Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7NwFrkDyCwZIdKMKwtxqIuDyVyE.roa
File: 7NwFrkDyCwZIdKMKwtxqIuDyVyE.roa (raw, json)
Hash identifier: KaOfRrYnio9QonEyKjJif1ixDVt7cs3dzvmM1jYnMZQ=
Subject key identifier: EC:DC:05:AE:40:F2:0B:06:48:74:A3:0A:C2:DC:6A:22:E0:F2:57:21
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0195AF4CF181C3644244985DE317D495AD59
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7NwFrkDyCwZIdKMKwtxqIuDyVyE.roa
Signing time: Wed 19 Mar 2025 16:46:50 +0000
ROA not before: Wed 19 Mar 2025 16:46:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214927
IP address blocks: 45.9.117.0/24 maxlen: 24
45.95.96.0/24 maxlen: 24
45.118.248.0/24 maxlen: 24
45.130.60.0/24 maxlen: 24
45.131.215.0/24 maxlen: 24
45.137.81.0/24 maxlen: 24
45.140.13.0/24 maxlen: 24
45.141.177.0/24 maxlen: 24
45.152.208.0/24 maxlen: 24
85.209.128.0/24 maxlen: 24
103.114.43.0/24 maxlen: 24
185.122.171.0/24 maxlen: 24
185.126.64.0/24 maxlen: 24
185.126.66.0/24 maxlen: 24
193.8.215.0/24 maxlen: 24
193.23.245.0/24 maxlen: 24
193.27.19.0/24 maxlen: 24
194.33.29.0/24 maxlen: 24
195.158.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Mar 2025 18:17:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:af:4c:f1:81:c3:64:42:44:98:5d:e3:17:d4:95:ad:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 19 16:46:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ecdc05ae40f20b064874a30ac2dc6a22e0f25721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6e:15:6a:5c:fc:bd:1a:cb:76:bf:38:a9:7c:
d3:d1:f5:3f:d1:a2:40:cd:c8:0c:18:1a:ca:ad:86:
1c:77:f7:1d:0f:a2:d3:71:fe:29:b8:dc:12:50:10:
3c:be:b3:c0:6d:9c:6a:d8:91:9b:65:19:9c:44:f3:
97:08:76:bd:0b:e5:bc:30:62:4c:12:3d:b6:7f:5e:
6d:f6:56:ae:f0:63:42:c0:14:f7:7f:ac:95:fb:31:
d3:2d:d6:ad:33:09:9e:af:4b:80:8d:29:0a:96:95:
83:13:cb:de:2d:a8:0d:d9:e1:3d:8f:fe:4a:60:2a:
5f:45:06:fc:34:24:11:81:0f:8b:9f:66:31:53:c9:
cc:0c:ce:ae:c4:9b:cd:2b:e5:6e:69:84:84:e1:75:
96:7a:3d:f8:90:90:15:d8:12:52:44:21:57:d0:1a:
db:57:6b:24:05:13:a5:24:6c:a2:3c:a8:54:74:8d:
f3:b0:f1:2c:a4:e2:cb:17:74:7c:bc:10:69:b8:c3:
7b:ac:0d:52:04:ea:e9:9f:b2:bf:ef:73:b3:7b:76:
66:3c:e9:41:f7:ab:1c:75:7a:11:f7:da:0e:d3:7a:
3e:50:89:59:23:f4:bb:a4:b3:dd:38:f1:7f:2f:2a:
24:dd:73:6c:d6:13:9e:00:77:b4:db:96:07:d1:c2:
ab:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:DC:05:AE:40:F2:0B:06:48:74:A3:0A:C2:DC:6A:22:E0:F2:57:21
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7NwFrkDyCwZIdKMKwtxqIuDyVyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.117.0/24
45.95.96.0/24
45.118.248.0/24
45.130.60.0/24
45.131.215.0/24
45.137.81.0/24
45.140.13.0/24
45.141.177.0/24
45.152.208.0/24
85.209.128.0/24
103.114.43.0/24
185.122.171.0/24
185.126.64.0/24
185.126.66.0/24
193.8.215.0/24
193.23.245.0/24
193.27.19.0/24
194.33.29.0/24
195.158.192.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:8e:75:91:66:38:5a:97:3e:3e:d0:c0:b1:4a:0f:86:51:20:
99:c3:8d:21:3f:ec:61:1f:75:89:34:76:98:52:5d:c4:80:47:
33:62:4a:fa:04:86:22:68:24:18:d2:4c:73:11:ef:e0:be:8b:
ff:31:c3:76:51:ad:57:e0:7e:92:63:0c:b6:3c:b7:e9:c5:b4:
f5:32:09:a8:09:17:7a:b7:8c:d3:d1:b2:d2:5d:5b:1c:8d:41:
15:26:af:12:a7:fd:69:5e:ae:d6:46:46:27:ad:4d:c5:9f:6e:
02:42:15:53:93:c1:ac:fa:8b:71:64:70:18:1f:2e:ee:8f:04:
08:73:54:4e:ee:7a:7d:56:28:e4:6b:c1:ce:78:b9:78:c0:62:
2f:d5:b0:c6:a8:36:31:de:e7:f3:eb:09:20:9e:a0:a0:51:4d:
a0:9d:1d:a1:46:67:8b:b5:df:1d:52:e5:b3:68:5c:93:a0:18:
a0:2e:33:cd:ba:79:d5:de:fa:85:a1:96:63:ee:93:35:bd:86:
c8:d7:5d:e8:e8:78:ed:75:b9:54:d4:1d:5d:eb:07:9a:51:d7:
73:93:cf:44:5a:3e:55:1d:12:14:7d:8c:0f:1e:dc:30:14:c0:
00:89:e2:2f:6d:bf:76:a0:17:05:d8:de:b9:18:f9:1d:3c:d1:
2c:dc:27:e5
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:48 2025 by rpki-client