Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/rRO0xkYqx8ycqCwRoyEVI5R6FaM.roa
File: rRO0xkYqx8ycqCwRoyEVI5R6FaM.roa (raw, json)
Hash identifier: /mjoHZXSH+Bk93Ww58cS0TS7ZEOVb5nhFK1w5ohh4mA=
Subject key identifier: AD:13:B4:C6:46:2A:C7:CC:9C:A8:2C:11:A3:21:15:23:94:7A:15:A3
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018E0DD97843F53BBBF0402C1F7F58CC00B3
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/rRO0xkYqx8ycqCwRoyEVI5R6FaM.roa
Signing time: Tue 05 Mar 2024 09:02:19 +0000
ROA not before: Tue 05 Mar 2024 09:02:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a0e:1a80::/32 maxlen: 32
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2100::/29 maxlen: 29
2a0f:2e80::/29 maxlen: 29
2a0f:2f80::/29 maxlen: 29
2a0f:3d82::/32 maxlen: 32
2a0f:3d83::/32 maxlen: 32
2a0f:3d84::/32 maxlen: 32
2a0f:3d87::/32 maxlen: 32
2a0f:e1c7:1::/48 maxlen: 48
2a0f:e847:2::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a12:d5c0::/29 maxlen: 29
2a12:f540::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a13:18c3::/32 maxlen: 32
2a13:18c6::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 19 Mar 2024 07:23:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0d:d9:78:43:f5:3b:bb:f0:40:2c:1f:7f:58:cc:00:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 5 09:02:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad13b4c6462ac7cc9ca82c11a3211523947a15a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:83:93:90:46:af:5e:5c:d7:ca:3c:a5:db:18:
ed:2a:30:9f:bf:6d:15:18:5c:6c:12:39:74:84:17:
6e:49:28:97:b1:6e:63:d7:af:0f:cc:6e:c7:3e:40:
33:5a:7a:75:2c:06:8d:3f:f6:36:f0:c8:b8:a6:5b:
27:48:d6:f7:b1:c2:52:a1:e9:ba:35:3b:7c:78:84:
22:e4:e2:33:55:6e:0a:35:49:9f:d5:64:61:61:0e:
d4:f0:30:08:1b:f3:13:be:42:5b:c0:06:df:3d:0a:
9d:9b:38:8f:85:48:ce:8e:d2:86:4e:d5:59:3b:7a:
59:c2:7c:8c:e5:97:af:12:2f:89:cc:bb:24:a3:09:
26:1d:05:c7:a9:ef:e6:00:ca:dc:3e:e9:a6:eb:2c:
e5:9d:8f:35:46:92:6c:f5:43:2a:91:82:ef:b5:d5:
ab:b0:82:23:32:93:cd:c3:e3:20:72:6d:f2:a4:77:
ae:d6:4d:1d:e0:1d:62:64:b4:95:45:5e:fa:38:14:
97:ab:fd:98:21:03:4a:51:33:cf:4b:34:3f:4d:c2:
de:a0:45:75:f0:cd:7b:58:77:c5:b0:24:2e:21:72:
0a:99:30:40:e7:fa:d9:df:4c:9e:06:af:50:3f:7b:
45:89:f9:00:84:f9:d4:1e:17:b5:26:95:ab:31:4b:
49:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:13:B4:C6:46:2A:C7:CC:9C:A8:2C:11:A3:21:15:23:94:7A:15:A3
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/rRO0xkYqx8ycqCwRoyEVI5R6FaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:2e80::/29
2a0f:2f80::/29
2a0f:3d82::-2a0f:3d84:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:3d87::/32
2a0f:e1c7:1::/48
2a0f:e847:2::/48
2a0f:e940::/29
