Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/FwIvfC82RuI9u4OPDXr7kLC-8ys.roa
File: FwIvfC82RuI9u4OPDXr7kLC-8ys.roa (raw, json)
Hash identifier: EW0raXNptfHKYBfDt2lPiaK6UpjXbrhAvUNXFSQ96dg=
Subject key identifier: 17:02:2F:7C:2F:36:46:E2:3D:BB:83:8F:0D:7A:FB:90:B0:BE:F3:2B
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01963EDD457054A8A3A8C3C123741B028E84
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/FwIvfC82RuI9u4OPDXr7kLC-8ys.roa
Signing time: Wed 16 Apr 2025 13:50:10 +0000
ROA not before: Wed 16 Apr 2025 13:50:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205544
IP address blocks: 193.8.94.0/24 maxlen: 24
193.8.231.0/24 maxlen: 24
2a09:17c0:b19a::/48 maxlen: 48
2a09:17c7:fc3a::/48 maxlen: 48
2a0f:1200:d9::/48 maxlen: 48
2a0f:e1c0:3::/48 maxlen: 48
2a0f:e1c0:37a::/48 maxlen: 48
2a0f:e200:5::/48 maxlen: 48
2a0f:e200:25f::/48 maxlen: 48
2a0f:e207:fd38::/48 maxlen: 48
2a0f:e440::/29 maxlen: 29
2a0f:e6c0:11c::/48 maxlen: 48
2a0f:e6c0:3af::/48 maxlen: 48
2a0f:e6c6:99::/48 maxlen: 48
2a0f:e7c7:fcd8::/48 maxlen: 48
2a0f:ea40:8::/48 maxlen: 48
2a0f:ea47:fc1d::/48 maxlen: 48
2a0f:ea47:ff49::/48 maxlen: 48
2a12:ecc0:3::/48 maxlen: 48
2a12:ecc0:4::/48 maxlen: 48
2a12:ecc0:66::/48 maxlen: 48
2a12:ecc0:188::/48 maxlen: 48
2a12:ecc0:316::/48 maxlen: 48
2a12:ecc0:34a::/48 maxlen: 48
2a13:18c6:44::/48 maxlen: 48
2a13:18c6:99::/48 maxlen: 48
2a13:8c82:2::/48 maxlen: 48
2a13:8c86:100::/48 maxlen: 48
2a13:8c86:140::/48 maxlen: 48
2a13:c900:22::/48 maxlen: 48
2a13:c900:66::/48 maxlen: 48
2a13:c900:110::/48 maxlen: 48
2a13:e102:2::/48 maxlen: 48
2a13:e107:77::/48 maxlen: 48
2a13:e107:29b::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 22 Apr 2025 06:21:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:dd:45:70:54:a8:a3:a8:c3:c1:23:74:1b:02:8e:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 16 13:50:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=17022f7c2f3646e23dbb838f0d7afb90b0bef32b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f7:6b:e5:93:ea:b3:15:c8:df:40:35:5b:10:
a6:b0:a5:b2:ca:f4:73:9d:97:7d:ec:04:e6:a4:2c:
0b:b7:4d:5c:6e:6b:b8:f1:23:a6:3e:4f:df:ee:8d:
db:6d:d1:e5:ae:c9:9c:83:03:5f:42:83:3a:6e:9f:
92:b7:a8:da:48:be:a4:e8:33:ff:89:08:6c:74:17:
7c:96:92:42:aa:17:8b:e7:42:ca:2d:45:5a:51:45:
62:5b:42:c0:af:4c:f8:8d:f2:ac:78:b2:c3:db:ca:
56:0a:6d:8f:8c:7c:25:57:60:8d:1b:9f:b8:66:68:
c2:38:50:a5:6b:39:37:60:83:e3:db:b7:c9:d2:db:
aa:08:84:2e:f4:ef:32:67:11:ee:e2:7b:f0:a8:c4:
43:f5:83:3a:e5:b0:5d:da:2f:3b:ac:fa:49:5b:74:
a9:d2:c4:dc:5c:e6:f1:0e:ea:bf:7c:87:9e:27:df:
0a:88:c2:01:81:63:71:73:54:a6:b5:fe:d8:49:02:
18:65:ce:ff:ab:24:27:5e:cb:b1:36:3e:a0:1b:94:
6c:18:3b:ac:11:66:88:8a:c8:9e:b9:b6:4d:89:2d:
ca:3f:18:8c:3b:51:5c:29:a1:4f:8d:bb:6d:d3:00:
1d:c1:9b:73:52:4c:fd:08:09:a5:54:0c:ad:77:48:
2c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:02:2F:7C:2F:36:46:E2:3D:BB:83:8F:0D:7A:FB:90:B0:BE:F3:2B
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/FwIvfC82RuI9u4OPDXr7kLC-8ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.94.0/24
193.8.231.0/24
IPv6:
2a09:17c0:b19a::/48
2a09:17c7:fc3a::/48
2a0f:1200:d9::/48
2a0f:e1c0:3::/48
