Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/VrdNZhpWvb-OzMrPMxSqrm31i8o.roa
File: VrdNZhpWvb-OzMrPMxSqrm31i8o.roa (raw, json)
Hash identifier: v4y0dxXjf82dsdFQK+cGzL7eDhMch8mM0cRmnaKtVPA=
Subject key identifier: 56:B7:4D:66:1A:56:BD:BF:8E:CC:CA:CF:33:14:AA:AE:6D:F5:8B:CA
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 019424B2E3742ACCDE840012C0C16F3056BF
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/VrdNZhpWvb-OzMrPMxSqrm31i8o.roa
Signing time: Thu 02 Jan 2025 01:48:10 +0000
ROA not before: Thu 02 Jan 2025 01:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2588
IP address blocks: 46.19.200.0/21 maxlen: 21
80.81.32.0/19 maxlen: 24
80.81.35.0/24 maxlen: 24
83.223.128.0/19 maxlen: 19
83.223.145.0/24 maxlen: 24
83.223.155.0/24 maxlen: 24
85.254.0.0/17 maxlen: 17
85.254.49.0/24 maxlen: 24
85.254.50.0/24 maxlen: 24
85.254.69.0/24 maxlen: 24
85.254.128.0/18 maxlen: 18
91.190.32.0/19 maxlen: 24
91.190.36.0/24 maxlen: 24
91.190.52.0/24 maxlen: 24
91.190.56.0/23 maxlen: 24
91.190.60.0/24 maxlen: 24
94.101.224.0/20 maxlen: 20
109.205.120.0/21 maxlen: 21
109.205.127.0/24 maxlen: 24
159.148.0.0/16 maxlen: 16
159.148.0.0/24 maxlen: 24
159.148.1.0/24 maxlen: 24
159.148.2.0/24 maxlen: 24
159.148.3.0/24 maxlen: 24
159.148.4.0/24 maxlen: 24
159.148.5.0/24 maxlen: 24
159.148.6.0/24 maxlen: 24
159.148.7.0/24 maxlen: 24
159.148.8.0/24 maxlen: 24
159.148.9.0/24 maxlen: 24
159.148.10.0/24 maxlen: 24
159.148.11.0/24 maxlen: 24
159.148.12.0/24 maxlen: 24
159.148.13.0/24 maxlen: 24
159.148.14.0/24 maxlen: 24
159.148.15.0/24 maxlen: 24
159.148.16.0/24 maxlen: 24
159.148.17.0/24 maxlen: 24
159.148.18.0/24 maxlen: 24
159.148.19.0/24 maxlen: 24
159.148.20.0/24 maxlen: 24
159.148.21.0/24 maxlen: 24
159.148.22.0/24 maxlen: 24
159.148.24.0/24 maxlen: 24
159.148.25.0/24 maxlen: 24
159.148.28.0/24 maxlen: 24
159.148.29.0/24 maxlen: 24
159.148.31.0/24 maxlen: 24
159.148.32.0/24 maxlen: 24
159.148.33.0/24 maxlen: 24
159.148.34.0/24 maxlen: 24
159.148.35.0/24 maxlen: 24
159.148.36.0/24 maxlen: 24
159.148.37.0/24 maxlen: 24
159.148.39.0/24 maxlen: 24
159.148.40.0/24 maxlen: 24
159.148.41.0/24 maxlen: 24
159.148.42.0/24 maxlen: 24
159.148.43.0/24 maxlen: 24
159.148.45.0/24 maxlen: 24
159.148.46.0/24 maxlen: 24
159.148.47.0/24 maxlen: 24
159.148.48.0/24 maxlen: 24
159.148.49.0/24 maxlen: 24
159.148.50.0/24 maxlen: 24
159.148.51.0/24 maxlen: 24
159.148.52.0/24 maxlen: 24
159.148.53.0/24 maxlen: 24
159.148.55.0/24 maxlen: 24
159.148.56.0/24 maxlen: 24
159.148.57.0/24 maxlen: 24
159.148.59.0/24 maxlen: 24
159.148.60.0/24 maxlen: 24
159.148.61.0/24 maxlen: 24
159.148.63.0/24 maxlen: 24
159.148.64.0/24 maxlen: 24
159.148.65.0/24 maxlen: 24
159.148.67.0/24 maxlen: 24
