Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/99fd41-7ed8-4b25-8d56-c7ac26bcc2da/1/9udcAEbfhaTJCjhxpDnA0-Q3yFw.roa
File: 9udcAEbfhaTJCjhxpDnA0-Q3yFw.roa (raw, json)
Hash identifier: +vsrk1FEXQfBLhDy9KkSne6W4xVYITlW+FRMHzxpHIQ=
Subject key identifier: F6:E7:5C:00:46:DF:85:A4:C9:0A:38:71:A4:39:C0:D3:E4:37:C8:5C
Certificate issuer: /CN=fd8eff201218a5a823cbe85336853e3db4dd16eb
Certificate serial: 0193D2E8F3F27483202C9468570A794A2E9B
Authority key identifier: FD:8E:FF:20:12:18:A5:A8:23:CB:E8:53:36:85:3E:3D:B4:DD:16:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Y7_IBIYpagjy-hTNoU-PbTdFus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/99fd41-7ed8-4b25-8d56-c7ac26bcc2da/1/9udcAEbfhaTJCjhxpDnA0-Q3yFw.roa
Signing time: Tue 17 Dec 2024 04:38:22 +0000
ROA not before: Tue 17 Dec 2024 04:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60631
IP address blocks: 45.149.76.0/24 maxlen: 24
45.149.77.0/24 maxlen: 24
45.149.78.0/24 maxlen: 24
45.149.79.0/24 maxlen: 24
171.22.24.0/24 maxlen: 24
171.22.25.0/24 maxlen: 24
171.22.26.0/24 maxlen: 24
171.22.27.0/24 maxlen: 24
178.211.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Dec 2024 11:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d2:e8:f3:f2:74:83:20:2c:94:68:57:0a:79:4a:2e:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd8eff201218a5a823cbe85336853e3db4dd16eb
Validity
Not Before: Dec 17 04:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6e75c0046df85a4c90a3871a439c0d3e437c85c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:43:b2:cb:e1:0d:6d:69:05:90:71:11:0f:ee:
be:35:82:9c:bc:e2:06:a8:7d:00:f9:6d:1c:0e:72:
96:e4:a6:cd:1e:bb:ca:db:86:40:ff:63:a3:e4:9a:
84:ff:df:68:9d:ab:78:5f:a9:5c:bb:d4:a7:1a:db:
fd:52:c8:50:34:52:67:18:b6:22:39:4e:2c:1c:92:
31:9f:97:3a:47:b8:73:cf:cb:25:33:8e:9d:39:1d:
cd:c9:e6:9e:8a:a6:66:87:fd:36:44:e8:99:e4:b2:
c2:c2:dc:62:28:cf:bd:8c:de:ce:ab:ba:38:6f:89:
8b:7f:d9:50:95:3d:ce:1c:1b:24:f3:ac:7b:db:e9:
e1:5b:ab:dc:76:ce:35:42:97:61:99:68:e8:6b:06:
88:df:61:c6:6b:6e:11:d5:5a:61:b3:90:e8:c7:b5:
1a:48:c2:a6:cb:cc:d6:60:bb:a6:c5:95:88:f6:e8:
b9:9a:9c:82:5b:d0:08:4a:84:85:3c:e4:86:23:f6:
8f:69:1f:e2:9e:eb:77:e6:91:fe:7d:89:15:60:14:
11:aa:ab:19:68:67:8a:50:ae:46:cd:ff:ef:dd:61:
fb:b6:d2:e8:4b:21:78:f7:6d:58:44:c0:17:a0:99:
4c:59:c7:77:d7:7e:40:a6:f2:0d:eb:af:a0:da:b4:
4f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:E7:5C:00:46:DF:85:A4:C9:0A:38:71:A4:39:C0:D3:E4:37:C8:5C
X509v3 Authority Key Identifier:
keyid:FD:8E:FF:20:12:18:A5:A8:23:CB:E8:53:36:85:3E:3D:B4:DD:16:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Y7_IBIYpagjy-hTNoU-PbTdFus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/99fd41-7ed8-4b25-8d56-c7ac26bcc2da/1/9udcAEbfhaTJCjhxpDnA0-Q3yFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/99fd41-7ed8-4b25-8d56-c7ac26bcc2da/1/_Y7_IBIYpagjy-hTNoU-PbTdFus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.76.0/22
