Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/R-gwCTVWuLhhSWdwRKNgJCcXZ_8.roa
File: R-gwCTVWuLhhSWdwRKNgJCcXZ_8.roa (raw, json)
Hash identifier: bXYevFSgrj7iAyLTuO9u9RAHuMZoymkSjfr8XwKdKOo=
Subject key identifier: 47:E8:30:09:35:56:B8:B8:61:49:67:70:44:A3:60:24:27:17:67:FF
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018D20B8644BA2DBCD4A0FBDB3FCB469300F
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/R-gwCTVWuLhhSWdwRKNgJCcXZ_8.roa
Signing time: Fri 19 Jan 2024 07:56:11 +0000
ROA not before: Fri 19 Jan 2024 07:56:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a05:b900::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2100::/29 maxlen: 29
2a0f:3d80:123::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a0f:3d83::/32 maxlen: 32
2a0f:3d84::/32 maxlen: 32
2a0f:3d87::/32 maxlen: 32
2a0f:7d01::/32 maxlen: 32
2a0f:e841::/32 maxlen: 32
2a0f:e940::/29 maxlen: 29
2a10:6d40::/29 maxlen: 29
2a12:ac41::/32 maxlen: 32
2a13:18c0:1::/48 maxlen: 48
2a13:18c3::/32 maxlen: 32
2a13:18c6::/32 maxlen: 32
2a13:4900::/29 maxlen: 29
2a13:fc00::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 25 Jan 2024 12:32:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:20:b8:64:4b:a2:db:cd:4a:0f:bd:b3:fc:b4:69:30:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 19 07:56:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47e830093556b8b86149677044a36024271767ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a0:6b:40:a6:91:a1:99:62:8b:73:43:81:0a:
3e:93:40:43:9b:97:60:7e:a7:73:3c:fb:76:d1:1e:
cd:92:df:dc:4f:6d:f9:64:24:86:c2:80:2f:7b:57:
00:96:99:26:a6:5f:b3:44:ed:57:e4:26:7b:d0:26:
2e:cc:9e:b7:9f:38:1b:ec:87:55:4e:1d:04:36:52:
61:43:8c:d4:15:5f:23:ee:76:f0:79:8c:76:c0:2e:
2f:db:64:de:b4:d7:6d:0c:19:1b:4e:bd:2a:f0:7d:
dc:9d:14:b5:2b:c8:df:31:4f:9d:4c:18:04:f9:c0:
56:2d:2a:97:dc:88:b3:1b:a4:ea:7f:47:21:cb:9a:
ce:ad:65:a9:a5:65:db:1a:6d:69:cc:0a:3e:4f:e2:
05:64:3a:be:0f:0c:c7:32:13:85:98:2e:88:4b:6e:
f3:b4:c5:3a:2c:2c:20:d5:fd:23:f9:fb:30:d9:49:
17:52:7f:a7:1a:13:27:c9:f4:74:69:f1:fb:db:fa:
06:47:e1:c6:0e:ce:ab:7d:7d:f4:45:13:61:e2:52:
2f:b7:bc:96:29:03:f0:9a:7b:e6:fd:dc:8c:20:f5:
0d:df:cb:45:ab:1b:23:a8:b4:13:11:8c:67:34:56:
35:4a:51:07:06:cc:22:e7:b1:fc:af:f1:fd:05:7b:
e3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:E8:30:09:35:56:B8:B8:61:49:67:70:44:A3:60:24:27:17:67:FF
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/R-gwCTVWuLhhSWdwRKNgJCcXZ_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a05:b900::/29
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:3d80:123::/48
2a0f:3d82::-2a0f:3d84:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:3d87::/32
2a0f:7d01::/32
2a0f:e841::/32
