Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/L63PEcnbliC8q4dvi5f6Cz8bMh0.roa
File: L63PEcnbliC8q4dvi5f6Cz8bMh0.roa (raw, json)
Hash identifier: lhqGrFCx1M/IspFG6ek2eCawgHrFCdyq7MXvQO5NKrA=
Subject key identifier: 2F:AD:CF:11:C9:DB:96:20:BC:AB:87:6F:8B:97:FA:0B:3F:1B:32:1D
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01953C08C62540CF6B6B07CE10B18C9F5EE2
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/L63PEcnbliC8q4dvi5f6Cz8bMh0.roa
Signing time: Tue 25 Feb 2025 07:36:02 +0000
ROA not before: Tue 25 Feb 2025 07:36:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214927
IP address blocks: 45.9.117.0/24 maxlen: 24
45.118.248.0/24 maxlen: 24
45.131.215.0/24 maxlen: 24
45.137.81.0/24 maxlen: 24
45.141.177.0/24 maxlen: 24
45.152.208.0/24 maxlen: 24
85.209.128.0/24 maxlen: 24
103.114.43.0/24 maxlen: 24
185.122.171.0/24 maxlen: 24
185.126.64.0/24 maxlen: 24
185.126.66.0/24 maxlen: 24
193.23.245.0/24 maxlen: 24
194.33.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Feb 2025 15:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:3c:08:c6:25:40:cf:6b:6b:07:ce:10:b1:8c:9f:5e:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 25 07:36:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2fadcf11c9db9620bcab876f8b97fa0b3f1b321d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:de:86:bc:74:37:c1:63:27:3a:61:1e:c6:f9:
81:16:5d:b0:85:e8:3a:20:7d:e0:48:39:4a:9a:16:
57:61:56:d0:d7:ba:ad:25:14:6b:0f:9f:4f:ba:42:
f9:90:57:79:9a:62:2c:41:13:ac:e2:46:23:14:01:
ba:65:04:54:43:be:b5:61:39:87:58:80:48:50:98:
7d:67:18:a7:2d:b9:24:50:05:5e:2e:9c:4b:d3:14:
d5:91:83:b0:aa:7f:1b:3e:a8:1d:e8:b6:8b:4f:2c:
cb:32:cc:07:19:80:b2:2b:84:3e:78:22:d9:c5:91:
84:a4:64:69:84:70:bf:06:ca:8c:98:2f:ff:61:ff:
33:97:5a:55:9b:3b:cd:12:79:eb:f6:d5:e9:05:78:
61:a2:b8:93:af:b2:40:d0:73:fb:ed:15:09:8b:29:
76:01:58:1f:bb:79:ad:d3:25:51:6f:d4:4a:ba:3e:
db:d0:7e:b1:f0:7e:c2:39:4b:2b:c7:a9:c9:cf:c3:
32:22:ad:18:f9:99:9c:73:2b:56:7a:e2:2c:ed:10:
fe:77:6b:cc:17:9e:d2:86:4a:5c:1c:2b:da:34:5d:
ad:9a:d8:34:bf:67:0f:1e:4c:a6:60:a8:c3:43:4d:
de:06:6b:39:11:e4:ee:1c:02:76:25:97:75:97:b9:
93:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:AD:CF:11:C9:DB:96:20:BC:AB:87:6F:8B:97:FA:0B:3F:1B:32:1D
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/L63PEcnbliC8q4dvi5f6Cz8bMh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.117.0/24
45.118.248.0/24
45.131.215.0/24
45.137.81.0/24