159.148.68.0/24 maxlen: 24
159.148.69.0/24 maxlen: 24
159.148.70.0/24 maxlen: 24
159.148.71.0/24 maxlen: 24
159.148.72.0/24 maxlen: 24
159.148.75.0/24 maxlen: 24
159.148.76.0/24 maxlen: 24
159.148.78.0/24 maxlen: 24
159.148.79.0/24 maxlen: 24
159.148.80.0/24 maxlen: 24
159.148.81.0/24 maxlen: 24
159.148.83.0/24 maxlen: 24
159.148.84.0/24 maxlen: 24
159.148.85.0/24 maxlen: 24
159.148.86.0/24 maxlen: 24
159.148.87.0/24 maxlen: 24
159.148.91.0/24 maxlen: 24
159.148.92.0/24 maxlen: 24
159.148.93.0/24 maxlen: 24
159.148.94.0/24 maxlen: 24
159.148.95.0/24 maxlen: 24
159.148.96.0/24 maxlen: 24
159.148.97.0/24 maxlen: 24
159.148.100.0/24 maxlen: 24
159.148.101.0/24 maxlen: 24
159.148.106.0/24 maxlen: 24
159.148.107.0/24 maxlen: 24
159.148.108.0/24 maxlen: 24
159.148.110.0/24 maxlen: 24
159.148.111.0/24 maxlen: 24
159.148.112.0/24 maxlen: 24
159.148.113.0/24 maxlen: 24
159.148.115.0/24 maxlen: 24
159.148.116.0/24 maxlen: 24
159.148.117.0/24 maxlen: 24
159.148.118.0/24 maxlen: 24
159.148.120.0/24 maxlen: 24
159.148.121.0/24 maxlen: 24
159.148.122.0/24 maxlen: 24
159.148.123.0/24 maxlen: 24
159.148.127.0/24 maxlen: 24
159.148.129.0/24 maxlen: 24
159.148.132.0/24 maxlen: 24
159.148.133.0/24 maxlen: 24
159.148.135.0/24 maxlen: 24
159.148.139.0/24 maxlen: 24
159.148.145.0/24 maxlen: 24
159.148.146.0/24 maxlen: 24
159.148.151.0/24 maxlen: 24
159.148.152.0/24 maxlen: 24
159.148.153.0/24 maxlen: 24
159.148.154.0/24 maxlen: 24
159.148.155.0/24 maxlen: 24
159.148.156.0/24 maxlen: 24
159.148.159.0/24 maxlen: 24
159.148.161.0/24 maxlen: 24
159.148.162.0/24 maxlen: 24
159.148.164.0/24 maxlen: 24
159.148.168.0/24 maxlen: 24
159.148.170.0/24 maxlen: 24
159.148.175.0/24 maxlen: 24
159.148.178.0/24 maxlen: 24
159.148.185.0/24 maxlen: 24
159.148.186.0/24 maxlen: 24
159.148.187.0/24 maxlen: 24
159.148.188.0/24 maxlen: 24
159.148.189.0/24 maxlen: 24
159.148.192.0/24 maxlen: 24
159.148.193.0/24 maxlen: 24
159.148.194.0/24 maxlen: 24
159.148.195.0/24 maxlen: 24
159.148.196.0/24 maxlen: 24
159.148.201.0/24 maxlen: 24
159.148.202.0/24 maxlen: 24
159.148.205.0/24 maxlen: 24
159.148.206.0/24 maxlen: 24
159.148.207.0/24 maxlen: 24
159.148.209.0/24 maxlen: 24
159.148.210.0/24 maxlen: 24
159.148.211.0/24 maxlen: 24
159.148.212.0/24 maxlen: 24
159.148.213.0/24 maxlen: 24
159.148.214.0/24 maxlen: 24
159.148.215.0/24 maxlen: 24
159.148.217.0/24 maxlen: 24
159.148.219.0/24 maxlen: 24
159.148.221.0/24 maxlen: 24
159.148.223.0/24 maxlen: 24
159.148.227.0/24 maxlen: 24
159.148.228.0/24 maxlen: 24
159.148.229.0/24 maxlen: 24
159.148.230.0/24 maxlen: 24
159.148.232.0/24 maxlen: 24
159.148.233.0/24 maxlen: 24
159.148.235.0/24 maxlen: 24
159.148.237.0/24 maxlen: 24
159.148.238.0/24 maxlen: 24
