Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/vVdhH49tlsvByJQutMfysVmugNc.roa
File: vVdhH49tlsvByJQutMfysVmugNc.roa (raw, json)
Hash identifier: 858lcY41OYplvzgLKbw3OmO6puMrYl5DZBcEtCMcxqY=
Subject key identifier: BD:57:61:1F:8F:6D:96:CB:C1:C8:94:2E:B4:C7:F2:B1:59:AE:80:D7
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019586616C550207A30543C6457BC1711A5B
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/vVdhH49tlsvByJQutMfysVmugNc.roa
Signing time: Tue 11 Mar 2025 18:04:46 +0000
ROA not before: Tue 11 Mar 2025 18:04:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214927
IP address blocks: 45.9.117.0/24 maxlen: 24
45.118.248.0/24 maxlen: 24
45.130.60.0/24 maxlen: 24
45.131.215.0/24 maxlen: 24
45.137.81.0/24 maxlen: 24
45.140.13.0/24 maxlen: 24
45.141.177.0/24 maxlen: 24
45.152.208.0/24 maxlen: 24
85.209.128.0/24 maxlen: 24
103.114.43.0/24 maxlen: 24
185.122.171.0/24 maxlen: 24
185.126.64.0/24 maxlen: 24
185.126.66.0/24 maxlen: 24
193.8.215.0/24 maxlen: 24
193.23.245.0/24 maxlen: 24
194.33.29.0/24 maxlen: 24
195.158.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Mar 2025 13:32:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:86:61:6c:55:02:07:a3:05:43:c6:45:7b:c1:71:1a:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 11 18:04:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bd57611f8f6d96cbc1c8942eb4c7f2b159ae80d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:87:17:75:f2:3b:af:6f:10:9c:c3:71:ab:cb:
9e:60:18:6b:cd:17:00:c4:8f:10:d7:43:d0:19:e6:
77:34:98:bc:91:72:3e:bb:e6:fb:dd:92:63:5d:e0:
e0:a1:9d:39:bb:8f:ca:e8:5c:f3:3e:60:96:ce:6e:
e0:11:ff:f2:51:50:d4:49:b8:7a:8c:4a:09:8b:11:
c5:d6:ea:06:58:73:e0:6f:0f:d7:83:59:65:b2:c6:
87:ca:52:fd:f2:58:dd:8c:97:02:d8:b8:ea:a6:bf:
04:e6:b9:0b:ad:61:e3:52:7a:9d:08:bb:b4:53:8c:
6c:0c:24:07:23:d3:ad:75:ab:f7:41:44:65:0f:5e:
96:7c:4d:7d:5f:85:cc:01:3d:e5:35:b6:69:05:b8:
99:d2:fb:27:ba:ef:40:0d:36:75:3a:24:4e:cc:07:
53:93:c4:f1:bc:87:4a:eb:28:1d:c5:52:fd:54:91:
44:c2:25:41:58:3f:ef:bb:bc:da:10:32:ce:3e:de:
26:b1:b1:27:74:66:be:af:85:be:11:07:74:cc:6d:
c9:bf:65:fa:3d:40:88:8c:31:25:09:3f:9d:9e:bd:
22:41:bd:97:3f:cd:d1:59:96:fc:2c:66:57:e2:80:
13:e8:38:38:f4:f1:3c:53:71:5b:f9:b4:3e:98:8a:
59:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:57:61:1F:8F:6D:96:CB:C1:C8:94:2E:B4:C7:F2:B1:59:AE:80:D7
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/vVdhH49tlsvByJQutMfysVmugNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.117.0/24
45.118.248.0/24
45.130.60.0/24
45.131.215.0/24
