Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/MHsPOMwaESFNG71mCMphdt_mAJk.roa
File: MHsPOMwaESFNG71mCMphdt_mAJk.roa (raw, json)
Hash identifier: fCU6nITzeWnDmYzvvm1G037WGpz8TZCPcilGltpz9WY=
Subject key identifier: 30:7B:0F:38:CC:1A:11:21:4D:1B:BD:66:08:CA:61:76:DF:E6:00:99
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01956CD1BF8AA6ACE030AF54702AFFB45BA9
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/MHsPOMwaESFNG71mCMphdt_mAJk.roa
Signing time: Thu 06 Mar 2025 18:57:20 +0000
ROA not before: Thu 06 Mar 2025 18:57:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214927
IP address blocks: 45.9.117.0/24 maxlen: 24
45.118.248.0/24 maxlen: 24
45.130.60.0/24 maxlen: 24
45.131.215.0/24 maxlen: 24
45.137.81.0/24 maxlen: 24
45.140.13.0/24 maxlen: 24
45.141.177.0/24 maxlen: 24
45.152.208.0/24 maxlen: 24
85.209.128.0/24 maxlen: 24
103.114.43.0/24 maxlen: 24
185.122.171.0/24 maxlen: 24
185.126.64.0/24 maxlen: 24
185.126.66.0/24 maxlen: 24
193.5.65.0/24 maxlen: 24
193.8.215.0/24 maxlen: 24
193.23.245.0/24 maxlen: 24
194.33.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Mar 2025 13:52:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:6c:d1:bf:8a:a6:ac:e0:30:af:54:70:2a:ff:b4:5b:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 6 18:57:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=307b0f38cc1a11214d1bbd6608ca6176dfe60099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a3:c2:45:e9:0a:6f:95:50:cc:a0:1f:c4:0f:
8b:b8:57:30:83:96:0b:96:a7:88:87:11:f0:60:16:
99:61:8f:0c:59:7e:e3:26:84:da:3d:f9:06:99:6b:
0d:d5:c6:2e:d9:35:24:f7:b1:2f:0f:6d:eb:5c:a7:
94:c4:1d:6b:c2:7d:69:fb:ed:e8:86:37:c3:a6:19:
00:83:93:18:d0:82:7a:bf:96:ca:ff:98:85:13:61:
62:a6:ec:c6:89:0e:1d:dc:b4:b3:f8:11:98:7c:2d:
89:95:3d:c6:d7:3a:4d:14:42:82:7a:61:d0:6a:bc:
7f:3d:c4:74:cb:21:13:e4:86:cc:6c:99:e1:8f:ad:
98:28:c4:10:80:28:59:d1:88:91:d4:e1:0b:98:ef:
cc:ff:fb:ca:b9:85:a2:28:be:0c:2d:b7:b3:bd:55:
15:a5:7a:e6:30:d2:0c:78:64:da:c2:31:f0:ae:e4:
31:f5:cf:0c:ef:b9:85:b6:f0:d2:bd:a1:1c:8c:d8:
f6:1d:60:d9:21:2c:cf:5f:41:1b:22:3b:d1:ea:5a:
72:03:0b:3f:e8:1f:5b:b3:49:62:56:4d:18:11:45:
06:b9:d6:c4:d2:3f:80:fb:f2:00:ba:55:fe:49:6e:
20:14:cd:e7:1d:b8:7d:41:cd:22:ee:76:eb:af:68:
f0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:7B:0F:38:CC:1A:11:21:4D:1B:BD:66:08:CA:61:76:DF:E6:00:99
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/MHsPOMwaESFNG71mCMphdt_mAJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.117.0/24
45.118.248.0/24
45.130.60.0/24
45.131.215.0/24
