Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/xBs62uyRVGTKjRBRFT2vLtcjYhE.roa
File: xBs62uyRVGTKjRBRFT2vLtcjYhE.roa (raw, json)
Hash identifier: 7zvvQWDGcq4PteXgK6jgFUopENwhP7LzYO+TI89SZMc=
Subject key identifier: C4:1B:3A:DA:EC:91:54:64:CA:8D:10:51:15:3D:AF:2E:D7:23:62:11
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019203E2350EB98A9BBC034897FCA5547B27
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/xBs62uyRVGTKjRBRFT2vLtcjYhE.roa
Signing time: Wed 18 Sep 2024 06:46:49 +0000
ROA not before: Wed 18 Sep 2024 06:46:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 45.152.198.0/24 maxlen: 24
103.114.40.0/24 maxlen: 24
2a0a:2d07:44::/48 maxlen: 48
2a0e:1a84::/32 maxlen: 32
2a0f:1584::/48 maxlen: 48
2a0f:3d80:bac::/48 maxlen: 48
2a0f:3d82::/32 maxlen: 32
2a0f:7d00:1::/48 maxlen: 48
2a0f:bc00:a1c4::/48 maxlen: 48
2a0f:e6c6:5532::/48 maxlen: 48
2a12:ecc2::/32 maxlen: 48
2a13:2b40::/29 maxlen: 32
Validation: Failed, certificate revoked on Thu 19 Sep 2024 12:39:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:03:e2:35:0e:b9:8a:9b:bc:03:48:97:fc:a5:54:7b:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 18 06:46:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c41b3adaec915464ca8d1051153daf2ed7236211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f8:9a:07:69:f8:97:01:6e:ba:2b:e0:b8:26:
67:a9:bd:0c:a2:61:99:5b:f5:24:03:33:d6:e5:f9:
a8:d3:b2:f1:ec:c8:75:3a:df:3c:e1:8b:f3:91:06:
eb:1e:c1:5c:b0:67:fe:93:30:e6:44:ae:21:c7:02:
9b:e4:3e:39:77:71:c4:d1:13:b9:cf:97:4d:23:a7:
6b:27:c5:18:f8:78:1f:d3:9f:36:d4:d9:5f:6d:23:
ce:00:2e:b6:e2:2f:b8:9f:ea:ff:ed:ca:c1:00:18:
50:f0:b3:b1:65:e1:0f:22:dc:e1:10:76:63:40:92:
0d:18:80:0f:66:0f:89:36:fc:7f:03:4d:10:e4:8d:
83:cf:4b:fc:c5:aa:6f:5d:db:7a:18:3b:b8:a9:a3:
8d:2b:65:f4:e8:98:2a:21:f4:ec:d7:b7:d3:ff:80:
cc:2d:33:2e:09:5e:74:7c:5f:87:e4:f2:3e:22:2b:
29:79:a3:83:fd:4a:51:11:9b:14:67:92:69:06:9a:
78:15:43:8b:64:5f:03:26:9a:be:84:0f:06:1f:4b:
1f:04:15:29:e6:c0:3f:c1:88:b5:12:b6:8a:6b:7d:
f2:bc:39:e2:6d:84:cc:6a:34:e7:4e:21:87:61:ff:
dc:71:c7:48:e7:3f:a3:34:29:f4:cc:a0:eb:bb:e3:
9f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:1B:3A:DA:EC:91:54:64:CA:8D:10:51:15:3D:AF:2E:D7:23:62:11
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/xBs62uyRVGTKjRBRFT2vLtcjYhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.198.0/24
103.114.40.0/24
IPv6:
2a0a:2d07:44::/48
2a0e:1a84::/32
2a0f:1584::/48
