Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Z2poUOv0uHrmQ_X1xMT8Ms81Pag.roa
File: Z2poUOv0uHrmQ_X1xMT8Ms81Pag.roa (raw, json)
Hash identifier: tGgu+nta9xoepxL1g36b3n5HTqI4tNgRg89ecp3RglI=
Subject key identifier: 67:6A:68:50:EB:F4:B8:7A:E6:43:F5:F5:C4:C4:FC:32:CF:35:3D:A8
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01958B5490E81D43420D47A3CC6FDD1452BD
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Z2poUOv0uHrmQ_X1xMT8Ms81Pag.roa
Signing time: Wed 12 Mar 2025 17:08:49 +0000
ROA not before: Wed 12 Mar 2025 17:08:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205544
IP address blocks: 45.155.69.0/24 maxlen: 24
193.8.94.0/24 maxlen: 24
193.8.231.0/24 maxlen: 24
2a09:17c0:b19a::/48 maxlen: 48
2a09:17c7:fc3a::/48 maxlen: 48
2a0f:1200:d9::/48 maxlen: 48
2a0f:1207:fe5a::/48 maxlen: 48
2a0f:e1c0:3::/48 maxlen: 48
2a0f:e1c0:37a::/48 maxlen: 48
2a0f:e200:5::/48 maxlen: 48
2a0f:e200:25f::/48 maxlen: 48
2a0f:e207:fd38::/48 maxlen: 48
2a0f:e440::/29 maxlen: 29
2a0f:e6c0:11c::/48 maxlen: 48
2a0f:e6c0:3af::/48 maxlen: 48
2a0f:e6c6:99::/48 maxlen: 48
2a0f:e7c7:fcd8::/48 maxlen: 48
2a0f:ea40:8::/48 maxlen: 48
2a0f:ea47:fc1d::/48 maxlen: 48
2a0f:ea47:ff49::/48 maxlen: 48
2a12:ecc0:3::/48 maxlen: 48
2a12:ecc0:4::/48 maxlen: 48
2a12:ecc0:66::/48 maxlen: 48
2a12:ecc0:188::/48 maxlen: 48
2a12:ecc0:316::/48 maxlen: 48
2a12:ecc0:34a::/48 maxlen: 48
2a13:18c6:44::/48 maxlen: 48
2a13:18c6:99::/48 maxlen: 48
2a13:8c82:2::/48 maxlen: 48
2a13:8c86:100::/48 maxlen: 48
2a13:8c86:140::/48 maxlen: 48
2a13:c900:22::/48 maxlen: 48
2a13:c900:66::/48 maxlen: 48
2a13:c900:110::/48 maxlen: 48
2a13:e102:2::/48 maxlen: 48
2a13:e107:77::/48 maxlen: 48
2a13:e107:29b::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 21 Mar 2025 09:12:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:54:90:e8:1d:43:42:0d:47:a3:cc:6f:dd:14:52:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 12 17:08:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=676a6850ebf4b87ae643f5f5c4c4fc32cf353da8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:53:29:a6:62:f3:dc:17:63:73:d6:b9:4d:ab:
80:d3:0f:20:06:5f:b3:fa:9b:14:28:2a:f6:3e:3d:
cb:3c:d1:49:0c:a5:76:66:d5:51:3e:45:aa:b6:87:
6b:8c:7b:ab:30:b1:b8:cb:00:bc:94:05:8d:a4:fe:
9d:b6:39:2a:40:af:6b:5e:d8:6a:59:7d:65:02:95:
59:f9:5f:b7:1d:a5:ad:33:31:1f:1b:d3:6c:44:5e:
