Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/T_ik3O2AQLkCijGdRQolzMs-z8I.roa
File: T_ik3O2AQLkCijGdRQolzMs-z8I.roa (raw, json)
Hash identifier: fUpmI2aXuWRZ0o8SN7KLB4ch9pTIxEjUEwFjgfCSdbI=
Subject key identifier: 4F:F8:A4:DC:ED:80:40:B9:02:8A:31:9D:45:0A:25:CC:CB:3E:CF:C2
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019017EB4B93BF74540FBEE59B5E099671B3
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/T_ik3O2AQLkCijGdRQolzMs-z8I.roa
Signing time: Fri 14 Jun 2024 18:03:34 +0000
ROA not before: Fri 14 Jun 2024 18:03:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a0e:1a80::/32 maxlen: 32
2a0e:1a80:2541::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a0f:3d83::/32 maxlen: 32
2a0f:3d87::/32 maxlen: 32
2a0f:7d02:1::/48 maxlen: 48
2a0f:e1c6::/32 maxlen: 32
2a0f:e1c7:1::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a12:f540::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 05 Jul 2024 06:46:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:17:eb:4b:93:bf:74:54:0f:be:e5:9b:5e:09:96:71:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 14 18:03:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4ff8a4dced8040b9028a319d450a25cccb3ecfc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:26:37:44:79:5e:66:52:cf:f6:ff:2d:ce:af:
1d:c4:29:fc:33:5a:7e:3f:cf:f6:50:5e:ce:c7:1a:
d3:f2:a6:d1:2a:e6:89:ac:e9:42:79:0e:66:40:88:
2c:68:8b:7a:3b:da:e2:8c:7e:df:ad:8d:f8:d6:31:
ec:c1:85:db:2f:ae:48:0b:bd:3e:1f:41:06:c9:30:
e3:52:5d:d9:ac:e8:45:c3:27:49:4b:d8:ad:c3:8a:
b8:15:13:51:2a:27:64:aa:b8:7e:f9:71:e9:ff:ee:
6d:05:92:09:80:ed:fd:b3:db:24:43:f7:09:7b:b0:
f8:0b:ac:33:01:8b:a6:1b:36:d8:a5:e1:dc:6d:07:
55:b0:0a:73:69:63:42:ef:b7:98:0f:6c:13:21:00:
96:99:c8:80:45:70:91:f7:05:34:27:17:d7:c8:98:
39:31:01:48:f4:00:42:96:9f:7e:3a:fd:f5:29:ef:
e0:5d:8b:18:56:a8:80:24:67:42:89:62:a6:9d:b4:
5a:73:2f:4d:a4:98:5d:1b:f2:3d:2d:fb:3a:99:5f:
7e:4b:3f:70:87:32:f3:81:79:7d:1a:91:ca:1e:a0:
91:2d:08:b2:27:6e:92:58:7e:c3:80:5e:cd:5a:2f:
7b:ab:07:e5:8d:c5:63:76:81:71:92:cb:80:ba:6e:
fa:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:F8:A4:DC:ED:80:40:B9:02:8A:31:9D:45:0A:25:CC:CB:3E:CF:C2
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/T_ik3O2AQLkCijGdRQolzMs-z8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2e80::/29
2a0f:3d83::/32
2a0f:3d87::/32
2a0f:7d02:1::/48
2a0f:e1c6::/32
2a0f:e1c7:1::/48
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a12:f540::/29
2a13:18c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
82:32:2c:94:66:e8:05:50:4c:28:a8:5c:43:4a:fd:71:0e:a5:
f5:8b:49:57:53:a0:ce:aa:15:4e:67:d2:e8:82:2b:f1:4d:f8:
9f:7f:7d:68:33:f1:85:f1:f8:5c:7f:f7:76:76:9f:cb:44:8d:
da:d7:1e:c7:38:8c:6f:06:e9:f8:58:de:e6:9b:70:b3:18:01:
7c:7a:0b:3c:13:e6:69:2c:fd:60:cd:ab:e2:b7:66:f5:18:be:
b5:ec:ee:07:78:f4:b7:30:94:30:54:c7:2c:b1:07:eb:70:bd:
5c:5e:c3:9f:02:39:3c:24:7e:2a:8e:69:b3:0a:6e:43:96:9e:
c5:ae:a4:84:2c:44:40:ca:7c:ec:8b:08:07:a8:2d:de:4d:7a:
6d:8f:c8:8b:4a:cf:79:9f:03:74:4d:74:0a:f8:7c:61:fa:2d:
6e:8b:ca:3b:ea:f4:de:f2:ca:7e:b5:95:49:05:5e:27:33:f1:
23:5a:ff:a2:32:d6:c7:ce:46:35:66:a9:e8:87:c4:ac:fa:fb:
ab:03:f8:2f:cc:6d:5d:e9:96:ec:a3:7e:fd:a0:9a:a3:62:3f:
60:ce:20:c1:c7:51:a5:9b:a4:a9:94:55:30:11:4f:0c:e7:8c:
7c:f0:4d:f0:19:27:7c:67:f1:46:a7:57:7d:ac:5d:45:5c:15:
cb:ce:41:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 14:59:55 2025 by rpki-client