2a0f:3d80:bac::/48
2a0f:3d82::/32
2a0f:7d00:1::/48
2a0f:bc00:a1c4::/48
2a0f:e6c6:5532::/48
2a12:ecc2::/32
2a13:2b40::/29
Signature Algorithm: sha256WithRSAEncryption
4e:fc:34:04:42:41:b8:ae:2d:f9:f6:ab:41:8c:2d:77:07:df:
2c:9c:6f:ca:b6:4a:fa:d7:04:1d:61:2e:37:91:66:14:9f:15:
90:8f:f9:89:80:07:1f:dd:56:65:48:52:72:cc:2e:03:a6:05:
39:c7:05:9a:61:43:43:f0:e9:08:1b:8d:0b:bb:ee:00:1f:84:
1a:d9:c4:d5:c5:5e:a1:78:57:4a:8c:7c:72:2c:0d:65:50:5e:
a0:9a:c2:18:b5:ac:3d:98:70:8b:d8:a1:e0:94:85:4d:de:8f:
90:0d:7f:56:c3:66:bf:ec:e5:6d:7e:a4:16:77:8d:b9:02:35:
89:f0:d6:1f:c8:d8:80:83:8b:0c:2b:93:ca:6d:e4:e5:b5:a3:
29:ec:fa:cd:4e:20:2e:bc:5f:23:36:69:46:38:a2:5b:cd:e2:
17:5f:85:71:2e:6f:2c:d0:c4:d2:48:3c:88:c9:a9:b0:0d:30:
5d:c3:4b:02:31:ba:2a:3b:1f:c1:fc:bd:46:94:b6:49:7b:13:
71:9f:4a:0f:36:c2:ac:24:63:2f:ac:31:97:01:cf:83:00:1d:
dc:dc:a0:45:c7:dd:a8:78:80:84:af:21:d6:9d:07:8f:7a:56:
2f:9e:a8:47:55:44:dd:d9:74:18:43:35:f6:33:f2:d6:71:8b:
97:00:12:db
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAZID4jUOuYqbvANIl/ylVHsnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwOTE4MDY0NjQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNDFiM2FkYWVjOTE1NDY0Y2E4ZDEwNTExNTNkYWYyZWQ3MjM2MjExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/iaB2n4lwFuuivguCZnqb0MomGZ
W/UkAzPW5fmo07Lx7Mh1Ot884YvzkQbrHsFcsGf+kzDmRK4hxwKb5D45d3HE0RO5
z5dNI6drJ8UY+Hgf05821NlfbSPOAC624i+4n+r/7crBABhQ8LOxZeEPItzhEHZj
QJINGIAPZg+JNvx/A00Q5I2Dz0v8xapvXdt6GDu4qaONK2X06JgqIfTs17fT/4DM
LTMuCV50fF+H5PI+IispeaOD/UpREZsUZ5JpBpp4FUOLZF8DJpq+hA8GH0sfBBUp
5sA/wYi1EraKa33yvDnibYTMajTnTiGHYf/cccdI5z+jNCn0zKDru+Of7wIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFMQbOtrskVRkyo0QURU9ry7XI2IRMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEveEJzNjJ1eVJWR1RLalJCUkZUMnZMdGNqWWhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjASBAIAATAMAwQALZjGAwQA
Z3IoMFgEAgACMFIDBwAqCi0HAEQDBQAqDhqEAwcAKg8VhAAAAwcAKg89gAusAwUA
Kg89ggMHACoPfQAAAQMHACoPvAChxAMHACoP5sZVMgMFACoS7MIDBQMqEytAMA0G
CSqGSIb3DQEBCwUAA4IBAQBO/DQEQkG4ri359qtBjC13B98snG/Ktkr61wQdYS43
kWYUnxWQj/mJgAcf3VZlSFJyzC4DpgU5xwWaYUND8OkIG40Lu+4AH4Qa2cTVxV6h
eFdKjHxyLA1lUF6gmsIYtaw9mHCL2KHglIVN3o+QDX9Ww2a/7OVtfqQWd425AjWJ
8NYfyNiAg4sMK5PKbeTltaMp7PrNTiAuvF8jNmlGOKJbzeIXX4VxLm8s0MTSSDyI
yamwDTBdw0sCMboqOx/B/L1GlLZJexNxn0oPNsKsJGMvrDGXAc+DAB3c3KBFx92o
eICEryHWnQePelYvnqhHVUTd2XQYQzX2M/LWcYuXABLb
-----END CERTIFICATE-----
Generated at Sun May 11 19:09:03 2025 by rpki-client