Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/VF0SoD1_G6XpN6XC-lWKmAnFU58.roa
File: VF0SoD1_G6XpN6XC-lWKmAnFU58.roa (raw, json)
Hash identifier: 0+biCxii8hj1IpI4ShT2pRwernYYBiocDCC/g69/Xag=
Subject key identifier: 54:5D:12:A0:3D:7F:1B:A5:E9:37:A5:C2:FA:55:8A:98:09:C5:53:9F
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 0193D39B7D39CFF628A86A49BDD57BE2C7F8
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/VF0SoD1_G6XpN6XC-lWKmAnFU58.roa
Signing time: Tue 17 Dec 2024 07:53:22 +0000
ROA not before: Tue 17 Dec 2024 07:53:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 45.84.216.0/24 maxlen: 24
45.85.90.0/24 maxlen: 24
45.91.23.0/24 maxlen: 24
45.95.243.0/24 maxlen: 24
45.130.143.0/24 maxlen: 24
45.146.53.0/24 maxlen: 24
45.148.25.0/24 maxlen: 24
45.157.98.0/24 maxlen: 24
45.157.99.0/24 maxlen: 24
136.144.26.0/24 maxlen: 24
136.144.27.0/24 maxlen: 24
185.227.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Dec 2024 21:40:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d3:9b:7d:39:cf:f6:28:a8:6a:49:bd:d5:7b:e2:c7:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Dec 17 07:53:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=545d12a03d7f1ba5e937a5c2fa558a9809c5539f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:54:66:20:44:ac:88:73:a7:db:10:a9:a6:0e:
23:ac:ab:36:6a:fc:87:a6:c4:fb:19:ba:2a:28:20:
69:7f:ef:f1:e0:e1:88:bb:43:65:e9:b8:2e:71:70:
0c:3a:91:6a:46:20:09:99:ef:ad:c0:e0:75:db:69:
e0:1b:8f:67:58:8c:5f:8d:a1:24:ac:19:67:90:90:
9f:56:75:2c:a0:d3:41:44:e3:d5:b2:66:fb:55:b8:
3a:58:6c:5a:ec:8e:e0:d9:07:2f:42:86:37:f7:b3:
4e:2a:36:00:6a:f8:9c:9a:a0:9c:50:a1:b4:0a:9a:
9f:8c:ab:53:07:26:76:f3:d3:04:73:d9:ac:87:f6:
10:9e:5c:84:2f:f1:40:8a:81:79:1b:16:47:82:f8:
00:d8:8b:9d:89:da:0e:fc:58:80:fc:c8:d3:9b:35:
ac:64:5a:7d:a9:aa:20:1a:fc:f6:18:d2:26:0b:2d:
69:7e:5b:e4:e1:3a:e2:6d:46:ae:05:d8:ca:16:d3:
38:be:c5:fa:42:21:3a:4f:8a:07:cd:55:d4:e6:0d:
b7:0d:f0:e2:9f:e0:0f:c7:7e:6d:69:0b:21:99:8e:
d9:06:dd:61:39:b1:aa:fd:cc:2d:4e:e4:0e:cc:a5:
7c:94:ed:e0:68:47:d3:6e:70:58:4d:08:e2:04:41:
2d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:5D:12:A0:3D:7F:1B:A5:E9:37:A5:C2:FA:55:8A:98:09:C5:53:9F
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/VF0SoD1_G6XpN6XC-lWKmAnFU58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.216.0/24
45.85.90.0/24
45.91.23.0/24
45.95.243.0/24
45.130.143.0/24
45.146.53.0/24
45.148.25.0/24
45.157.98.0/23
136.144.26.0/23
185.227.33.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:cd:53:42:22:50:78:ba:ea:f5:84:cc:74:16:cb:2a:cd:9b:
53:47:b2:70:2a:85:1d:6c:67:3c:32:8a:6c:2a:d0:e4:17:44:
0a:d2:be:ac:58:2a:b2:0f:f6:31:4e:5f:45:f2:0e:b7:da:74:
9e:46:98:2b:e1:ad:49:e7:96:07:e9:62:11:8f:20:bf:90:4b:
bd:a9:a5:da:14:32:9c:e8:f0:c1:41:e5:07:e7:cd:e4:6f:54:
ab:b7:45:00:eb:78:48:74:b1:13:d7:2e:71:2d:45:41:21:cf:
39:fe:88:b5:fb:e0:d8:56:b4:c1:d7:47:13:a8:e8:12:dd:93:
1a:9d:58:a8:c1:0c:c5:3e:0f:d8:af:53:aa:a3:18:b9:e3:c4:
9a:cb:5c:ce:1c:85:21:8b:18:ff:99:e7:4c:a4:b5:0f:8a:24:
32:bf:58:4d:21:2d:92:6a:4d:b2:25:3f:e3:60:51:31:91:da:
05:f6:f5:5e:20:11:6f:09:2f:60:c0:dd:1f:34:36:84:81:58:
5c:17:0d:7b:01:61:bb:9f:92:d2:9c:a9:a1:c4:a5:ad:93:2c:
7b:4c:92:5c:41:bf:37:7c:8a:a4:ed:f7:01:d4:5a:3e:40:00:
35:37:da:74:7e:99:c9:5c:5d:97:08:0c:62:87:aa:21:dc:4f:
46:9c:fd:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 02:11:34 2025 by rpki-client