Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/XyLfqKg3Oolc0RnWcAMHuLwbuMo.roa
File: XyLfqKg3Oolc0RnWcAMHuLwbuMo.roa (raw, json)
Hash identifier: KDd5uCV6fuPTB2ylBQtHKH6X5RdcQZxb2uUT1gdimzI=
Subject key identifier: 5F:22:DF:A8:A8:37:3A:89:5C:D1:19:D6:70:03:07:B8:BC:1B:B8:CA
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0194F59A61742AF7B4A2D74EEE92DAF6D087
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/XyLfqKg3Oolc0RnWcAMHuLwbuMo.roa
Signing time: Tue 11 Feb 2025 15:22:02 +0000
ROA not before: Tue 11 Feb 2025 15:22:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 26383
IP address blocks: 45.144.172.0/24 maxlen: 24
45.144.174.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
92.114.54.0/24 maxlen: 24
93.113.171.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
185.141.219.0/24 maxlen: 24
185.198.235.0/24 maxlen: 24
188.64.142.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.45.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
195.88.89.0/24 maxlen: 24
195.133.193.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.13.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
212.192.20.0/24 maxlen: 24
212.192.23.0/24 maxlen: 24
212.192.214.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Feb 2025 12:58:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f5:9a:61:74:2a:f7:b4:a2:d7:4e:ee:92:da:f6:d0:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 11 15:22:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5f22dfa8a8373a895cd119d6700307b8bc1bb8ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:b4:c3:1d:4b:c9:9c:d4:1c:76:ea:fb:cd:12:
de:b4:eb:a0:13:07:1b:e0:09:5c:0f:67:20:68:31:
89:4c:a9:25:82:7e:c7:cc:6e:e4:76:6f:e6:aa:2e:
07:e6:54:6d:b2:3c:9f:d7:bd:26:cb:21:d0:9c:7e:
6d:ec:73:73:bd:c5:83:35:a3:9d:9c:9c:08:6f:75:
b8:8e:fc:14:ea:be:2f:cc:19:2b:b7:42:4d:0b:e6:
56:39:f5:df:78:8f:92:fb:71:77:5d:c1:9e:53:df:
9f:be:00:b8:3d:64:ba:9c:db:df:64:1a:ab:41:b3:
57:46:d7:c3:22:39:ed:14:9e:66:f8:d0:07:f7:f2:
76:33:ce:ed:35:21:9c:4e:39:71:17:fa:b2:ee:98:
6c:86:b7:96:e7:d6:c2:16:d2:2f:0a:f2:e2:ba:50:
38:e1:35:75:53:ca:f7:ca:70:a6:24:8a:b9:66:4e:
75:fc:87:c2:42:76:49:5b:d8:65:85:0a:61:0d:60:
fa:c1:c1:02:ee:e6:31:54:66:1e:d4:32:06:4b:c2:
54:d1:b9:66:7d:4f:c0:cf:d5:7d:4d:e6:9a:1c:b9:
80:d1:ed:30:11:8c:f4:5c:e6:20:72:8b:ef:75:8d:
67:13:47:dc:20:fd:82:8a:95:c9:91:5d:b7:88:10:
5f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:22:DF:A8:A8:37:3A:89:5C:D1:19:D6:70:03:07:B8:BC:1B:B8:CA
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/XyLfqKg3Oolc0RnWcAMHuLwbuMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.172.0/24
45.144.174.0/24
