Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/8INBNJphxh6JKyk4qbZEsHeW0Cs.roa
File: 8INBNJphxh6JKyk4qbZEsHeW0Cs.roa (raw, json)
Hash identifier: hqzMvRYWq4cjef3xS7BHIHWgGVmYje3nl9w1etzCrIk=
Subject key identifier: F0:83:41:34:9A:61:C6:1E:89:2B:29:38:A9:B6:44:B0:77:96:D0:2B
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018E56EBEA0C86E96EB20A117DEF58263949
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/8INBNJphxh6JKyk4qbZEsHeW0Cs.roa
Signing time: Tue 19 Mar 2024 13:34:45 +0000
ROA not before: Tue 19 Mar 2024 13:34:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a0e:1a80::/32 maxlen: 32
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2100::/29 maxlen: 29
2a0f:2e80::/29 maxlen: 29
2a0f:2f80::/29 maxlen: 29
2a0f:3d82::/32 maxlen: 32
2a0f:3d83::/32 maxlen: 32
2a0f:3d84::/32 maxlen: 32
2a0f:3d86:1::/48 maxlen: 48
2a0f:3d87::/32 maxlen: 32
2a0f:e1c6::/32 maxlen: 32
2a0f:e1c7:1::/48 maxlen: 48
2a0f:e847:2::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a12:f540::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a13:18c3::/32 maxlen: 32
2a13:18c6::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 12 Apr 2024 06:51:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:56:eb:ea:0c:86:e9:6e:b2:0a:11:7d:ef:58:26:39:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 19 13:34:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f08341349a61c61e892b2938a9b644b07796d02b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:67:a6:67:45:c0:21:5a:54:bb:07:bc:e1:df:
90:25:d6:dd:06:9d:f1:df:28:62:0a:5a:8b:9a:09:
cb:f5:b0:6e:66:48:cd:d4:e6:e9:77:a7:22:e4:78:
dc:58:fa:fe:fb:77:c5:b2:fe:ac:fc:15:02:19:2f:
5d:f3:84:80:a1:24:fd:04:63:70:ca:26:8a:99:e7:
38:2f:e5:21:ff:2e:6e:3e:e0:4c:38:5c:26:74:28:
74:54:ba:da:79:07:91:c6:55:0a:9d:42:fd:38:d3:
77:f2:30:2e:cd:d1:c8:18:13:34:c2:dd:a2:a7:0e:
cc:94:7b:49:4a:07:9d:10:f1:33:82:44:ec:3d:c0:
41:af:57:c2:1b:52:be:f6:01:99:a1:3b:eb:32:10:
d8:97:65:88:7e:5b:67:38:ba:29:e5:10:2d:00:39:
ef:3f:ae:24:a6:23:81:72:a5:4f:f0:4e:0e:b8:02:
0f:93:da:ce:e2:cc:e5:28:af:00:ba:62:7b:82:7d:
56:84:95:c2:79:ea:f6:4e:57:4f:48:fe:20:b8:1e:
8b:59:4e:63:0e:b9:f2:f9:45:bd:c7:d9:fa:3e:b2:
c1:e1:26:c8:2a:17:cd:7f:44:5d:1b:ee:a4:7c:f4:
b4:a0:c0:53:c4:3b:d6:75:de:e8:a6:c1:47:26:4e:
eb:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:83:41:34:9A:61:C6:1E:89:2B:29:38:A9:B6:44:B0:77:96:D0:2B
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/8INBNJphxh6JKyk4qbZEsHeW0Cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2100::/29
2a0f:2e80::/29
2a0f:2f80::/29
2a0f:3d82::-2a0f:3d84:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:3d86:1::/48
2a0f:3d87::/32
2a0f:e1c6::/32
2a0f:e1c7:1::/48
2a0f:e847:2::/48