45.141.177.0/24
45.152.208.0/24
85.209.128.0/24
103.114.43.0/24
185.122.171.0/24
185.126.64.0/24
185.126.66.0/24
193.23.245.0/24
194.33.29.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:17:26:ad:ad:35:52:60:9a:27:15:59:df:89:57:cf:d8:3a:
df:87:c8:25:83:7b:a2:7e:31:2b:52:43:e6:84:0a:9e:94:b8:
95:82:21:c4:ed:cc:2c:91:3c:78:34:fe:00:67:7c:c2:8a:85:
52:78:78:c8:66:8e:17:10:5b:df:5d:da:45:a2:1d:1e:63:9e:
42:69:80:78:70:bc:68:49:77:4f:43:b6:ea:cd:de:09:13:d1:
6d:34:9c:98:48:0b:51:84:61:4c:fc:c4:6a:1d:b9:53:f1:51:
b3:d0:4b:19:b2:c1:31:2a:5f:e7:c8:98:39:27:61:89:0c:ed:
04:ab:fb:1c:d4:08:f3:0b:e6:89:c9:9f:e7:52:28:a4:90:f9:
3f:28:eb:a8:b8:0e:93:b1:3d:f9:c5:3e:ae:6f:c7:cc:f0:d4:
32:e9:02:ad:a9:67:d8:2c:8a:46:b1:e8:ad:69:56:dc:af:77:
e7:73:03:2c:3a:ca:05:43:06:38:95:38:7c:a4:45:a9:24:86:
91:12:51:1f:40:2a:04:b8:ff:ea:21:9d:c8:f5:8a:18:97:08:
1b:05:2e:82:79:56:1c:30:70:f6:3d:13:cd:85:69:76:bd:dc:
43:19:2d:8a:48:40:08:eb:48:97:f2:62:67:ea:a1:b7:38:de:
7d:d5:17:5c
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgISAZU8CMYlQM9rawfOELGMn17iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjUwMjI1MDczNjAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZmFkY2YxMWM5ZGI5NjIwYmNhYjg3NmY4Yjk3ZmEwYjNmMWIzMjFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2N6GvHQ3wWMnOmEexvmBFl2wheg6
IH3gSDlKmhZXYVbQ17qtJRRrD59PukL5kFd5mmIsQROs4kYjFAG6ZQRUQ761YTmH
WIBIUJh9ZxinLbkkUAVeLpxL0xTVkYOwqn8bPqgd6LaLTyzLMswHGYCyK4Q+eCLZ
xZGEpGRphHC/BsqMmC//Yf8zl1pVmzvNEnnr9tXpBXhhoriTr7JA0HP77RUJiyl2
AVgfu3mt0yVRb9RKuj7b0H6x8H7COUsrx6nJz8MyIq0Y+ZmccytWeuIs7RD+d2vM
F57ShkpcHCvaNF2tmtg0v2cPHkymYKjDQ03eBms5EeTuHAJ2JZd1l7mToQIDAQAB
o4ICUTCCAk0wHQYDVR0OBBYEFC+tzxHJ25YgvKuHb4uX+gs/GzIdMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvTDYzUEVjbmJsaUM4cTRkdmk1ZjZDejhiTWgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjBUBAIAATBOAwQALQl1AwQA
LXb4AwQALYPXAwQALYlRAwQALY2xAwQALZjQAwQAVdGAAwQAZ3IrAwQAuXqrAwQA
uX5AAwQAuX5CAwQAwRf1AwQAwiEdMA0GCSqGSIb3DQEBCwUAA4IBAQChFyatrTVS
YJonFVnfiVfP2Drfh8glg3uifjErUkPmhAqelLiVgiHE7cwskTx4NP4AZ3zCioVS
eHjIZo4XEFvfXdpFoh0eY55CaYB4cLxoSXdPQ7bqzd4JE9FtNJyYSAtRhGFM/MRq
HblT8VGz0EsZssExKl/nyJg5J2GJDO0Eq/sc1AjzC+aJyZ/nUiikkPk/KOuouA6T
sT35xT6ub8fM8NQy6QKtqWfYLIpGseitaVbcr3fncwMsOsoFQwY4lTh8pEWpJIaR
ElEfQCoEuP/qIZ3I9YoYlwgbBS6CeVYcMHD2PRPNhWl2vdxDGS2KSEAI60iX8mJn
6qG3ON591Rdc
-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:47 2025 by rpki-client