Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/rO8C2yXE8mPLn4xcaSZFvJfmcBI.roa
File: rO8C2yXE8mPLn4xcaSZFvJfmcBI.roa (raw, json)
Hash identifier: JplCjWuJ5ovdM9C/PIfiX8c4OxLYvblhXA8CqjzGOwk=
Subject key identifier: AC:EF:02:DB:25:C4:F2:63:CB:9F:8C:5C:69:26:45:BC:97:E6:70:12
Certificate issuer: /CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Certificate serial: 019427B5E4D62EB7E1E85BC53BA16065EA35
Authority key identifier: BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/rO8C2yXE8mPLn4xcaSZFvJfmcBI.roa
Signing time: Thu 02 Jan 2025 15:50:19 +0000
ROA not before: Thu 02 Jan 2025 15:50:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57112
IP address blocks: 5.104.112.0/20 maxlen: 20
31.177.32.0/21 maxlen: 21
45.84.40.0/22 maxlen: 24
45.91.56.0/22 maxlen: 22
45.92.224.0/22 maxlen: 22
81.30.64.0/20 maxlen: 20
86.111.208.0/22 maxlen: 22
185.23.140.0/22 maxlen: 22
185.33.152.0/22 maxlen: 22
185.38.152.0/22 maxlen: 22
185.70.236.0/22 maxlen: 22
185.72.160.0/22 maxlen: 22
185.82.192.0/22 maxlen: 22
185.87.104.0/22 maxlen: 22
185.87.116.0/22 maxlen: 22
185.87.156.0/22 maxlen: 22
185.103.236.0/22 maxlen: 22
185.113.172.0/22 maxlen: 22
185.133.108.0/22 maxlen: 22
185.192.144.0/22 maxlen: 24
185.236.16.0/22 maxlen: 22
217.76.16.0/20 maxlen: 20
217.76.16.0/21 maxlen: 21
217.76.24.0/21 maxlen: 21
2a0a:4980::/29 maxlen: 29
2a0e:c40::/29 maxlen: 29
2a0e:9680::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 10 Apr 2025 07:39:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:e4:d6:2e:b7:e1:e8:5b:c5:3b:a1:60:65:ea:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Validity
Not Before: Jan 2 15:50:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=acef02db25c4f263cb9f8c5c692645bc97e67012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:47:53:2a:2a:35:5b:db:a5:20:20:92:5d:26:
95:85:24:3d:c0:b7:a0:9a:71:f5:46:82:29:73:62:
62:2e:7a:bf:65:7b:f7:d3:a3:fd:fe:9e:f5:2d:b1:
07:3a:c2:1e:b1:0c:d3:f4:21:3c:8a:84:4a:b3:2c:
94:3a:3e:92:82:3a:5b:5f:7c:c3:84:9d:42:ec:e1:
e0:53:08:9c:e7:26:e7:b0:83:2f:a9:55:20:96:91:
0d:c5:0a:3b:73:ba:24:68:6e:48:dc:b3:22:78:42:
11:74:b5:df:06:a9:9d:d7:d9:97:dd:0d:7a:7f:c4:
76:02:fb:43:7a:c3:fa:db:df:e3:da:e0:c4:c0:a1:
cd:ec:c9:ca:73:2a:4d:69:c2:ac:79:d8:5e:7b:e0:
fb:42:31:1f:0c:2b:b8:02:61:57:ab:7c:3c:a7:32:
fd:48:bb:58:52:23:8c:98:a0:84:c5:2c:4a:ef:1b:
d1:9e:f1:ea:a4:7e:ff:27:46:29:89:d9:99:db:52:
94:f9:2c:2a:0d:63:3b:cc:68:d1:7b:0a:e1:03:85:
73:e2:00:ce:06:bf:e0:31:56:9c:11:f6:ea:12:ae:
e2:5b:7f:b6:e5:5d:fa:fb:6f:da:31:4e:ce:7a:d2:
37:1e:69:30:59:23:4d:a7:4d:62:fa:9f:ab:1d:9d:
c3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:EF:02:DB:25:C4:F2:63:CB:9F:8C:5C:69:26:45:BC:97:E6:70:12
X509v3 Authority Key Identifier:
keyid:BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/rO8C2yXE8mPLn4xcaSZFvJfmcBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/v8Rw6bWOVX6owdvtrrnGpfxFUSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.112.0/20
31.177.32.0/21
45.84.40.0/22
45.91.56.0/22
45.92.224.0/22
81.30.64.0/20
86.111.208.0/22
185.23.140.0/22
