Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dy8FWEqt72DEMTCv9-2s4zNvM2U.roa
File: dy8FWEqt72DEMTCv9-2s4zNvM2U.roa (raw, json)
Hash identifier: EFP5yJFIBY8Jy35+NolOaSpTH/BLGpmkXrvQouIWPlY=
Subject key identifier: 77:2F:05:58:4A:AD:EF:60:C4:31:30:AF:F7:ED:AC:E3:33:6F:33:65
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0194E0CE8DF06904EF7342C081F3EB596D85
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dy8FWEqt72DEMTCv9-2s4zNvM2U.roa
Signing time: Fri 07 Feb 2025 14:27:00 +0000
ROA not before: Fri 07 Feb 2025 14:27:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
185.254.66.0/24 maxlen: 24
193.124.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Feb 2025 13:42:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:e0:ce:8d:f0:69:04:ef:73:42:c0:81:f3:eb:59:6d:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 7 14:27:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=772f05584aadef60c43130aff7edace3336f3365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b9:93:ed:b4:64:6b:86:1c:12:7d:40:a0:f0:
e2:fb:24:45:c3:df:2f:58:90:75:ee:6c:6b:45:9f:
38:ac:45:1b:3f:ba:c2:9a:69:e8:6e:5e:0b:ca:da:
8a:31:cc:b6:04:77:3f:3d:9c:1e:a7:c1:b8:e6:62:
e9:a6:e8:ce:67:c3:dc:7c:1c:1e:66:a6:ab:2a:f4:
24:12:c3:2c:2d:03:29:fd:be:cd:bf:f9:e2:c7:9c:
e9:9d:d0:88:94:bd:e5:f4:26:32:f0:a3:4a:5a:c8:
b6:bd:cf:31:06:72:a0:96:e3:a5:a0:c9:92:89:5a:
d1:07:71:b7:74:d0:7f:da:57:a0:57:10:97:94:36:
25:bc:75:71:fd:99:78:68:15:ca:7c:11:b4:10:42:
f7:96:f3:25:f1:63:57:14:80:16:f5:90:a6:5a:20:
56:40:fe:c9:f8:09:d9:2f:44:4a:b7:ba:ad:2a:7a:
e6:7d:2a:7a:db:f0:fe:92:a9:62:62:3a:8f:cf:b0:
08:7c:98:3a:47:95:ff:82:a3:1c:1f:f9:4f:64:0a:
a0:bd:df:f6:b9:2b:79:cd:aa:a8:88:7b:01:71:4b:
7b:1f:91:11:66:86:75:b5:4d:4e:d6:fc:4e:e7:c0:
0a:3b:57:82:d1:6c:80:c3:55:61:86:15:eb:bd:75:
b3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:2F:05:58:4A:AD:EF:60:C4:31:30:AF:F7:ED:AC:E3:33:6F:33:65
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dy8FWEqt72DEMTCv9-2s4zNvM2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.182.0/23
89.34.106.0/24
93.114.183.0/24
185.254.66.0/24
193.124.36.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:37:42:d5:74:7b:9f:54:3c:57:91:04:31:f4:84:7e:ad:4c:
4b:b9:2d:53:ef:51:7f:a1:74:d6:77:2e:48:5e:d6:87:60:66:
22:24:ca:d9:06:e5:80:a0:17:7f:64:f3:1d:70:0b:aa:de:d3:
92:cf:52:28:04:21:4a:28:d2:c0:22:64:a8:e5:62:36:5c:75:
5a:65:57:35:22:c5:a3:9e:73:0f:df:b7:2a:f2:a8:bc:b2:90:
3e:70:a2:bb:9f:b3:84:05:d9:2f:3b:d6:8e:25:9d:67:8e:0e:
15:45:cf:8f:7a:1f:d8:bf:b4:ae:67:9c:25:b2:b6:f8:74:43:
be:5b:45:05:c0:61:cb:31:86:03:59:de:9f:4e:22:ef:2b:73:
63:14:c5:90:15:20:0a:88:98:16:65:77:d3:87:be:c1:88:52:
3d:10:6f:67:1a:a5:02:dd:2c:09:11:69:04:62:ec:e0:3c:56:
2d:cb:44:b1:1e:62:5d:6d:17:17:c0:bc:21:ba:9f:28:4a:ec:
98:5a:ae:94:d2:ed:0b:6d:4d:88:12:41:ff:4b:3b:15:35:04:
ab:17:93:5c:9a:af:ce:61:24:ea:9c:30:90:7a:30:f2:ae:e9:
e0:30:ef:6d:83:0f:4a:43:29:d7:38:06:00:2f:9c:c2:f5:a6:
11:b7:c9:1a
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAZTgzo3waQTvc0LAgfPrWW2FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjUwMjA3MTQyNzAwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzJmMDU1ODRhYWRlZjYwYzQzMTMwYWZmN2VkYWNlMzMzNmYzMzY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA07mT7bRka4YcEn1AoPDi+yRFw98v
WJB17mxrRZ84rEUbP7rCmmnobl4LytqKMcy2BHc/PZwep8G45mLppujOZ8PcfBwe
ZqarKvQkEsMsLQMp/b7Nv/nix5zpndCIlL3l9CYy8KNKWsi2vc8xBnKgluOloMmS
iVrRB3G3dNB/2legVxCXlDYlvHVx/Zl4aBXKfBG0EEL3lvMl8WNXFIAW9ZCmWiBW
QP7J+AnZL0RKt7qtKnrmfSp62/D+kqliYjqPz7AIfJg6R5X/gqMcH/lPZAqgvd/2
uSt5zaqoiHsBcUt7H5ERZoZ1tU1O1vxO58AKO1eC0WyAw1VhhhXrvXWzSQIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFHcvBVhKre9gxDEwr/ftrOMzbzNlMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvZHk4RldFcXQ3MkRFTVRDdjktMnM0ek52TTJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQBLYe2AwQA
WSJqAwQAXXK3AwQAuf5CAwQAwXwkMA0GCSqGSIb3DQEBCwUAA4IBAQCPN0LVdHuf
VDxXkQQx9IR+rUxLuS1T71F/oXTWdy5IXtaHYGYiJMrZBuWAoBd/ZPMdcAuq3tOS
z1IoBCFKKNLAImSo5WI2XHVaZVc1IsWjnnMP37cq8qi8spA+cKK7n7OEBdkvO9aO
JZ1njg4VRc+Peh/Yv7SuZ5wlsrb4dEO+W0UFwGHLMYYDWd6fTiLvK3NjFMWQFSAK
iJgWZXfTh77BiFI9EG9nGqUC3SwJEWkEYuzgPFYty0SxHmJdbRcXwLwhup8oSuyY
Wq6U0u0LbU2IEkH/SzsVNQSrF5Ncmq/OYSTqnDCQejDyrungMO9tgw9KQynXOAYA
L5zC9aYRt8ka
-----END CERTIFICATE-----
Generated at Sat Jun 7 07:12:09 2025 by rpki-client