Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/mO08tUzqit31hUjFZPX4-slHoEc.roa
File: mO08tUzqit31hUjFZPX4-slHoEc.roa (raw, json)
Hash identifier: 5hJozxKxU+FjrxGBs+0cBbvurwN6ZW2aX7D5r44N2EA=
Subject key identifier: 98:ED:3C:B5:4C:EA:8A:DD:F5:85:48:C5:64:F5:F8:FA:C9:47:A0:47
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019015B00269A8FDE1F8EBF8784360456BC0
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/mO08tUzqit31hUjFZPX4-slHoEc.roa
Signing time: Fri 14 Jun 2024 07:39:34 +0000
ROA not before: Fri 14 Jun 2024 07:39:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a0e:1a80::/32 maxlen: 32
2a0e:1a80:2541::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a0f:3d83::/32 maxlen: 32
2a0f:3d87::/32 maxlen: 32
2a0f:7d02:1::/48 maxlen: 48
2a0f:e1c6::/32 maxlen: 32
2a0f:e1c7:1::/48 maxlen: 48
2a0f:e940::/29 maxlen: 29
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a12:f540::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 14 Jun 2024 13:41:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:15:b0:02:69:a8:fd:e1:f8:eb:f8:78:43:60:45:6b:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 14 07:39:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=98ed3cb54cea8addf58548c564f5f8fac947a047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c1:2e:5f:5a:dd:39:3e:b0:e1:86:45:4f:35:
b0:e5:c5:2b:67:69:98:51:33:67:76:86:57:8b:0b:
83:87:e7:50:b4:77:17:4f:d9:07:0d:c0:5d:16:fd:
45:e7:a3:ce:9b:a6:03:f3:da:f0:71:1c:9a:82:eb:
c7:74:aa:e5:a3:80:c6:43:e0:84:a2:a7:a9:aa:e1:
9a:82:f9:99:9c:af:7a:25:62:a5:e3:49:82:67:44:
33:35:a4:8f:ab:38:e4:4e:05:d1:93:48:37:ee:ad:
ad:25:a2:96:ed:57:02:85:9a:ad:18:4a:01:f1:93:
65:ec:4b:27:f8:c3:c0:d4:02:d9:5c:8b:48:7c:fc:
1f:f9:4c:64:da:03:4f:50:c3:e3:86:a5:fb:84:5a:
90:f3:c3:56:49:e3:f4:e9:c8:4a:d8:f9:dc:9a:4e:
c3:64:80:a8:ab:ba:97:87:7c:f4:4a:e7:7a:ff:6e:
fb:bb:92:ac:58:0a:2c:79:58:68:f1:4a:33:0c:36:
37:d6:25:ea:9b:9b:3b:e8:ad:34:7a:ce:7a:bd:e9:
4d:b0:60:ba:f9:a3:03:8f:c2:e5:da:76:15:69:f5:
dd:d8:40:22:53:cc:9d:2c:ff:af:2e:2e:fa:19:0e:
e7:18:66:88:90:ee:54:b8:c0:cf:70:74:97:a2:11:
73:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:ED:3C:B5:4C:EA:8A:DD:F5:85:48:C5:64:F5:F8:FA:C9:47:A0:47
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/mO08tUzqit31hUjFZPX4-slHoEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
193.164.199.0/24
IPv6:
2a0e:1a80::/32
2a0e:c780::/32
2a0e:f201:1::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2e80::/29
2a0f:3d83::/32
2a0f:3d87::/32
2a0f:7d02:1::/48
2a0f:e1c6::/32
2a0f:e1c7:1::/48
2a0f:e940::/29
