Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RoKztKi2sEyEJdy33ZakZYfOXkc.roa
File: RoKztKi2sEyEJdy33ZakZYfOXkc.roa (raw, json)
Hash identifier: 5Usq6IOaUrk3STLnPEwa/5b2iyLVo8UHq34U0KqHi9c=
Subject key identifier: 46:82:B3:B4:A8:B6:B0:4C:84:25:DC:B7:DD:96:A4:65:87:CE:5E:47
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0196CF8B2AE2FCAAC728B1A72794639F0681
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RoKztKi2sEyEJdy33ZakZYfOXkc.roa
Signing time: Wed 14 May 2025 16:05:26 +0000
ROA not before: Wed 14 May 2025 16:05:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 28753
IP address blocks: 45.9.116.0/24 maxlen: 24
45.9.122.0/24 maxlen: 24
45.128.76.0/24 maxlen: 24
45.154.58.0/24 maxlen: 24
93.190.244.0/24 maxlen: 24
2a04:9f40::/29 maxlen: 29
2a06:1184:101::/48 maxlen: 48
2a06:3bc0::/29 maxlen: 29
2a07:8a40::/29 maxlen: 29
2a0a:2d06:102::/48 maxlen: 48
2a0a:2d06:103::/48 maxlen: 48
2a0c:7886:99::/48 maxlen: 48
2a0c:7886:100::/48 maxlen: 48
2a0e:15c7:99::/48 maxlen: 48
2a0f:140::/29 maxlen: 29
2a0f:2500::/29 maxlen: 29
2a0f:cc00::/29 maxlen: 29
2a0f:d200::/29 maxlen: 29
2a0f:da40::/29 maxlen: 29
2a0f:db40::/29 maxlen: 29
2a0f:dfc0::/29 maxlen: 29
2a0f:e040::/29 maxlen: 29
2a0f:e4c0::/29 maxlen: 29
2a0f:fc00::/29 maxlen: 29
2a12:ac46:77::/48 maxlen: 48
2a12:ecc0:158::/48 maxlen: 48
2a12:ecc0:168::/48 maxlen: 48
2a12:ecc0:178::/48 maxlen: 48
2a13:18c6:77::/48 maxlen: 48
2a13:18c6:88::/48 maxlen: 48
2a13:7d80::/29 maxlen: 29
2a13:8c86:10a::/48 maxlen: 48
2a13:8c86:130::/48 maxlen: 48
2a13:c900:88::/48 maxlen: 48
2a13:c900:99::/48 maxlen: 48
2a13:e107:99::/48 maxlen: 48
2a13:e107:9c::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 14 May 2025 16:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cf:8b:2a:e2:fc:aa:c7:28:b1:a7:27:94:63:9f:06:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 14 16:05:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4682b3b4a8b6b04c8425dcb7dd96a46587ce5e47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d1:cf:10:88:2f:96:9b:26:ff:7e:6a:76:05:
b6:6f:cd:87:a2:32:38:ae:5b:03:59:8a:f9:63:de:
38:da:65:2b:a9:b8:57:09:27:00:cc:37:10:b6:85:
0c:95:a7:da:29:4a:93:27:3e:47:67:6a:10:20:34:
a9:28:8e:06:fa:4d:63:6a:1e:b0:69:8c:a9:ab:0a:
63:7b:a6:4e:4e:93:f5:36:fa:ab:c8:5f:bb:23:1d:
f7:ea:f1:ef:91:99:39:7a:f2:13:bb:9a:3c:29:82:
d8:2d:bd:df:78:bf:f7:db:0d:a6:c2:6f:5b:51:5c:
76:91:83:11:8e:96:81:26:81:f1:66:9f:41:f0:3f:
b9:23:5b:db:b5:95:c6:39:92:79:b2:21:c9:46:4d:
fd:05:ea:f8:9a:83:45:6d:95:36:b7:7c:ba:b9:c2:
8d:9d:e9:af:eb:69:5c:2a:34:b8:3c:9d:0e:01:cb:
5a:fe:1d:25:ea:41:b5:d2:2f:d1:06:40:e8:c9:75:
84:82:c5:1a:07:18:c6:b0:5b:4b:4d:e0:0a:d2:bd:
d9:cc:92:72:fe:33:94:56:7a:fd:45:d6:e8:44:95:
8d:30:8b:86:81:23:0f:48:18:59:94:5d:1b:4a:5b:
c8:bd:59:e4:0c:49:db:83:b1:3a:7b:68:35:fd:01:
25:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:82:B3:B4:A8:B6:B0:4C:84:25:DC:B7:DD:96:A4:65:87:CE:5E:47
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RoKztKi2sEyEJdy33ZakZYfOXkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.116.0/24
45.9.122.0/24
45.128.76.0/24
45.154.58.0/24
93.190.244.0/24
IPv6:
2a04:9f40::/29
2a06:1184:101::/48
2a06:3bc0::/29
2a07:8a40::/29
2a0a:2d06:102::/47
2a0c:7886:99::/48
2a0c:7886:100::/48
2a0e:15c7:99::/48
2a0f:140::/29
2a0f:2500::/29
2a0f:cc00::/29
2a0f:d200::/29
2a0f:da40::/29
2a0f:db40::/29
2a0f:dfc0::/29
2a0f:e040::/29
2a0f:e4c0::/29
2a0f:fc00::/29
2a12:ac46:77::/48
2a12:ecc0:158::/48
2a12:ecc0:168::/48
2a12:ecc0:178::/48
2a13:18c6:77::/48
2a13:18c6:88::/48
2a13:7d80::/29
2a13:8c86:10a::/48
2a13:8c86:130::/48
2a13:c900:88::/48
2a13:c900:99::/48
2a13:e107:99::/48
2a13:e107:9c::/48
Signature Algorithm: sha256WithRSAEncryption
70:26:f4:1d:63:e1:13:ff:28:52:f8:9f:76:0a:7b:84:80:56:
33:59:77:93:20:7b:11:28:fa:e3:1b:3f:9f:e6:88:90:34:e6:
85:a3:15:a8:37:d7:19:21:bf:e7:be:d8:b5:8b:41:85:49:f8:
0b:ab:f3:ef:cc:e4:0d:a3:fa:26:64:69:e3:ef:ac:02:a1:b6:
fd:66:03:66:c4:6d:7b:ff:b1:82:e3:48:a5:92:23:b1:9b:d7:
ef:6f:a4:84:63:e6:e6:0e:db:3b:8a:60:14:db:69:a5:9c:68:
49:e7:26:3a:91:9d:24:fc:4b:5a:07:e5:9b:85:05:f9:63:6f:
32:b1:73:14:21:78:a6:7d:e9:75:47:f3:53:10:f2:cf:f7:95:
9f:33:bb:79:10:e4:80:29:fd:df:a3:ae:db:23:b0:da:e3:23:
bc:3c:2d:ba:90:15:80:f6:f4:42:81:13:f5:60:58:1d:9b:8b:
3d:98:46:82:64:89:c9:9d:7f:2b:5f:e7:2c:4a:c1:05:8f:33:
5b:b2:ee:8f:b5:ae:6f:44:3d:6e:1b:84:a1:12:4a:43:9a:f7:
5b:45:b9:6a:9e:9f:1a:13:89:a1:4e:53:0d:f5:22:79:24:88:
b5:ae:62:e3:3d:f6:39:9b:cd:31:42:63:d2:16:31:61:d3:a0:
67:a6:1e:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 09:06:33 2025 by rpki-client