b:27:68:cb:0d:99:fa:e8:96:a5:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 14 20:25:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5f4f309035cedb65c7a741a9344c7027d8f114cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b9:a8:7e:02:55:74:64:1e:97:ea:13:84:92:
1f:1d:bf:b3:1b:db:81:be:57:c4:a2:94:cb:7c:8d:
ce:3d:a7:5e:7f:80:d9:98:46:f5:93:55:aa:9c:bf:
51:9f:aa:d4:1e:5b:0a:9d:42:e8:7e:51:95:32:8f:
db:03:d3:18:0a:f4:24:95:aa:83:ff:72:89:30:7c:
14:6f:cf:5a:cd:45:de:cd:20:97:36:28:1e:93:64:
d9:54:cb:1b:ff:b3:55:13:4d:a1:de:bc:1a:b4:c2:
3f:27:80:18:3f:83:21:32:97:91:b0:50:ca:a3:ab:
b0:40:f2:b3:ca:a6:81:2d:e7:91:5c:b3:f1:f4:21:
7d:d8:82:81:38:4d:0b:ba:bb:78:89:03:df:69:20:
85:fd:c4:25:c4:91:e9:a4:91:16:33:04:f9:2e:d3:
82:cd:dd:2a:b1:77:8d:0e:aa:43:a8:f6:ce:4f:79:
a9:a2:2d:80:f6:7f:85:48:18:ba:82:dd:37:c2:89:
dc:8f:8f:f2:0b:48:61:46:7f:7d:80:8f:0f:b6:ff:
76:89:3d:a9:ae:62:2f:40:d7:70:c4:ba:a3:af:50:
a7:a0:db:6e:04:45:6f:9b:83:67:3f:c4:84:e4:13:
91:b4:2b:75:2e:93:a5:2c:11:84:9a:cb:10:52:7b:
ee:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:4F:30:90:35:CE:DB:65:C7:A7:41:A9:34:4C:70:27:D8:F1:14:CC
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/X08wkDXO22XHp0GpNExwJ9jxFMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2e80::/29
2a0f:2f80::/29
2a0f:3d84::/32
2a0f:3d87::/32
2a0f:7d02:1::/48
2a0f:7d07::/32
2a0f:e1c6::/32
2a0f:e1c7:1::/48
2a0f:e847:2::/48
2a0f:e940::/29
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a12:f540::/29
2a13:18c0:1::/48
2a13:18c6::/32
Signature Algorithm: sha256WithRSAEncryption
86:3f:a1:1a:42:51:1e:20:db:4b:5c:c9:27:77:08:d3:b9:c4:
43:09:66:90:e8:32:03:59:bc:12:2d:67:9d:fa:2e:5f:7b:52:
8a:ef:8c:9d:d7:32:46:5e:38:78:99:52:eb:cf:4e:dd:73:2e:
fa:ef:24:f4:fd:1d:96:ba:87:aa:01:e6:3d:bb:87:35:05:6c:
17:bd:71:d9:7e:d4:27:e7:3d:9d:3e:b9:7e:58:bc:d1:fb:ac:
8e:61:81:f9:3b:cb:dc:3c:03:30:62:67:ba:7e:92:42:b4:c8:
60:30:55:05:2e:94:36:f9:ed:3f:ed:fc:72:2e:b4:bb:80:45:
f0:34:fc:5e:b7:ba:7c:44:64:37:d2:a2:c1:e9:46:d5:3f:79:
30:3e:62:5f:f5:60:ee:b5:ef:89:fd:e7:f3:b9:15:76:f0:56:
8a:0a:a7:71:6c:a8:68:fd:ed:4b:86:ab:33:65:9d:f5:c7:df:
db:75:8b:36:e3:1e:bd:3f:86:83:06:1d:cb:fc:d0:af:b0:77:
ca:83:74:df:36:59:c1:40:48:01:5c:97:fd:73:58:2e:0e:d8:
14:1a:51:5a:41:1a:09:c7:c0:76:06:2c:e6:16:cd:9c:2d:b9:
89:9e:92:bf:98:15:63:7f:e2:9b:64:0e:07:10:85:87:d9:1c:
8e:fb:21:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 10:17:57 2024 by rpki-client on console-ams.rpki-client.org