Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/V1Uiof2Iwc1KofIGn3rjqA2e_AA.roa
File: V1Uiof2Iwc1KofIGn3rjqA2e_AA.roa (raw, json)
Hash identifier: LvqW2/Rcaz67dYSdBSwxf+u/YhebQL7cyTcNBnw3EwM=
Subject key identifier: 57:55:22:A1:FD:88:C1:CD:4A:A1:F2:06:9F:7A:E3:A8:0D:9E:FC:00
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019316AAEFD2116048BA1AF11B018C27067F
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/V1Uiof2Iwc1KofIGn3rjqA2e_AA.roa
Signing time: Sun 10 Nov 2024 15:22:01 +0000
ROA not before: Sun 10 Nov 2024 15:22:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 45.152.198.0/24 maxlen: 24
103.114.40.0/24 maxlen: 24
2a0e:1a84::/32 maxlen: 32
2a0e:c781::/32 maxlen: 32
2a0e:f600:5f::/48 maxlen: 48
2a0f:1e80:100::/48 maxlen: 48
2a0f:1e80:1986::/48 maxlen: 48
2a0f:3d80:bac::/48 maxlen: 48
2a0f:7d00:1::/48 maxlen: 48
2a0f:bc00:a1c4::/48 maxlen: 48
2a0f:e6c6:5532::/48 maxlen: 48
2a13:2b40::/29 maxlen: 32
Validation: Failed, certificate revoked on Sat 23 Nov 2024 14:55:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:16:aa:ef:d2:11:60:48:ba:1a:f1:1b:01:8c:27:06:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 10 15:22:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=575522a1fd88c1cd4aa1f2069f7ae3a80d9efc00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0e:86:75:68:24:85:67:36:11:d3:29:e2:a6:
e1:a8:15:16:10:5b:d5:ab:3d:db:ab:e3:5a:f1:81:
06:01:48:46:c2:3f:fd:41:07:b3:01:28:43:73:44:
83:f7:ce:c5:ad:95:22:f1:26:3f:7a:4d:8d:06:e4:
95:62:9c:5d:0e:c7:2f:c0:c6:e6:fe:90:2f:7d:ce:
e9:19:aa:60:4d:2a:72:0b:a0:35:27:ed:f2:5d:e1:
cb:cc:e7:f8:a5:5e:26:99:66:23:40:aa:b9:14:c6:
c2:87:c6:d3:5b:d1:25:b4:39:b1:a0:14:fa:09:c2:
1e:98:38:59:e1:0f:b4:37:cc:0c:79:f6:92:38:df:
aa:12:ca:aa:6c:b9:2d:9a:af:ce:68:fc:af:85:c5:
91:5e:a7:4d:d0:2a:38:bd:87:84:79:e8:04:a4:8b:
f0:96:48:c0:48:3e:48:4a:a7:ca:0d:a5:e5:fb:ca:
60:b2:a5:37:6d:83:5d:29:80:5e:a0:89:b4:47:99:
8c:cb:f9:ed:92:7a:04:72:f8:93:e7:fb:4f:47:49:
85:24:19:f3:d6:47:47:66:06:5d:95:59:52:40:a9:
c9:86:23:aa:c3:72:4a:a0:2f:1a:05:c7:bf:66:96:
59:42:c5:bd:ad:58:fb:ce:c3:3c:cb:82:0d:e1:2e:
6f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:55:22:A1:FD:88:C1:CD:4A:A1:F2:06:9F:7A:E3:A8:0D:9E:FC:00
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/V1Uiof2Iwc1KofIGn3rjqA2e_AA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.198.0/24
103.114.40.0/24
IPv6:
2a0e:1a84::/32
2a0e:c781::/32
2a0e:f600:5f::/48
2a0f:1e80:100::/48
2a0f:1e80:1986::/48
2a0f:3d80:bac::/48
2a0f:7d00:1::/48
2a0f:bc00:a1c4::/48
2a0f:e6c6:5532::/48
2a13:2b40::/29
Signature Algorithm: sha256WithRSAEncryption
8d:85:61:47:27:b3:f3:8d:a2:7e:b7:b8:2c:13:ab:0f:75:7c:
03:69:b7:43:5f:29:9f:e9:3f:6c:28:cc:16:6b:c1:d6:eb:e4:
97:72:f1:1f:3f:87:fe:2e:24:c1:c5:ab:1e:5a:a9:5a:83:11:
52:13:87:96:b7:9c:bf:41:36:c7:dd:e9:69:c7:01:95:fe:ef:
42:f4:bf:db:4d:71:ef:ea:96:f4:7f:8b:27:1d:71:84:ea:96:
20:c2:ec:dc:32:68:cd:96:b6:4d:e7:1f:d6:38:1d:e1:c6:b3:
42:99:3c:ab:16:f9:7f:90:2d:72:47:8f:b2:a9:4b:cc:38:67:
d1:ac:58:ac:89:3c:23:ab:fa:10:e7:3e:f3:ab:2e:d5:12:fb:
1b:d2:dc:05:d0:82:15:93:98:a0:9a:5a:db:9f:80:a6:ca:9a:
77:bd:a7:c1:d8:10:10:d3:e5:aa:ce:01:e3:bd:09:70:bc:89:
6e:05:56:1a:2f:8c:5f:27:6a:f2:19:fa:fd:7d:2d:60:ae:3c:
ca:5b:81:94:41:44:e2:e7:ac:b8:1b:9a:51:5f:dd:84:28:24:
13:d4:83:48:a1:96:03:82:2c:f5:6f:7e:52:ac:6d:48:bf:3d:
6d:6e:2b:b0:0e:3d:86:8e:4c:78:03:ca:d2:b7:fa:f0:1c:1b:
92:0a:08:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:13:21 2025 by rpki-client