Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/6l8YraQtXQAzUowrJuIDsuVLQLI.roa
File: 6l8YraQtXQAzUowrJuIDsuVLQLI.roa (raw, json)
Hash identifier: oUb1V1eOFXUWg1IXslhlPLSFhtOsb9pWG9HsGk4VkTY=
Subject key identifier: EA:5F:18:AD:A4:2D:5D:00:33:52:8C:2B:26:E2:03:B2:E5:4B:40:B2
Certificate issuer: /CN=5188dedacdc240b4b2f786f12342e0a83d8ae80f
Certificate serial: 019427437183750B6F8A3BE44DDEC4E349C3
Authority key identifier: 51:88:DE:DA:CD:C2:40:B4:B2:F7:86:F1:23:42:E0:A8:3D:8A:E8:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UYje2s3CQLSy94bxI0LgqD2K6A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/6l8YraQtXQAzUowrJuIDsuVLQLI.roa
Signing time: Thu 02 Jan 2025 13:45:18 +0000
ROA not before: Thu 02 Jan 2025 13:45:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208366
IP address blocks: 45.142.220.0/22 maxlen: 22
45.142.220.0/24 maxlen: 24
45.142.221.0/24 maxlen: 24
45.142.222.0/24 maxlen: 24
45.142.223.0/24 maxlen: 24
2a0e:dbc0::/29 maxlen: 29
2a0e:dbc0::/48 maxlen: 48
2a0e:dbc0:1::/48 maxlen: 48
2a0e:dbc0:2::/48 maxlen: 48
2a0e:dbc0:3::/48 maxlen: 48
2a0e:dbc0:4::/48 maxlen: 48
2a0e:dbc0:5::/48 maxlen: 48
2a0e:dbc0:6::/48 maxlen: 48
2a0e:dbc0:7::/48 maxlen: 48
2a0e:dbc0:8::/48 maxlen: 48
2a0e:dbc0:9::/48 maxlen: 48
2a0e:dbc0:a::/48 maxlen: 48
2a0e:dbc0:b::/48 maxlen: 48
2a0e:dbc0:c::/48 maxlen: 48
2a0e:dbc0:d::/48 maxlen: 48
2a0e:dbc0:e::/48 maxlen: 48
2a0e:dbc0:f::/48 maxlen: 48
2a0e:dbc0:1000::/48 maxlen: 48
2a0e:dbc0:1001::/48 maxlen: 48
2a0e:dbc0:1002::/48 maxlen: 48
2a0e:dbc0:1003::/48 maxlen: 48
2a0e:dbc0:1004::/48 maxlen: 48
2a0e:dbc0:1005::/48 maxlen: 48
2a0e:dbc0:1006::/48 maxlen: 48
2a0e:dbc0:1007::/48 maxlen: 48
2a0e:dbc0:1008::/48 maxlen: 48
2a0e:dbc0:1009::/48 maxlen: 48
2a0e:dbc0:100a::/48 maxlen: 48
2a0e:dbc0:100b::/48 maxlen: 48
2a0e:dbc0:100c::/48 maxlen: 48
2a0e:dbc0:100d::/48 maxlen: 48
2a0e:dbc0:100e::/48 maxlen: 48
2a0e:dbc0:100f::/48 maxlen: 48
2a0e:dbc0:2000::/48 maxlen: 48
2a0e:dbc0:2001::/48 maxlen: 48
2a0e:dbc0:2002::/48 maxlen: 48
2a0e:dbc0:2003::/48 maxlen: 48
2a0e:dbc0:2004::/48 maxlen: 48
2a0e:dbc0:2005::/48 maxlen: 48
2a0e:dbc0:2006::/48 maxlen: 48
2a0e:dbc0:2007::/48 maxlen: 48
2a0e:dbc0:2008::/48 maxlen: 48
2a0e:dbc0:2009::/48 maxlen: 48
2a0e:dbc0:200a::/48 maxlen: 48
2a0e:dbc0:200b::/48 maxlen: 48
2a0e:dbc0:200c::/48 maxlen: 48
2a0e:dbc0:200d::/48 maxlen: 48
2a0e:dbc0:200e::/48 maxlen: 48
2a0e:dbc0:200f::/48 maxlen: 48
