Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/fSep60OHQZ1WjUf99s2m9oQ79WQ.roa
File: fSep60OHQZ1WjUf99s2m9oQ79WQ.roa (raw, json)
Hash identifier: JOi7SjeuesTFsbzTFRNUkxCrQSZR07zC78pWdNnzlrQ=
Subject key identifier: 7D:27:A9:EB:43:87:41:9D:56:8D:47:FD:F6:CD:A6:F6:84:3B:F5:64
Certificate issuer: /CN=aff6f85aad101c456c1ac9a01a7192fc5788e92c
Certificate serial: 01952301E9869B6CD8CB8D3BF003D6799B4C
Authority key identifier: AF:F6:F8:5A:AD:10:1C:45:6C:1A:C9:A0:1A:71:92:FC:57:88:E9:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/fSep60OHQZ1WjUf99s2m9oQ79WQ.roa
Signing time: Thu 20 Feb 2025 10:58:02 +0000
ROA not before: Thu 20 Feb 2025 10:58:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9009
IP address blocks: 45.13.31.0/24 maxlen: 24
45.134.150.0/24 maxlen: 24
77.83.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Mar 2025 01:36:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:23:01:e9:86:9b:6c:d8:cb:8d:3b:f0:03:d6:79:9b:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aff6f85aad101c456c1ac9a01a7192fc5788e92c
Validity
Not Before: Feb 20 10:58:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7d27a9eb4387419d568d47fdf6cda6f6843bf564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d1:2b:f1:d8:fd:34:84:da:f0:9a:37:d2:84:
b4:70:d2:84:30:eb:db:34:24:51:e9:5f:74:8d:b0:
47:2a:7d:f4:6e:4b:19:70:59:6e:03:a9:26:83:87:
77:ea:04:7b:02:ba:1c:d2:3a:ec:a4:aa:e7:07:bf:
4a:04:c4:6e:d2:08:71:42:3c:37:ca:82:07:0f:b6:
44:63:58:4d:bb:33:fd:1b:62:46:bb:91:0c:b9:af:
3f:72:50:46:b3:d1:72:99:7f:aa:1a:14:54:6f:76:
51:85:bd:9a:d1:79:48:4d:13:54:84:88:74:33:35:
10:3c:f4:49:de:33:c5:49:ab:b6:6a:55:a9:7a:3d:
5c:1c:99:2c:9c:38:47:46:1f:ba:aa:8e:0b:01:87:
88:57:cf:80:d9:d8:fb:00:71:94:ef:fb:09:2d:a9:
a1:cc:4b:5c:7e:29:07:e3:ca:44:7d:2a:8b:e0:95:
22:34:37:c6:c5:fc:70:63:53:fc:69:0e:10:b4:30:
84:50:7a:59:05:92:26:89:3b:a0:4b:50:0c:9e:fc:
f4:4b:39:95:ab:de:61:d1:5b:40:3f:43:b1:b4:b7:
14:ce:e7:8a:d3:4d:0a:e4:5e:62:93:12:56:99:dc:
61:d8:e2:79:e2:ce:c7:99:77:9f:d2:1d:1f:d4:c5:
0b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:27:A9:EB:43:87:41:9D:56:8D:47:FD:F6:CD:A6:F6:84:3B:F5:64
X509v3 Authority Key Identifier:
keyid:AF:F6:F8:5A:AD:10:1C:45:6C:1A:C9:A0:1A:71:92:FC:57:88:E9:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/fSep60OHQZ1WjUf99s2m9oQ79WQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.31.0/24
45.134.150.0/24
77.83.223.0/24
Signature Algorithm: sha256WithRSAEncryption
47:08:e6:7a:cf:57:6e:31:6f:c0:5c:8b:19:2c:2a:ec:82:b7:
e0:26:63:0c:dd:23:1e:7d:54:c1:61:15:70:89:a7:12:f4:01:
70:3d:a8:c5:c7:73:d5:e3:54:e6:71:11:b4:05:76:26:f9:f4:
c5:5c:21:c8:d4:2e:23:22:07:df:27:22:61:32:3e:66:6b:1a:
14:a0:f6:4a:4e:a1:61:4e:6c:ed:d5:35:34:2d:e7:4e:d9:04:
77:f3:d1:e2:bb:e0:44:32:74:de:b6:8c:b6:02:83:a9:2d:27:
92:a5:1d:71:11:04:2b:b2:49:8e:9a:06:ba:10:6b:79:40:df:
37:80:86:78:aa:55:c6:a0:f3:3d:8b:f1:c2:d1:83:52:88:e2:
65:e1:40:51:4f:92:ad:80:2c:d2:de:2d:38:f2:57:41:56:c4:
8f:e7:1d:1e:e8:8d:66:85:c9:0e:52:41:bc:a7:29:8f:3b:cc:
8c:ac:6f:03:cf:35:d4:60:0d:6f:85:63:41:e9:a9:9e:a3:4c:
f6:29:52:69:12:d7:fd:08:a2:4a:85:83:16:86:fb:2e:4c:af:
4c:70:26:95:bd:dd:07:ef:c4:b0:65:2b:c7:45:67:ce:98:c5:
60:35:d5:97:ca:25:e3:96:a8:65:ae:49:ef:35:a4:bc:4e:0d:
2b:6f:8a:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 07:52:27 2025 by rpki-client