Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/rk_9TjEj9ZBtYJvO90QY2CWRHIQ.roa
File: rk_9TjEj9ZBtYJvO90QY2CWRHIQ.roa (raw, json)
Hash identifier: l0uhr50DzwNqZ0QciI2wwquBs3Hv/2OgrERri7ReidI=
Subject key identifier: AE:4F:FD:4E:31:23:F5:90:6D:60:9B:CE:F7:44:18:D8:25:91:1C:84
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0192DEF96F083D48F6C9993594B5A1771418
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/rk_9TjEj9ZBtYJvO90QY2CWRHIQ.roa
Signing time: Wed 30 Oct 2024 19:49:01 +0000
ROA not before: Wed 30 Oct 2024 19:49:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 45.152.198.0/24 maxlen: 24
103.114.40.0/24 maxlen: 24
2a0a:2d07:44::/48 maxlen: 48
2a0e:1a84::/32 maxlen: 32
2a0e:c781::/32 maxlen: 32
2a0e:f600:5f::/48 maxlen: 48
2a0f:3d80:bac::/48 maxlen: 48
2a0f:7d00:1::/48 maxlen: 48
2a0f:bc00:a1c4::/48 maxlen: 48
2a0f:e6c6:5532::/48 maxlen: 48
2a13:2b40::/29 maxlen: 32
Validation: Failed, certificate revoked on Wed 06 Nov 2024 14:15:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:de:f9:6f:08:3d:48:f6:c9:99:35:94:b5:a1:77:14:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 30 19:49:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae4ffd4e3123f5906d609bcef74418d825911c84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f1:9f:96:40:91:02:38:e4:03:f5:a7:06:0f:
ad:b3:d2:2b:ec:3a:74:60:71:3f:42:d9:8b:6e:3b:
ed:41:10:93:5f:6f:6b:58:ea:7b:a1:38:61:d2:a3:
85:8c:f2:d3:54:0b:d5:14:d3:59:1c:ea:f2:eb:f0:
d3:7a:96:12:ed:62:8d:93:99:03:9f:67:6b:34:33:
e1:5e:1d:72:66:c5:79:24:83:0a:d7:18:0d:fe:1c:
ad:d9:7a:f1:20:f2:7e:9d:56:a7:83:96:1e:44:c2:
c4:7f:ac:0d:c7:4e:d9:4e:02:cf:53:40:cc:e1:95:
83:e1:c7:64:7c:e2:2f:1a:50:dc:ac:0c:d7:50:eb:
01:2e:f3:10:a0:38:3f:e6:7d:7b:de:f8:b5:c0:4c:
5b:b7:65:2c:28:6c:dc:ea:f2:0e:d2:ea:af:26:8f:
c1:21:cb:6a:f0:99:9d:6e:e3:cc:cf:e8:38:d9:a8:
da:d1:ec:76:9c:72:84:6e:3b:f0:c3:3a:4b:82:e3:
8e:b8:26:8c:e9:8a:11:30:ce:4d:a5:79:33:93:d0:
7f:66:1b:b5:4f:8f:06:97:b4:3e:ca:4a:c5:02:e2:
e8:9e:a9:98:33:af:4f:3d:27:b1:1b:75:f1:6d:46:
e1:1e:b4:71:87:de:36:2c:2b:d2:dd:64:8a:85:99:
e8:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:4F:FD:4E:31:23:F5:90:6D:60:9B:CE:F7:44:18:D8:25:91:1C:84
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/rk_9TjEj9ZBtYJvO90QY2CWRHIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.198.0/24
103.114.40.0/24
IPv6:
2a0a:2d07:44::/48
2a0e:1a84::/32
2a0e:c781::/32
2a0e:f600:5f::/48
2a0f:3d80:bac::/48
2a0f:7d00:1::/48
2a0f:bc00:a1c4::/48
2a0f:e6c6:5532::/48
2a13:2b40::/29
Signature Algorithm: sha256WithRSAEncryption
83:c0:a8:38:ab:d7:4c:7e:e4:67:2d:d0:d0:a3:f4:9e:d4:47:
fe:01:b3:a2:97:b6:7a:16:b9:7a:6b:70:f2:7c:39:75:bc:82:
51:64:4d:4c:1a:e1:4d:6e:e0:d8:c7:a3:ca:64:b8:f7:c6:3e:
1a:61:4f:a9:ee:8d:a0:21:ba:28:a7:7e:0f:40:b6:20:90:a5:
50:2f:0a:64:01:09:ed:42:16:b6:84:82:d5:1d:28:3b:1a:91:
42:b2:e8:ff:37:be:bd:5a:25:b7:43:91:ff:26:f7:3f:f4:51:
17:fe:34:1a:41:a1:0d:b5:c8:9d:2e:68:5b:1c:65:24:14:22:
9e:40:6a:62:2d:a9:f7:71:40:ff:fc:44:ce:e3:3e:80:28:e6:
5b:94:a5:88:73:92:6e:46:dd:8a:2b:ca:d7:87:67:10:39:64:
de:e8:34:7a:d6:79:41:a6:f0:7d:83:8d:fa:d1:0e:fd:e0:fa:
5f:b5:40:0d:66:9e:81:9c:bd:20:8d:6b:78:70:0e:0c:9e:0d:
88:4b:67:e6:e6:20:b6:2e:ed:ae:32:7f:f8:4e:34:20:69:81:
26:aa:8a:93:da:1f:0c:83:0d:b9:ce:f9:1c:a4:86:de:b3:12:
8f:0a:35:39:69:58:9d:fc:12:eb:21:77:14:6a:b2:f2:15:62:
f3:ed:4c:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:14:15 2025 by rpki-client