Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/S9JIQZld-t-DjTmEWCqGl8q4XJ4.roa
File: S9JIQZld-t-DjTmEWCqGl8q4XJ4.roa (raw, json)
Hash identifier: jbe+IDi94xhed5LuAL8Fidf2edtlsz9dPbZefD0mNao=
Subject key identifier: 4B:D2:48:41:99:5D:FA:DF:83:8D:39:84:58:2A:86:97:CA:B8:5C:9E
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019305D0F931F6DFC140A29FB4B197DAEC93
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/S9JIQZld-t-DjTmEWCqGl8q4XJ4.roa
Signing time: Thu 07 Nov 2024 08:50:01 +0000
ROA not before: Thu 07 Nov 2024 08:50:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 45.152.198.0/24 maxlen: 24
103.114.40.0/24 maxlen: 24
2a0a:2d07:44::/48 maxlen: 48
2a0e:1a84::/32 maxlen: 32
2a0e:c781::/32 maxlen: 32
2a0e:f600:5f::/48 maxlen: 48
2a0f:1e80:100::/48 maxlen: 48
2a0f:1e80:1986::/48 maxlen: 48
2a0f:3d80:bac::/48 maxlen: 48
2a0f:7d00:1::/48 maxlen: 48
2a0f:bc00:a1c4::/48 maxlen: 48
2a0f:e6c6:5532::/48 maxlen: 48
2a12:ac46:99::/48 maxlen: 48
2a13:2b40::/29 maxlen: 32
Validation: Failed, certificate revoked on Thu 07 Nov 2024 09:33:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:05:d0:f9:31:f6:df:c1:40:a2:9f:b4:b1:97:da:ec:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 7 08:50:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4bd24841995dfadf838d3984582a8697cab85c9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d5:14:29:26:66:31:ab:74:cb:e1:29:3f:44:
1b:bf:68:84:34:1b:57:e2:c7:1e:de:6a:5a:f3:ff:
07:22:2c:9c:e6:9b:f1:80:0a:ec:07:72:09:da:36:
0e:52:ed:54:e7:10:84:6c:c2:a8:c6:61:14:95:53:
f8:84:a9:da:16:f7:71:a0:39:51:c2:c4:25:bf:ae:
04:2f:82:94:8f:95:85:37:90:2a:bd:8b:83:01:b0:
e0:dc:ed:78:0d:02:86:5e:37:4b:8f:e3:b4:86:48:
58:36:60:88:94:89:55:69:8f:f4:ab:c8:a1:2d:ff:
15:3a:df:9e:f8:2e:15:90:1f:ac:44:7d:41:51:22:
85:9e:85:a1:05:1b:f2:0e:68:45:d5:2f:4b:23:e7:
f9:4d:d8:78:88:e2:6b:30:e6:82:da:7e:60:21:65:
3a:6a:92:ec:c6:34:cd:62:dc:24:c7:79:60:71:ae:
4c:5f:30:6d:53:5f:a6:7d:3c:59:86:8f:22:70:20:
53:7a:d8:06:8e:54:cb:f9:d4:6c:80:98:33:3d:a8:
26:af:d7:c4:84:63:50:7f:0f:df:aa:ca:84:d4:c7:
f8:c3:a8:d5:d4:d0:01:74:b6:e9:92:47:e4:f9:e8:
6d:b6:c1:06:05:72:e8:27:ac:40:8e:47:35:0a:e4:
14:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:D2:48:41:99:5D:FA:DF:83:8D:39:84:58:2A:86:97:CA:B8:5C:9E
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/S9JIQZld-t-DjTmEWCqGl8q4XJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.198.0/24
103.114.40.0/24
IPv6:
2a0a:2d07:44::/48
2a0e:1a84::/32
2a0e:c781::/32
2a0e:f600:5f::/48