185.33.152.0/22
185.38.152.0/22
185.70.236.0/22
185.72.160.0/22
185.82.192.0/22
185.87.104.0/22
185.87.116.0/22
185.87.156.0/22
185.103.236.0/22
185.113.172.0/22
185.133.108.0/22
185.192.144.0/22
185.236.16.0/22
217.76.16.0/20
IPv6:
2a0a:4980::/29
2a0e:c40::/29
2a0e:9680::/29
Signature Algorithm: sha256WithRSAEncryption
4c:53:bb:8a:94:5f:d0:23:bd:6a:2d:d7:a1:90:05:d0:7d:19:
bd:8e:d5:e9:68:de:73:c4:f5:0b:21:70:bd:fd:9a:25:79:b5:
f1:0f:c0:25:5d:ac:50:68:b3:78:75:03:74:ca:bc:63:82:f7:
ad:e0:8d:0a:78:08:b4:b3:b4:06:b3:a9:98:7c:0a:36:1d:84:
62:1b:b8:09:35:50:75:2d:1d:3c:5b:ba:7e:58:29:c7:d3:1f:
5f:81:52:b2:8f:b5:4f:e8:34:71:c2:ad:a2:75:00:5d:c8:21:
52:95:b0:67:e7:77:c4:f1:79:17:e4:c0:1c:d0:e6:32:a3:5d:
5c:6e:44:96:d5:36:57:4a:d8:fd:b2:37:86:a3:9b:40:ec:fb:
50:d1:ac:de:9c:98:b9:a3:f7:74:af:d8:72:ad:90:7e:d7:b5:
af:3c:7a:dd:99:4b:6f:d9:7e:32:3c:18:ea:8d:18:b0:9e:de:
51:3a:6e:c5:7b:dc:ea:f8:47:51:a0:c4:25:39:59:7f:e3:76:
4c:87:fd:8d:fa:32:67:c2:9b:e8:3c:fd:6d:a0:3d:f4:0b:34:
fa:f6:30:c8:4b:93:42:c4:12:ba:03:61:a8:65:35:c8:e6:04:
60:65:72:d2:47:4b:46:56:57:d1:5d:1c:fe:47:97:70:90:64:
14:af:c8:a4
-----BEGIN CERTIFICATE-----
MIIFnTCCBIWgAwIBAgISAZQnteTWLrfh6FvFO6FgZeo1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmYzQ3MGU5YjU4ZTU1N2VhOGMxZGJlZGFlYjljNmE1ZmM0
NTUxMjUwHhcNMjUwMTAyMTU1MDE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhY2VmMDJkYjI1YzRmMjYzY2I5ZjhjNWM2OTI2NDViYzk3ZTY3MDEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEdTKio1W9ulICCSXSaVhSQ9wLeg
mnH1RoIpc2JiLnq/ZXv306P9/p71LbEHOsIesQzT9CE8ioRKsyyUOj6SgjpbX3zD
hJ1C7OHgUwic5ybnsIMvqVUglpENxQo7c7okaG5I3LMieEIRdLXfBqmd19mX3Q16
f8R2AvtDesP629/j2uDEwKHN7MnKcypNacKsedhee+D7QjEfDCu4AmFXq3w8pzL9
SLtYUiOMmKCExSxK7xvRnvHqpH7/J0YpidmZ21KU+SwqDWM7zGjRewrhA4Vz4gDO
Br/gMVacEfbqEq7iW3+25V36+2/aMU7OetI3HmkwWSNNp01i+p+rHZ3DqQIDAQAB
o4ICqTCCAqUwHQYDVR0OBBYEFKzvAtslxPJjy5+MXGkmRbyX5nASMB8GA1UdIwQY
MBaAFL/EcOm1jlV+qMHb7a65xqX8RVElMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjhSdzZiV09WWDZvd2R2dHJybkdwZnhGVVNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8yN2IzOWItMDQ0OS00YzY0LWJhNzkt
YTJhYTY1NDBmODc1LzEvck84QzJ5WEU4bVBMbjR4Y2FTWkZ2SmZtY0JJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi8yN2IzOWItMDQ0OS00YzY0LWJhNzktYTJhYTY1NDBmODc1
LzEvdjhSdzZiV09WWDZvd2R2dHJybkdwZnhGVVNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG+BggrBgEFBQcBBwEB/wSBrjCBqzCBiwQCAAEwgYQDBAQF
aHADBAMfsSADBAItVCgDBAItWzgDBAItXOADBARRHkADBAJWb9ADBAK5F4wDBAK5
IZgDBAK5JpgDBAK5RuwDBAK5SKADBAK5UsADBAK5V2gDBAK5V3QDBAK5V5wDBAK5
Z+wDBAK5cawDBAK5hWwDBAK5wJADBAK57BADBATZTBAwGwQCAAIwFQMFAyoKSYAD
BQMqDgxAAwUDKg6WgDANBgkqhkiG9w0BAQsFAAOCAQEATFO7ipRf0CO9ai3XoZAF
0H0ZvY7V6Wjec8T1CyFwvf2aJXm18Q/AJV2sUGizeHUDdMq8Y4L3reCNCngItLO0
BrOpmHwKNh2EYhu4CTVQdS0dPFu6flgpx9MfX4FSso+1T+g0ccKtonUAXcghUpWw
Z+d3xPF5F+TAHNDmMqNdXG5EltU2V0rY/bI3hqObQOz7UNGs3pyYuaP3dK/Ycq2Q
fte1rzx63ZlLb9l+MjwY6o0YsJ7eUTpuxXvc6vhHUaDEJTlZf+N2TIf9jfoyZ8Kb
6Dz9baA99As0+vYwyEuTQsQSugNhqGU1yOYEYGVy0kdLRlZX0V0c/keXcJBkFK/I
pA==
-----END CERTIFICATE-----
Generated at Sun Apr 13 07:32:11 2025 by rpki-client