Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RedivixT17NOcFVgqcaUgu1HOCA.roa
File: RedivixT17NOcFVgqcaUgu1HOCA.roa (raw, json)
Hash identifier: x3VS09E+C3ysNMGkf4sb+mMF/xLV3oWKuSxK0p3eey4=
Subject key identifier: 45:E7:62:BE:2C:53:D7:B3:4E:70:55:60:A9:C6:94:82:ED:47:38:20
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019734898822F91FD3F4E55AACDE8F90B331
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RedivixT17NOcFVgqcaUgu1HOCA.roa
Signing time: Tue 03 Jun 2025 06:45:17 +0000
ROA not before: Tue 03 Jun 2025 06:45:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57043
IP address blocks: 45.86.244.0/24 maxlen: 24
45.94.47.0/24 maxlen: 24
45.95.97.0/24 maxlen: 24
45.130.128.0/24 maxlen: 24
45.134.184.0/24 maxlen: 24
45.151.104.0/24 maxlen: 24
45.154.58.0/24 maxlen: 24
45.154.228.0/24 maxlen: 24
85.209.130.0/24 maxlen: 24
185.164.59.0/24 maxlen: 24
192.156.217.0/24 maxlen: 24
194.62.30.0/24 maxlen: 24
194.62.66.0/24 maxlen: 24
195.66.26.0/24 maxlen: 24
2a0f:8100::/29 maxlen: 29
2a0f:e7c4:10::/48 maxlen: 48
2a11:3500::/29 maxlen: 29
2a13:8c86:120::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 04 Jun 2025 15:14:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:34:89:88:22:f9:1f:d3:f4:e5:5a:ac:de:8f:90:b3:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 3 06:45:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=45e762be2c53d7b34e705560a9c69482ed473820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ab:c8:35:e3:41:ea:6f:ae:20:cd:2c:7e:88:
42:99:43:39:f5:99:ac:96:ba:67:98:ec:40:ca:d2:
da:b5:16:d3:a1:97:bc:83:bb:cc:5b:81:5b:48:4f:
da:c1:0b:15:e8:65:1f:6e:a0:50:41:fe:77:75:5a:
1f:dc:1e:ba:6d:61:e0:11:aa:b3:a2:32:0a:d9:40:
29:40:ef:1e:cd:1c:41:87:77:56:77:09:d1:11:d0:
0e:1e:2e:6b:29:09:f6:d4:7d:d1:2f:ca:f9:d6:f2:
08:45:bf:91:a8:f9:67:5e:22:04:cb:4a:b5:4f:92:
9a:10:85:41:4a:f2:be:27:a2:99:cc:a9:30:77:89:
75:84:a6:00:98:23:03:28:6c:1e:3e:bb:18:40:62:
61:a9:85:ef:02:9b:12:e8:ec:7b:31:67:fc:07:78:
a0:6d:a7:ca:c3:44:ff:c6:66:96:bb:cd:c0:0b:4a:
6c:f1:5b:0c:bc:63:8d:29:9b:b5:7c:61:e1:d9:19:
8d:b9:2d:4d:53:15:5c:41:72:db:2c:a6:0c:26:f4:
35:e8:e9:a7:1e:3b:0a:04:e2:b7:ed:85:04:da:db:
3b:8d:34:57:28:1a:08:13:e8:9c:62:7b:d7:62:9a:
9b:31:7d:fe:92:b8:b3:47:f4:29:de:0e:80:3a:b8:
86:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:E7:62:BE:2C:53:D7:B3:4E:70:55:60:A9:C6:94:82:ED:47:38:20
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RedivixT17NOcFVgqcaUgu1HOCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.244.0/24
45.94.47.0/24
45.95.97.0/24
45.130.128.0/24
45.134.184.0/24
45.151.104.0/24
45.154.58.0/24
45.154.228.0/24
85.209.130.0/24
185.164.59.0/24
192.156.217.0/24
194.62.30.0/24
194.62.66.0/24
195.66.26.0/24
IPv6:
2a0f:8100::/29
2a0f:e7c4:10::/48
2a11:3500::/29
2a13:8c86:120::/48
Signature Algorithm: sha256WithRSAEncryption
4c:b7:22:e2:a2:fd:60:17:88:ff:5d:91:73:77:6e:2b:7e:88:
f6:b2:b4:ed:30:dd:94:91:6f:ef:3e:ed:a6:27:3d:ac:01:8f:
01:74:b9:9c:52:91:41:de:0b:bb:1a:06:2a:1f:28:63:e8:83:
5a:d8:5a:f1:aa:16:90:d4:6f:62:50:66:c2:ea:29:8a:28:20:
c0:7b:08:af:23:dc:8f:14:2b:5a:8a:3c:0c:70:0a:31:82:4c:
23:75:74:17:06:f8:2f:3b:fa:3a:12:4d:e1:d1:1e:92:03:8d:
24:61:cc:f5:81:34:19:54:d7:53:b3:dc:87:04:63:7a:22:a2:
b7:4c:ab:75:02:be:75:5a:da:bf:ac:5e:39:a6:6b:ff:ed:47:
d1:b7:ee:b4:1d:78:e5:56:02:0f:8e:ee:62:a7:9d:e2:78:f0:
81:87:be:82:c8:ae:6c:95:82:a7:eb:ed:1b:45:1f:60:e3:c7:
51:0c:9c:47:98:a9:4e:05:3d:7c:ec:97:ff:b3:f5:d3:75:ff:
a6:ef:9e:ff:d0:4a:7d:2e:ee:2d:72:a3:06:73:95:b0:8f:99:
a2:38:bd:b2:05:87:22:f1:7e:75:7f:ab:87:d7:23:6a:e7:64:
41:10:0c:ee:93:25:23:18:49:48:d6:9e:ca:70:7d:d4:be:6d:
c4:98:fa:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 19:01:37 2025 by rpki-client