2a0f:e1c0:37a::/48
2a0f:e200:5::/48
2a0f:e200:25f::/48
2a0f:e207:fd38::/48
2a0f:e440::/29
2a0f:e6c0:11c::/48
2a0f:e6c0:3af::/48
2a0f:e6c6:99::/48
2a0f:e7c7:fcd8::/48
2a0f:ea40:8::/48
2a0f:ea47:fc1d::/48
2a0f:ea47:ff49::/48
2a12:ecc0:3::-2a12:ecc0:4:ffff:ffff:ffff:ffff:ffff
2a12:ecc0:66::/48
2a12:ecc0:188::/48
2a12:ecc0:316::/48
2a12:ecc0:34a::/48
2a13:18c6:44::/48
2a13:18c6:99::/48
2a13:8c82:2::/48
2a13:8c86:100::/48
2a13:8c86:140::/48
2a13:c900:22::/48
2a13:c900:66::/48
2a13:c900:110::/48
2a13:e102:2::/48
2a13:e107:77::/48
2a13:e107:29b::/48
Signature Algorithm: sha256WithRSAEncryption
82:43:4b:b8:e9:65:ce:7d:bf:70:a8:d6:ed:2a:fb:76:e4:a0:
d6:c8:28:60:c0:39:0d:eb:96:69:17:ac:04:d4:a7:85:83:53:
f9:22:90:4c:09:b6:9e:81:94:5c:56:22:9c:b8:f7:e4:38:a5:
02:2d:24:62:26:4f:b1:9d:41:0c:f4:b2:4d:f2:a8:8f:fb:e9:
ad:25:24:d9:3c:b3:42:a4:53:fa:32:a5:18:76:91:19:77:a0:
4b:4c:18:17:20:7c:f1:e0:a2:b4:35:89:1d:16:5a:86:26:16:
b0:a7:b6:28:db:3b:79:08:48:f4:4d:cc:1e:54:bc:aa:15:82:
c6:db:a1:00:dc:90:b2:50:8e:3b:46:16:ef:71:80:86:ef:ea:
e1:94:13:6f:d7:f2:b4:b1:bf:9b:49:06:b2:ee:80:f3:03:96:
f3:38:2d:e8:ba:d0:27:a7:c5:6e:2f:0e:f4:93:dd:19:8f:76:
50:89:80:8a:9c:7e:16:aa:9c:99:6e:04:0c:ac:ca:49:28:8a:
33:6a:d5:42:e6:3b:c3:37:93:9a:b3:db:06:cd:47:96:82:8a:
31:8d:00:f2:56:7b:42:61:13:e4:97:2f:e8:c7:bb:af:42:39:
5d:5a:2f:8b:f8:e9:42:07:d5:49:6b:3a:67:f0:75:7a:fa:74:
61:ee:7d:d0
-----BEGIN CERTIFICATE-----
MIIGPjCCBSagAwIBAgISAZY+3UVwVKijqMPBI3QbAo6EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjUwNDE2MTM1MDEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzAyMmY3YzJmMzY0NmUyM2RiYjgzOGYwZDdhZmI5MGIwYmVmMzJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvvdr5ZPqsxXI30A1WxCmsKWyyvRz
nZd97ATmpCwLt01cbmu48SOmPk/f7o3bbdHlrsmcgwNfQoM6bp+St6jaSL6k6DP/
iQhsdBd8lpJCqheL50LKLUVaUUViW0LAr0z4jfKseLLD28pWCm2PjHwlV2CNG5+4
ZmjCOFClazk3YIPj27fJ0tuqCIQu9O8yZxHu4nvwqMRD9YM65bBd2i87rPpJW3Sp
0sTcXObxDuq/fIeeJ98KiMIBgWNxc1Smtf7YSQIYZc7/qyQnXsuxNj6gG5RsGDus
EWaIisieubZNiS3KPxiMO1FcKaFPjbtt0wAdwZtzUkz9CAmlVAytd0gsyQIDAQAB
o4IDSjCCA0YwHQYDVR0OBBYEFBcCL3wvNkbiPbuDjw16+5CwvvMrMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvRndJdmZDODJSdUk5dTRPUERYcjdrTEMtOHlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBXgYIKwYBBQUHAQcBAf8EggFNMIIBSTASBAIAATAMAwQA
wQheAwQAwQjnMIIBMQQCAAIwggEpAwcAKgkXwLGaAwcAKgkXx/w6AwcAKg8SAADZ
AwcAKg/hwAADAwcAKg/hwAN6AwcAKg/iAAAFAwcAKg/iAAJfAwcAKg/iB/04AwUD
Kg/kQAMHACoP5sABHAMHACoP5sADrwMHACoP5sYAmQMHACoP58f82AMHACoP6kAA
CAMHACoP6kf8HQMHACoP6kf/STASAwcAKhLswAADAwcAKhLswAAEAwcAKhLswABm
AwcAKhLswAGIAwcAKhLswAMWAwcAKhLswANKAwcAKhMYxgBEAwcAKhMYxgCZAwcA
KhOMggACAwcAKhOMhgEAAwcAKhOMhgFAAwcAKhPJAAAiAwcAKhPJAABmAwcAKhPJ
AAEQAwcAKhPhAgACAwcAKhPhBwB3AwcAKhPhBwKbMA0GCSqGSIb3DQEBCwUAA4IB
AQCCQ0u46WXOfb9wqNbtKvt25KDWyChgwDkN65ZpF6wE1KeFg1P5IpBMCbaegZRc
ViKcuPfkOKUCLSRiJk+xnUEM9LJN8qiP++mtJSTZPLNCpFP6MqUYdpEZd6BLTBgX
IHzx4KK0NYkdFlqGJhawp7Yo2zt5CEj0TcweVLyqFYLG26EA3JCyUI47RhbvcYCG
7+rhlBNv1/K0sb+bSQay7oDzA5bzOC3outAnp8VuLw70k90Zj3ZQiYCKnH4WqpyZ
bgQMrMpJKIozatVC5jvDN5Oas9sGzUeWgooxjQDyVntCYRPkly/ox7uvQjldWi+L
+OlCB9VJazpn8HV6+nRh7n3Q
-----END CERTIFICATE-----
Generated at Fri May 9 15:24:08 2025 by rpki-client