Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/Pk2J5S_h7f1AjNkz8KN4omNrnD4.roa
File: Pk2J5S_h7f1AjNkz8KN4omNrnD4.roa (raw, json)
Hash identifier: IhJ5kFHTcb8kGZ7oilXRZQrIqrRczDPJCv28p1Lzt7I=
Subject key identifier: 3E:4D:89:E5:2F:E1:ED:FD:40:8C:D9:33:F0:A3:78:A2:63:6B:9C:3E
Certificate issuer: /CN=6d069e19e12c104004e8b4b75f8a7789b7e11396
Certificate serial: 01943ABAA96F474053E230E2ED6EB8E1A23A
Authority key identifier: 6D:06:9E:19:E1:2C:10:40:04:E8:B4:B7:5F:8A:77:89:B7:E1:13:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/Pk2J5S_h7f1AjNkz8KN4omNrnD4.roa
Signing time: Mon 06 Jan 2025 08:28:19 +0000
ROA not before: Mon 06 Jan 2025 08:28:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203396
IP address blocks: 145.12.0.0/16 maxlen: 24
145.12.0.0/24 maxlen: 24
145.12.10.0/24 maxlen: 24
145.12.20.0/24 maxlen: 24
145.12.26.0/24 maxlen: 24
145.12.27.0/24 maxlen: 24
145.12.31.0/24 maxlen: 24
145.12.34.0/24 maxlen: 24
145.12.36.0/24 maxlen: 24
145.12.37.0/24 maxlen: 24
145.12.40.0/24 maxlen: 24
145.12.46.0/24 maxlen: 24
145.12.47.0/24 maxlen: 24
145.12.68.0/24 maxlen: 24
145.12.69.0/24 maxlen: 24
145.12.100.0/24 maxlen: 24
145.12.101.0/24 maxlen: 24
145.12.102.0/24 maxlen: 24
145.12.103.0/24 maxlen: 24
145.12.104.0/24 maxlen: 24
145.12.105.0/24 maxlen: 24
145.12.137.0/24 maxlen: 24
145.12.210.0/24 maxlen: 24
145.12.216.0/24 maxlen: 24
145.12.217.0/24 maxlen: 24
145.12.218.0/24 maxlen: 24
145.12.219.0/24 maxlen: 24
145.12.220.0/24 maxlen: 24
145.12.221.0/24 maxlen: 24
145.12.227.0/24 maxlen: 24
145.12.242.0/24 maxlen: 24
145.12.243.0/24 maxlen: 24
145.69.0.0/16 maxlen: 16
145.69.0.0/19 maxlen: 19
145.69.0.0/24 maxlen: 24
145.69.25.0/24 maxlen: 24
145.69.40.0/21 maxlen: 21
145.69.42.0/24 maxlen: 24
145.69.47.0/24 maxlen: 24
145.69.56.0/21 maxlen: 21
145.69.96.0/19 maxlen: 19
145.69.100.0/24 maxlen: 24
145.69.101.0/24 maxlen: 24
145.69.102.0/24 maxlen: 24
145.69.103.0/24 maxlen: 24
145.69.104.0/24 maxlen: 24
145.69.105.0/24 maxlen: 24
145.69.106.0/24 maxlen: 24
145.69.107.0/24 maxlen: 24
145.69.108.0/24 maxlen: 24
145.69.109.0/24 maxlen: 24
145.69.110.0/24 maxlen: 24
145.69.128.0/17 maxlen: 17
145.69.210.0/24 maxlen: 24
145.69.216.0/24 maxlen: 24
145.69.217.0/24 maxlen: 24
145.69.218.0/24 maxlen: 24
145.69.219.0/24 maxlen: 24
145.69.220.0/24 maxlen: 24
145.69.221.0/24 maxlen: 24
145.69.227.0/24 maxlen: 24
145.69.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Jan 2025 13:16:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:3a:ba:a9:6f:47:40:53:e2:30:e2:ed:6e:b8:e1:a2:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d069e19e12c104004e8b4b75f8a7789b7e11396
Validity
Not Before: Jan 6 08:28:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3e4d89e52fe1edfd408cd933f0a378a2636b9c3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f2:2e:c6:12:44:a3:fe:00:25:e3:05:81:ca:
1e:f8:1c:95:46:4f:a2:92:1a:43:46:81:7a:2f:af:
7c:cd:e9:f3:b5:32:ad:3b:69:2c:9f:68:d0:dd:a0:
8a:22:0f:c6:f0:1c:f9:0d:09:fb:49:6c:77:7b:ba:
24:85:a6:5d:07:56:95:93:83:0b:fe:e0:dc:2b:b9:
72:db:1e:2e:12:7c:3e:ba:0b:41:4b:03:f6:8d:c7:
f3:e9:4d:6c:ca:78:b1:3a:bd:76:40:b3:5e:39:47:
9a:b5:b3:3f:24:f4:f5:c1:9b:c7:6c:b4:91:c0:c8:
96:3e:88:be:20:14:ff:cd:87:61:ee:fa:33:45:02:
04:75:7c:e3:a4:64:ec:64:66:b8:a2:78:b7:11:40:
