Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Lb1t-P6Ho0SQyt-wqUmZ3lgth-I.roa
File: Lb1t-P6Ho0SQyt-wqUmZ3lgth-I.roa (raw, json)
Hash identifier: eQ8CP9E3yZ3LP10YGiOt9LQOlKLr9+aIMsYxNDRR4Mc=
Subject key identifier: 2D:BD:6D:F8:FE:87:A3:44:90:CA:DF:B0:A9:49:99:DE:58:2D:87:E2
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019005FF9607819A4562B4E27E06722034A1
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Lb1t-P6Ho0SQyt-wqUmZ3lgth-I.roa
Signing time: Tue 11 Jun 2024 06:32:34 +0000
ROA not before: Tue 11 Jun 2024 06:32:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a0e:1a80::/32 maxlen: 32
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a0f:2f80::/29 maxlen: 29
2a0f:3d84::/32 maxlen: 32
2a0f:3d87::/32 maxlen: 32
2a0f:7d02:1::/48 maxlen: 48
2a0f:e1c6::/32 maxlen: 32
2a0f:e1c7:1::/48 maxlen: 48
2a0f:e847:2::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a12:f540::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 11 Jun 2024 10:46:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:05:ff:96:07:81:9a:45:62:b4:e2:7e:06:72:20:34:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 11 06:32:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2dbd6df8fe87a34490cadfb0a94999de582d87e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:75:09:11:f4:2d:f2:f6:7e:66:bb:7a:27:df:
7c:d6:c4:02:30:82:c7:c3:df:52:83:bb:79:a6:9b:
8c:d3:60:d5:6c:2b:d5:a6:d6:a3:21:12:89:bc:46:
57:3e:a3:58:1f:e3:f1:dd:4f:f1:ef:2e:4e:23:a8:
97:09:81:20:76:48:0b:28:65:14:a1:22:53:14:23:
9b:f1:9f:3f:cd:20:b0:48:39:e5:2f:6c:84:18:58:
00:46:af:a1:af:54:96:01:c9:52:32:98:96:bc:de:
10:da:23:10:fb:b1:73:df:ca:3e:1b:65:f9:52:b7:
dd:35:8b:17:c4:94:75:c6:e0:de:19:37:ac:e5:e7:
8f:dc:6d:2d:1a:c9:03:3b:d2:1e:55:cc:0d:b7:c5:
a9:a2:2f:93:4f:94:8e:28:fb:1a:71:22:ab:91:ca:
f0:3f:e9:91:90:29:6d:af:97:4d:db:15:41:34:72:
fc:a3:de:c1:3d:eb:33:cb:64:17:13:8d:01:1d:14:
3a:be:06:93:54:36:92:93:62:fd:14:98:42:11:72:
d5:f8:fa:71:35:b2:6d:f5:48:10:ef:53:6c:55:99:
f3:2c:92:ff:7b:2e:34:58:4e:f1:a1:65:76:58:10:
71:7d:55:2e:2d:ef:69:b0:24:9d:6c:21:c3:59:ea:
a7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:BD:6D:F8:FE:87:A3:44:90:CA:DF:B0:A9:49:99:DE:58:2D:87:E2
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Lb1t-P6Ho0SQyt-wqUmZ3lgth-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2e80::/29
2a0f:2f80::/29
2a0f:3d84::/32
2a0f:3d87::/32
2a0f:7d02:1::/48
2a0f:e1c6::/32
2a0f:e1c7:1::/48
2a0f:e847:2::/48
2a0f:e940::/29
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a12:f540::/29
2a13:18c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
a9:10:3b:1d:29:97:3a:ee:af:36:c5:94:ef:be:d7:6f:6d:71:
d1:7b:01:99:59:c0:13:df:8d:92:c5:83:f4:79:3e:41:b3:c3:
63:93:3c:d0:7b:fe:2d:ff:67:4c:16:1e:a6:3e:f6:4d:a5:e2:
7f:d1:d3:5a:63:07:64:31:c8:df:0e:5d:71:fb:e7:23:b9:8d:
d7:27:a4:eb:19:bc:32:59:2b:4b:72:31:53:1c:46:79:51:5e:
b1:46:18:80:35:b0:3e:95:6c:8a:cf:4f:85:33:28:bf:70:03:
8e:01:c6:d7:12:cf:e7:0a:a6:1a:0c:f8:fb:08:0c:2c:f9:7e:
cc:c4:3f:6b:98:cd:ab:42:fe:10:25:e1:ec:43:cf:e8:79:c1:
bf:42:6e:d2:20:3f:63:33:ae:d9:d4:3e:ea:08:79:74:43:82:
26:44:87:e5:e0:ba:1a:d3:f7:53:ec:de:89:90:a9:f6:b2:c4:
f8:0f:5e:48:bc:9a:53:f1:47:51:8d:1b:01:da:56:df:95:c0:
7d:a0:ea:dd:d7:19:48:ce:31:f7:16:89:30:db:a7:8e:6b:db:
63:8f:a8:2d:ad:a9:7c:ac:ab:d1:07:7f:c9:1f:a7:21:5c:7a:
6b:89:f0:c6:e0:68:3e:d5:dc:af:ff:b7:b4:79:25:94:6d:3d:
de:de:87:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 18:32:48 2025 by rpki-client