Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/gQ6SN6i9r8AaFQcZQ4FElhTZUto.roa
File: gQ6SN6i9r8AaFQcZQ4FElhTZUto.roa (raw, json)
Hash identifier: fPzmcGAepyBPoWOOxG7dDCU2FtUEvDW23/4sZ01O46s=
Subject key identifier: 81:0E:92:37:A8:BD:AF:C0:1A:15:07:19:43:81:44:96:14:D9:52:DA
Certificate issuer: /CN=7094a425595e923c4b53b9c000aa8f19ad923f20
Certificate serial: 018CC4252495501349ADAA321D80EB43C6E5
Authority key identifier: 70:94:A4:25:59:5E:92:3C:4B:53:B9:C0:00:AA:8F:19:AD:92:3F:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cJSkJVlekjxLU7nAAKqPGa2SPyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/gQ6SN6i9r8AaFQcZQ4FElhTZUto.roa
Signing time: Mon 01 Jan 2024 08:30:17 +0000
ROA not before: Mon 01 Jan 2024 08:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200738
IP address blocks: 45.129.20.0/24 maxlen: 24
45.129.21.0/24 maxlen: 24
188.215.8.0/22 maxlen: 22
77.83.124.0/22 maxlen: 22
176.100.224.0/24 maxlen: 24
176.100.225.0/24 maxlen: 24
176.100.224.0/20 maxlen: 20
134.255.215.0/24 maxlen: 24
185.159.252.0/22 maxlen: 22
185.97.168.0/22 maxlen: 22
193.26.148.0/22 maxlen: 22
92.114.56.0/22 maxlen: 22
193.35.14.0/23 maxlen: 23
193.35.26.0/23 maxlen: 23
176.100.212.0/22 maxlen: 22
176.100.208.0/22 maxlen: 22
93.114.240.0/22 maxlen: 22
109.230.216.0/23 maxlen: 23
109.230.222.0/24 maxlen: 24
193.31.36.0/22 maxlen: 22
185.170.147.0/24 maxlen: 24
2a06:6c0:24::/48 maxlen: 48
2a06:6c0:2::/48 maxlen: 48
2a06:6c0:22::/48 maxlen: 48
2a06:6c0:26::/48 maxlen: 48
2a06:6c0:1::/48 maxlen: 48
2a06:6c0:255::/48 maxlen: 48
2a06:6c0:3::/48 maxlen: 48
2a06:6c0:23::/48 maxlen: 48
2a06:6c0:254::/48 maxlen: 48
2a06:6c0:25::/48 maxlen: 48
2a06:6c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 Apr 2024 07:37:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:24:95:50:13:49:ad:aa:32:1d:80:eb:43:c6:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7094a425595e923c4b53b9c000aa8f19ad923f20
Validity
Not Before: Jan 1 08:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=810e9237a8bdafc01a1507194381449614d952da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:21:25:83:98:96:35:f5:dd:ee:01:d5:14:f5:
e7:9e:2d:24:1c:01:cc:fa:ee:13:bb:2e:d5:29:e3:
62:4b:e2:5e:91:06:c0:22:68:ba:40:81:e7:ff:38:
e2:02:80:d9:63:31:f0:1a:8d:83:9c:04:04:f3:ae:
fa:5c:20:42:26:7d:15:53:1a:8f:ea:23:1a:98:0a:
fa:1b:df:16:2b:b5:d4:16:9f:cd:d3:4a:10:bf:bc:
8d:ea:12:aa:0b:34:cb:c6:55:8f:0b:46:b1:15:3c:
2f:f6:ae:21:ae:a0:fe:27:9f:e5:93:d9:e2:56:03:
4e:f2:61:cf:89:c4:5d:10:b9:27:77:e0:87:0c:64:
37:e2:2a:72:e0:e3:7c:6a:8e:d8:ab:31:85:b7:3f:
b0:83:70:0d:49:b6:77:d0:84:75:42:48:0f:59:21:
f1:37:d0:3d:e9:6f:f9:5c:bf:46:b9:1c:ec:3c:22:
2f:ab:b5:55:0a:84:9f:f0:1f:26:8a:1c:0d:7b:21:
c5:43:2d:6d:4c:3e:55:90:03:ac:c0:13:61:29:73:
c7:e0:bc:84:d4:a2:a7:ec:c2:2c:6d:f3:95:8a:f2:
76:7f:23:57:4f:62:29:e3:eb:24:13:d4:d9:2b:56:
f0:81:66:6c:cd:42:e4:d5:80:ef:0b:e2:20:c4:6a:
ed:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:0E:92:37:A8:BD:AF:C0:1A:15:07:19:43:81:44:96:14:D9:52:DA
X509v3 Authority Key Identifier:
keyid:70:94:A4:25:59:5E:92:3C:4B:53:B9:C0:00:AA:8F:19:AD:92:3F:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cJSkJVlekjxLU7nAAKqPGa2SPyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/gQ6SN6i9r8AaFQcZQ4FElhTZUto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/cJSkJVlekjxLU7nAAKqPGa2SPyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.20.0/23
77.83.124.0/22
92.114.56.0/22
93.114.240.0/22
109.230.216.0/23
109.230.222.0/24
134.255.215.0/24
176.100.208.0/21
176.100.224.0/20
185.97.168.0/22
185.159.252.0/22
185.170.147.0/24
188.215.8.0/22
193.26.148.0/22
193.31.36.0/22
193.35.14.0/23
193.35.26.0/23
IPv6:
2a06:6c0::/46
2a06:6c0:22::-2a06:6c0:26:ffff:ffff:ffff:ffff:ffff
2a06:6c0:254::/47
Signature Algorithm: sha256WithRSAEncryption
88:c2:3a:76:70:42:e0:84:82:c0:24:b5:b8:b5:67:17:7d:5d:
c1:42:e7:21:e6:59:f9:12:4c:c2:e4:7c:33:a7:11:4d:3b:16:
23:10:e4:79:1b:01:61:aa:c4:63:d3:f9:41:53:37:82:33:9e:
67:b9:d1:20:9c:33:af:f5:49:83:9e:6c:19:07:6b:a1:01:6b:
08:03:6d:dd:a4:7e:21:63:51:77:e5:b5:bd:7c:fe:7d:95:37:
02:a0:75:d7:c9:d6:b3:9d:e5:87:c2:07:10:46:f3:e4:b5:1a:
97:6c:8c:1e:02:f6:71:d4:d2:78:44:3a:91:1b:5a:81:4d:e3:
6c:b1:34:f8:06:fb:98:e9:fa:3a:20:ff:5b:59:81:4e:a4:4b:
45:1b:f1:8a:46:95:25:d9:76:83:93:8e:2a:d4:6f:e6:60:e4:
26:72:86:d1:b2:4c:dd:c4:cd:b8:38:2d:bc:19:f5:8b:05:3a:
f9:16:0c:c6:ab:73:46:bb:26:0a:7d:99:be:be:f4:9d:e2:8f:
94:85:71:0f:43:00:10:56:c2:2b:12:5f:54:a2:e7:bc:86:6b:
9d:a4:6d:d3:a2:3a:48:9e:92:8c:be:ad:5c:2a:be:3e:a2:d2:
64:a7:2f:44:8e:94:57:eb:ad:0f:6b:22:41:81:2f:c8:b0:12:
c2:d6:c5:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 12:39:37 2025 by rpki-client