Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ZVa1punmHIbSelUQVHH7MMX2Kds.roa
File: ZVa1punmHIbSelUQVHH7MMX2Kds.roa (raw, json)
Hash identifier: e6pjjBQlPs8FstnUx8AHlxVVKETlQX/U+yB9wVSrpDc=
Subject key identifier: 65:56:B5:A6:E9:E6:1C:86:D2:7A:55:10:54:71:FB:30:C5:F6:29:DB
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0194274842F3F0775B8A00A0D0D514863043
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ZVa1punmHIbSelUQVHH7MMX2Kds.roa
Signing time: Thu 02 Jan 2025 13:50:34 +0000
ROA not before: Thu 02 Jan 2025 13:50:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202766
IP address blocks: 45.10.104.0/22 maxlen: 22
45.80.80.0/24 maxlen: 24
45.80.82.0/23 maxlen: 23
45.80.82.0/24 maxlen: 24
45.80.83.0/24 maxlen: 24
45.83.50.0/23 maxlen: 23
45.83.50.0/24 maxlen: 24
45.83.51.0/24 maxlen: 24
80.66.112.0/20 maxlen: 20
80.66.112.0/23 maxlen: 23
80.66.114.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
80.66.120.0/23 maxlen: 23
80.66.120.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.122.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.126.0/24 maxlen: 24
80.66.127.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
91.132.28.0/23 maxlen: 23
91.132.31.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
94.198.47.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
185.203.20.0/22 maxlen: 22
185.203.20.0/24 maxlen: 24
185.203.21.0/24 maxlen: 24
185.203.22.0/24 maxlen: 24
185.203.23.0/24 maxlen: 24
185.229.212.0/22 maxlen: 22
185.229.212.0/24 maxlen: 24
185.229.213.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
193.178.212.0/24 maxlen: 24
193.178.218.0/24 maxlen: 24
193.186.1.0/24 maxlen: 24
193.186.11.0/24 maxlen: 24
194.15.146.0/24 maxlen: 24
194.15.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Jan 2025 10:38:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:42:f3:f0:77:5b:8a:00:a0:d0:d5:14:86:30:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 2 13:50:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6556b5a6e9e61c86d27a55105471fb30c5f629db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:99:ae:1b:da:b6:ac:f5:a0:ad:90:ab:46:57:
f6:eb:ec:13:38:e5:2d:df:0a:7d:c8:d3:b2:57:d2:
0d:71:35:0e:c9:e1:2a:65:eb:c1:58:97:e8:69:85:
47:63:6a:a6:14:14:59:05:14:0e:e7:70:75:79:a5:
29:d5:93:ca:2e:e7:fc:8d:eb:e2:76:56:19:28:c2:
94:5e:e7:88:c6:b4:cf:60:81:f0:55:17:28:19:e6:
af:fc:eb:92:64:78:6d:e8:62:c2:be:9b:ca:d8:2c:
e7:fd:6d:56:69:45:85:0a:12:1c:94:01:f4:f2:2f:
40:9a:69:f3:48:87:2d:e3:cc:b5:b9:cf:a0:59:b0:
9d:cd:83:e2:61:c8:71:e7:24:80:d5:38:33:a7:50:
46:bf:79:b7:7d:42:f5:be:6e:b3:4c:ce:38:eb:82:
62:e8:5e:b4:3d:5e:b2:7a:ec:a7:cb:01:17:d5:5d:
ec:08:50:80:7f:4c:0c:74:b5:b4:4e:44:44:61:0c:
f0:7d:64:7c:9f:01:0e:75:91:ee:37:bc:ae:a8:d8:
08:eb:82:3e:71:45:33:79:1c:bf:9c:bc:1f:2b:72:
81:c3:09:83:01:42:82:60:80:91:d8:8d:14:23:ce:
4d:30:d7:81:75:b2:39:d3:5f:3e:1f:ab:5a:94:d1:
79:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:56:B5:A6:E9:E6:1C:86:D2:7A:55:10:54:71:FB:30:C5:F6:29:DB
