Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/73zwwqjduuTj8wSI9E2Cp6weFmY.roa
File: 73zwwqjduuTj8wSI9E2Cp6weFmY.roa (raw, json)
Hash identifier: x16Idip8q1i+/szcjuSYjrC/rVGj2FwuogmL4nffh1s=
Subject key identifier: EF:7C:F0:C2:A8:DD:BA:E4:E3:F3:04:88:F4:4D:82:A7:AC:1E:16:66
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 019089FBCDF52B6012E3F3599134613D1429
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/73zwwqjduuTj8wSI9E2Cp6weFmY.roa
Signing time: Sat 06 Jul 2024 21:38:19 +0000
ROA not before: Sat 06 Jul 2024 21:38:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
2a0f:b700::/29 maxlen: 29
2a0f:e900::/29 maxlen: 29
2a0f:eb00::/29 maxlen: 29
2a0f:eb00::/32 maxlen: 32
2a0f:eb07::/32 maxlen: 32
2a0f:ed00::/29 maxlen: 29
2a0f:ed03::/32 maxlen: 32
2a0f:f900::/29 maxlen: 29
2a13:a440::/32 maxlen: 32
2a13:a441::/32 maxlen: 32
2a13:a447::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 10 Jul 2024 15:10:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:89:fb:cd:f5:2b:60:12:e3:f3:59:91:34:61:3d:14:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jul 6 21:38:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef7cf0c2a8ddbae4e3f30488f44d82a7ac1e1666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:83:c7:c0:9e:a0:2f:c6:8b:d4:54:e3:02:d7:
c2:5f:67:61:87:83:30:09:30:fa:1b:09:f1:7d:d8:
4e:4c:87:9d:ad:02:45:fa:8b:a6:ae:83:b2:36:4f:
6d:6d:5d:b5:2b:14:b3:db:bd:9a:16:67:6c:60:a9:
23:0e:b8:1e:94:66:80:0d:03:96:10:66:ac:3e:4e:
55:e8:1b:2c:31:b4:4f:4d:2f:0d:47:8e:5a:a4:48:
48:58:7c:1e:ea:35:27:20:55:90:89:bc:28:fd:45:
5c:0d:b9:e3:98:75:aa:46:7f:50:be:12:5d:b8:e5:
cc:3d:2b:3f:6f:a2:64:cb:4e:71:db:e1:3b:b0:2e:
ab:a7:08:77:71:db:4f:7b:1d:05:6f:54:f4:7b:f7:
98:5a:a7:e7:3c:e7:02:43:72:03:27:23:1f:7f:6d:
39:88:ca:09:72:64:bb:4e:a9:07:5f:3f:a0:c0:f1:
d5:f9:e8:7f:fc:18:9b:57:e3:a1:8a:a3:52:35:72:
6c:54:0d:31:d7:5f:49:ce:f7:f0:02:0e:53:73:16:
c1:0d:bd:04:50:6c:b7:42:91:e1:17:fc:96:83:6f:
15:ba:c3:d4:ae:d6:85:6f:ac:9b:ad:8f:4c:03:e3:
6a:ae:01:b2:04:da:6a:4e:fb:52:1e:ba:e8:3e:b7:
db:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:7C:F0:C2:A8:DD:BA:E4:E3:F3:04:88:F4:4D:82:A7:AC:1E:16:66
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/73zwwqjduuTj8wSI9E2Cp6weFmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.107.0/24
45.131.0.0/23
45.141.148.0/24
45.147.44.0/24
77.83.200.0/22
194.116.228.0/24
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
2a0f:b700::/29
2a0f:e900::/29
2a0f:eb00::/29
2a0f:ed00::/29
2a0f:f900::/29
2a13:a440::/31
2a13:a447::/32
