Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/zR0ClGgbZKuo5kj6IpY29lwS134.roa
File: zR0ClGgbZKuo5kj6IpY29lwS134.roa (raw, json)
Hash identifier: LamowKCh35cUJMNaBJuOq+uEw0blK2Z9ydG2gHGb+TY=
Subject key identifier: CD:1D:02:94:68:1B:64:AB:A8:E6:48:FA:22:96:36:F6:5C:12:D7:7E
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0196F795D95C1C1D1ABD188F43D7352E1D17
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/zR0ClGgbZKuo5kj6IpY29lwS134.roa
Signing time: Thu 22 May 2025 10:41:54 +0000
ROA not before: Thu 22 May 2025 10:41:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
46.102.237.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
93.115.106.0/24 maxlen: 24
93.115.203.0/24 maxlen: 24
94.177.106.0/24 maxlen: 24
94.177.145.0/24 maxlen: 24
103.245.230.0/24 maxlen: 24
194.85.251.0/24 maxlen: 24
202.71.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 May 2025 05:34:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f7:95:d9:5c:1c:1d:1a:bd:18:8f:43:d7:35:2e:1d:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: May 22 10:41:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cd1d0294681b64aba8e648fa229636f65c12d77e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6c:39:9c:4d:f7:2c:d7:01:42:f1:cf:0b:7a:
dd:13:5c:03:dc:b5:34:12:6d:6a:63:ba:42:38:78:
25:29:24:77:d5:ec:27:76:d4:ec:07:fb:c9:c8:b4:
e2:c8:de:4a:b8:a1:0d:70:f8:f0:d3:75:d2:e7:5f:
86:16:40:22:e4:89:a2:bf:a2:93:d1:d2:ed:7c:81:
40:8a:03:b9:7b:a5:1e:a8:51:16:45:31:5d:a0:fe:
26:e9:cc:9c:73:56:8c:5e:01:96:f6:f0:6f:25:c6:
ef:12:a0:0c:fb:d2:47:dc:4c:bd:00:e8:59:90:13:
45:97:06:c1:02:d1:56:b9:10:8d:e5:87:51:75:f4:
11:8f:01:19:67:55:66:b3:fc:6b:1e:12:85:b1:e0:
32:b6:2d:35:95:ad:cd:68:7a:21:2c:6d:0f:c9:2e:
e1:fc:36:ad:1f:ec:07:0f:45:c0:cc:c8:ba:00:4c:
d0:ca:25:72:3e:15:40:4c:d4:ab:42:f1:ce:4b:70:
d6:9f:5a:1e:47:d1:6c:18:b4:ae:30:8d:2c:c6:6b:
83:bd:10:47:f6:db:80:72:a6:2d:1c:66:63:e1:80:
48:3e:26:d3:dd:f4:f8:27:44:17:8d:6b:f9:f1:46:
aa:af:28:53:13:7b:63:14:b1:ae:07:c8:8f:41:0e:
5d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:1D:02:94:68:1B:64:AB:A8:E6:48:FA:22:96:36:F6:5C:12:D7:7E
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/zR0ClGgbZKuo5kj6IpY29lwS134.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.182.0/23
46.102.237.0/24
89.34.106.0/24
93.114.183.0/24
93.115.106.0/24
93.115.203.0/24
94.177.106.0/24
94.177.145.0/24
103.245.230.0/24
194.85.251.0/24
202.71.15.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:81:2d:2f:81:83:95:ef:07:33:e3:74:b5:6a:e6:60:1a:13:
9a:5e:bd:cb:b2:a3:a0:17:2d:a9:58:d2:e4:16:da:fa:f2:df:
ee:91:6c:ce:a6:3b:90:db:65:92:d2:37:d5:62:cd:a9:16:dd:
3d:c4:20:f9:a9:15:ac:97:58:71:05:35:1c:d7:7b:46:78:9e:
87:13:c5:2e:f3:05:5f:eb:fa:5b:e8:3f:ae:95:a2:5e:3e:10:
8f:c5:95:af:48:f1:70:fc:47:d6:40:9f:3d:6b:dc:97:8f:94:
70:fa:eb:1c:d3:2f:e0:b7:ea:94:bb:25:87:6c:b4:10:6f:43:
5e:ba:c3:3f:42:52:2e:ad:8f:6f:f1:5f:b2:64:d0:16:68:8a:
f3:70:c1:1d:4f:c7:c0:e1:72:2b:42:a1:a5:3c:bf:b5:6e:77:
ff:8b:ea:46:b7:e7:b4:71:1a:64:a1:a8:0b:05:7f:71:11:a0:
8c:1a:5e:1e:a4:14:42:3f:90:61:d2:ce:20:61:c7:a7:9b:3e:
ef:31:89:93:1d:c0:16:40:36:fb:54:36:a0:90:35:b2:86:1d:
3d:9d:8a:0f:1c:58:8a:b8:8d:eb:85:3a:c7:a7:7a:25:9c:ab:
9d:d7:88:c6:f1:a6:5c:c6:5b:e6:e4:28:06:89:b6:e2:b9:95:
65:0c:b9:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:29:37 2025 by rpki-client