Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/uU8n_W7S0EmqZU_ACtjZRDxTGoM.roa
File: uU8n_W7S0EmqZU_ACtjZRDxTGoM.roa (raw, json)
Hash identifier: k9yICULaQ6+25oen5R+4eUoyEqe2GkX2UxeOU2YvKrA=
Subject key identifier: B9:4F:27:FD:6E:D2:D0:49:AA:65:4F:C0:0A:D8:D9:44:3C:53:1A:83
Certificate issuer: /CN=5bea81aa9b2197d9127b442525100ffaa36e0d52
Certificate serial: 019422FBFE967E1DEA2BC390079D26461E2B
Authority key identifier: 5B:EA:81:AA:9B:21:97:D9:12:7B:44:25:25:10:0F:FA:A3:6E:0D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-qBqpshl9kSe0QlJRAP-qNuDVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/uU8n_W7S0EmqZU_ACtjZRDxTGoM.roa
Signing time: Wed 01 Jan 2025 17:48:47 +0000
ROA not before: Wed 01 Jan 2025 17:48:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34373
IP address blocks: 45.128.64.0/22 maxlen: 24
45.132.40.0/22 maxlen: 24
77.74.124.0/22 maxlen: 24
86.48.68.0/22 maxlen: 24
91.219.76.0/22 maxlen: 24
185.56.52.0/22 maxlen: 24
185.69.204.0/22 maxlen: 24
185.96.44.0/22 maxlen: 24
185.97.228.0/22 maxlen: 24
185.116.40.0/22 maxlen: 24
185.165.68.0/22 maxlen: 24
185.210.128.0/22 maxlen: 24
193.105.233.0/24 maxlen: 24
217.61.253.0/24 maxlen: 24
2a00:4140::/29 maxlen: 48
2a06:900::/29 maxlen: 48
2a06:7bc0::/29 maxlen: 48
2a0b:57c0::/29 maxlen: 48
2a0b:ec00::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 15 Jan 2025 13:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:fe:96:7e:1d:ea:2b:c3:90:07:9d:26:46:1e:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bea81aa9b2197d9127b442525100ffaa36e0d52
Validity
Not Before: Jan 1 17:48:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b94f27fd6ed2d049aa654fc00ad8d9443c531a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ba:1e:3b:52:39:8a:9d:49:f5:38:77:44:2f:
52:7a:73:2f:dd:08:5e:71:ae:fc:f5:b7:d4:3e:b1:
0a:cd:63:14:cd:f8:51:48:fb:74:ff:6d:ce:c5:4a:
76:08:6b:33:09:01:a7:50:8a:5a:c5:95:d1:94:87:
36:3e:19:13:f3:93:17:9f:12:10:74:ac:83:a4:8d:
2f:64:34:08:02:f5:85:c2:e0:98:87:38:db:42:50:
1d:25:fa:fd:ce:18:31:7f:70:69:d1:d9:69:a7:50:
94:59:ec:b8:6a:0a:3a:3c:67:43:15:d3:a3:de:5b:
80:88:8d:55:d8:07:63:db:24:c5:fc:1a:89:5b:a0:
ee:df:11:1e:ab:d1:ca:1c:41:c2:12:b1:87:70:08:
ae:f5:cb:d5:fe:c8:71:74:5e:0f:b4:03:a8:e9:f4:
fa:cb:19:60:a5:f2:2d:88:48:8a:8d:85:15:6c:29:
48:45:6e:27:9a:ea:39:d8:af:0b:d6:1b:b7:9f:82:
76:c3:b6:70:16:bb:6c:db:e7:f4:b9:4d:1c:41:ca:
c1:d1:94:13:a8:4a:6a:dd:19:d5:21:7e:64:08:d3:
b4:29:d7:be:b1:c9:fb:8c:b1:22:a6:85:67:67:89:
c7:60:62:26:b7:7b:0a:70:a5:4b:40:fd:96:ba:35:
e4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:4F:27:FD:6E:D2:D0:49:AA:65:4F:C0:0A:D8:D9:44:3C:53:1A:83
X509v3 Authority Key Identifier:
keyid:5B:EA:81:AA:9B:21:97:D9:12:7B:44:25:25:10:0F:FA:A3:6E:0D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-qBqpshl9kSe0QlJRAP-qNuDVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/uU8n_W7S0EmqZU_ACtjZRDxTGoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/W-qBqpshl9kSe0QlJRAP-qNuDVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.64.0/22