2a0e:dbc0:3000::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 03 Jan 2025 07:19:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:43:71:83:75:0b:6f:8a:3b:e4:4d:de:c4:e3:49:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5188dedacdc240b4b2f786f12342e0a83d8ae80f
Validity
Not Before: Jan 2 13:45:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ea5f18ada42d5d0033528c2b26e203b2e54b40b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e3:d5:f7:ab:7d:ef:51:fa:8b:f3:70:a4:8f:
8b:ea:f7:16:ba:57:82:70:a8:2d:26:7a:69:d0:28:
f9:d2:1d:db:2d:7a:ee:68:29:7d:21:d8:ea:f1:ef:
26:c3:03:32:a2:bd:98:a0:fd:42:80:35:47:f4:ac:
67:58:9f:e3:1e:cc:29:92:9f:94:de:72:1a:c2:94:
23:26:86:29:49:18:7b:6f:73:eb:fd:7e:6d:c5:21:
55:2d:f0:74:46:06:51:51:06:37:ba:48:0b:b0:00:
50:83:b5:6d:90:02:08:aa:3b:f1:fe:7b:cf:ea:34:
91:5a:15:0c:e1:48:49:65:4a:1e:a0:70:1f:5b:e8:
4e:0f:ad:40:5c:69:30:ee:b8:74:3e:e6:3b:eb:c0:
63:20:27:ac:39:83:04:b3:dd:c5:2a:7a:e5:77:fa:
c9:29:65:6b:53:cd:6c:02:eb:ab:bd:fe:7d:1d:ee:
ac:29:c6:a0:d9:c7:37:94:3d:a5:22:c3:65:5e:51:
3b:c6:b9:a4:6f:31:36:c0:4f:e6:f8:83:80:bc:71:
ed:82:f5:e6:8c:a6:b0:ad:dc:b2:d7:b4:21:4c:19:
02:b7:bf:4a:42:aa:68:7e:5d:86:7c:aa:f8:86:d2:
af:76:d4:db:d5:af:d5:e3:80:7c:d3:a4:66:9e:1f:
59:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:5F:18:AD:A4:2D:5D:00:33:52:8C:2B:26:E2:03:B2:E5:4B:40:B2
X509v3 Authority Key Identifier:
keyid:51:88:DE:DA:CD:C2:40:B4:B2:F7:86:F1:23:42:E0:A8:3D:8A:E8:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UYje2s3CQLSy94bxI0LgqD2K6A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/6l8YraQtXQAzUowrJuIDsuVLQLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/UYje2s3CQLSy94bxI0LgqD2K6A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.220.0/22
IPv6:
2a0e:dbc0::/29
Signature Algorithm: sha256WithRSAEncryption
47:41:54:01:a3:55:f6:50:ef:21:7b:1c:2f:5c:c3:4b:0c:a5:
98:78:0b:d7:72:aa:9a:a9:82:04:45:6e:92:d0:f1:2a:92:ec:
8d:79:ab:3c:1c:95:07:38:9c:5f:7e:21:6a:c0:1e:24:94:bf:
31:65:ed:1b:d4:53:b0:26:c7:2d:4a:8a:a9:0f:f2:6c:6a:07:
2b:cc:b3:98:4a:99:a7:0c:96:a1:25:80:6d:89:7f:e1:4e:30:
92:29:aa:30:ae:1a:e1:e1:5b:c4:fd:69:d6:c2:fe:5b:9b:9c:
b7:2d:f8:0a:72:97:e3:08:fa:5e:8f:6a:4e:7b:bf:ab:10:c5:
6d:e0:4f:50:7d:44:05:66:fa:fd:19:09:c8:a0:9f:3d:c2:07:
47:46:5e:ab:7f:d0:bb:55:2d:58:8a:ba:9b:c2:d4:4f:ae:b2:
65:a0:fd:0c:f7:4d:e9:a8:04:14:37:3a:54:78:57:78:7a:77:
83:94:68:e6:d9:bb:28:1b:f8:af:0e:36:5f:0a:55:63:dd:8a:
60:0c:93:fd:65:a9:d1:50:2c:d5:c9:07:0c:b1:26:b5:e3:5f:
43:3b:80:88:41:2c:ef:4b:61:43:bd:40:a0:4a:85:24:a4:77:
53:fb:a3:dd:72:21:94:80:53:09:3a:ae:f9:81:54:e9:dc:d0:
2b:bb:a1:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:49:58 2025 by rpki-client