20:5e:5b:8e:5e:59:00:ca:5b:45:e1:4a:c6:db:63:
80:3b:be:82:af:76:b2:9d:b6:4d:9b:4c:18:64:d5:
fd:fe:70:90:b4:7a:f7:e8:63:64:8b:ef:5d:cb:2e:
e8:37:7d:d7:59:4e:71:6f:7e:b2:9e:e6:0e:71:93:
54:7d:fd:b6:6f:6b:b4:f6:eb:91:0e:07:5c:4d:96:
a9:fe:41:07:d5:4b:34:90:71:6e:01:5d:ed:21:be:
f5:29:9d:db:09:82:b3:20:ff:6f:47:67:3b:63:47:
4b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:4D:89:E5:2F:E1:ED:FD:40:8C:D9:33:F0:A3:78:A2:63:6B:9C:3E
X509v3 Authority Key Identifier:
keyid:6D:06:9E:19:E1:2C:10:40:04:E8:B4:B7:5F:8A:77:89:B7:E1:13:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/Pk2J5S_h7f1AjNkz8KN4omNrnD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.12.0.0/16
145.69.0.0/16
Signature Algorithm: sha256WithRSAEncryption
86:39:7d:9b:f3:01:29:7c:41:60:d3:bf:fb:0a:05:b3:9d:00:
7a:33:5b:e6:28:64:a9:53:3d:30:ed:41:df:d5:7c:5c:fa:4d:
7c:01:b2:69:a2:87:5a:97:07:fe:99:eb:e4:f0:07:c9:7e:7f:
6a:c0:17:e1:1e:ea:b4:fc:64:e3:ab:79:be:f1:b6:9e:34:82:
7e:3d:c1:d3:e2:15:6c:6a:2d:78:39:3f:54:38:12:f0:84:cf:
26:2c:0c:3c:bf:f2:50:4f:b7:a0:10:86:5b:f4:18:26:b2:84:
60:b9:d0:d6:5e:68:8b:6e:e7:ca:97:ec:85:11:e2:6d:7b:11:
af:c2:51:d8:71:11:35:64:a1:b9:be:8b:56:41:e6:22:e1:74:
9e:bf:de:33:d3:3d:d9:f0:92:91:15:7e:42:3e:21:7f:df:21:
a7:3d:c0:c9:bf:24:7e:6a:97:26:4d:23:23:43:75:ea:fa:04:
7f:cc:c5:31:68:cd:1d:79:a8:0e:cf:41:90:6d:ae:2a:fc:6e:
61:f8:ed:47:ef:bc:7e:64:6c:97:f2:40:0d:a9:db:f9:75:4b:
62:67:df:71:e3:18:3f:8e:67:f4:d1:92:c3:62:21:a7:08:3f:
7e:b7:b5:8b:69:84:de:d7:2a:e5:32:88:6e:8c:f1:f0:44:6f:
39:33:0a:3f
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgISAZQ6uqlvR0BT4jDi7W644aI6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMDY5ZTE5ZTEyYzEwNDAwNGU4YjRiNzVmOGE3Nzg5Yjdl
MTEzOTYwHhcNMjUwMTA2MDgyODE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZTRkODllNTJmZTFlZGZkNDA4Y2Q5MzNmMGEzNzhhMjYzNmI5YzNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufIuxhJEo/4AJeMFgcoe+ByVRk+i
khpDRoF6L698zenztTKtO2ksn2jQ3aCKIg/G8Bz5DQn7SWx3e7okhaZdB1aVk4ML
/uDcK7ly2x4uEnw+ugtBSwP2jcfz6U1synixOr12QLNeOUeatbM/JPT1wZvHbLSR
wMiWPoi+IBT/zYdh7vozRQIEdXzjpGTsZGa4oni3EUAgXluOXlkAyltF4UrG22OA
O76Cr3aynbZNm0wYZNX9/nCQtHr36GNki+9dyy7oN33XWU5xb36ynuYOcZNUff22
b2u09uuRDgdcTZap/kEH1Us0kHFuAV3tIb71KZ3bCYKzIP9vR2c7Y0dLgQIDAQAB
o4ICDTCCAgkwHQYDVR0OBBYEFD5NieUv4e39QIzZM/CjeKJja5w+MB8GA1UdIwQY
MBaAFG0GnhnhLBBABOi0t1+Kd4m34ROWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlFhZUdlRXNFRUFFNkxTM1g0cDNpYmZoRTVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9jZjY0ZjYtMDc4OS00M2UzLWJkNmIt
N2JmZjI5NmM2YjAyLzEvUGsySjVTX2g3ZjFBak5rejhLTjRvbU5ybkQ0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9jZjY0ZjYtMDc4OS00M2UzLWJkNmItN2JmZjI5NmM2YjAy
LzEvYlFhZUdlRXNFRUFFNkxTM1g0cDNpYmZoRTVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCMGCCsGAQUFBwEHAQH/BBQwEjAQBAIAATAKAwMAkQwDAwCR
RTANBgkqhkiG9w0BAQsFAAOCAQEAhjl9m/MBKXxBYNO/+woFs50AejNb5ihkqVM9
MO1B39V8XPpNfAGyaaKHWpcH/pnr5PAHyX5/asAX4R7qtPxk46t5vvG2njSCfj3B
0+IVbGoteDk/VDgS8ITPJiwMPL/yUE+3oBCGW/QYJrKEYLnQ1l5oi27nypfshRHi
bXsRr8JR2HERNWShub6LVkHmIuF0nr/eM9M92fCSkRV+Qj4hf98hpz3Ayb8kfmqX
Jk0jI0N16voEf8zFMWjNHXmoDs9BkG2uKvxuYfjtR++8fmRsl/JADanb+XVLYmff
ceMYP45n9NGSw2Ihpwg/fre1i2mE3tcq5TKIbozx8ERvOTMKPw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 21:07:22 2025 by rpki-client