Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/d-dj8lX6GtlXMUhuiGo3-z3Vy18.roa
File: d-dj8lX6GtlXMUhuiGo3-z3Vy18.roa (raw, json)
Hash identifier: W7IDp3VcirNjyC/OdoauIsPnGvRX0dPVGeJbUiJGZDo=
Subject key identifier: 77:E7:63:F2:55:FA:1A:D9:57:31:48:6E:88:6A:37:FB:3D:D5:CB:5F
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01912D50A34EC787067B6C840F471167542B
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/d-dj8lX6GtlXMUhuiGo3-z3Vy18.roa
Signing time: Wed 07 Aug 2024 14:49:04 +0000
ROA not before: Wed 07 Aug 2024 14:49:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
103.139.50.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a06:1184:33::/48 maxlen: 48
2a0a:2d06:33::/48 maxlen: 48
2a0a:2d06:55::/48 maxlen: 48
2a0c:7886:33::/48 maxlen: 48
2a0e:1a80:2541::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0e:f600:6c::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a0f:3d87::/32 maxlen: 32
2a0f:7d02:1::/48 maxlen: 48
2a0f:7d04:1::/48 maxlen: 48
2a0f:e1c6::/32 maxlen: 32
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a12:f540::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 14 Aug 2024 07:02:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2d:50:a3:4e:c7:87:06:7b:6c:84:0f:47:11:67:54:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 7 14:49:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=77e763f255fa1ad95731486e886a37fb3dd5cb5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c1:c2:04:f9:e9:8a:87:24:b8:4b:01:10:e3:
5b:fe:59:31:08:ac:ea:43:93:43:be:e4:bf:2a:2d:
83:4b:15:91:cd:ed:70:03:d7:f6:c9:f4:b8:58:27:
49:64:aa:2f:eb:84:07:4b:ea:9f:a9:5b:30:15:21:
45:c7:24:ef:ae:72:25:48:9f:b4:e7:4b:72:5e:58:
cb:75:ba:fa:44:47:83:28:b9:c0:86:2c:43:05:91:
35:39:10:3e:51:e4:00:d9:7f:97:33:02:2f:a6:1a:
dc:0a:2d:65:84:7c:8e:94:22:98:f0:82:dc:3c:3d:
a7:dc:9f:31:1f:94:e8:25:47:23:47:87:87:2c:71:
26:39:49:62:7d:f3:af:b9:7e:78:eb:b0:71:65:f4:
5c:eb:b6:32:e6:7e:73:6e:eb:4e:9b:ef:cf:de:a8:
ad:35:89:85:b7:de:b1:c6:13:ae:0e:a2:2a:9c:d3:
12:d9:69:c8:59:57:9e:56:82:ee:34:cf:c0:d1:f5:
83:67:96:7c:fa:3f:25:6f:cc:19:da:fd:7a:fa:92:
d7:84:63:11:2c:f5:5d:bd:d2:21:13:93:62:59:36:
9e:34:c0:29:90:63:6f:0d:b7:93:d5:4d:7f:e1:35:
24:54:c2:1c:f1:7a:ff:a4:ad:0b:2f:6c:0a:c6:c7:
e2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:E7:63:F2:55:FA:1A:D9:57:31:48:6E:88:6A:37:FB:3D:D5:CB:5F
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/d-dj8lX6GtlXMUhuiGo3-z3Vy18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
103.139.50.0/24
193.164.199.0/24
IPv6:
2a06:1184:33::/48
2a0a:2d06:33::/48
2a0a:2d06:55::/48
2a0c:7886:33::/48
2a0e:1a80:2541::/48
2a0e:c780::/32
2a0e:f201:1::/48
2a0e:f600:6c::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2e80::/29
2a0f:3d87::/32
2a0f:7d02:1::/48
2a0f:7d04:1::/48
2a0f:e1c6::/32
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a12:f540::/29
2a13:18c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
96:35:c5:fc:f7:e5:3a:2a:bf:41:d5:41:cc:56:77:df:15:ea:
35:b6:90:bc:ae:a7:cd:17:f3:2d:b9:8a:13:e4:00:19:2f:ce:
73:73:aa:bd:c8:57:ab:10:3b:30:8f:5a:d2:5b:2c:37:2b:21:
41:a6:a1:16:b0:e6:22:21:c6:e3:a9:13:f5:91:a5:2d:29:c3:
e1:14:9c:29:96:8f:94:ad:6e:f4:01:6d:4a:d6:fd:cc:fa:2e:
82:d5:08:cc:da:c5:ae:77:cf:54:e6:f4:dd:8f:ca:b6:39:8a:
6d:84:dc:ea:69:c7:4b:9d:b8:15:2e:5d:e2:f0:db:88:14:78:
b5:32:c5:83:7e:bf:d9:37:70:de:3e:29:a5:8f:de:1a:d2:64:
ca:3c:c8:66:09:0f:bf:06:ea:d7:56:0c:e0:2b:6d:8e:a0:75:
be:ca:58:e4:c6:d7:0c:71:31:a0:d3:97:2b:28:8c:fe:8b:a1:
c7:fc:30:2b:33:1d:87:95:74:2b:8b:98:65:68:60:6a:5b:e5:
9b:96:b8:06:8d:77:86:9f:31:41:7f:08:09:d2:34:ac:50:2f:
d8:da:28:88:dc:d0:6b:d5:53:cd:b1:cb:18:dd:e5:f6:d9:84:
fe:8b:b1:9d:38:81:b8:d7:e2:85:dd:d4:a3:3f:b1:fa:7f:f0:
1a:84:f7:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 13:10:57 2025 by rpki-client