Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/GW6LrNrc_wBzUO_8_ZTuCk7wZyw.roa
File: GW6LrNrc_wBzUO_8_ZTuCk7wZyw.roa (raw, json)
Hash identifier: asUZvBB4/QgST/2Se3KKl9eZCy8hP6/R3rtfv3HtvsI=
Subject key identifier: 19:6E:8B:AC:DA:DC:FF:00:73:50:EF:FC:FD:94:EE:0A:4E:F0:67:2C
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0195384B2293E6F3A1E4D7D3CEC18FD74B31
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/GW6LrNrc_wBzUO_8_ZTuCk7wZyw.roa
Signing time: Mon 24 Feb 2025 14:10:02 +0000
ROA not before: Mon 24 Feb 2025 14:10:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 45.87.243.0/24 maxlen: 24
45.146.128.0/24 maxlen: 24
2a09:17c0:1000::/48 maxlen: 48
2a0a:2d02::/32 maxlen: 48
2a0f:3d80:123::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 31 Mar 2025 07:37:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:38:4b:22:93:e6:f3:a1:e4:d7:d3:ce:c1:8f:d7:4b:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 24 14:10:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=196e8bacdadcff007350effcfd94ee0a4ef0672c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e9:a8:b0:09:1a:aa:be:b3:d2:7e:e5:da:e2:
cd:1d:7b:22:7a:60:dd:cc:11:2f:35:fa:3d:d1:f8:
b9:10:ce:6f:ea:96:88:c8:ee:4e:e2:3c:4c:ab:e6:
a7:b5:b0:09:7c:dc:c0:df:0b:ce:cb:02:e2:a0:9e:
e1:61:79:bd:76:fe:c7:66:1a:ed:70:07:7a:6b:01:
5a:df:f8:2e:6a:17:50:b8:95:48:7e:a1:ec:dd:93:
b4:72:49:d1:4e:16:83:06:c8:e5:3b:fb:66:de:88:
7d:ca:d6:9c:fa:08:ab:8c:f2:43:a2:fe:aa:60:ae:
ed:7d:f8:b9:88:21:ed:e6:94:b1:f7:f8:40:0e:5d:
89:37:da:5d:c5:8a:52:2e:82:fe:ce:79:c3:e1:51:
60:b1:f8:33:f6:a5:7e:f4:15:d8:67:c3:11:a5:24:
20:99:61:11:b7:ba:a5:ac:88:11:e1:fa:e2:2c:a3:
c9:fc:dd:fa:b3:ef:48:aa:3e:9b:e3:f0:18:3f:b6:
ed:83:35:4f:b7:9c:cf:ed:e9:4f:cc:11:59:29:61:
6a:1a:34:f4:8b:c2:75:9e:b0:2d:c4:ac:8b:cb:34:
3d:ad:d9:d8:df:d3:9f:10:73:22:0a:cb:6c:c4:b7:
c6:df:04:58:78:2b:62:d5:99:1f:d6:b9:d3:7d:c4:
81:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:6E:8B:AC:DA:DC:FF:00:73:50:EF:FC:FD:94:EE:0A:4E:F0:67:2C
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/GW6LrNrc_wBzUO_8_ZTuCk7wZyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.243.0/24
45.146.128.0/24
IPv6:
2a09:17c0:1000::/48
2a0a:2d02::/32
2a0f:3d80:123::/48
Signature Algorithm: sha256WithRSAEncryption
c0:30:e4:fc:c0:39:80:f8:1a:7e:01:c9:34:a6:23:22:8b:8e:
fc:c0:73:fd:50:5d:7e:61:d2:8a:95:9d:56:57:6c:2c:40:2b:
4a:ec:89:8b:72:cb:c7:7d:ad:58:29:f6:6d:cc:ca:eb:9b:98:
e9:e4:f9:97:95:11:66:8c:63:b9:27:68:a1:b9:38:4c:e9:17:
db:23:bf:0e:8c:b2:02:e9:08:e6:a2:72:7f:16:da:22:49:80:
44:8c:88:94:12:ff:1c:46:d6:80:6f:04:51:89:8a:b8:95:5d:
54:f4:4c:f5:5f:72:07:bf:65:27:ef:d1:71:3a:b6:6e:52:03:
e0:f6:c3:08:4b:ee:90:76:86:db:82:5a:36:66:40:3c:1b:88:
a2:49:02:8d:93:be:db:b7:d1:5b:5a:4e:6d:b9:b7:76:2e:47:
14:5d:d9:04:72:22:58:c7:05:bd:a7:e8:5e:fa:6d:46:a5:27:
58:95:d4:78:f5:b5:32:22:c0:9a:54:77:49:29:cb:f3:02:37:
29:eb:35:df:0d:56:59:be:6e:c2:b6:8f:5c:16:37:02:aa:ac:
27:10:4a:01:52:81:c0:8d:5d:8d:05:63:70:f6:69:86:48:19:
55:d4:64:4c:53:d6:7a:11:12:0c:c0:43:6a:fa:70:dd:04:b4:
e4:bb:54:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:44:27 2025 by rpki-client