Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/NA6FxMl08r_0aEetJ98HUoEmATs.roa
File: NA6FxMl08r_0aEetJ98HUoEmATs.roa (raw, json)
Hash identifier: G+lpvBOcJz3Ypza6Ug9vE5UXXzkRhvZZ29Gx6zXXej4=
Subject key identifier: 34:0E:85:C4:C9:74:F2:BF:F4:68:47:AD:27:DF:07:52:81:26:01:3B
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018D8CBB352BF3958E915A0FA2DC4DAFB7FA
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/NA6FxMl08r_0aEetJ98HUoEmATs.roa
Signing time: Fri 09 Feb 2024 07:18:15 +0000
ROA not before: Fri 09 Feb 2024 07:18:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a05:b900::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2100::/29 maxlen: 29
2a0f:2e80::/29 maxlen: 29
2a0f:2f80::/29 maxlen: 29
2a0f:3d80:123::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a0f:3d83::/32 maxlen: 32
2a0f:3d84::/32 maxlen: 32
2a0f:3d87::/32 maxlen: 32
2a0f:e841::/32 maxlen: 32
2a0f:e940::/29 maxlen: 29
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a13:18c0:1::/48 maxlen: 48
2a13:18c3::/32 maxlen: 32
2a13:18c6::/32 maxlen: 32
2a13:4900::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 09 Feb 2024 08:47:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:8c:bb:35:2b:f3:95:8e:91:5a:0f:a2:dc:4d:af:b7:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 9 07:18:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=340e85c4c974f2bff46847ad27df07528126013b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7a:21:bb:56:85:96:9e:a5:35:d0:dc:9c:0b:
5c:cf:42:4e:b5:18:86:d2:5d:98:96:a8:67:3b:b0:
bf:7e:b0:57:87:a7:53:87:cc:b7:74:00:1f:74:5d:
6b:c3:55:a4:fc:d5:59:74:12:c2:56:c1:55:77:92:
ad:e4:6b:18:0b:48:f9:3d:c6:d0:8c:00:48:e7:c5:
63:56:dd:00:6b:57:1b:74:1c:81:95:fe:72:40:5d:
c2:61:ba:73:34:25:5e:9c:83:10:22:ce:a1:5d:03:
80:22:eb:70:a2:88:0b:cb:52:df:86:9e:2b:8e:79:
40:d6:bb:29:fc:1a:2e:40:bf:f9:69:8c:30:04:c6:
5a:63:c0:b2:46:d5:37:77:06:1b:ca:b5:96:e2:c1:
d4:16:f0:a3:ce:0b:d5:12:60:5b:a1:de:01:46:08:
83:d3:4f:4c:b3:41:a4:70:5b:fe:25:cf:7b:e5:e4:
54:05:03:b7:bf:06:f5:fa:63:77:fb:b5:e0:bd:45:
7e:69:d3:9a:8d:1b:fb:70:3a:26:5b:f1:2e:a7:58:
b3:9b:a0:7e:a2:2b:b7:6b:0a:20:c0:97:84:4e:39:
56:26:c1:ea:6a:3a:9d:3b:85:63:1c:d7:67:a1:b9:
d4:94:69:38:05:c8:59:d3:92:21:37:a5:71:ef:5b:
4b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:0E:85:C4:C9:74:F2:BF:F4:68:47:AD:27:DF:07:52:81:26:01:3B
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/NA6FxMl08r_0aEetJ98HUoEmATs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a05:b900::/29
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:2e80::/29
2a0f:2f80::/29
2a0f:3d80:123::/48
2a0f:3d82::-2a0f:3d84:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:3d87::/32
2a0f:e841::/32
2a0f:e940::/29
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a13:18c0:1::/48
2a13:18c3::/32
2a13:18c6::/32
2a13:4900::/29
Signature Algorithm: sha256WithRSAEncryption
ad:86:0e:fe:2f:ab:1b:ed:7f:00:04:3d:f3:a5:2f:3e:ee:56:
fe:d4:6e:f0:38:1e:39:5e:2c:52:c7:a1:7c:2c:fb:12:68:2a:
ec:3a:da:37:41:87:d7:1b:c0:83:64:b3:c0:d5:5b:07:a1:59:
5e:39:f1:dc:ed:10:91:72:91:43:ae:ee:a1:e5:6c:c0:ee:5e:
57:5d:a2:7b:5e:b1:07:50:2e:69:12:f3:20:a8:03:2c:b3:39:
18:6e:d0:ae:6f:91:56:31:1f:c8:13:5f:72:2e:c8:64:3f:91:
0c:28:e3:62:0c:71:3e:90:e8:b8:07:38:45:e3:ce:05:4d:c8:
3f:fb:30:14:c8:c9:aa:e7:b4:ef:d8:8b:5e:5e:22:cb:b0:81:
f9:87:05:0e:98:28:19:70:2a:a1:81:88:72:1a:ba:23:13:e5:
92:b0:88:b9:08:05:64:49:57:ea:9d:71:00:d3:ab:d7:d6:c9:
e9:d3:0e:a9:05:2f:36:09:08:64:92:a7:6b:e3:3f:0c:d9:ca:
d3:9e:ef:f7:1f:61:f2:0d:32:1e:84:7d:3e:dd:ea:54:af:56:
fd:f0:23:55:31:1a:9d:19:33:ed:07:1d:1f:69:e6:72:75:59:
16:78:da:82:ad:9d:a6:75:70:5a:5f:76:e1:f3:83:30:1d:50:
5f:42:eb:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:52:49 2025 by rpki-client