45.137.81.0/24
45.140.13.0/24
45.141.177.0/24
45.152.208.0/24
85.209.128.0/24
103.114.43.0/24
185.122.171.0/24
185.126.64.0/24
185.126.66.0/24
193.5.65.0/24
193.8.215.0/24
193.23.245.0/24
194.33.29.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:30:0b:03:f0:55:89:04:d1:a2:77:e5:8f:87:9f:d6:40:67:
58:c4:b6:d6:ff:6a:42:b8:b3:b0:ab:80:f9:9c:ad:a9:17:3f:
a7:72:61:e7:e5:a8:4f:16:18:e6:4f:d5:c7:ba:d1:cb:5a:5b:
f7:8a:f2:ec:3a:6c:f4:32:78:81:fb:e5:71:ec:44:cf:a5:18:
da:3f:bf:25:e9:af:0f:1d:35:55:ec:f0:0c:d0:1a:99:28:a9:
fd:9d:bd:2b:b8:23:b2:c9:5b:af:1a:b1:3b:9e:c7:b4:8f:8d:
2e:8a:69:df:15:62:91:a9:bd:1b:af:fe:f6:4e:52:9e:80:46:
4c:42:2a:ee:b8:8c:43:c0:e2:eb:db:f8:63:3c:cc:11:80:b1:
df:c7:37:b4:91:b0:f4:ee:3a:df:ee:c0:ec:68:6f:99:d2:ef:
30:11:ab:61:ee:e2:29:d2:43:0a:5b:9c:cd:94:82:ae:89:3c:
8b:2e:d1:e1:b4:a9:53:e1:71:42:d4:cd:f6:53:15:a9:2a:7f:
14:a6:5b:22:ba:10:12:2c:84:ef:38:9a:91:cf:0a:01:36:0c:
df:db:27:26:29:f7:60:19:e7:84:91:03:fe:7f:87:bc:fd:2c:
3c:d0:4a:b8:a7:2b:3c:7d:8b:54:3a:bd:17:ab:68:01:d9:d9:
1c:b4:8d:dc
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAZVs0b+KpqzgMK9UcCr/tFupMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjUwMzA2MTg1NzIwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMDdiMGYzOGNjMWExMTIxNGQxYmJkNjYwOGNhNjE3NmRmZTYwMDk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArKPCRekKb5VQzKAfxA+LuFcwg5YL
lqeIhxHwYBaZYY8MWX7jJoTaPfkGmWsN1cYu2TUk97EvD23rXKeUxB1rwn1p++3o
hjfDphkAg5MY0IJ6v5bK/5iFE2FipuzGiQ4d3LSz+BGYfC2JlT3G1zpNFEKCemHQ
arx/PcR0yyET5IbMbJnhj62YKMQQgChZ0YiR1OELmO/M//vKuYWiKL4MLbezvVUV
pXrmMNIMeGTawjHwruQx9c8M77mFtvDSvaEcjNj2HWDZISzPX0EbIjvR6lpyAws/
6B9bs0liVk0YEUUGudbE0j+A+/IAulX+SW4gFM3nHbh9Qc0i7nbrr2jwFQIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFDB7DzjMGhEhTRu9ZgjKYXbf5gCZMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvTUhzUE9Nd2FFU0ZORzcxbUNNcGhkdF9tQUprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQALQl1AwQA
LXb4AwQALYI8AwQALYPXAwQALYlRAwQALYwNAwQALY2xAwQALZjQAwQAVdGAAwQA
Z3IrAwQAuXqrAwQAuX5AAwQAuX5CAwQAwQVBAwQAwQjXAwQAwRf1AwQAwiEdMA0G
CSqGSIb3DQEBCwUAA4IBAQCuMAsD8FWJBNGid+WPh5/WQGdYxLbW/2pCuLOwq4D5
nK2pFz+ncmHn5ahPFhjmT9XHutHLWlv3ivLsOmz0MniB++Vx7ETPpRjaP78l6a8P
HTVV7PAM0BqZKKn9nb0ruCOyyVuvGrE7nse0j40uimnfFWKRqb0br/72TlKegEZM
QiruuIxDwOLr2/hjPMwRgLHfxze0kbD07jrf7sDsaG+Z0u8wEath7uIp0kMKW5zN
lIKuiTyLLtHhtKlT4XFC1M32UxWpKn8UplsiuhASLITvOJqRzwoBNgzf2ycmKfdg
GeeEkQP+f4e8/Sw80Eq4pys8fYtUOr0Xq2gB2dkctI3c
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:23 2025 by rpki-client