Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/AnK9c9n06q_ofHbXpIAmT786bgE.roa
File: AnK9c9n06q_ofHbXpIAmT786bgE.roa (raw, json)
Hash identifier: R+oeb22ZKFSPHa/Tgci6hq+CUDiBUlnxojD2O/7aW2c=
Subject key identifier: 02:72:BD:73:D9:F4:EA:AF:E8:7C:76:D7:A4:80:26:4F:BF:3A:6E:01
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0190105BDF38DA2367D44B1224AB693428CA
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/AnK9c9n06q_ofHbXpIAmT786bgE.roa
Signing time: Thu 13 Jun 2024 06:49:34 +0000
ROA not before: Thu 13 Jun 2024 06:49:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a0e:1a80::/32 maxlen: 32
2a0e:1a80:2541::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a0f:2f80::/29 maxlen: 29
2a0f:3d83::/32 maxlen: 32
2a0f:3d84::/32 maxlen: 32
2a0f:3d87::/32 maxlen: 32
2a0f:7d02:1::/48 maxlen: 48
2a0f:e1c6::/32 maxlen: 32
2a0f:e1c7:1::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a12:f540::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 14 Jun 2024 07:26:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:10:5b:df:38:da:23:67:d4:4b:12:24:ab:69:34:28:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 13 06:49:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0272bd73d9f4eaafe87c76d7a480264fbf3a6e01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:84:69:73:5d:ac:ca:e9:fa:34:da:66:28:ec:
ec:11:5f:3f:f2:94:68:8d:e3:65:9d:61:20:e6:84:
85:a5:2a:da:42:76:af:5b:96:18:78:5c:6a:e7:70:
df:13:57:01:af:cc:f8:ac:c5:21:f0:bd:03:c2:dc:
f3:be:e8:bb:20:26:43:bc:5e:96:ed:53:a4:e2:d8:
00:ee:7d:68:35:ca:d8:a5:07:5f:2e:b9:ca:47:a6:
67:66:a1:bd:e7:1f:4e:f6:26:65:3a:74:0e:9a:1e:
06:04:58:b6:2f:1b:9f:6c:2d:81:70:80:ec:e1:16:
c1:6e:5c:a9:3b:46:8b:c8:ac:9f:b2:57:e4:6c:07:
1f:89:27:ec:27:9d:18:98:7e:a2:a9:a5:7f:1c:7d:
c7:b7:e3:13:50:50:57:5d:64:10:4f:d2:4e:3e:ca:
05:75:e6:cb:9e:c5:b8:38:bc:07:8c:cf:c3:a6:05:
66:2e:52:27:15:fb:96:88:b1:fc:13:8a:b0:7e:ef:
c9:db:02:1a:f4:50:43:57:43:d2:47:24:e3:50:ab:
9f:54:8a:b7:c2:95:3f:f7:16:ef:16:20:fc:59:d9:
ef:e3:b8:f3:ee:4c:67:33:80:f1:df:af:98:5d:94:
23:1a:b1:14:02:2d:5d:0e:15:cf:ac:a2:a8:b8:ad:
9d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:72:BD:73:D9:F4:EA:AF:E8:7C:76:D7:A4:80:26:4F:BF:3A:6E:01
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/AnK9c9n06q_ofHbXpIAmT786bgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2e80::/29
2a0f:2f80::/29
2a0f:3d83::-2a0f:3d84:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:3d87::/32
2a0f:7d02:1::/48
2a0f:e1c6::/32
2a0f:e1c7:1::/48
2a0f:e940::/29
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a12:f540::/29
2a13:18c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
98:d4:3d:05:d4:bd:1f:68:0f:26:1a:71:fe:cb:a5:10:ba:4f:
e4:12:61:4a:82:e9:a8:e3:96:ad:bc:dc:c2:18:94:d8:09:13:
b5:57:88:59:c5:69:19:ba:27:bd:59:8a:66:8e:f5:70:11:95:
82:92:15:b1:a3:03:c9:06:e8:e4:25:4d:de:5e:4a:ba:15:9f:
0e:58:72:ba:80:d7:ca:19:63:e7:1b:b6:55:9c:43:99:81:f3:
0a:ea:21:40:8f:6b:89:51:d6:d8:bc:cb:e1:fc:08:c4:14:d2:
4e:30:a1:fa:28:f8:e8:59:1e:71:6d:61:0d:a9:fb:a5:55:ce:
a5:ac:05:f9:ee:45:96:0e:db:d1:a8:f8:2f:14:72:f7:3e:5e:
75:a1:c6:6e:b5:4e:67:f2:bf:a5:08:4c:77:9b:e1:ed:55:2d:
40:cc:3b:58:7d:cb:89:9d:cf:a8:e9:d6:4d:1d:78:54:68:21:
c0:0a:c6:ff:f8:1e:0c:3a:d2:a3:3d:df:76:d6:57:3c:5c:6e:
56:4d:00:86:04:35:0e:20:72:26:d6:f3:ed:06:db:56:18:bf:
12:5b:6c:bc:a7:ab:2b:73:75:7c:7e:6f:8b:85:74:2e:18:d1:
ae:56:37:db:91:1f:cc:ff:f9:15:a4:bf:1f:54:57:49:1c:9f:
db:b3:db:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:07:15 2025 by rpki-client