45.137.81.0/24
45.140.13.0/24
45.141.177.0/24
45.152.208.0/24
85.209.128.0/24
103.114.43.0/24
185.122.171.0/24
185.126.64.0/24
185.126.66.0/24
193.8.215.0/24
193.23.245.0/24
194.33.29.0/24
195.158.192.0/24
Signature Algorithm: sha256WithRSAEncryption
00:ea:01:7a:82:49:43:b9:c9:f2:86:a9:47:7f:59:86:3d:35:
45:93:28:32:04:2c:05:1c:e6:06:54:54:0f:25:76:1d:98:9c:
d6:bc:a7:6f:c2:57:73:c4:83:c1:f8:25:46:8e:33:bb:09:a4:
d4:36:a7:2f:4c:80:02:fc:49:55:eb:99:b4:69:fd:a8:22:7f:
8b:07:64:a8:f0:d2:a7:b6:8a:ae:5b:4b:f3:83:56:24:6d:97:
0f:3a:21:35:0c:9f:40:f2:c9:94:1b:1d:74:d6:ef:2c:0f:69:
d4:9d:92:bd:75:b8:f5:44:89:bc:3a:2a:cb:f9:60:c3:72:10:
3d:e7:93:c2:af:f6:b2:9b:a0:38:29:68:43:aa:95:87:d6:ab:
58:4f:df:d9:f1:8b:2d:a5:a9:77:e9:8b:83:6c:4b:60:15:7a:
c4:c5:6c:6b:0f:2f:11:76:7e:f2:24:56:23:e3:af:66:c0:51:
34:3b:e9:8f:a5:b2:14:37:81:8e:99:d4:90:8a:07:19:76:8d:
a7:ef:f6:d2:a2:65:b7:25:43:8c:20:1e:0b:99:df:8c:4b:4d:
60:96:63:15:0e:46:8a:dc:a5:8c:74:8c:8d:a9:18:31:29:21:
6c:76:3b:6d:82:e3:2e:40:21:0a:05:90:46:a3:56:62:35:73:
d1:06:9c:76
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAZWGYWxVAgejBUPGRXvBcRpbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjUwMzExMTgwNDQ2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZDU3NjExZjhmNmQ5NmNiYzFjODk0MmViNGM3ZjJiMTU5YWU4MGQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+YcXdfI7r28QnMNxq8ueYBhrzRcA
xI8Q10PQGeZ3NJi8kXI+u+b73ZJjXeDgoZ05u4/K6FzzPmCWzm7gEf/yUVDUSbh6
jEoJixHF1uoGWHPgbw/Xg1llssaHylL98ljdjJcC2Ljqpr8E5rkLrWHjUnqdCLu0
U4xsDCQHI9Otdav3QURlD16WfE19X4XMAT3lNbZpBbiZ0vsnuu9ADTZ1OiROzAdT
k8TxvIdK6ygdxVL9VJFEwiVBWD/vu7zaEDLOPt4msbEndGa+r4W+EQd0zG3Jv2X6
PUCIjDElCT+dnr0iQb2XP83RWZb8LGZX4oAT6Dg49PE8U3Fb+bQ+mIpZNQIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFL1XYR+PbZbLwciULrTH8rFZroDXMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvdlZkaEg0OXRsc3ZCeUpRdXRNZnlzVm11Z05jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQALQl1AwQA
LXb4AwQALYI8AwQALYPXAwQALYlRAwQALYwNAwQALY2xAwQALZjQAwQAVdGAAwQA
Z3IrAwQAuXqrAwQAuX5AAwQAuX5CAwQAwQjXAwQAwRf1AwQAwiEdAwQAw57AMA0G
CSqGSIb3DQEBCwUAA4IBAQAA6gF6gklDucnyhqlHf1mGPTVFkygyBCwFHOYGVFQP
JXYdmJzWvKdvwldzxIPB+CVGjjO7CaTUNqcvTIAC/ElV65m0af2oIn+LB2So8NKn
toquW0vzg1YkbZcPOiE1DJ9A8smUGx101u8sD2nUnZK9dbj1RIm8OirL+WDDchA9
55PCr/aym6A4KWhDqpWH1qtYT9/Z8Ystpal36YuDbEtgFXrExWxrDy8Rdn7yJFYj
469mwFE0O+mPpbIUN4GOmdSQigcZdo2n7/bSomW3JUOMIB4Lmd+MS01glmMVDkaK
3KWMdIyNqRgxKSFsdjttguMuQCEKBZBGo1ZiNXPRBpx2
-----END CERTIFICATE-----
Generated at Mon Apr 21 15:55:03 2025 by rpki-client