Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Vbj2O01gRFFNkZQGqDfR6rhmCxg.roa
File: Vbj2O01gRFFNkZQGqDfR6rhmCxg.roa (raw, json)
Hash identifier: cvIiLyZhMQBfNpPvIhH3Q+tMrk//oXe55bY7w2fR8OE=
Subject key identifier: 55:B8:F6:3B:4D:60:44:51:4D:91:94:06:A8:37:D1:EA:B8:66:0B:18
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018CED74C1E3D5692C1A2C4E315806DC4C4F
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Vbj2O01gRFFNkZQGqDfR6rhmCxg.roa
Signing time: Tue 09 Jan 2024 09:01:40 +0000
ROA not before: Tue 09 Jan 2024 09:01:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a0f:3d83::/32 maxlen: 32
2a11:fd80::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0e:f201:1::/48 maxlen: 48
2a13:4900::/29 maxlen: 29
2a05:b900::/29 maxlen: 29
2a0f:3d84::/32 maxlen: 32
2a13:fc00::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a06:5280::/29 maxlen: 29
2a0f:3d80:123::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0e:1a80::/32 maxlen: 32
2a0f:1e81:1293::/48 maxlen: 48
2a0f:3d87::/32 maxlen: 32
2a0f:1e00:abc::/48 maxlen: 48
2a10:6d40::/29 maxlen: 29
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:7d01::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a0f:2100::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a13:18c3::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 15 Jan 2024 07:47:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ed:74:c1:e3:d5:69:2c:1a:2c:4e:31:58:06:dc:4c:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 9 09:01:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55b8f63b4d6044514d919406a837d1eab8660b18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d4:a7:e3:98:1e:da:73:35:77:b3:07:9e:8c:
87:31:3a:ee:59:83:d6:13:a7:e1:48:56:16:dd:20:
cf:3c:9d:d8:a5:fa:ef:bc:7f:23:a6:7e:25:14:b7:
b5:72:61:3d:5d:6c:46:de:bb:cb:8a:23:c4:7c:86:
83:d0:ab:50:8a:3c:25:f4:cd:da:f3:53:a1:ba:36:
41:69:3c:7e:c2:0e:2a:5b:fe:13:96:ab:b9:af:ce:
3d:80:0e:4c:62:23:77:26:a9:04:1a:4b:92:83:6e:
35:e4:9a:98:4f:89:16:7e:89:22:52:fc:40:99:62:
b1:f7:7c:b6:a7:67:ec:4a:f8:6d:bc:0a:bb:fc:fe:
81:b6:e1:d7:94:d2:d3:52:f4:bc:9d:e9:5c:f4:88:
e4:ae:28:02:d3:99:54:75:04:c7:ff:04:71:e1:d2:
13:40:0d:36:ca:fc:ec:41:1b:90:3e:6e:91:5b:d9:
0f:89:89:70:f8:25:16:5c:2e:ed:44:91:7e:a7:a5:
ea:cf:0f:65:7b:ac:c8:b5:00:60:e8:8a:38:c3:72:
fb:59:d9:dc:78:c2:2b:ad:c2:8a:14:16:f8:75:74:
51:af:da:85:bb:81:c2:6b:b8:c9:9b:61:a7:63:32:
b4:d3:4a:e6:32:e7:68:d8:f8:f0:72:3c:38:e7:0d:
d6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:B8:F6:3B:4D:60:44:51:4D:91:94:06:A8:37:D1:EA:B8:66:0B:18
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Vbj2O01gRFFNkZQGqDfR6rhmCxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a05:b900::/29
2a06:5280::/29
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:3d80:123::/48