Signature Algorithm: sha256WithRSAEncryption
03:3d:ef:21:bb:d7:94:ec:e6:2b:16:31:43:5a:fe:7a:a2:08:
03:32:34:d2:40:33:c8:db:0d:e5:7a:a3:de:dd:e4:88:e9:d6:
00:05:f9:c2:e6:a1:ff:1d:77:08:c8:90:9b:28:e4:62:ed:89:
9a:f3:d1:39:02:60:9b:57:3e:13:91:ec:78:f6:83:a0:5e:53:
84:e3:c5:7a:42:29:7f:c5:ec:fc:de:d4:e2:1c:2c:13:27:7c:
33:96:97:bf:c7:be:2a:3d:f6:be:7b:9c:17:fa:65:cb:ba:a2:
42:33:ee:88:d9:41:3f:12:21:db:49:01:b0:1a:b4:a5:b9:35:
60:4d:83:64:38:dd:6b:5c:41:d2:20:cd:7d:8e:1a:5c:22:d1:
cf:3e:69:23:4d:54:2a:e5:c2:eb:94:1e:ae:20:19:44:ea:a0:
86:a5:5b:98:ca:c8:c5:73:6c:51:ad:cc:75:a7:36:41:24:67:
a3:10:f1:94:70:38:2e:ab:b7:41:ac:1a:90:88:81:5a:24:76:
f8:27:42:14:85:df:77:dd:bb:42:da:38:e1:ee:3c:c2:4c:72:
85:3e:fb:e3:d3:03:ee:c4:e3:c7:52:82:f7:71:c9:eb:10:b6:
7a:e2:f8:e4:01:fd:91:5a:22:d8:da:51:3c:cb:27:ba:4f:f4:
ae:32:1e:e5
-----BEGIN CERTIFICATE-----
MIIFdjCCBF6gAwIBAgISAZCJ+831K2AS4/NZkTRhPRQpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MDVmMTdjMmQ3MTMzZDJkYWQzYThkZjdlMzUzMTVlMzdl
ZjVkYWYwHhcNMjQwNzA2MjEzODE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjdjZjBjMmE4ZGRiYWU0ZTNmMzA0ODhmNDRkODJhN2FjMWUxNjY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYPHwJ6gL8aL1FTjAtfCX2dhh4Mw
CTD6GwnxfdhOTIedrQJF+oumroOyNk9tbV21KxSz272aFmdsYKkjDrgelGaADQOW
EGasPk5V6BssMbRPTS8NR45apEhIWHwe6jUnIFWQibwo/UVcDbnjmHWqRn9QvhJd
uOXMPSs/b6Jky05x2+E7sC6rpwh3cdtPex0Fb1T0e/eYWqfnPOcCQ3IDJyMff205
iMoJcmS7TqkHXz+gwPHV+eh//BibV+OhiqNSNXJsVA0x119JzvfwAg5TcxbBDb0E
UGy3QpHhF/yWg28VusPUrtaFb6ybrY9MA+NqrgGyBNpqTvtSHrroPrfbDQIDAQAB
o4ICgjCCAn4wHQYDVR0OBBYEFO988MKo3brk4/MEiPRNgqesHhZmMB8GA1UdIwQY
MBaAFEgF8XwtcTPS2tOo3341MV43712vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUt
NWRkNmUyMmViYWIwLzEvNzN6d3dxamR1dVRqOHdTSTlFMkNwNndlRm1ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUtNWRkNmUyMmViYWIw
LzEvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGXBggrBgEFBQcBBwEB/wSBhzCBhDBCBAIAATA8AwQABbRr
AwQBLYMAAwQALY2UAwQALZMsAwQCTVPIAwQAwnTkAwQBwnTsAwQAwpIaAwQAwpIk
AwQAwpIvMD4EAgACMDgDBQMqCYeAAwUDKg+3AAMFAyoP6QADBQMqD+sAAwUDKg/t
AAMFAyoP+QADBQEqE6RAAwUAKhOkRzANBgkqhkiG9w0BAQsFAAOCAQEAAz3vIbvX
lOzmKxYxQ1r+eqIIAzI00kAzyNsN5Xqj3t3kiOnWAAX5wuah/x13CMiQmyjkYu2J
mvPROQJgm1c+E5HsePaDoF5ThOPFekIpf8Xs/N7U4hwsEyd8M5aXv8e+Kj32vnuc
F/ply7qiQjPuiNlBPxIh20kBsBq0pbk1YE2DZDjda1xB0iDNfY4aXCLRzz5pI01U
KuXC65QeriAZROqghqVbmMrIxXNsUa3Mdac2QSRnoxDxlHA4Lqu3QawakIiBWiR2
+CdCFIXfd927Qto44e48wkxyhT7749MD7sTjx1KC93HJ6xC2euL45AH9kVoi2NpR
PMsnuk/0rjIe5Q==
-----END CERTIFICATE-----
Generated at Tue Apr 22 00:41:31 2025 by rpki-client