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ZVa1punmHIbSelUQVHH7MMX2Kds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.104.0/22
45.80.80.0/24
45.80.82.0/23
45.83.50.0/23
80.66.112.0/20
89.42.70.0/24
89.44.150.0/23
91.132.28.0/23
91.132.31.0/24
94.198.46.0/23
178.19.44.0/24
178.19.47.0/24
185.203.20.0/22
185.229.212.0/22
185.242.175.0/24
193.178.212.0/24
193.178.218.0/24
193.186.1.0/24
193.186.11.0/24
194.15.146.0/24
194.15.195.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:22:4f:19:8e:b2:40:5c:89:ca:be:99:8b:f0:16:90:21:d5:
ff:59:2a:f2:7b:6c:42:8d:5b:c8:05:78:27:cb:f3:f1:99:60:
f6:2c:a2:b5:88:57:58:01:03:cc:eb:3d:4d:b3:25:d2:55:8d:
39:24:ef:0d:df:f0:2d:73:41:88:8f:ee:2e:34:04:9f:9f:e7:
ac:58:14:c1:4c:24:81:74:2a:21:23:9d:a5:5c:41:12:fc:93:
e2:21:92:44:11:59:58:8f:5c:3f:a7:18:9c:f9:44:13:f0:b3:
3a:6c:8d:5c:8a:4e:7d:81:e4:52:58:07:18:95:21:8c:07:91:
4a:5f:4f:4a:d0:4d:6d:a0:ea:c0:9e:f8:17:03:5b:b3:b7:c1:
67:92:7d:a8:98:3a:3d:e2:0c:2e:ca:d5:a3:e1:79:ee:97:d1:
55:90:71:07:7f:1c:f2:88:87:31:e0:c5:37:22:d9:9d:92:62:
89:02:5a:28:d5:fc:5e:37:89:3d:5f:1f:0d:71:99:15:2a:b5:
6d:97:95:9c:23:fc:3b:07:f2:0e:82:e0:2c:92:9d:ec:22:68:
0e:d4:b7:a1:cb:18:fc:6b:02:d7:e0:2d:fa:81:d3:fd:34:7f:
8f:fb:de:46:bd:91:fd:be:0c:04:3a:56:72:43:f8:d8:72:ec:
ab:dd:21:a6
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAZQnSELz8HdbigCg0NUUhjBDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy
N2E0NjcwHhcNMjUwMTAyMTM1MDM0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTU2YjVhNmU5ZTYxYzg2ZDI3YTU1MTA1NDcxZmIzMGM1ZjYyOWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5JmuG9q2rPWgrZCrRlf26+wTOOUt
3wp9yNOyV9INcTUOyeEqZevBWJfoaYVHY2qmFBRZBRQO53B1eaUp1ZPKLuf8jevi
dlYZKMKUXueIxrTPYIHwVRcoGeav/OuSZHht6GLCvpvK2Czn/W1WaUWFChIclAH0
8i9AmmnzSIct48y1uc+gWbCdzYPiYchx5ySA1Tgzp1BGv3m3fUL1vm6zTM4464Ji
6F60PV6yeuynywEX1V3sCFCAf0wMdLW0TkREYQzwfWR8nwEOdZHuN7yuqNgI64I+
cUUzeRy/nLwfK3KBwwmDAUKCYICR2I0UI85NMNeBdbI5018+H6talNF5cQIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFGVWtabp5hyG0npVEFRx+zDF9inbMB8GA1UdIwQY
MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt
Y2Q3ZTA2Y2JiNTMxLzEvWlZhMXB1bm1ISWJTZWxVUVZISDdNTVgyS2RzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx
LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGaBggrBgEFBQcBBwEB/wSBijCBhzCBhAQCAAEwfgMEAi0K
aAMEAC1QUAMEAS1QUgMEAS1TMgMEBFBCcAMEAFkqRgMEAVkslgMEAVuEHAMEAFuE
HwMEAV7GLgMEALITLAMEALITLwMEArnLFAMEArnl1AMEALnyrwMEAMGy1AMEAMGy
2gMEAMG6AQMEAMG6CwMEAMIPkgMEAMIPwzANBgkqhkiG9w0BAQsFAAOCAQEAvCJP
GY6yQFyJyr6Zi/AWkCHV/1kq8ntsQo1byAV4J8vz8Zlg9iyitYhXWAEDzOs9TbMl
0lWNOSTvDd/wLXNBiI/uLjQEn5/nrFgUwUwkgXQqISOdpVxBEvyT4iGSRBFZWI9c
P6cYnPlEE/CzOmyNXIpOfYHkUlgHGJUhjAeRSl9PStBNbaDqwJ74FwNbs7fBZ5J9
qJg6PeIMLsrVo+F57pfRVZBxB38c8oiHMeDFNyLZnZJiiQJaKNX8XjeJPV8fDXGZ
FSq1bZeVnCP8OwfyDoLgLJKd7CJoDtS3ocsY/GsC1+At+oHT/TR/j/veRr2R/b4M
BDpWckP42HLsq90hpg==
-----END CERTIFICATE-----
Generated at Mon Apr 28 10:43:15 2025 by rpki-client