Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/gczQaB5l6BIQt1xMwYyEO_268lk.roa
File: gczQaB5l6BIQt1xMwYyEO_268lk.roa (raw, json)
Hash identifier: nxFiosKpEYRZ6II0gYJLOINx8bT8UFruUrQz0/rVuf4=
Subject key identifier: 81:CC:D0:68:1E:65:E8:12:10:B7:5C:4C:C1:8C:84:3B:FD:BA:F2:59
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018D55F9EFD56B5F1EFA80F17A4A2CB6AFE8
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/gczQaB5l6BIQt1xMwYyEO_268lk.roa
Signing time: Mon 29 Jan 2024 16:07:39 +0000
ROA not before: Mon 29 Jan 2024 16:07:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a05:b900::/29 maxlen: 29
2a0e:1a80::/32 maxlen: 32
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2100::/29 maxlen: 29
2a0f:2e80::/29 maxlen: 29
2a0f:2f80::/29 maxlen: 29
2a0f:3d80:123::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a0f:3d83::/32 maxlen: 32
2a0f:3d84::/32 maxlen: 32
2a0f:3d87::/32 maxlen: 32
2a0f:7d01::/32 maxlen: 32
2a0f:e841::/32 maxlen: 32
2a0f:e940::/29 maxlen: 29
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a13:18c0:1::/48 maxlen: 48
2a13:18c3::/32 maxlen: 32
2a13:18c6::/32 maxlen: 32
2a13:4900::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 09 Feb 2024 07:18:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:55:f9:ef:d5:6b:5f:1e:fa:80:f1:7a:4a:2c:b6:af:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 29 16:07:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81ccd0681e65e81210b75c4cc18c843bfdbaf259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:69:bd:86:7a:91:81:c7:cb:28:ef:f1:29:c2:
3f:3a:51:d5:2a:01:52:4f:05:52:e7:29:2d:62:b5:
6f:00:ee:1f:8c:e5:66:96:b7:c4:03:a6:bd:51:9d:
5a:a6:f5:a1:48:52:88:fc:82:20:ca:7f:72:28:07:
ed:8b:db:35:fe:40:6f:96:33:64:b4:2d:3b:a2:a5:
1e:7f:d1:ea:55:9e:40:cd:38:bb:73:f6:bc:d6:77:
ba:36:d4:47:c8:4b:9e:b1:13:b1:35:81:38:a3:ee:
f7:27:4f:8f:5c:21:d3:bf:01:1f:4c:61:72:b4:0c:
3c:a8:75:55:50:54:0a:3f:28:d9:9e:af:7e:a5:f6:
12:2b:36:9c:5a:dc:56:5f:55:48:4f:4f:39:08:e0:
d4:93:f8:73:4f:e2:4d:f1:4b:5d:91:c8:6b:12:b8:
9c:23:d5:2b:f5:94:e3:e5:16:e1:2b:42:71:e8:2b:
ca:2e:62:87:7b:ca:08:e4:ac:c0:e6:da:c1:36:10:
49:f6:f2:da:a1:ea:d5:ca:a7:89:20:26:d1:4b:75:
1f:d3:98:11:11:5b:c8:a8:80:03:f1:82:51:83:c9:
62:59:a7:c4:6a:ab:97:c1:17:ab:9f:bd:0f:28:f6:
6f:0c:1e:d7:d5:bd:dd:29:2c:7c:68:76:82:60:b3:
a7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:CC:D0:68:1E:65:E8:12:10:B7:5C:4C:C1:8C:84:3B:FD:BA:F2:59
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/gczQaB5l6BIQt1xMwYyEO_268lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a05:b900::/29
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:2e80::/29
2a0f:2f80::/29
2a0f:3d80:123::/48
2a0f:3d82::-2a0f:3d84:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:3d87::/32
2a0f:7d01::/32
2a0f:e841::/32
2a0f:e940::/29
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a13:18c0:1::/48
2a13:18c3::/32
2a13:18c6::/32
2a13:4900::/29
Signature Algorithm: sha256WithRSAEncryption
23:72:9b:eb:3b:8a:25:44:0f:6f:ed:79:97:af:8b:0a:f5:42:
9d:1e:79:c0:d7:f1:4a:76:06:50:9c:cb:dd:8c:f4:3c:39:28:
41:03:08:f7:09:80:87:ad:74:40:e0:54:65:d7:80:2d:27:8d:
31:49:18:dd:47:e5:4f:7a:2f:f9:46:c8:79:f0:78:8f:99:09:
c3:3f:5b:17:25:ea:17:be:01:7b:91:36:99:2c:81:2d:ed:27:
9f:70:d3:28:54:01:60:af:d5:b3:37:41:e4:57:ab:4e:9e:c3:
cc:ec:de:aa:f0:25:3f:4c:b2:3f:4b:a4:75:ea:f4:7e:59:31:
9c:48:74:61:70:4a:ed:c7:e7:8c:57:a3:a7:05:80:ea:1a:75:
de:a8:cd:64:ac:0e:d6:2c:a3:03:cf:3d:d0:b9:2c:e4:d0:75:
d9:74:b4:00:eb:3a:4a:26:fb:ec:5f:90:a4:ab:7b:9c:d0:d5:
72:de:bc:37:e0:10:47:2a:64:b6:df:44:ac:86:ab:99:01:c1:
07:69:b7:3d:fa:68:ab:72:9f:9b:16:c4:16:79:59:93:b7:c6:
6d:ce:77:53:b2:7b:ab:8c:9f:8b:97:58:40:84:17:b3:78:0e:
d4:13:08:79:06:16:09:aa:38:50:a6:7d:09:14:b7:04:0a:e0:
a9:6f:7d:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:00:53 2025 by rpki-client