Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Dy_QmJ2JgM2tMhE6dFLeMTW7iyk.roa
File: Dy_QmJ2JgM2tMhE6dFLeMTW7iyk.roa (raw, json)
Hash identifier: SY6/ovzLuPkUVGsE2XR0elUJsH4Ouk70UyoCM13GfPk=
Subject key identifier: 0F:2F:D0:98:9D:89:80:CD:AD:32:11:3A:74:52:DE:31:35:BB:8B:29
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019301D42913759F39419612A8D9FA241394
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Dy_QmJ2JgM2tMhE6dFLeMTW7iyk.roa
Signing time: Wed 06 Nov 2024 14:15:01 +0000
ROA not before: Wed 06 Nov 2024 14:15:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 45.152.198.0/24 maxlen: 24
103.114.40.0/24 maxlen: 24
2a0a:2d07:44::/48 maxlen: 48
2a0e:1a84::/32 maxlen: 32
2a0e:c781::/32 maxlen: 32
2a0e:f600:5f::/48 maxlen: 48
2a0f:3d80:bac::/48 maxlen: 48
2a0f:7d00:1::/48 maxlen: 48
2a0f:bc00:a1c4::/48 maxlen: 48
2a0f:e6c6:5532::/48 maxlen: 48
2a12:ac46:99::/48 maxlen: 48
2a13:2b40::/29 maxlen: 32
Validation: Failed, certificate revoked on Wed 06 Nov 2024 18:15:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:01:d4:29:13:75:9f:39:41:96:12:a8:d9:fa:24:13:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 6 14:15:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0f2fd0989d8980cdad32113a7452de3135bb8b29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:18:d4:1d:ab:aa:89:37:a5:c0:8a:a9:ba:11:
1c:4a:98:a7:b2:3c:10:66:4c:3b:00:34:66:04:b9:
74:25:9b:93:c4:5d:3d:c0:6e:57:47:27:3b:a5:7b:
0b:42:4e:1c:41:0c:87:f2:7c:8d:96:fd:c7:d8:e1:
f3:e0:b1:97:b3:95:2d:89:72:fc:30:f4:cf:64:07:
cd:af:4a:7b:36:82:20:20:16:ed:65:a9:cb:09:38:
5b:0d:78:8d:aa:41:f5:7d:78:64:09:1c:c1:34:f0:
b9:00:38:b7:19:f6:1f:f9:17:66:64:17:a5:6b:09:
18:bc:b8:e0:d8:0b:09:65:c4:c3:b5:18:66:46:95:
d1:a4:12:c4:c0:41:ce:eb:de:63:5d:64:d5:51:fd:
d8:ac:a6:20:a0:93:08:04:b6:ba:48:f4:2e:57:57:
9b:cd:5a:98:97:d2:47:63:98:21:50:3c:f0:c6:c6:
7c:ca:63:30:0c:22:60:38:a9:8f:a3:c7:c8:2a:c1:
8a:5a:79:f4:78:49:05:ab:aa:47:13:ea:b3:8e:75:
fb:ec:60:2e:42:6c:8a:6e:01:77:52:ab:b7:41:8e:
8e:fa:70:86:3c:2a:d0:cb:e9:e8:e8:1d:99:3a:6b:
f4:c0:87:e2:33:41:46:40:e9:9f:53:f3:33:46:e4:
40:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:2F:D0:98:9D:89:80:CD:AD:32:11:3A:74:52:DE:31:35:BB:8B:29
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Dy_QmJ2JgM2tMhE6dFLeMTW7iyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.198.0/24
103.114.40.0/24
IPv6:
2a0a:2d07:44::/48
2a0e:1a84::/32
2a0e:c781::/32
2a0e:f600:5f::/48
2a0f:3d80:bac::/48
2a0f:7d00:1::/48
2a0f:bc00:a1c4::/48
2a0f:e6c6:5532::/48
2a12:ac46:99::/48
2a13:2b40::/29
Signature Algorithm: sha256WithRSAEncryption
4d:af:d8:ba:29:2c:e0:96:24:d7:77:1b:ce:ed:43:4f:0f:71:
1d:37:95:17:f3:4d:6a:db:d6:93:7c:51:fa:74:96:ed:00:95:
45:51:ac:db:9e:8c:2f:b5:71:46:a8:62:68:f0:58:aa:4a:62:
35:0c:1e:62:89:6c:d3:1e:a5:4f:b0:3e:81:40:7a:74:92:62:
65:be:c9:84:2e:da:3d:49:18:29:43:69:49:63:58:72:0c:7f:
75:13:c0:ff:6c:e9:31:90:f5:98:86:b6:f6:16:ef:72:ed:22:
df:45:e6:c7:b9:c1:f3:a5:80:51:47:48:6e:03:96:a0:cb:ec:
4d:d3:be:ad:56:c2:e4:d3:cd:0c:2c:24:7a:7e:0d:c7:94:04:
42:40:ae:6f:fd:e1:dd:3b:8f:0d:df:4a:42:13:ac:b6:6e:0b:
69:87:02:76:35:6b:7d:f2:2a:05:ef:b3:ff:01:21:0a:57:d7:
dc:b1:30:70:37:d8:ff:c2:38:a7:22:f8:54:c6:39:f5:96:61:
09:c1:d7:b0:77:51:54:fc:88:54:13:03:54:5a:c0:82:63:d7:
45:2f:7c:2c:be:19:e0:5a:b3:cc:ce:d1:81:cc:c0:f7:99:fa:
97:3c:86:0c:cd:a5:eb:9a:e1:cf:2f:b7:57:18:4a:ca:10:be:
f5:a9:11:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 01:04:08 2025 by rpki-client