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a12:f540::/29
2a13:18c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
58:57:08:81:e2:cc:14:0a:39:1a:ff:9f:4a:97:08:0d:5f:84:
0b:7a:db:99:62:ab:9f:0f:0c:5e:62:47:82:cc:1f:27:1a:3e:
a0:b2:d5:4e:ae:1c:65:a7:64:14:87:e7:2f:f9:e8:f9:b9:c0:
a2:86:24:12:04:51:4d:80:47:76:8c:63:99:4f:e8:bf:e0:1c:
15:98:72:94:01:42:9e:dd:e3:45:aa:30:eb:ac:6e:43:fe:d2:
9e:fc:1a:18:9a:a6:85:a5:69:fd:41:5e:f7:00:1d:47:ae:50:
a1:e8:72:ea:66:e5:a2:1b:e4:47:1d:7d:ae:d3:d6:ad:55:71:
6d:d3:84:95:69:4f:0b:a9:ac:57:ea:0c:14:ea:0c:0a:97:45:
30:f1:d6:36:0d:0e:a1:d6:97:82:71:26:4c:2a:0c:f0:c2:28:
f8:f7:2e:ff:5e:0c:4d:5f:bd:ed:4f:5e:17:80:e8:8d:92:0a:
21:13:da:40:d1:47:7d:27:35:67:f1:bd:9a:cb:e3:18:a8:63:
7b:82:94:2b:d9:ab:7b:04:02:f7:6d:33:d0:94:a9:45:71:d9:
54:af:34:16:1d:4e:b9:d0:e0:89:ca:e5:cd:ed:d7:73:9a:e1:
6c:44:f7:09:e4:30:50:e8:9f:43:01:38:8c:12:2d:a5:95:25:
05:03:02:c5
-----BEGIN CERTIFICATE-----
MIIF9jCCBN6gAwIBAgISAZAVsAJpqP3h+Ov4eENgRWvAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwNjE0MDczOTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OGVkM2NiNTRjZWE4YWRkZjU4NTQ4YzU2NGY1ZjhmYWM5NDdhMDQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtsEuX1rdOT6w4YZFTzWw5cUrZ2mY
UTNndoZXiwuDh+dQtHcXT9kHDcBdFv1F56POm6YD89rwcRyaguvHdKrlo4DGQ+CE
oqepquGagvmZnK96JWKl40mCZ0QzNaSPqzjkTgXRk0g37q2tJaKW7VcChZqtGEoB
8ZNl7Esn+MPA1ALZXItIfPwf+Uxk2gNPUMPjhqX7hFqQ88NWSeP06chK2Pncmk7D
ZICoq7qXh3z0Sud6/277u5KsWAoseVho8UozDDY31iXqm5s76K00es56velNsGC6
+aMDj8Ll2nYVafXd2EAiU8ydLP+vLi76GQ7nGGaIkO5UuMDPcHSXohFzdQIDAQAB
o4IDAjCCAv4wHQYDVR0OBBYEFJjtPLVM6ord9YVIxWT1+PrJR6BHMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvbU8wOHRVenFpdDMxaFVqRlpQWDQtc2xIb0VjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBFgYIKwYBBQUHAQcBAf8EggEFMIIBATAYBAIAATASAwQA
LYF/AwQALYclAwQAwaTHMIHkBAIAAjCB3QMFACoOGoADBQAqDseAAwcAKg7yAQAB
AwcAKg8eAAEjAwcAKg8eAARWAwcAKg8eAAmHAwcAKg8eAAq8AwcAKg8eAN75AwcA
Kg8eAQABAwcAKg8egQACAwcAKg8egRKTAwcAKg8egUMZAwcAKg8egZLoAwcAKg8e
gaPQAwcAKg8egc2uAwUDKg8ugAMFACoPPYMDBQAqDz2HAwcAKg99AgABAwUAKg/h
xgMHACoP4ccAAQMFAyoP6UADBQMqEG1AAwUDKhH9gAMFASoSrEADBQMqEvVAAwcA
KhMYwAABMA0GCSqGSIb3DQEBCwUAA4IBAQBYVwiB4swUCjka/59KlwgNX4QLetuZ
YqufDwxeYkeCzB8nGj6gstVOrhxlp2QUh+cv+ej5ucCihiQSBFFNgEd2jGOZT+i/
4BwVmHKUAUKe3eNFqjDrrG5D/tKe/BoYmqaFpWn9QV73AB1HrlCh6HLqZuWiG+RH
HX2u09atVXFt04SVaU8LqaxX6gwU6gwKl0Uw8dY2DQ6h1peCcSZMKgzwwij49y7/
XgxNX73tT14XgOiNkgohE9pA0Ud9JzVn8b2ay+MYqGN7gpQr2at7BAL3bTPQlKlF
cdlUrzQWHU650OCJyuXN7ddzmuFsRPcJ5DBQ6J9DATiMEi2llSUFAwLF
-----END CERTIFICATE-----
Generated at Sat May 10 10:02:15 2025 by rpki-client