Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/N8CWNhix-9pCIcOeVQP5HImLMV4.roa
File: N8CWNhix-9pCIcOeVQP5HImLMV4.roa (raw, json)
Hash identifier: 73ZF3VMsRDfGVVynHCcwKs01bd2Ow/7yUQ5cPd+fVTM=
Subject key identifier: 37:C0:96:36:18:B1:FB:DA:42:21:C3:9E:55:03:F9:1C:89:8B:31:5E
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0193E357EFFBEE2B1FF0C556B822A5276F97
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/N8CWNhix-9pCIcOeVQP5HImLMV4.roa
Signing time: Fri 20 Dec 2024 09:13:31 +0000
ROA not before: Fri 20 Dec 2024 09:13:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
103.139.50.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a06:1184:33::/48 maxlen: 48
2a0a:2d06:33::/48 maxlen: 48
2a0c:7886:33::/48 maxlen: 48
2a0e:1a80:2541::/48 maxlen: 48
2a0e:1a83:66::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a0f:3d84::/32 maxlen: 32
2a0f:7d02:1::/48 maxlen: 48
2a0f:e1c6::/32 maxlen: 32
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a12:ecc4:2213::/48 maxlen: 48
2a12:f540::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a13:9280::/32 maxlen: 32
2a13:e101:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:50:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e3:57:ef:fb:ee:2b:1f:f0:c5:56:b8:22:a5:27:6f:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Dec 20 09:13:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37c0963618b1fbda4221c39e5503f91c898b315e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:38:1f:b9:59:43:23:fd:7b:f6:73:b2:d6:5a:
77:a3:34:a7:3d:70:99:05:e4:ea:48:81:2d:da:52:
c1:72:12:d3:a3:7a:1e:6c:8d:d6:2b:54:a9:e4:d5:
22:e2:54:f2:b0:4a:84:05:24:0f:26:a0:35:09:18:
5a:71:94:e2:b8:5a:76:b1:56:a5:8e:9a:51:ae:fd:
a5:6e:74:f2:d4:e2:1c:87:7e:22:7e:8b:e4:85:47:
17:0d:02:18:b0:c3:64:bd:d7:c6:fc:f1:12:ee:5b:
d8:7f:17:52:5e:6e:46:23:00:ce:8d:e9:26:0a:c2:
4e:80:f6:d0:9c:50:6e:a3:bf:6e:d6:1e:c1:bb:fa:
4a:98:82:42:19:ba:0d:3a:61:8c:e2:d9:86:b7:e1:
2f:a9:fd:c5:02:af:83:b5:a9:8d:05:51:6a:c1:4f:
df:15:23:5c:44:d1:3f:25:15:98:fe:2a:aa:1a:2e:
f3:e5:3c:ef:05:13:88:03:18:8a:db:47:23:b0:98:
20:34:5f:f1:a7:5d:bf:d4:a1:31:ff:ab:c5:1c:11:
70:0f:ae:b6:86:40:b7:5a:3c:36:d6:ae:65:bd:43:
02:aa:7c:26:11:3b:41:5d:2a:6e:66:8f:34:b7:53:
2a:c5:89:ba:c5:0f:a1:ba:9a:dc:ce:fe:65:5a:58:
1c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:C0:96:36:18:B1:FB:DA:42:21:C3:9E:55:03:F9:1C:89:8B:31:5E
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/N8CWNhix-9pCIcOeVQP5HImLMV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
103.139.50.0/24
193.164.199.0/24
IPv6:
2a06:1184:33::/48
2a0a:2d06:33::/48
2a0c:7886:33::/48
2a0e:1a80:2541::/48
2a0e:1a83:66::/48
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2e80::/29
2a0f:3d84::/32
2a0f:7d02:1::/48
2a0f:e1c6::/32
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a12:ecc4:2213::/48
2a12:f540::/29
2a13:18c0:1::/48
2a13:9280::/32
2a13:e101:2::/48
Signature Algorithm: sha256WithRSAEncryption
88:01:50:ba:e8:fc:fa:00:9b:93:43:c2:ca:c3:7d:e3:f7:56:
1a:a5:2a:f3:1e:58:4d:d3:64:28:3d:cb:b6:4a:e0:50:24:75:
e6:b0:c2:09:88:89:4f:34:00:00:7a:a6:02:b6:f4:9f:50:1c:
79:6e:94:f6:a1:92:e1:db:cf:a7:0a:7b:ef:29:80:1e:1b:fb:
06:8e:0c:af:e0:2c:dc:76:89:50:b1:0a:e0:50:62:7a:5d:b8:
9a:bc:76:0f:b4:6e:ba:40:63:77:9a:05:cd:aa:5c:fa:f0:17:
42:f0:10:f2:06:94:62:f2:89:99:44:38:1c:67:42:84:43:bf:
8d:fd:19:b1:de:4a:88:0f:40:46:36:b7:51:7e:d3:40:55:e8:
6e:e4:68:53:d1:99:24:a5:8d:e4:43:9b:59:f5:c9:5b:8d:6a:
8f:11:5e:4d:f9:74:8e:f5:2f:71:e7:92:a4:89:b2:89:8e:ad:
72:f5:51:eb:5d:57:19:7d:6b:6b:86:9e:2f:2f:9c:fe:97:9d:
a3:df:df:14:ed:14:50:1e:fe:99:14:e0:6b:4c:e7:d8:f3:9c:
88:7c:79:f0:7c:4b:f1:5d:82:88:e8:d7:27:ce:dd:95:91:9d:
a7:5f:ef:52:da:85:15:b2:f2:c6:66:a6:70:ac:6a:a2:d5:7c:
c3:b7:5c:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 20:39:06 2025 by rpki-client