Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7qi_3Q5HbC48nxLKMTZa55BUqFw.roa
File: 7qi_3Q5HbC48nxLKMTZa55BUqFw.roa (raw, json)
Hash identifier: vJU9/Fn0HpgXRj/mseWw7yFWyWD/ovhI8NFt6tem6PI=
Subject key identifier: EE:A8:BF:DD:0E:47:6C:2E:3C:9F:12:CA:31:36:5A:E7:90:54:A8:5C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0195140E195A65E872CA7C7B23039D3B139C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7qi_3Q5HbC48nxLKMTZa55BUqFw.roa
Signing time: Mon 17 Feb 2025 13:17:03 +0000
ROA not before: Mon 17 Feb 2025 13:17:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 45.131.186.0/24 maxlen: 24
2a06:de01:140::/44 maxlen: 48
2a06:de01:141::/48 maxlen: 48
2a06:de01:142::/48 maxlen: 48
2a06:de01:143::/48 maxlen: 48
2a06:de01:144::/48 maxlen: 48
2a06:de01:145::/48 maxlen: 48
2a06:de03:3690::/48 maxlen: 48
2a06:de03:3691::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
Validation: Failed, certificate revoked on Fri 21 Feb 2025 13:52:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:14:0e:19:5a:65:e8:72:ca:7c:7b:23:03:9d:3b:13:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 17 13:17:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eea8bfdd0e476c2e3c9f12ca31365ae79054a85c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e6:c6:07:90:0c:f9:81:0b:ec:83:a1:4b:2d:
70:d2:57:d0:20:69:77:65:8e:7c:95:bc:29:69:08:
4d:10:08:31:4c:1b:35:f8:66:c6:b2:1e:b2:c9:b6:
70:9c:f5:80:25:a7:5b:4e:c0:54:a4:77:13:7d:53:
d2:2c:c4:25:74:69:91:d7:0b:67:06:28:ae:db:f8:
be:ab:64:65:dc:e6:02:08:0e:ab:31:76:64:44:7e:
e7:be:92:45:8d:18:bf:46:b8:78:df:c8:a6:e6:d2:
ec:09:f6:dd:c4:e0:76:c2:fd:c1:bf:6a:8d:d1:fe:
28:ee:5a:f7:6d:5e:22:34:ec:4c:5c:78:08:f2:f2:
ec:3e:4a:d4:ae:aa:c4:03:06:7d:16:f2:fe:4e:51:
9d:76:77:ff:c9:a3:cc:11:00:65:2a:3e:d9:28:31:
b3:4d:01:21:20:67:3e:da:3a:69:ad:5f:44:71:3b:
f5:e9:06:44:45:37:17:86:20:46:b1:e4:d1:40:8d:
10:d1:c4:da:a5:53:cc:78:2c:76:f3:62:51:6b:67:
aa:65:ca:65:80:4f:c3:59:4b:34:9c:f2:c1:14:3f:
6b:39:1e:fe:c6:12:67:93:88:7b:57:36:ab:d7:31:
cf:3f:77:97:35:a9:c5:3a:40:40:26:f1:54:17:7e:
c2:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:A8:BF:DD:0E:47:6C:2E:3C:9F:12:CA:31:36:5A:E7:90:54:A8:5C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/7qi_3Q5HbC48nxLKMTZa55BUqFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.186.0/24
IPv6:
2a06:de01:140::/44
2a06:de03:3690::/47
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
a9:9c:9a:94:74:49:d5:c0:4c:36:74:3c:05:2f:41:f5:87:3d:
08:fc:70:3d:7d:9a:8b:ca:0b:ef:31:33:3e:08:c3:42:b3:02:
f8:21:23:5d:3f:83:d2:69:e8:9d:52:74:e8:ac:85:23:80:ed:
64:09:a5:b5:ff:85:0f:16:16:a8:8f:0a:95:91:d8:ec:f8:74:
1d:ae:6f:2e:03:6e:cf:3f:ff:4d:f5:f3:7d:8b:14:00:bc:8b:
19:23:f2:5d:4f:8b:a7:fd:6b:13:4e:9c:5f:00:4e:b1:2b:c5:
83:ec:ca:2f:ed:4d:fc:b5:99:ca:93:e7:f6:28:d4:25:fb:1f:
2e:ef:d6:20:ed:6e:28:c3:22:bc:65:f3:be:f9:c2:32:50:7d:
c8:79:2b:a9:cf:6b:e6:a3:8d:16:8b:e8:00:36:c1:c4:85:c5:
e6:9e:68:a8:a3:2d:32:ca:91:e7:23:33:33:cf:55:11:60:17:
ef:f3:4b:29:91:c2:34:8d:c1:ab:48:cc:58:30:83:ed:c7:63:
45:70:28:7f:66:29:c9:89:2b:f4:98:2e:e6:0a:c3:1d:f7:07:
0c:ea:50:d8:82:03:96:43:d8:ba:95:80:e7:5d:19:96:41:2c:
7c:ba:5c:c1:8e:4d:3d:22:1f:54:62:6e:fe:1d:58:ce:ae:e2:
26:28:2c:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 04:15:00 2025 by rpki-client