Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/UY_qj7lWCwgaopvr3o6UiHT12vg.roa
File: UY_qj7lWCwgaopvr3o6UiHT12vg.roa (raw, json)
Hash identifier: AAivHC6Yn+LOx4A6YdPo8L8d0Ik/NvbgEEVKSSILm7o=
Subject key identifier: 51:8F:EA:8F:B9:56:0B:08:1A:A2:9B:EB:DE:8E:94:88:74:F5:DA:F8
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 0196B429A5FE10D53C6B0D61E0CD7A47C9D3
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/UY_qj7lWCwgaopvr3o6UiHT12vg.roa
Signing time: Fri 09 May 2025 08:29:10 +0000
ROA not before: Fri 09 May 2025 08:29:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 174
IP address blocks: 45.141.204.0/23 maxlen: 23
45.148.51.0/24 maxlen: 24
2a0c:9e06::/32 maxlen: 32
2a0e:a944::/32 maxlen: 32
2a0e:a945::/32 maxlen: 32
2a0e:a946::/32 maxlen: 32
2a0e:a947::/32 maxlen: 32
2a0f:3b80::/32 maxlen: 32
2a0f:3b81::/32 maxlen: 32
2a0f:3b82::/32 maxlen: 32
2a0f:3b83::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 09 May 2025 09:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b4:29:a5:fe:10:d5:3c:6b:0d:61:e0:cd:7a:47:c9:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: May 9 08:29:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=518fea8fb9560b081aa29bebde8e948874f5daf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9a:2a:e1:14:bd:33:8e:51:1a:d0:51:de:b9:
db:c1:db:27:86:81:c3:9b:56:e1:59:d9:c0:00:ec:
82:a4:df:f4:99:0a:b1:85:b1:0d:bd:96:41:03:de:
32:44:f1:aa:eb:9f:66:c8:fe:60:17:32:7b:9c:45:
51:1a:9f:54:14:d3:a4:d9:5c:93:7e:0a:56:5a:70:
01:b4:ef:25:be:fe:b1:55:f5:61:f2:5e:44:ff:7e:
29:e7:d3:c5:26:86:46:09:ac:8d:2d:5f:5c:b7:74:
2a:ae:6c:35:66:cf:75:9a:13:94:21:59:93:e9:0f:
0e:c6:e2:db:49:c5:2b:d9:c5:23:76:25:5d:ed:fe:
e2:e8:87:fa:88:f8:da:3b:1d:17:0f:c8:9f:b6:b3:
b2:ef:cf:c7:19:9a:99:13:24:6b:6c:c7:6b:3d:32:
a7:67:73:cb:86:55:cc:13:ef:d8:97:6b:78:b4:f0:
5a:24:d6:c4:10:23:23:5e:08:70:a1:00:bd:12:ec:
e0:2f:09:dc:c2:4d:57:0f:dd:36:c5:19:78:e6:ce:
e4:e1:4e:20:f3:13:18:5d:49:6a:f9:5f:f9:e2:fe:
8f:d4:f2:fd:b2:f4:28:89:96:da:7b:c9:35:71:e9:
60:79:03:33:0e:8a:1f:2f:37:cb:ea:0c:69:25:c5:
d3:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:8F:EA:8F:B9:56:0B:08:1A:A2:9B:EB:DE:8E:94:88:74:F5:DA:F8
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/UY_qj7lWCwgaopvr3o6UiHT12vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.204.0/23
45.148.51.0/24
IPv6:
2a0c:9e06::/32
2a0e:a944::/30
2a0f:3b80::/30
Signature Algorithm: sha256WithRSAEncryption
08:c8:e3:45:b3:91:61:12:06:11:e8:b8:a4:83:22:f1:40:88:
34:f5:30:31:a1:4d:a8:46:d5:4e:97:50:4b:34:69:1c:de:e3:
31:b5:5d:90:fe:31:af:42:3b:f0:a8:2d:c1:1d:e7:59:df:8e:
e5:a8:3b:ac:25:58:28:a6:cd:15:a0:77:37:7a:2f:f1:b8:71:
64:c2:fa:cf:2a:2a:6a:e0:c9:06:98:1e:7d:80:d8:cd:c4:ec:
ea:53:c8:8c:e4:a3:2c:eb:b0:ca:ce:fa:2e:03:fe:51:78:92:
06:04:77:f9:dc:eb:03:18:e6:c4:54:26:39:2d:d8:e2:45:29:
1e:c4:7d:b1:24:df:b8:2b:98:df:54:2a:3c:41:e7:65:9f:88:
93:db:60:a9:14:9b:b6:8a:5a:93:1f:95:63:fb:40:6c:eb:4c:
cc:ea:73:c2:c9:7f:66:8b:15:24:90:d8:ac:da:4f:91:66:c6:
be:b1:d8:ac:68:77:ad:e0:9c:18:7f:55:6b:93:28:b9:86:67:
de:fc:7b:cc:dc:52:57:96:6f:f6:cd:fa:63:ad:07:ca:77:f6:
50:5d:b1:1b:fc:81:8d:83:5a:be:e2:b2:70:dd:bd:7a:1a:ed:
0c:23:b8:dd:d1:b0:3a:ef:fc:7a:54:9c:97:bd:7c:26:05:1f:
c8:cc:57:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 15:14:11 2025 by rpki-client