04:b4:9d:7e:15:91:1c:97:d6:c9:51:87:a5:96:5a:
66:6c:85:34:2b:02:5c:29:c8:5e:5e:ef:71:be:85:
1d:af:91:79:90:2f:35:fa:9b:0a:3b:c0:2b:a0:09:
f4:32:39:87:22:d5:13:18:7d:28:82:c7:73:79:ba:
de:30:bf:08:37:de:2e:2f:61:90:e9:96:0b:b7:08:
f7:f7:8f:17:36:3c:2e:69:ee:1c:1d:df:df:c3:bb:
60:05:09:ae:30:2e:bf:97:a0:16:31:93:e1:92:87:
3f:1c:ec:45:82:14:7a:f8:e2:b5:b0:cb:12:f4:7d:
ea:3d:91:1e:9e:c6:1a:13:92:30:56:44:44:52:de:
43:37:a2:12:3f:fe:f9:d1:9c:c8:ba:d3:10:b8:3a:
70:42:f6:c1:de:d1:7b:df:0a:e9:50:83:48:6f:45:
22:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:6A:68:50:EB:F4:B8:7A:E6:43:F5:F5:C4:C4:FC:32:CF:35:3D:A8
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Z2poUOv0uHrmQ_X1xMT8Ms81Pag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.69.0/24
193.8.94.0/24
193.8.231.0/24
IPv6:
2a09:17c0:b19a::/48
2a09:17c7:fc3a::/48
2a0f:1200:d9::/48
2a0f:1207:fe5a::/48
2a0f:e1c0:3::/48
2a0f:e1c0:37a::/48
2a0f:e200:5::/48
2a0f:e200:25f::/48
2a0f:e207:fd38::/48
2a0f:e440::/29
2a0f:e6c0:11c::/48
2a0f:e6c0:3af::/48
2a0f:e6c6:99::/48
2a0f:e7c7:fcd8::/48
2a0f:ea40:8::/48
2a0f:ea47:fc1d::/48
2a0f:ea47:ff49::/48
2a12:ecc0:3::-2a12:ecc0:4:ffff:ffff:ffff:ffff:ffff
2a12:ecc0:66::/48
2a12:ecc0:188::/48
2a12:ecc0:316::/48
2a12:ecc0:34a::/48
2a13:18c6:44::/48
2a13:18c6:99::/48
2a13:8c82:2::/48
2a13:8c86:100::/48
2a13:8c86:140::/48
2a13:c900:22::/48
2a13:c900:66::/48
2a13:c900:110::/48
2a13:e102:2::/48
2a13:e107:77::/48
2a13:e107:29b::/48
Signature Algorithm: sha256WithRSAEncryption
65:a6:4f:a3:b5:5d:b8:05:de:dc:ce:27:63:cd:cc:bb:61:ca:
f0:4c:4f:2d:86:b0:29:f2:ad:d4:97:ae:ce:bb:c8:a5:87:7a:
2b:26:df:7a:62:09:c4:19:74:9b:5a:ae:74:78:ab:19:f0:f4:
a0:cb:31:98:a8:1e:31:a2:35:11:9c:a4:a9:28:05:67:b8:9f:
46:02:2d:72:88:90:10:a4:f9:59:c1:6a:02:98:f9:79:da:c3:
46:b4:63:89:06:16:29:23:21:6d:cc:29:bd:b9:45:19:bf:07:
2e:05:93:8b:90:f6:5f:a4:f3:8a:e1:f8:12:cb:20:3c:1f:2a:
09:48:0f:d5:21:ee:52:9a:0a:b8:c4:7a:6f:77:b5:c2:a0:09:
14:7e:b3:e2:ae:71:12:73:51:90:46:b5:13:1d:45:f3:f9:4c:
15:7e:ae:59:3c:d2:61:1a:43:07:6a:87:47:6b:09:fd:2f:52:
82:19:21:d3:ce:36:ed:99:2a:f4:56:40:8e:e0:20:4e:e9:a7:
be:4e:07:85:fe:4b:44:39:88:ff:bd:01:1b:8b:df:b1:f7:82:
fb:a6:31:fc:af:e5:6f:7a:6d:52:f9:8c:ba:dc:7d:07:51:cf:
ff:c1:ed:5e:70:67:78:7c:7b:d6:dc:ee:2f:61:78:08:a2:04:
9e:81:6a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:33:24 2025 by rpki-client