Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/YODww8Jqggv33jeU_I-yJAUTJiw.roa
File: YODww8Jqggv33jeU_I-yJAUTJiw.roa (raw, json)
Hash identifier: bZXXHD7sSmzp4PJFd16LvXuDSiqZ0xID2amU2yteVe4=
Subject key identifier: 60:E0:F0:C3:C2:6A:82:0B:F7:DE:37:94:FC:8F:B2:24:05:13:26:2C
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019518315C720AD6B0A8E974D0B7AE2C8565
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/YODww8Jqggv33jeU_I-yJAUTJiw.roa
Signing time: Tue 18 Feb 2025 08:34:02 +0000
ROA not before: Tue 18 Feb 2025 08:34:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 45.12.61.0/24 maxlen: 24
45.128.79.0/24 maxlen: 24
45.141.178.0/24 maxlen: 24
93.190.246.0/24 maxlen: 24
193.23.253.0/24 maxlen: 24
193.27.19.0/24 maxlen: 24
193.27.21.0/24 maxlen: 24
193.27.23.0/24 maxlen: 24
2a07:f300::/29 maxlen: 29
2a0f:6d80::/29 maxlen: 29
2a0f:7d03::/32 maxlen: 32
2a0f:e940::/29 maxlen: 29
2a12:d6c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 11 Mar 2025 19:41:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:18:31:5c:72:0a:d6:b0:a8:e9:74:d0:b7:ae:2c:85:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 18 08:34:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=60e0f0c3c26a820bf7de3794fc8fb2240513262c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2a:17:1e:97:de:fd:48:8c:fa:18:de:70:ff:
a7:41:45:c1:fe:4c:bd:df:6e:17:45:c9:93:ae:68:
cb:c6:c4:37:16:6a:92:1e:67:ea:13:45:1e:c4:8c:
b1:18:e4:71:c7:a2:22:3e:0d:6c:39:c4:72:98:c0:
b3:28:84:ee:4e:15:70:eb:97:76:49:ee:b7:a8:0b:
cb:43:13:6c:5c:86:45:9a:80:e9:e1:8f:b9:45:47:
cb:7e:fc:f6:59:5a:d5:00:3e:56:4f:48:42:98:d3:
e6:03:b4:55:c8:56:f2:45:3c:ab:86:94:b8:13:09:
8e:a0:ff:b2:3a:98:65:d2:87:15:67:a9:ef:c3:4f:
d5:11:23:0f:5b:b6:f7:05:64:14:d6:12:e9:b7:29:
b8:18:f8:f2:32:43:5b:98:8a:33:af:65:85:34:ce:
40:d7:32:a6:95:24:ab:0f:76:bc:67:ad:46:87:18:
0f:c7:25:ad:81:f3:5c:ce:85:52:e8:28:8c:37:ab:
61:e2:f7:4c:9d:68:cf:ae:68:bc:3a:ab:35:4d:93:
a8:94:fb:c1:b4:62:6f:b9:0a:54:68:1d:b5:c8:a1:
7d:4f:43:38:0b:49:55:c1:80:92:11:35:fa:5c:19:
8c:e2:a0:f2:dd:3a:08:7a:81:02:d1:17:39:eb:4b:
66:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E0:F0:C3:C2:6A:82:0B:F7:DE:37:94:FC:8F:B2:24:05:13:26:2C
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/YODww8Jqggv33jeU_I-yJAUTJiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.61.0/24
45.128.79.0/24
45.141.178.0/24
93.190.246.0/24
193.23.253.0/24
193.27.19.0/24
193.27.21.0/24
193.27.23.0/24
IPv6:
2a07:f300::/29
2a0f:6d80::/29
2a0f:7d03::/32
2a0f:e940::/29
2a12:d6c0::/29
Signature Algorithm: sha256WithRSAEncryption
3c:8a:ce:c0:00:72:21:23:df:37:7b:76:06:80:f8:42:ed:69:
3f:2e:8c:49:75:bc:6d:e7:ff:40:81:80:df:8b:19:bb:a0:df:
9d:37:1c:4e:5b:ed:98:2d:51:84:a7:a5:32:d1:df:df:0a:5d:
84:85:c4:98:8e:af:71:79:b1:f2:ee:c6:7d:0e:13:dd:c3:62:
6f:7c:87:67:32:88:cb:42:59:55:89:c9:f5:16:7d:8f:ec:dc:
a3:ec:81:2c:e4:d3:13:bd:a8:1d:c1:5c:c1:16:c6:04:b3:9e:
8e:13:70:4e:6d:70:89:0d:2b:7e:9c:39:19:32:2f:3c:ac:13:
83:ce:ad:2b:c8:12:62:f1:b7:eb:fc:0b:4c:9c:8e:3f:c9:21:
95:1f:2c:17:0e:4d:d7:14:91:3e:78:78:42:d2:33:42:61:65:
37:6c:4b:4a:e4:7f:16:bb:af:2f:ad:ce:47:05:95:be:bf:57:
29:33:7c:91:4d:14:cf:eb:dc:46:2e:6d:8b:c2:51:d4:3a:eb:
69:92:53:bb:d5:fc:04:e9:26:e1:83:a4:a7:d8:52:8c:cb:11:
09:1a:9b:a0:d4:77:41:3f:45:6b:42:01:e5:4f:88:03:99:d5:
14:64:b3:45:38:00:bf:f1:b2:bb:c4:74:a2:e9:27:b3:24:d8:
08:a1:60:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:09:44 2025 by rpki-client