Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ZPmY8QRNnGvOeCXSzAOduVm-LMw.roa
File: ZPmY8QRNnGvOeCXSzAOduVm-LMw.roa (raw, json)
Hash identifier: NGN4tK02Zau5LDt3a2lWs08jRKpI3uLwKiooFrJg4eI=
Subject key identifier: 64:F9:98:F1:04:4D:9C:6B:CE:78:25:D2:CC:03:9D:B9:59:BE:2C:CC
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019504899E907321395E68F1E4DA5ABAD682
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ZPmY8QRNnGvOeCXSzAOduVm-LMw.roa
Signing time: Fri 14 Feb 2025 12:58:02 +0000
ROA not before: Fri 14 Feb 2025 12:58:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 26383
IP address blocks: 45.144.172.0/24 maxlen: 24
45.144.174.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
92.114.54.0/24 maxlen: 24
93.113.171.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
185.141.219.0/24 maxlen: 24
185.193.102.0/24 maxlen: 24
185.198.235.0/24 maxlen: 24
188.64.142.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.45.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
195.88.89.0/24 maxlen: 24
195.133.193.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.13.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
212.192.20.0/24 maxlen: 24
212.192.23.0/24 maxlen: 24
212.192.214.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 22 Feb 2025 14:19:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:04:89:9e:90:73:21:39:5e:68:f1:e4:da:5a:ba:d6:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 14 12:58:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=64f998f1044d9c6bce7825d2cc039db959be2ccc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6f:89:88:5f:35:1c:72:bc:fa:d2:a0:79:b1:
d1:f9:c8:27:db:d8:fe:9f:33:be:20:70:a0:fa:95:
cc:64:cb:20:cc:81:dc:11:1d:e1:8a:cc:2d:06:14:
21:fe:9a:9c:14:ca:b1:24:2e:8a:38:4a:0b:7c:e1:
9a:b8:e7:bb:5a:32:f6:16:f6:40:c6:53:b6:79:27:
71:a8:81:0a:5b:21:d9:d7:6e:d1:ca:0c:34:e2:59:
62:9e:97:f1:b7:13:44:84:22:c7:11:d5:a9:d8:93:
ee:d4:86:07:e4:4f:ec:7e:5c:dc:60:1d:87:e2:eb:
64:ca:86:92:1f:25:18:c5:f3:91:f9:90:9e:2f:55:
48:5b:31:97:5b:72:85:51:cf:35:fb:75:de:41:13:
45:94:3c:9a:ef:d7:18:5a:99:23:95:a8:80:a2:32:
44:d0:6d:bc:83:4a:51:c9:83:d2:d0:40:62:cd:cd:
16:f1:c8:40:6e:46:10:76:31:b7:5f:27:e0:27:3f:
67:9d:e9:1d:36:b3:b1:6b:da:c1:d5:9e:e8:e6:2b:
28:77:af:72:0f:ae:35:99:e5:a3:72:94:e3:23:2a:
75:29:6a:d5:cf:3c:ef:32:65:87:bf:c6:2d:7d:44:
fa:2f:ee:96:10:d1:12:d9:af:94:21:21:fc:79:8e:
60:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:F9:98:F1:04:4D:9C:6B:CE:78:25:D2:CC:03:9D:B9:59:BE:2C:CC
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ZPmY8QRNnGvOeCXSzAOduVm-LMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.172.0/24
45.144.174.0/24
86.107.100.0/24
92.114.54.0/24
93.113.171.0/24
185.72.8.0/24
185.141.219.0/24
185.193.102.0/24
185.198.235.0/24
188.64.142.0/24
193.124.49.0/24
194.58.34.0/24
194.58.44.0-194.58.46.255
195.88.89.0/24
195.133.193.0/24
212.192.12.0/23
212.192.15.0/24
212.192.20.0/24
212.192.23.0/24
212.192.214.0/23
Signature Algorithm: sha256WithRSAEncryption
04:19:8f:7e:7c:56:9e:0d:eb:0f:88:2e:fc:23:c4:33:08:34:
2f:83:e1:26:eb:58:c8:65:15:07:51:77:23:f2:5c:9a:52:e2:
d1:e1:cc:c5:c7:3a:f6:15:d0:2a:a2:f8:1b:eb:49:a0:a1:77:
89:ff:54:d7:22:86:41:9d:6e:44:ba:07:c2:03:24:7c:6e:9c:
12:01:61:02:ea:b0:5a:c4:f9:a5:84:55:b0:51:36:e9:e4:65:
08:a3:e9:3e:0f:c3:06:a0:21:e6:c9:bb:d8:67:6e:ee:95:db:
f8:ad:e6:3f:3a:e2:7d:3e:f7:04:91:6c:d7:c4:85:d5:e0:7c:
37:9f:24:88:76:13:5b:7a:3c:4d:25:79:42:76:ed:0e:cc:42:
88:54:cd:11:88:0f:8b:d2:32:62:86:83:1b:7b:47:2f:9f:5e:
6a:cc:2d:95:95:d9:52:f9:79:54:71:c6:7d:41:4e:94:7c:f8:
9a:b6:fa:d5:e6:3c:07:70:ae:da:dd:f1:ca:52:b3:a1:8f:11:
33:dd:4b:c6:53:3d:f1:e4:50:f3:b7:c2:76:bc:6a:a4:dc:60:
98:cc:b4:48:c1:df:35:81:67:76:8b:a6:bd:99:9c:02:b2:31:
e7:e7:c8:5b:90:f8:8c:88:76:82:dc:55:73:da:0f:ae:e9:5c:
18:b1:8a:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 19:33:54 2025 by rpki-client