171.22.24.0/22
178.211.145.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:23:25:7a:df:91:07:6e:21:e6:00:75:03:61:32:61:29:22:
4a:eb:1d:aa:24:88:24:e0:69:9e:d2:ab:51:89:bc:ff:ac:df:
0d:8b:c0:3b:b7:1f:cf:d6:b7:2e:ee:1a:1c:c8:40:c8:22:81:
12:fd:c8:38:b5:86:20:72:08:c4:cd:00:bb:e4:80:0d:c9:09:
53:04:c4:2e:98:67:25:c2:fb:5d:53:c8:31:5d:fc:92:b7:7c:
26:62:c1:31:60:cf:b5:c2:e2:d3:fd:85:c6:7d:7e:ad:94:9b:
fc:55:19:fa:97:3c:bb:41:cb:5e:0d:c2:1f:82:3f:c2:46:13:
2f:2d:8f:1b:e8:03:89:e7:0f:1e:60:db:62:56:98:2c:18:d2:
66:d6:41:6e:1a:7a:ef:65:44:e5:e8:2d:98:a1:7f:86:f9:9b:
fd:fa:a0:a5:e2:77:43:06:26:77:d0:51:b0:93:83:4e:54:c4:
5e:99:ad:73:23:14:83:59:19:7c:15:e1:99:55:68:1f:c5:83:
c3:e5:63:b6:b8:ce:6d:17:6c:17:55:d5:c5:3a:98:76:a8:b2:
02:8b:85:c6:8a:16:ac:7b:e5:e1:ca:eb:9f:df:40:e6:df:44:
ca:ce:d3:4a:71:43:7a:1d:0e:e2:69:c9:6e:04:5a:a3:58:07:
83:5b:35:69
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZPS6PPydIMgLJRoVwp5Si6bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkOGVmZjIwMTIxOGE1YTgyM2NiZTg1MzM2ODUzZTNkYjRk
ZDE2ZWIwHhcNMjQxMjE3MDQzODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNmU3NWMwMDQ2ZGY4NWE0YzkwYTM4NzFhNDM5YzBkM2U0MzdjODVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj0Oyy+ENbWkFkHERD+6+NYKcvOIG
qH0A+W0cDnKW5KbNHrvK24ZA/2Oj5JqE/99onat4X6lcu9SnGtv9UshQNFJnGLYi
OU4sHJIxn5c6R7hzz8slM46dOR3NyeaeiqZmh/02ROiZ5LLCwtxiKM+9jN7Oq7o4
b4mLf9lQlT3OHBsk86x72+nhW6vcds41QpdhmWjoawaI32HGa24R1Vphs5Dox7Ua
SMKmy8zWYLumxZWI9ui5mpyCW9AISoSFPOSGI/aPaR/inut35pH+fYkVYBQRqqsZ
aGeKUK5Gzf/v3WH7ttLoSyF4921YRMAXoJlMWcd3135ApvIN66+g2rRPdQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFPbnXABG34WkyQo4caQ5wNPkN8hcMB8GA1UdIwQY
MBaAFP2O/yASGKWoI8voUzaFPj203RbrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX1k3X0lCSVlwYWdqeS1oVE5vVS1QYlRkRnVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC85OWZkNDEtN2VkOC00YjI1LThkNTYt
YzdhYzI2YmNjMmRhLzEvOXVkY0FFYmZoYVRKQ2poeHBEbkEwLVEzeUZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC85OWZkNDEtN2VkOC00YjI1LThkNTYtYzdhYzI2YmNjMmRh
LzEvX1k3X0lCSVlwYWdqeS1oVE5vVS1QYlRkRnVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCLZVMAwQC
qxYYAwQAstORMA0GCSqGSIb3DQEBCwUAA4IBAQBNIyV635EHbiHmAHUDYTJhKSJK
6x2qJIgk4Gme0qtRibz/rN8Ni8A7tx/P1rcu7hocyEDIIoES/cg4tYYgcgjEzQC7
5IANyQlTBMQumGclwvtdU8gxXfySt3wmYsExYM+1wuLT/YXGfX6tlJv8VRn6lzy7
QcteDcIfgj/CRhMvLY8b6AOJ5w8eYNtiVpgsGNJm1kFuGnrvZUTl6C2YoX+G+Zv9
+qCl4ndDBiZ30FGwk4NOVMRema1zIxSDWRl8FeGZVWgfxYPD5WO2uM5tF2wXVdXF
Oph2qLICi4XGihase+Xhyuuf30Dm30TKztNKcUN6HQ7iacluBFqjWAeDWzVp
-----END CERTIFICATE-----
Generated at Sun Apr 20 03:29:41 2025 by rpki-client