45.132.40.0/22
77.74.124.0/22
86.48.68.0/22
91.219.76.0/22
185.56.52.0/22
185.69.204.0/22
185.96.44.0/22
185.97.228.0/22
185.116.40.0/22
185.165.68.0/22
185.210.128.0/22
193.105.233.0/24
217.61.253.0/24
IPv6:
2a00:4140::/29
2a06:900::/29
2a06:7bc0::/29
2a0b:57c0::/29
2a0b:ec00::/29
Signature Algorithm: sha256WithRSAEncryption
01:23:f8:bb:5e:94:c1:fa:cf:d0:97:78:11:bd:c7:b7:16:1f:
ee:67:8a:9a:e8:5b:ee:35:e9:3d:5e:df:58:39:04:d8:40:ba:
d5:7f:7f:36:a7:3c:0a:61:85:c4:31:a6:37:f1:48:7d:ac:fa:
dc:eb:ca:68:38:38:5a:0e:6f:34:4c:1e:05:88:f7:3f:d8:b6:
e4:1c:a2:67:9e:df:ac:91:31:32:f9:31:80:6c:56:18:84:47:
8b:01:f5:28:99:d1:17:66:c8:bb:fe:4c:4b:2b:18:56:61:28:
31:17:a3:7f:59:d8:46:20:9d:12:be:62:87:c9:4b:5a:68:68:
de:71:c1:d0:1c:ed:b3:79:12:2c:6a:20:38:d0:27:42:e1:d1:
1b:e9:0f:ce:43:c6:b9:8c:b2:ca:c9:8a:7e:35:d8:ff:68:73:
7f:85:df:65:17:f7:64:12:d9:1a:28:cb:e2:d5:ed:01:c5:86:
4a:42:b8:50:8e:fb:03:2c:bf:e7:1a:dc:00:24:26:fe:6c:81:
c0:65:2c:e0:fd:1b:1e:cc:3e:57:d8:32:de:3a:d5:bd:66:2b:
52:ee:ea:43:92:69:0b:f1:fd:c8:54:e1:be:85:ae:d5:04:39:
c5:21:2a:3d:a2:d6:d5:a1:13:41:af:86:44:be:bf:d9:7a:37:
7a:1b:eb:2a
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAZQi+/6Wfh3qK8OQB50mRh4rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViZWE4MWFhOWIyMTk3ZDkxMjdiNDQyNTI1MTAwZmZhYTM2
ZTBkNTIwHhcNMjUwMTAxMTc0ODQ3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTRmMjdmZDZlZDJkMDQ5YWE2NTRmYzAwYWQ4ZDk0NDNjNTMxYTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7oeO1I5ip1J9Th3RC9SenMv3Qhe
ca789bfUPrEKzWMUzfhRSPt0/23OxUp2CGszCQGnUIpaxZXRlIc2PhkT85MXnxIQ
dKyDpI0vZDQIAvWFwuCYhzjbQlAdJfr9zhgxf3Bp0dlpp1CUWey4ago6PGdDFdOj
3luAiI1V2Adj2yTF/BqJW6Du3xEeq9HKHEHCErGHcAiu9cvV/shxdF4PtAOo6fT6
yxlgpfItiEiKjYUVbClIRW4nmuo52K8L1hu3n4J2w7ZwFrts2+f0uU0cQcrB0ZQT
qEpq3RnVIX5kCNO0Kde+scn7jLEipoVnZ4nHYGImt3sKcKVLQP2WujXkbwIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFLlPJ/1u0tBJqmVPwArY2UQ8UxqDMB8GA1UdIwQY
MBaAFFvqgaqbIZfZEntEJSUQD/qjbg1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVy1xQnFwc2hsOWtTZTBRbEpSQVAtcU51RFZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8yMjQxNTUtM2NhNC00ZmY3LWE5NjQt
ZmMwZGQ5MjUyYzlhLzEvdVU4bl9XN1MwRW1xWlVfQUN0alpSRHhUR29NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8yMjQxNTUtM2NhNC00ZmY3LWE5NjQtZmMwZGQ5MjUyYzlh
LzEvVy1xQnFwc2hsOWtTZTBRbEpSQVAtcU51RFZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGaBggrBgEFBQcBBwEB/wSBijCBhzBaBAIAATBUAwQCLYBA
AwQCLYQoAwQCTUp8AwQCVjBEAwQCW9tMAwQCuTg0AwQCuUXMAwQCuWAsAwQCuWHk
AwQCuXQoAwQCuaVEAwQCudKAAwQAwWnpAwQA2T39MCkEAgACMCMDBQMqAEFAAwUD
KgYJAAMFAyoGe8ADBQMqC1fAAwUDKgvsADANBgkqhkiG9w0BAQsFAAOCAQEAASP4
u16UwfrP0Jd4Eb3HtxYf7meKmuhb7jXpPV7fWDkE2EC61X9/Nqc8CmGFxDGmN/FI
faz63OvKaDg4Wg5vNEweBYj3P9i25ByiZ57frJExMvkxgGxWGIRHiwH1KJnRF2bI
u/5MSysYVmEoMRejf1nYRiCdEr5ih8lLWmho3nHB0Bzts3kSLGogONAnQuHRG+kP
zkPGuYyyysmKfjXY/2hzf4XfZRf3ZBLZGijL4tXtAcWGSkK4UI77Ayy/5xrcACQm
/myBwGUs4P0bHsw+V9gy3jrVvWYrUu7qQ5JpC/H9yFThvoWu1QQ5xSEqPaLW1aET
Qa+GRL6/2Xo3ehvrKg==
-----END CERTIFICATE-----
Generated at Sat Apr 19 03:05:52 2025 by rpki-client