Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/e_9l8F9qzmpvxMd56RsUE2MzRpg.roa
File: e_9l8F9qzmpvxMd56RsUE2MzRpg.roa (raw, json)
Hash identifier: pubyQgJSbCvNw+7sQXsz9FvMzm81Jvrj7NxLfGiqjSs=
Subject key identifier: 7B:FF:65:F0:5F:6A:CE:6A:6F:C4:C7:79:E9:1B:14:13:63:33:46:98
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0190FD81175DACA9F80E3F36DC5A384F9F88
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/e_9l8F9qzmpvxMd56RsUE2MzRpg.roa
Signing time: Mon 29 Jul 2024 08:00:14 +0000
ROA not before: Mon 29 Jul 2024 08:00:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
103.139.50.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a06:1184:33::/48 maxlen: 48
2a0a:2d06:33::/48 maxlen: 48
2a0c:7886:33::/48 maxlen: 48
2a0e:1a80:2541::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0e:f600:6c::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a0f:7d02:1::/48 maxlen: 48
2a0f:e1c6::/32 maxlen: 32
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a12:f540::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 29 Jul 2024 18:10:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fd:81:17:5d:ac:a9:f8:0e:3f:36:dc:5a:38:4f:9f:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 29 08:00:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7bff65f05f6ace6a6fc4c779e91b141363334698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1d:1f:33:ed:45:10:75:93:8b:e2:3d:d7:44:
69:7a:af:81:a7:75:16:2a:c3:b9:c6:6f:bb:a7:11:
1f:4b:5d:bb:d9:ac:b8:37:a7:f4:53:71:b4:5c:86:
90:35:c8:5a:98:24:4d:c7:39:af:67:77:f7:10:ea:
66:6a:bd:21:8a:d7:b5:df:33:cf:b0:87:a1:4c:ed:
24:69:18:e3:21:64:90:b0:c8:a5:4e:df:b0:03:05:
30:7d:3e:3e:81:22:c4:f6:0a:42:8d:6e:ff:33:d0:
0a:36:b6:20:95:bd:a4:ba:47:ed:38:a9:83:90:da:
32:db:bf:12:dd:ee:60:fa:f3:85:4f:94:a2:4c:c3:
b8:8f:01:97:a5:d2:23:30:0a:ed:62:00:24:ca:2b:
a8:7a:08:78:47:71:dc:4a:a5:85:f0:df:8a:f2:88:
e6:4f:0c:bb:11:97:a0:6c:03:bb:93:e2:64:df:bc:
3d:9d:a6:da:88:45:fc:3d:e5:13:e3:45:81:52:51:
b0:d3:ed:5b:fe:ec:64:79:f8:e8:52:93:7d:2e:2e:
a2:6c:ac:f4:bb:8d:cc:6d:1f:e0:eb:10:45:2b:0b:
05:8e:3d:32:d5:c6:85:47:f4:fd:a8:15:4e:63:e1:
bf:8b:23:dd:d5:ac:fc:ab:f8:c2:ca:e4:93:7a:ed:
4d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:FF:65:F0:5F:6A:CE:6A:6F:C4:C7:79:E9:1B:14:13:63:33:46:98
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/e_9l8F9qzmpvxMd56RsUE2MzRpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
103.139.50.0/24
193.164.199.0/24
IPv6:
2a06:1184:33::/48
2a0a:2d06:33::/48
2a0c:7886:33::/48
2a0e:1a80:2541::/48
2a0e:c780::/32
2a0e:f201:1::/48
2a0e:f600:6c::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2e80::/29
2a0f:3d87::/32
2a0f:7d02:1::/48
2a0f:e1c6::/32
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a12:f540::/29
2a13:18c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
5c:a6:af:4c:12:e1:4a:9d:d6:ed:b0:b3:d4:cc:58:43:56:79:
ed:b8:ee:59:e8:5b:13:06:a9:40:4e:6f:7c:8a:ae:28:f5:2f:
65:7f:94:bd:4a:f3:79:b4:62:e5:d9:e3:bf:c6:6d:34:d5:d0:
02:fa:94:1e:fe:b9:5e:70:b8:3a:64:e4:9a:3a:22:e7:53:cb:
b9:ab:e4:c0:83:a7:2d:06:a1:e0:82:18:f9:75:2a:c5:b7:7e:
e9:88:a8:c8:c4:55:47:c3:9a:34:e8:f4:70:fb:46:cb:70:b4:
00:59:13:1c:76:55:fd:b5:a4:b1:d9:bc:56:66:09:89:a4:d3:
8d:9d:e1:44:00:c3:2e:11:d0:aa:a5:7f:f0:a2:7d:0c:78:00:
af:86:ea:00:8b:95:d8:95:a7:b0:50:bb:b9:02:34:02:75:e7:
48:9b:ec:fc:39:45:85:c2:0f:40:e6:a6:f4:9c:09:d4:03:85:
ed:22:4e:7a:71:4b:01:6e:5d:4d:34:c4:23:93:28:15:64:93:
4b:75:62:eb:0b:f6:a5:da:5d:ba:9f:fd:44:52:66:a0:b2:ff:
40:d7:5f:b0:73:42:62:bb:00:7a:5d:24:c6:02:39:e4:44:fc:
23:7a:3a:5a:e7:5f:89:b8:c4:81:c6:d1:af:e6:12:ce:ad:71:
bb:7f:10:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:04:57 2025 by rpki-client