2a0f:1e80:100::/48
2a0f:1e80:1986::/48
2a0f:3d80:bac::/48
2a0f:7d00:1::/48
2a0f:bc00:a1c4::/48
2a0f:e6c6:5532::/48
2a12:ac46:99::/48
2a13:2b40::/29
Signature Algorithm: sha256WithRSAEncryption
a0:04:bf:80:56:76:5e:b2:55:94:dd:90:96:1d:d0:a9:a3:5f:
3f:b3:ac:c7:92:0d:f4:ba:84:21:fc:32:67:96:2a:d4:cc:9a:
aa:ce:a8:b9:1c:d5:d6:62:a5:a0:63:56:ec:38:20:25:4e:60:
d2:b1:3b:6e:9c:73:2c:ec:5d:99:79:00:1a:52:b1:eb:56:93:
41:e2:d5:69:f2:a0:00:d8:c9:db:ba:6b:2c:7c:bd:5d:87:08:
83:cb:e6:c5:ab:a7:51:17:70:60:e1:82:45:6f:43:34:f8:e4:
db:6d:34:f2:6e:cb:68:22:a7:6d:f9:a3:99:17:3b:d0:4b:0e:
1f:ac:33:8c:3d:67:ec:fc:ec:ec:18:8d:37:fb:ba:3e:ce:de:
2b:97:8f:a2:ed:43:0e:3b:1e:95:f4:ea:32:a3:c8:ba:18:ed:
25:1b:3b:d3:1c:0d:51:8c:14:71:31:ed:c5:86:e1:f8:9c:61:
99:7f:bd:22:ac:06:7f:0d:5a:02:2a:ee:ff:d2:d2:51:9e:7b:
ca:58:8a:ab:61:f6:c1:dc:ee:72:a8:76:53:b6:d4:48:02:56:
3d:12:26:8b:59:e8:43:c6:dd:f9:5a:b7:bd:e2:ff:cd:e9:8c:
67:6a:c8:42:c8:38:a4:d4:db:0f:0f:dd:8f:82:14:5f:50:7b:
82:87:5b:89
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgISAZMF0Pkx9t/BQKKftLGX2uyTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQxMTA3MDg1MDAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YmQyNDg0MTk5NWRmYWRmODM4ZDM5ODQ1ODJhODY5N2NhYjg1YzllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9UUKSZmMat0y+EpP0Qbv2iENBtX
4sce3mpa8/8HIiyc5pvxgArsB3IJ2jYOUu1U5xCEbMKoxmEUlVP4hKnaFvdxoDlR
wsQlv64EL4KUj5WFN5AqvYuDAbDg3O14DQKGXjdLj+O0hkhYNmCIlIlVaY/0q8ih
Lf8VOt+e+C4VkB+sRH1BUSKFnoWhBRvyDmhF1S9LI+f5Tdh4iOJrMOaC2n5gIWU6
apLsxjTNYtwkx3lgca5MXzBtU1+mfTxZho8icCBTetgGjlTL+dRsgJgzPagmr9fE
hGNQfw/fqsqE1Mf4w6jV1NABdLbpkkfk+ehttsEGBXLoJ6xAjkc1CuQUZQIDAQAB
o4ICgDCCAnwwHQYDVR0OBBYEFEvSSEGZXfrfg405hFgqhpfKuFyeMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvUzlKSVFabGQtdC1EalRtRVdDcUdsOHE0WEo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGVBggrBgEFBQcBBwEB/wSBhTCBgjASBAIAATAMAwQALZjG
AwQAZ3IoMGwEAgACMGYDBwAqCi0HAEQDBQAqDhqEAwUAKg7HgQMHACoO9gAAXwMH
ACoPHoABAAMHACoPHoAZhgMHACoPPYALrAMHACoPfQAAAQMHACoPvAChxAMHACoP
5sZVMgMHACoSrEYAmQMFAyoTK0AwDQYJKoZIhvcNAQELBQADggEBAKAEv4BWdl6y
VZTdkJYd0KmjXz+zrMeSDfS6hCH8MmeWKtTMmqrOqLkc1dZipaBjVuw4ICVOYNKx
O26ccyzsXZl5ABpSsetWk0Hi1WnyoADYydu6ayx8vV2HCIPL5sWrp1EXcGDhgkVv
QzT45NttNPJuy2gip235o5kXO9BLDh+sM4w9Z+z87OwYjTf7uj7O3iuXj6LtQw47
HpX06jKjyLoY7SUbO9McDVGMFHEx7cWG4ficYZl/vSKsBn8NWgIq7v/S0lGee8pY
iqth9sHc7nKodlO21EgCVj0SJotZ6EPG3flat73i/83pjGdqyELIOKTU2w8P3Y+C
FF9Qe4KHW4k=
-----END CERTIFICATE-----
Generated at Thu May 8 06:27:02 2025 by rpki-client