Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/2Q-siNV6Anj2utEjpJHKWs_Mdlo.roa
File: 2Q-siNV6Anj2utEjpJHKWs_Mdlo.roa (raw, json)
Hash identifier: naPaolP/5lsz53B0jDr76VzphsRkUMKbAo0sYiFWitM=
Subject key identifier: D9:0F:AC:88:D5:7A:02:78:F6:BA:D1:23:A4:91:CA:5A:CF:CC:76:5A
Certificate issuer: /CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Certificate serial: 0193B722F7C1C1ABB284F6A558D76717E029
Authority key identifier: 7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/2Q-siNV6Anj2utEjpJHKWs_Mdlo.roa
Signing time: Wed 11 Dec 2024 19:12:22 +0000
ROA not before: Wed 11 Dec 2024 19:12:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204601
IP address blocks: 45.81.224.0/22 maxlen: 22
45.82.68.0/22 maxlen: 22
45.82.176.0/22 maxlen: 22
45.87.0.0/22 maxlen: 22
45.136.84.0/24 maxlen: 24
45.136.85.0/24 maxlen: 24
45.136.86.0/24 maxlen: 24
45.136.87.0/24 maxlen: 24
45.137.64.0/22 maxlen: 22
46.18.107.0/24 maxlen: 24
46.21.250.0/24 maxlen: 24
77.220.214.0/24 maxlen: 24
77.220.215.0/24 maxlen: 24
81.31.197.0/24 maxlen: 24
91.201.25.0/24 maxlen: 24
91.208.127.0/24 maxlen: 24
91.209.226.0/24 maxlen: 24
91.228.56.0/24 maxlen: 24
94.124.78.0/24 maxlen: 24
178.159.38.0/24 maxlen: 24
178.159.39.0/24 maxlen: 24
178.159.42.0/24 maxlen: 24
185.23.108.0/24 maxlen: 24
185.51.121.0/24 maxlen: 24
185.51.246.0/24 maxlen: 24
185.51.247.0/24 maxlen: 24
185.107.237.0/24 maxlen: 24
185.204.109.0/24 maxlen: 24
185.232.164.0/24 maxlen: 24
185.235.129.0/24 maxlen: 24
185.235.130.0/24 maxlen: 24
185.235.131.0/24 maxlen: 24
185.241.52.0/24 maxlen: 24
185.241.53.0/24 maxlen: 24
185.241.54.0/24 maxlen: 24
185.241.55.0/24 maxlen: 24
185.244.216.0/22 maxlen: 22
185.244.216.0/24 maxlen: 24
185.244.217.0/24 maxlen: 24
185.250.204.0/24 maxlen: 24
185.250.205.0/24 maxlen: 24
185.250.206.0/24 maxlen: 24
193.22.21.0/24 maxlen: 24
193.56.8.0/24 maxlen: 24
193.163.7.0/24 maxlen: 24
193.163.113.0/24 maxlen: 24
194.29.53.0/24 maxlen: 24
212.8.244.0/24 maxlen: 24
212.8.246.0/24 maxlen: 24
212.23.221.0/24 maxlen: 24
212.86.101.0/24 maxlen: 24
212.86.102.0/24 maxlen: 24
212.86.108.0/24 maxlen: 24
212.86.109.0/24 maxlen: 24
212.162.152.0/22 maxlen: 22
213.166.68.0/24 maxlen: 24
213.166.69.0/24 maxlen: 24
213.166.70.0/24 maxlen: 24
213.166.71.0/24 maxlen: 24
2a07:5980::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 12 Dec 2024 10:53:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b7:22:f7:c1:c1:ab:b2:84:f6:a5:58:d7:67:17:e0:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Validity
Not Before: Dec 11 19:12:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d90fac88d57a0278f6bad123a491ca5acfcc765a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a4:e8:7b:57:8b:6f:5a:35:bb:4a:28:c8:08:
5c:e3:57:bb:a0:8f:9b:0f:a7:3f:87:33:31:13:f3:
9b:b3:8d:31:dc:0f:5c:97:9b:d7:db:99:29:9d:16:
c4:35:93:b2:7c:b1:68:d9:44:9d:81:6e:a4:d5:ce:
ba:b1:06:07:b4:a3:34:03:a3:8a:65:4a:c5:2f:b7:
0f:b6:29:8a:df:45:30:c9:d7:2b:43:d7:76:4d:45:
d9:16:6d:0f:97:c2:00:83:fa:10:9a:48:2d:de:8d:
2b:50:e1:0f:c5:99:ae:3d:41:42:09:76:3c:1d:aa:
23:e6:3d:3a:07:b4:4b:a8:47:5f:75:ee:fa:61:2d:
75:fb:f7:ac:1b:95:eb:65:01:f6:d0:81:74:54:05:
96:73:13:83:36:ea:5f:90:c8:11:31:fd:12:3e:a1:
fb:dc:bd:e5:a3:76:1a:f2:de:56:c9:41:ca:e0:c0:
0a:6f:d9:54:1a:2d:9f:39:45:a8:1e:ef:15:79:1a:
62:84:da:43:d6:40:ed:c1:bc:dc:f4:2c:27:1c:1e:
1d:81:56:c2:fd:e0:9f:d2:6b:3b:d4:3e:dd:98:fd:
c4:ef:bc:51:aa:b5:78:a8:6e:14:22:43:a4:fe:5d:
22:0a:38:c8:68:bc:d5:8b:32:f8:af:f8:41:cd:a6:
69:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:0F:AC:88:D5:7A:02:78:F6:BA:D1:23:A4:91:CA:5A:CF:CC:76:5A
X509v3 Authority Key Identifier:
keyid:7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/2Q-siNV6Anj2utEjpJHKWs_Mdlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/f8rYnfG_maNvKQzD7w8ee00CdTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.224.0/22
45.82.68.0/22
45.82.176.0/22
45.87.0.0/22
45.136.84.0/22
45.137.64.0/22
46.18.107.0/24
46.21.250.0/24
77.220.214.0/23
81.31.197.0/24
91.201.25.0/24
91.208.127.0/24
91.209.226.0/24
91.228.56.0/24
94.124.78.0/24
178.159.38.0/23
178.159.42.0/24
185.23.108.0/24
185.51.121.0/24
185.51.246.0/23
185.107.237.0/24
185.204.109.0/24
185.232.164.0/24
185.235.129.0-185.235.131.255
185.241.52.0/22
185.244.216.0/22
185.250.204.0-185.250.206.255
193.22.21.0/24
193.56.8.0/24
193.163.7.0/24
193.163.113.0/24
194.29.53.0/24
212.8.244.0/24
212.8.246.0/24
212.23.221.0/24
212.86.101.0-212.86.102.255
212.86.108.0/23
212.162.152.0/22
213.166.68.0/22
IPv6:
2a07:5980::/29
Signature Algorithm: sha256WithRSAEncryption
97:74:bf:14:29:1e:29:55:24:29:c5:52:f8:29:ed:15:e3:64:
b1:d1:72:23:98:a2:64:8b:05:f2:f2:e9:e4:48:14:10:57:17:
9d:a9:f1:14:6b:a0:f9:1f:b2:b7:8d:78:34:48:8d:e9:b9:fa:
9c:73:c5:c1:27:f6:a7:7c:85:d9:9c:2a:55:0a:b2:3d:6c:4d:
c3:0e:27:6e:b6:10:03:2e:53:1f:37:5b:c1:5f:5c:ac:93:60:
61:5c:01:7d:c1:2b:1b:ed:85:7d:e1:10:5a:ea:05:be:47:56:
d2:b1:c9:4c:15:97:d6:30:f8:86:fc:ee:fc:e5:63:a9:c4:13:
de:c9:01:c8:5d:6b:f7:02:2e:1f:6f:45:18:bf:67:ac:0b:b8:
e5:9c:c8:6e:cd:e2:58:bd:81:b0:6f:81:16:8a:00:8a:d9:99:
4e:29:92:17:52:5a:9a:40:77:b5:0a:08:7a:3d:f7:eb:72:94:
38:ec:8c:df:37:5b:27:53:e6:de:b8:66:07:01:0b:7d:f6:d6:
02:91:61:e7:a4:67:1e:d3:26:e1:58:17:6a:37:e0:43:3b:69:
1e:d9:a0:7f:fb:3e:0a:37:32:32:4c:70:95:74:24:de:03:44:
05:45:b1:ae:86:76:6a:2b:ac:46:e7:39:08:51:cc:e4:ee:47:
85:8c:65:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 07:57:40 2025 by rpki-client