Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/UCEaL8LUANa0AEIHW6q-mdi1Dds.roa
File: UCEaL8LUANa0AEIHW6q-mdi1Dds.roa (raw, json)
Hash identifier: F5VHQIYoCvD2cZIYFPVU82P+g6t31aZvfLFM9E8wHOk=
Subject key identifier: 50:21:1A:2F:C2:D4:00:D6:B4:00:42:07:5B:AA:BE:99:D8:B5:0D:DB
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01910A723E4A8C5E0442F48EFBAB4A972ED8
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/UCEaL8LUANa0AEIHW6q-mdi1Dds.roa
Signing time: Wed 31 Jul 2024 20:19:04 +0000
ROA not before: Wed 31 Jul 2024 20:19:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
103.139.50.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a06:1184:33::/48 maxlen: 48
2a0a:2d06:33::/48 maxlen: 48
2a0a:2d06:55::/48 maxlen: 48
2a0c:7886:33::/48 maxlen: 48
2a0e:1a80:2541::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0e:f600:6c::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a0f:7d02:1::/48 maxlen: 48
2a0f:e1c6::/32 maxlen: 32
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a12:f540::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Aug 2024 14:49:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:0a:72:3e:4a:8c:5e:04:42:f4:8e:fb:ab:4a:97:2e:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 31 20:19:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=50211a2fc2d400d6b40042075baabe99d8b50ddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:61:af:ec:2b:1c:53:2e:b0:d4:b8:ec:39:29:
42:29:c3:48:02:20:4d:49:39:99:ca:7e:25:1c:d6:
9d:9b:3c:69:24:38:54:d3:1e:fb:f4:74:20:f7:ca:
51:9c:82:f2:16:a6:f7:06:21:3f:31:91:fc:8c:1b:
ee:ea:71:39:90:7f:3b:b1:f3:71:9a:9b:ad:37:16:
5c:07:0e:36:47:7f:72:e2:8f:70:77:75:0f:71:86:
e5:4e:dd:8d:a5:44:b6:23:75:b2:e4:dc:af:bd:ba:
22:1a:76:b6:6f:87:26:3d:43:ad:34:50:aa:49:de:
ab:6b:dd:84:ab:4f:b5:42:c6:08:72:c3:97:99:6c:
e6:b6:59:1d:9d:ea:62:74:34:8c:e8:e8:25:10:e4:
bc:bb:4a:c8:26:15:a7:b0:d2:0c:0c:75:f9:4a:63:
57:ec:d0:84:e3:91:ed:48:68:83:ae:10:27:85:d1:
63:80:bf:a4:bf:a4:30:5f:cd:73:e3:4c:c3:c6:37:
bf:93:6b:f4:e1:81:8c:6d:7c:27:46:78:c4:ab:82:
ab:12:9f:5e:57:4c:d9:f7:dd:da:d1:18:43:87:7f:
72:c5:a8:c6:24:49:5c:b9:8e:52:81:76:8c:02:0f:
78:74:f1:d6:a7:2f:18:1c:4c:e7:0b:4d:0e:4f:af:
d7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:21:1A:2F:C2:D4:00:D6:B4:00:42:07:5B:AA:BE:99:D8:B5:0D:DB
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/UCEaL8LUANa0AEIHW6q-mdi1Dds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
103.139.50.0/24
193.164.199.0/24
IPv6:
2a06:1184:33::/48
2a0a:2d06:33::/48
2a0a:2d06:55::/48
2a0c:7886:33::/48
2a0e:1a80:2541::/48
2a0e:c780::/32
2a0e:f201:1::/48
2a0e:f600:6c::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2e80::/29
2a0f:3d87::/32
2a0f:7d02:1::/48
2a0f:e1c6::/32
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a12:f540::/29
2a13:18c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
85:cd:51:04:58:8b:66:d9:b0:93:5e:01:11:60:61:ed:31:c8:
af:f3:95:14:ba:17:32:2a:99:b3:41:f5:e9:b4:32:6f:6d:6a:
53:65:f9:06:36:68:d6:f0:05:c8:ef:51:5c:6d:99:67:10:7d:
5c:f7:06:b9:c6:14:9a:7c:d7:bf:51:3d:40:cd:7a:4c:68:d9:
a2:7a:85:30:36:5a:76:10:27:e9:6e:20:49:67:79:26:f0:a9:
8c:7c:e1:eb:f6:51:d3:be:e9:68:6e:6f:e2:7e:43:4a:27:b0:
10:68:23:0e:39:2e:63:64:9e:d7:2c:25:eb:97:7b:ea:64:9b:
03:4e:c3:ad:cc:f1:9f:79:b9:24:10:4e:1a:9a:98:19:42:a0:
00:10:1d:8a:13:c3:16:66:54:67:7b:2f:e6:c9:69:a6:4e:15:
81:26:9d:7d:57:c7:05:ed:67:0f:5a:0d:f0:5e:de:59:ce:be:
25:f5:f5:7f:30:9f:56:f4:ba:b8:3d:45:6d:67:fe:fa:6d:07:
97:57:3a:35:b0:1c:87:b8:5a:4a:3f:b2:c2:f9:c6:1d:29:08:
98:2e:56:e1:ce:a8:d2:82:86:64:55:a2:ba:cb:5d:13:1d:1a:
80:2f:f5:54:1d:b3:bc:b0:90:38:f9:ca:90:44:a7:03:ea:de:
f4:0c:70:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:34 2025 by rpki-client