2a0f:e940::/29
2a10:6d40::/29
2a12:ac41::/32
2a13:18c0:1::/48
2a13:18c3::/32
2a13:18c6::/32
2a13:4900::/29
2a13:fc00::/29
Signature Algorithm: sha256WithRSAEncryption
ca:ec:59:b6:1c:a9:89:29:d2:87:8b:a9:80:55:72:7d:b1:02:
1f:f1:51:09:64:14:fe:76:5b:a8:80:62:6a:bf:7c:f4:22:11:
07:5f:f9:87:34:a7:e2:02:bb:2d:60:30:a2:12:de:96:29:b7:
34:50:eb:34:9d:9a:5d:fe:cf:d6:2f:13:ee:8c:f6:03:b4:67:
13:57:1d:e1:6a:95:76:45:1c:2c:88:26:0b:cf:99:55:82:30:
2d:c0:82:be:48:dc:ef:72:0b:57:f7:da:bd:ac:2c:47:67:20:
6c:9d:b2:f3:d1:67:aa:bf:3b:c1:28:89:13:c8:df:3c:d8:02:
0d:9c:dd:5a:30:f8:9f:f6:48:33:f2:6b:9d:95:1a:c5:74:47:
7c:7b:75:fa:52:11:7d:e3:7b:bf:62:f5:e5:fd:d6:dd:d5:18:
f3:6b:d5:9d:c4:ab:64:80:b4:ac:f6:5b:cb:8b:43:f6:1e:6c:
35:b2:f2:e8:6b:91:a7:96:69:fc:64:b2:34:eb:e0:4b:e4:f2:
f4:6b:5d:af:aa:53:df:c2:97:dd:e0:5a:cf:4a:9f:1e:c6:03:
e0:39:2b:bd:d1:ac:2c:d1:bf:fc:8f:05:3c:52:4a:bc:38:79:
fe:75:6b:05:71:e7:64:df:61:69:a3:00:82:94:17:91:4b:a6:
79:19:7b:e3
-----BEGIN CERTIFICATE-----
MIIGEzCCBPugAwIBAgISAY0guGRLotvNSg+9s/y0aTAPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwMTE5MDc1NjExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0N2U4MzAwOTM1NTZiOGI4NjE0OTY3NzA0NGEzNjAyNDI3MTc2N2ZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl6BrQKaRoZlii3NDgQo+k0BDm5dg
fqdzPPt20R7Nkt/cT235ZCSGwoAve1cAlpkmpl+zRO1X5CZ70CYuzJ63nzgb7IdV
Th0ENlJhQ4zUFV8j7nbweYx2wC4v22TetNdtDBkbTr0q8H3cnRS1K8jfMU+dTBgE
+cBWLSqX3IizG6Tqf0chy5rOrWWppWXbGm1pzAo+T+IFZDq+DwzHMhOFmC6IS27z
tMU6LCwg1f0j+fsw2UkXUn+nGhMnyfR0afH72/oGR+HGDs6rfX30RRNh4lIvt7yW
KQPwmnvm/dyMIPUN38tFqxsjqLQTEYxnNFY1SlEHBswi57H8r/H9BXvjTQIDAQAB
o4IDHzCCAxswHQYDVR0OBBYEFEfoMAk1Vri4YUlncESjYCQnF2f/MB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvUi1nd0NUVld1TGhoU1dkd1JLTmdKQ2NYWl84LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBMwYIKwYBBQUHAQcBAf8EggEiMIIBHjAYBAIAATASAwQA
LYF/AwQALYclAwQAwaTHMIIBAAQCAAIwgfkDBQMqBbkAAwUAKg4agAMFACoOx4AD
BwAqDvIBAAEDBwAqDx4AASMDBwAqDx4ABFYDBwAqDx4ACYcDBwAqDx4ACrwDBwAq
Dx4A3vkDBwAqDx4BAAEDBwAqDx6BAAIDBwAqDx6BEpMDBwAqDx6BQxkDBwAqDx6B
kugDBwAqDx6Bo9ADBwAqDx6Bza4DBQMqDyEAAwcAKg89gAEjMA4DBQEqDz2CAwUA
Kg89hAMFACoPPYcDBQAqD30BAwUAKg/oQQMFAyoP6UADBQMqEG1AAwUAKhKsQQMH
ACoTGMAAAQMFACoTGMMDBQAqExjGAwUDKhNJAAMFAyoT/AAwDQYJKoZIhvcNAQEL
BQADggEBAMrsWbYcqYkp0oeLqYBVcn2xAh/xUQlkFP52W6iAYmq/fPQiEQdf+Yc0
p+ICuy1gMKIS3pYptzRQ6zSdml3+z9YvE+6M9gO0ZxNXHeFqlXZFHCyIJgvPmVWC
MC3Agr5I3O9yC1f32r2sLEdnIGydsvPRZ6q/O8EoiRPI3zzYAg2c3Vow+J/2SDPy
a52VGsV0R3x7dfpSEX3je79i9eX91t3VGPNr1Z3Eq2SAtKz2W8uLQ/YebDWy8uhr
kaeWafxksjTr4Evk8vRrXa+qU9/Cl93gWs9Knx7GA+A5K73RrCzRv/yPBTxSSrw4
ef51awVx52TfYWmjAIKUF5FLpnkZe+M=
-----END CERTIFICATE-----
Generated at Mon Apr 21 14:59:55 2025 by rpki-client