Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/1SHqxfUJGDKp2kyMbxEHJoyGR_I.roa
File: 1SHqxfUJGDKp2kyMbxEHJoyGR_I.roa (raw, json)
Hash identifier: NfhAanYiwBOXDRQhaBovWQV8H891nmOISz2ZjV2D4tg=
Subject key identifier: D5:21:EA:C5:F5:09:18:32:A9:DA:4C:8C:6F:11:07:26:8C:86:47:F2
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 01948EA8112F084C7F47C85C692155FB55FB
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/1SHqxfUJGDKp2kyMbxEHJoyGR_I.roa
Signing time: Wed 22 Jan 2025 15:36:06 +0000
ROA not before: Wed 22 Jan 2025 15:36:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14616
IP address blocks: 45.135.166.0/24 maxlen: 24
192.144.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Mar 2025 15:45:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:8e:a8:11:2f:08:4c:7f:47:c8:5c:69:21:55:fb:55:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jan 22 15:36:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d521eac5f5091832a9da4c8c6f1107268c8647f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:7a:62:67:89:08:da:1a:da:39:e4:22:82:b1:
f7:8f:e3:7f:6d:55:7e:e8:ec:90:31:dc:d0:18:b4:
36:87:a3:79:34:a2:a2:90:15:f7:b1:d6:1c:21:42:
b1:94:de:40:7b:49:06:e0:46:7d:04:a6:59:11:86:
8e:63:56:05:51:b8:92:57:bd:c1:23:aa:b8:f4:5a:
e5:5c:51:db:b8:37:f2:a3:95:9d:56:2d:44:d6:08:
7e:62:ea:f7:5c:7f:6e:00:f1:11:67:f9:ee:83:46:
4e:ff:79:cc:bb:3c:d3:e1:18:20:d7:e1:f0:b8:d0:
f2:9b:4a:3e:86:73:11:03:20:17:57:de:9e:6e:02:
76:0a:2d:92:11:9f:5a:b7:a9:77:06:f8:08:97:37:
24:ca:0b:e2:6d:7f:d3:5e:b5:77:96:ee:70:2c:07:
0c:d7:93:83:71:aa:45:e0:f5:29:96:44:de:85:37:
93:0a:f8:ee:a7:3d:89:82:f1:35:6b:68:e7:d9:f9:
5e:55:4c:f4:38:7d:86:87:29:71:a8:fc:ff:96:76:
ad:5c:1a:8f:94:c1:a3:d5:09:99:24:31:37:50:1b:
c3:f1:b0:2a:4b:c2:a4:e6:c7:d7:2a:f5:d6:54:ab:
48:5f:f2:50:a4:94:4b:e7:fb:ea:97:5d:e7:9a:54:
f1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:21:EA:C5:F5:09:18:32:A9:DA:4C:8C:6F:11:07:26:8C:86:47:F2
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/1SHqxfUJGDKp2kyMbxEHJoyGR_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.166.0/24
192.144.19.0/24
Signature Algorithm: sha256WithRSAEncryption
65:90:dd:9b:9b:12:b1:b9:7f:64:86:6b:be:3e:db:48:76:bb:
f9:dc:cc:3e:b6:7b:a3:08:2f:0a:a2:b2:06:16:63:0c:bd:b5:
31:5e:c5:41:de:97:90:f3:22:21:5d:e9:2c:fb:84:3c:bf:b4:
c6:c0:5c:81:85:6a:49:61:98:58:1f:ee:6e:37:ae:c8:a3:ee:
34:e1:1c:38:84:e2:98:ae:1d:2c:c5:af:5d:ee:e6:78:1d:be:
13:68:ab:36:53:a2:45:9f:cc:03:c7:43:64:67:eb:9f:7a:7e:
bd:95:7b:1a:cb:71:fa:cf:5c:dd:5b:d9:9a:bd:47:34:70:5c:
ca:9b:15:c5:1c:6b:5b:64:98:13:69:0d:8e:55:f2:6c:e7:fe:
51:bc:91:31:3e:61:b4:b7:ad:d5:0f:8a:9e:02:b1:a6:be:54:
40:cf:e7:ed:01:fd:9c:9e:10:98:c0:11:d0:4b:44:8f:68:5f:
af:cc:74:4d:35:f5:c4:bc:53:9d:ce:52:3b:07:7f:ca:11:5d:
a1:f1:97:ea:7b:15:e3:3c:7a:da:a9:bc:f3:97:2a:4d:90:84:
6b:f7:7d:7d:66:9a:f7:e1:e9:93:85:a9:f5:08:9d:0e:58:c1:
1f:e5:d9:4d:2c:2f:48:6a:87:f3:1b:df:f5:35:cb:40:30:2a:
7c:66:5f:e2
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZSOqBEvCEx/R8hcaSFV+1X7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0
ZjVlNTYwHhcNMjUwMTIyMTUzNjA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTIxZWFjNWY1MDkxODMyYTlkYTRjOGM2ZjExMDcyNjhjODY0N2YyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk3piZ4kI2hraOeQigrH3j+N/bVV+
6OyQMdzQGLQ2h6N5NKKikBX3sdYcIUKxlN5Ae0kG4EZ9BKZZEYaOY1YFUbiSV73B
I6q49FrlXFHbuDfyo5WdVi1E1gh+Yur3XH9uAPERZ/nug0ZO/3nMuzzT4Rgg1+Hw
uNDym0o+hnMRAyAXV96ebgJ2Ci2SEZ9at6l3BvgIlzckygvibX/TXrV3lu5wLAcM
15ODcapF4PUplkTehTeTCvjupz2JgvE1a2jn2fleVUz0OH2GhylxqPz/lnatXBqP
lMGj1QmZJDE3UBvD8bAqS8Kk5sfXKvXWVKtIX/JQpJRL5/vql13nmlTxuQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNUh6sX1CRgyqdpMjG8RByaMhkfyMB8GA1UdIwQY
MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt
YmE5OGYxMTIyMTIxLzEvMVNIcXhmVUpHREtwMmt5TWJ4RUhKb3lHUl9JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx
LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYemAwQA
wJATMA0GCSqGSIb3DQEBCwUAA4IBAQBlkN2bmxKxuX9khmu+PttIdrv53Mw+tnuj
CC8KorIGFmMMvbUxXsVB3peQ8yIhXeks+4Q8v7TGwFyBhWpJYZhYH+5uN67Io+40
4Rw4hOKYrh0sxa9d7uZ4Hb4TaKs2U6JFn8wDx0NkZ+ufen69lXsay3H6z1zdW9ma
vUc0cFzKmxXFHGtbZJgTaQ2OVfJs5/5RvJExPmG0t63VD4qeArGmvlRAz+ftAf2c
nhCYwBHQS0SPaF+vzHRNNfXEvFOdzlI7B3/KEV2h8ZfqexXjPHraqbzzlypNkIRr
9319Zpr34emThan1CJ0OWMEf5dlNLC9IaofzG9/1NctAMCp8Zl/i
-----END CERTIFICATE-----
Generated at Tue Apr 22 20:01:28 2025 by rpki-client