159.148.250.0/24 maxlen: 24
159.148.251.0/24 maxlen: 24
159.148.252.0/24 maxlen: 24
159.148.252.2/32 maxlen: 32
159.148.254.0/24 maxlen: 24
185.27.92.0/22 maxlen: 22
217.69.112.0/20 maxlen: 20
217.69.113.0/24 maxlen: 24
2a02:610::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 07 Jan 2025 12:08:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:e3:74:2a:cc:de:84:00:12:c0:c1:6f:30:56:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 2 01:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=56b74d661a56bdbf8ecccacf3314aaae6df58bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f8:58:18:ba:7c:10:2a:ff:c8:81:f6:0a:5e:
0b:45:56:81:f0:f3:de:ed:28:61:b1:9b:fc:49:24:
89:1d:fe:ea:f7:fc:a9:48:c2:df:7b:e9:1d:1a:ef:
de:a4:5d:3d:3a:01:25:e3:17:fd:79:78:6e:a4:16:
55:96:b6:01:45:42:04:5a:97:a6:22:6f:fd:fc:bd:
07:0e:72:86:40:7c:79:f0:88:f1:48:29:e9:10:40:
1c:dc:d0:b1:d2:39:13:fa:49:03:81:d4:a0:79:f0:
5c:b9:ea:d4:63:9f:aa:b8:b6:9f:f3:55:22:84:04:
df:5d:97:0a:56:50:61:9b:cd:e5:c6:b1:2a:d6:e6:
23:5e:43:36:c1:f6:a2:be:a0:1c:63:a9:da:0c:eb:
18:14:d8:83:b7:ba:83:e9:ec:ab:1a:97:ed:9b:10:
31:bd:a2:60:05:d7:7e:40:85:25:36:1d:2b:d0:57:
59:5d:85:ae:03:1d:fb:fb:79:93:5c:68:0a:a6:b7:
61:53:e9:58:45:e0:8f:b0:11:5e:9f:e7:f7:15:ac:
30:e7:1c:b3:c6:a7:66:97:ef:a3:2a:f3:dc:74:4d:
84:3b:90:aa:ca:02:40:b1:63:28:7f:17:11:d0:94:
a3:d3:07:ae:95:26:3a:ca:15:89:c7:b2:b4:aa:7a:
64:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:B7:4D:66:1A:56:BD:BF:8E:CC:CA:CF:33:14:AA:AE:6D:F5:8B:CA
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/VrdNZhpWvb-OzMrPMxSqrm31i8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.200.0/21
80.81.32.0/19
83.223.128.0/19
85.254.0.0-85.254.191.255
91.190.32.0/19
94.101.224.0/20
109.205.120.0/21
159.148.0.0/16
185.27.92.0/22
217.69.112.0/20
IPv6:
2a02:610::/32
Signature Algorithm: sha256WithRSAEncryption
b4:3d:d7:06:cd:88:e0:7b:13:51:02:6a:ae:e2:35:c1:dc:ef:
ce:a2:0b:3d:b2:46:8d:a8:e7:77:5f:8c:30:a3:c9:4c:ce:bf:
24:11:f1:bc:20:71:f9:12:a6:04:01:91:7e:43:ce:22:3a:b5:
90:56:f0:4d:b0:4c:1a:22:be:e6:c3:e1:f3:a1:cb:dd:e2:cb:
77:6d:d1:c6:7f:2c:e6:e9:1d:7b:8d:fd:3c:59:b2:9b:22:1f:
46:cc:57:9b:6f:3c:db:bd:9b:16:51:82:a8:73:c8:d8:17:db:
0d:fb:c9:3f:3e:c0:95:81:e4:3e:2b:00:aa:7a:33:08:9f:eb:
55:c7:64:0d:f7:c2:9c:f6:7a:dc:8d:e5:7a:79:ed:e8:5a:d4:
46:d2:b8:16:28:13:1d:2e:9b:3c:84:52:6a:0d:89:23:57:ba:
dc:e3:62:49:94:58:23:6a:cf:a1:82:4d:64:6b:6f:3b:2c:62:
2a:47:5c:c3:ac:b3:2f:14:56:55:b4:20:fc:a0:84:86:97:ba:
e4:73:0a:2d:6d:a1:eb:95:15:27:9d:08:f7:ad:46:15:e3:b8:
e2:5b:5e:5b:34:1e:e2:aa:14:75:d4:ed:c1:1e:bd:5d:bc:fa:
36:e0:68:18:89:95:60:16:b8:68:25:f0:17:17:ad:84:8e:c1:
d0:7b:2e:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 21:03:47 2025 by rpki-client