2a0f:e940::/29
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a12:f540::/29
2a13:18c0:1::/48
2a13:18c3::/32
2a13:18c6::/32
Signature Algorithm: sha256WithRSAEncryption
4c:34:11:09:8e:dd:39:d7:4e:28:87:a4:78:15:e9:eb:35:23:
40:1f:b8:6a:b6:3a:9b:25:c4:2d:db:73:49:00:5a:e7:54:be:
a4:4c:90:aa:e3:85:97:a8:30:69:c7:f2:78:fd:c8:09:0c:06:
68:e4:78:a4:8a:43:2e:25:ac:30:fa:cf:a5:3a:7f:8c:73:03:
41:bc:ab:9a:b8:f8:76:63:f6:65:77:fa:f7:f8:b3:8f:46:5d:
d6:72:a7:a3:2a:b7:2a:ac:8c:cf:86:47:e5:b4:2f:ad:ee:20:
e3:37:85:20:47:61:31:e9:09:a6:89:dd:1d:ef:1f:22:40:c3:
49:38:82:f0:b4:66:40:b1:3d:48:83:08:d8:b9:db:16:22:f9:
21:fd:64:f6:6f:b5:e4:51:44:10:7a:41:ed:08:ac:6f:b6:e1:
c7:da:19:24:44:c8:1b:54:fa:1d:72:21:49:f4:40:a8:93:f6:
e2:2e:ee:d5:79:71:81:96:77:f0:7a:3f:94:a2:16:a3:08:1d:
98:a4:92:e2:03:37:89:4c:f9:ca:5b:c7:eb:42:87:de:11:75:
71:fc:b0:62:dd:83:a8:9b:b6:7e:2e:71:19:7a:49:2f:71:4d:
7f:51:a6:3a:39:7d:2c:dd:96:7f:96:c6:b0:88:94:83:16:30:
a7:9b:53:26
-----BEGIN CERTIFICATE-----
MIIGJjCCBQ6gAwIBAgISAY5W6+oMhulusgoRfe9YJjlJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwMzE5MTMzNDQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMDgzNDEzNDlhNjFjNjFlODkyYjI5MzhhOWI2NDRiMDc3OTZkMDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAimemZ0XAIVpUuwe84d+QJdbdBp3x
3yhiClqLmgnL9bBuZkjN1Obpd6ci5HjcWPr++3fFsv6s/BUCGS9d84SAoST9BGNw
yiaKmec4L+Uh/y5uPuBMOFwmdCh0VLraeQeRxlUKnUL9ONN38jAuzdHIGBM0wt2i
pw7MlHtJSgedEPEzgkTsPcBBr1fCG1K+9gGZoTvrMhDYl2WIfltnOLop5RAtADnv
P64kpiOBcqVP8E4OuAIPk9rO4szlKK8AumJ7gn1WhJXCeer2TldPSP4guB6LWU5j
Drny+UW9x9n6PrLB4SbIKhfNf0RdG+6kfPS0oMBTxDvWdd7opsFHJk7rpwIDAQAB
o4IDMjCCAy4wHQYDVR0OBBYEFPCDQTSaYcYeiSspOKm2RLB3ltArMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvOElOQk5KcGh4aDZKS3lrNHFiWkVzSGVXMENzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBRgYIKwYBBQUHAQcBAf8EggE1MIIBMTAYBAIAATASAwQA
LYF/AwQALYclAwQAwaTHMIIBEwQCAAIwggELAwUAKg4agAMFACoOx4ADBwAqDvIB
AAEDBwAqDx4AASMDBwAqDx4ABFYDBwAqDx4ACYcDBwAqDx4ACrwDBwAqDx4A3vkD
BwAqDx4BAAEDBwAqDx6BAAIDBwAqDx6BEpMDBwAqDx6BQxkDBwAqDx6BkugDBwAq
Dx6Bo9ADBwAqDx6Bza4DBQMqDyEAAwUDKg8ugAMFAyoPL4AwDgMFASoPPYIDBQAq
Dz2EAwcAKg89hgABAwUAKg89hwMFACoP4cYDBwAqD+HHAAEDBwAqD+hHAAIDBQMq
D+lAAwUDKhBtQAMFAyoR/YADBQEqEqxAAwUDKhL1QAMHACoTGMAAAQMFACoTGMMD
BQAqExjGMA0GCSqGSIb3DQEBCwUAA4IBAQBMNBEJjt05104oh6R4FenrNSNAH7hq
tjqbJcQt23NJAFrnVL6kTJCq44WXqDBpx/J4/cgJDAZo5HikikMuJaww+s+lOn+M
cwNBvKuauPh2Y/Zld/r3+LOPRl3WcqejKrcqrIzPhkfltC+t7iDjN4UgR2Ex6Qmm
id0d7x8iQMNJOILwtGZAsT1IgwjYudsWIvkh/WT2b7XkUUQQekHtCKxvtuHH2hkk
RMgbVPodciFJ9ECok/biLu7VeXGBlnfwej+UohajCB2YpJLiAzeJTPnKW8frQofe
EXVx/LBi3YOom7Z+LnEZekkvcU1/UaY6OX0s3ZZ/lsawiJSDFjCnm1Mm
-----END CERTIFICATE-----
Generated at Sun May 11 22:37:24 2025 by rpki-client