86.107.100.0/24
92.114.54.0/24
93.113.171.0/24
185.72.8.0/24
185.141.219.0/24
185.198.235.0/24
188.64.142.0/24
193.124.49.0/24
194.58.34.0/24
194.58.44.0-194.58.46.255
195.88.89.0/24
195.133.193.0/24
212.192.12.0/23
212.192.15.0/24
212.192.20.0/24
212.192.23.0/24
212.192.214.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:ae:3f:79:03:15:7d:d3:6b:32:a2:ca:ff:f8:e1:c4:dc:47:
11:6c:9a:9f:9d:3c:e3:b0:ff:5e:72:9d:01:87:3f:f0:d5:55:
7b:7e:62:a4:69:e5:1e:bd:51:14:94:62:16:35:14:bd:43:92:
a1:69:89:1b:e4:c7:b2:c7:de:18:89:25:c9:6d:7d:f8:62:55:
b4:96:08:35:21:6c:27:c2:05:bd:c2:83:3d:61:e2:fd:60:cb:
65:45:69:1e:31:cb:3e:e5:50:9a:8e:92:2a:99:da:6f:bd:39:
b9:d0:e4:78:08:92:60:c6:56:db:b0:5c:75:d2:38:00:56:9b:
f3:ed:b0:71:5a:c5:49:24:d2:0b:09:90:8a:3a:e6:e4:88:1a:
16:a4:bc:87:b0:04:98:a8:63:04:5e:1c:56:b6:7b:35:9e:d8:
af:41:c0:b4:af:ef:db:0c:c3:f5:df:2f:3a:69:ce:7f:ba:ae:
28:94:87:61:76:41:de:0b:e9:ee:54:e6:87:48:8a:ea:d3:f8:
b4:20:06:31:a4:2f:2d:02:3b:4c:48:58:ed:31:12:7e:9a:74:
97:67:84:c8:df:77:4f:3a:77:4c:40:d4:85:07:ff:d7:38:44:
be:c4:4a:60:f6:64:5b:47:d0:2b:4f:08:90:9c:3c:55:2d:88:
b2:75:7c:e8
-----BEGIN CERTIFICATE-----
MIIFdTCCBF2gAwIBAgISAZT1mmF0Kve0otdO7pLa9tCHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjUwMjExMTUyMjAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZjIyZGZhOGE4MzczYTg5NWNkMTE5ZDY3MDAzMDdiOGJjMWJiOGNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi7TDHUvJnNQcdur7zRLetOugEwcb
4AlcD2cgaDGJTKklgn7HzG7kdm/mqi4H5lRtsjyf170myyHQnH5t7HNzvcWDNaOd
nJwIb3W4jvwU6r4vzBkrt0JNC+ZWOfXfeI+S+3F3XcGeU9+fvgC4PWS6nNvfZBqr
QbNXRtfDIjntFJ5m+NAH9/J2M87tNSGcTjlxF/qy7phshreW59bCFtIvCvLiulA4
4TV1U8r3ynCmJIq5Zk51/IfCQnZJW9hlhQphDWD6wcEC7uYxVGYe1DIGS8JU0blm
fU/Az9V9TeaaHLmA0e0wEYz0XOYgcovvdY1nE0fcIP2CipXJkV23iBBfPQIDAQAB
o4ICgTCCAn0wHQYDVR0OBBYEFF8i36ioNzqJXNEZ1nADB7i8G7jKMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvWHlMZnFLZzNPb2xjMFJuV2NBTUh1THdidU1vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGWBggrBgEFBQcBBwEB/wSBhjCBgzCBgAQCAAEwegMEAC2Q
rAMEAC2QrgMEAFZrZAMEAFxyNgMEAF1xqwMEALlICAMEALmN2wMEALnG6wMEALxA
jgMEAMF8MQMEAMI6IjAMAwQCwjosAwQAwjouAwQAw1hZAwQAw4XBAwQB1MAMAwQA
1MAPAwQA1MAUAwQA1MAXAwQB1MDWMA0GCSqGSIb3DQEBCwUAA4IBAQCPrj95AxV9
02syosr/+OHE3EcRbJqfnTzjsP9ecp0Bhz/w1VV7fmKkaeUevVEUlGIWNRS9Q5Kh
aYkb5Meyx94YiSXJbX34YlW0lgg1IWwnwgW9woM9YeL9YMtlRWkeMcs+5VCajpIq
mdpvvTm50OR4CJJgxlbbsFx10jgAVpvz7bBxWsVJJNILCZCKOubkiBoWpLyHsASY
qGMEXhxWtns1ntivQcC0r+/bDMP13y86ac5/uq4olIdhdkHeC+nuVOaHSIrq0/i0
IAYxpC8tAjtMSFjtMRJ+mnSXZ4TI33dPOndMQNSFB//XOES+xEpg9mRbR9ArTwiQ
nDxVLYiydXzo
-----END CERTIFICATE-----
Generated at Sun Apr 20 03:15:49 2025 by rpki-client