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a12:d5c0::/29
2a12:f540::/29
2a13:18c0:1::/48
2a13:18c3::/32
2a13:18c6::/32
Signature Algorithm: sha256WithRSAEncryption
0f:45:5a:46:79:be:8a:c8:09:21:cf:20:28:38:1c:94:c6:39:
20:fc:dc:d7:d0:b4:3d:ce:be:f8:cc:26:88:cf:22:50:92:98:
b0:0e:c8:f7:a8:f3:1c:1c:f8:d2:d5:27:a6:56:10:97:6b:e4:
ea:56:47:7c:ef:63:d4:dc:08:a2:b5:a9:9d:55:11:e1:da:0e:
38:e1:11:f0:75:c2:21:c4:92:54:7f:5b:c6:bf:32:18:b0:c3:
1f:d9:16:e7:7d:0b:62:03:db:d3:be:54:61:22:f5:68:84:ed:
89:a1:8a:74:2b:5b:87:56:a3:e8:88:d2:fe:dd:c3:91:dd:7b:
e6:d7:73:3d:f4:58:c0:f0:46:71:ff:55:d1:e4:e9:38:0e:90:
32:7d:67:38:04:b6:85:d6:6a:7d:96:3b:1c:9e:3e:82:76:2f:
92:08:1d:1b:40:de:4f:1e:b2:ea:1b:21:f1:72:d6:4a:6e:e7:
c8:43:bf:72:cd:f4:04:8d:5d:22:ca:e4:1e:4f:a3:66:25:db:
4c:a2:b5:55:3e:74:3a:41:58:c0:d0:8a:19:cf:8d:96:ca:ec:
e8:11:b6:2f:23:0d:cd:a9:6b:41:1b:50:b7:c4:3f:93:28:08:
19:af:8a:76:88:de:e6:0f:df:ac:22:d8:c6:a4:cd:03:28:3e:
cf:f4:e9:f1
-----BEGIN CERTIFICATE-----
MIIGHTCCBQWgAwIBAgISAY4N2XhD9Tu78EAsH39YzACzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwMzA1MDkwMjE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDEzYjRjNjQ2MmFjN2NjOWNhODJjMTFhMzIxMTUyMzk0N2ExNWEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzYOTkEavXlzXyjyl2xjtKjCfv20V
GFxsEjl0hBduSSiXsW5j168PzG7HPkAzWnp1LAaNP/Y28Mi4plsnSNb3scJSoem6
NTt8eIQi5OIzVW4KNUmf1WRhYQ7U8DAIG/MTvkJbwAbfPQqdmziPhUjOjtKGTtVZ
O3pZwnyM5ZevEi+JzLskowkmHQXHqe/mAMrcPumm6yzlnY81RpJs9UMqkYLvtdWr
sIIjMpPNw+Mgcm3ypHeu1k0d4B1iZLSVRV76OBSXq/2YIQNKUTPPSzQ/TcLeoEV1
8M17WHfFsCQuIXIKmTBA5/rZ30yeBq9QP3tFifkAhPnUHhe1JpWrMUtJvQIDAQAB
o4IDKTCCAyUwHQYDVR0OBBYEFK0TtMZGKsfMnKgsEaMhFSOUehWjMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvclJPMHhrWXF4OHljcUN3Um95RVZJNVI2RmFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBPQYIKwYBBQUHAQcBAf8EggEsMIIBKDAYBAIAATASAwQA
LYF/AwQALYclAwQAwaTHMIIBCgQCAAIwggECAwUAKg4agAMFACoOx4ADBwAqDvIB
AAEDBwAqDx4AASMDBwAqDx4ABFYDBwAqDx4ACYcDBwAqDx4ACrwDBwAqDx4A3vkD
BwAqDx4BAAEDBwAqDx6BAAIDBwAqDx6BEpMDBwAqDx6BQxkDBwAqDx6BkugDBwAq
Dx6Bo9ADBwAqDx6Bza4DBQMqDyEAAwUDKg8ugAMFAyoPL4AwDgMFASoPPYIDBQAq
Dz2EAwUAKg89hwMHACoP4ccAAQMHACoP6EcAAgMFAyoP6UADBQMqEG1AAwUDKhH9
gAMFASoSrEADBQMqEtXAAwUDKhL1QAMHACoTGMAAAQMFACoTGMMDBQAqExjGMA0G
CSqGSIb3DQEBCwUAA4IBAQAPRVpGeb6KyAkhzyAoOByUxjkg/NzX0LQ9zr74zCaI
zyJQkpiwDsj3qPMcHPjS1SemVhCXa+TqVkd872PU3AiitamdVRHh2g444RHwdcIh
xJJUf1vGvzIYsMMf2RbnfQtiA9vTvlRhIvVohO2JoYp0K1uHVqPoiNL+3cOR3Xvm
13M99FjA8EZx/1XR5Ok4DpAyfWc4BLaF1mp9ljscnj6Cdi+SCB0bQN5PHrLqGyHx
ctZKbufIQ79yzfQEjV0iyuQeT6NmJdtMorVVPnQ6QVjA0IoZz42WyuzoEbYvIw3N
qWtBG1C3xD+TKAgZr4p2iN7mD9+sItjGpM0DKD7P9Onx
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:04:49 2025 by rpki-client