2a0f:3d82::-2a0f:3d84:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:3d87::/32
2a0f:7d01::/32
2a0f:e940::/29
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a13:18c0:1::/48
2a13:18c3::/32
2a13:4900::/29
2a13:fc00::/29
Signature Algorithm: sha256WithRSAEncryption
1e:3e:c6:ab:6a:2d:3f:05:48:93:3c:23:bb:5a:ac:c5:7f:2f:
ea:d1:3d:e5:64:e0:d7:43:7b:80:63:b3:53:1f:d9:87:a0:de:
8d:6b:66:fd:95:71:77:81:1e:a6:d3:fd:33:05:19:06:5a:ea:
51:27:fa:da:fb:c4:4f:f5:19:62:79:6c:a6:79:5d:4e:78:c0:
6a:1e:2f:81:4c:46:90:79:fd:81:6f:ff:b6:5a:79:3f:9f:55:
9f:3b:b6:ca:f5:7a:70:c3:53:79:ac:69:c3:a7:e3:90:3f:bf:
80:56:6d:cf:f5:9d:c7:13:22:70:d2:9c:02:d2:23:a5:a4:29:
fa:1b:9a:22:71:4b:a4:4b:b7:92:63:1f:d4:a2:1a:76:b8:70:
88:ed:f7:c7:4b:86:9e:b4:5e:f7:e8:87:6b:d0:cf:2e:4d:88:
63:d6:24:94:61:58:6d:47:3d:0c:51:ca:04:19:97:4a:ac:08:
4f:e0:97:08:ae:c0:75:65:79:84:18:c4:60:d5:64:0b:b6:cd:
29:db:44:21:c3:d5:9e:59:97:a0:73:63:67:e1:d9:28:54:8b:
6c:22:67:68:1c:ed:7d:80:78:d0:c5:ad:5c:6b:dd:b8:d6:7e:
9e:2b:04:c2:e7:4c:8e:45:5f:90:99:53:58:0f:56:b3:58:09:
55:72:b8:0f
-----BEGIN CERTIFICATE-----
MIIGEzCCBPugAwIBAgISAYztdMHj1WksGixOMVgG3ExPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwMTA5MDkwMTQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NWI4ZjYzYjRkNjA0NDUxNGQ5MTk0MDZhODM3ZDFlYWI4NjYwYjE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNSn45ge2nM1d7MHnoyHMTruWYPW
E6fhSFYW3SDPPJ3YpfrvvH8jpn4lFLe1cmE9XWxG3rvLiiPEfIaD0KtQijwl9M3a
81OhujZBaTx+wg4qW/4Tlqu5r849gA5MYiN3JqkEGkuSg2415JqYT4kWfokiUvxA
mWKx93y2p2fsSvhtvAq7/P6BtuHXlNLTUvS8nelc9IjkrigC05lUdQTH/wRx4dIT
QA02yvzsQRuQPm6RW9kPiYlw+CUWXC7tRJF+p6Xqzw9le6zItQBg6Io4w3L7Wdnc
eMIrrcKKFBb4dXRRr9qFu4HCa7jJm2GnYzK000rmMudo2Pjwcjw45w3WowIDAQAB
o4IDHzCCAxswHQYDVR0OBBYEFFW49jtNYERRTZGUBqg30eq4ZgsYMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvVmJqMk8wMWdSRkZOa1pRR3FEZlI2cmhtQ3hnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBMwYIKwYBBQUHAQcBAf8EggEiMIIBHjAYBAIAATASAwQA
LYF/AwQALYclAwQAwaTHMIIBAAQCAAIwgfkDBQMqBbkAAwUDKgZSgAMFACoOGoAD
BQAqDseAAwcAKg7yAQABAwcAKg8eAAEjAwcAKg8eAARWAwcAKg8eAAmHAwcAKg8e
AAq8AwcAKg8eAN75AwcAKg8eAQABAwcAKg8egQACAwcAKg8egRKTAwcAKg8egUMZ
AwcAKg8egZLoAwcAKg8egaPQAwcAKg8egc2uAwUDKg8hAAMHACoPPYABIzAOAwUB
Kg89ggMFACoPPYQDBQAqDz2HAwUAKg99AQMFAyoP6UADBQMqEG1AAwUDKhH9gAMF
ASoSrEADBwAqExjAAAEDBQAqExjDAwUDKhNJAAMFAyoT/AAwDQYJKoZIhvcNAQEL
BQADggEBAB4+xqtqLT8FSJM8I7tarMV/L+rRPeVk4NdDe4Bjs1Mf2Yeg3o1rZv2V
cXeBHqbT/TMFGQZa6lEn+tr7xE/1GWJ5bKZ5XU54wGoeL4FMRpB5/YFv/7ZaeT+f
VZ87tsr1enDDU3msacOn45A/v4BWbc/1nccTInDSnALSI6WkKfobmiJxS6RLt5Jj
H9SiGna4cIjt98dLhp60Xvfoh2vQzy5NiGPWJJRhWG1HPQxRygQZl0qsCE/glwiu
wHVleYQYxGDVZAu2zSnbRCHD1Z5Zl6BzY2fh2ShUi2wiZ2gc7X2AeNDFrVxr3bjW
fp4rBMLnTI5FX5CZU1gPVrNYCVVyuA8=
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:03:47 2025 by rpki-client