Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/PAlSJz0Ml91P8bpRo2rjmz-H4Vk.roa
File: PAlSJz0Ml91P8bpRo2rjmz-H4Vk.roa (raw, json)
Hash identifier: SIu1KiToK32vD1+dofOVv2u8Db+276tKrnPBWDPwllo=
Subject key identifier: 3C:09:52:27:3D:0C:97:DD:4F:F1:BA:51:A3:6A:E3:9B:3F:87:E1:59
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0194F59A6110A265AD248A6FD476695CA792
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/PAlSJz0Ml91P8bpRo2rjmz-H4Vk.roa
Signing time: Tue 11 Feb 2025 15:22:02 +0000
ROA not before: Tue 11 Feb 2025 15:22:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
185.254.66.0/24 maxlen: 24
193.124.36.0/24 maxlen: 24
194.85.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 07:07:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f5:9a:61:10:a2:65:ad:24:8a:6f:d4:76:69:5c:a7:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 11 15:22:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3c0952273d0c97dd4ff1ba51a36ae39b3f87e159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:bb:7d:49:2d:ee:51:13:62:73:fe:99:b2:83:
16:a9:0e:ad:ec:7c:27:c6:dc:8f:59:08:93:d8:aa:
cf:79:2a:8f:68:62:8e:b3:8c:fd:09:21:04:75:e4:
f9:f6:e6:15:ad:dc:bd:18:8d:49:62:86:27:cc:a8:
91:ce:f2:42:4e:dc:88:93:08:97:15:f5:8f:7f:a1:
d2:2f:d9:70:15:5e:31:41:85:4e:1b:b5:2e:38:85:
25:87:e5:cf:4d:34:72:a7:f6:76:73:c4:2b:ab:28:
42:81:65:51:7a:93:d4:11:90:a1:d8:9c:5d:14:c8:
14:f9:5c:2a:db:e7:dc:bb:03:b9:ea:81:50:b7:e1:
1e:7c:03:14:11:05:29:52:ee:f5:c0:1c:b8:da:3e:
62:33:ab:e8:90:45:98:64:e3:81:47:c2:13:83:bf:
4c:ee:13:b5:e6:fb:9e:e5:69:43:23:7c:90:4f:db:
ef:fe:9d:79:1d:15:09:fd:78:5a:e3:4a:bb:72:39:
48:81:28:94:0f:28:46:e3:ed:be:ad:a0:b8:77:b2:
97:d0:ad:7a:2c:e4:4d:9c:6e:be:59:e0:dc:f3:bc:
e6:0f:e1:05:e1:d1:b8:14:63:ca:51:54:72:43:56:
49:49:1e:79:05:1d:e6:64:2e:23:9e:08:aa:e1:e4:
e2:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:09:52:27:3D:0C:97:DD:4F:F1:BA:51:A3:6A:E3:9B:3F:87:E1:59
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/PAlSJz0Ml91P8bpRo2rjmz-H4Vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.182.0/23
89.34.106.0/24
93.114.183.0/24
185.254.66.0/24
193.124.36.0/24
194.85.249.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:ce:04:2c:27:58:30:34:71:f5:cf:b9:57:2a:fe:21:04:45:
fe:9d:e7:74:b3:49:c7:7d:b5:aa:85:2b:be:ba:3f:df:f7:b7:
78:54:3f:18:0b:23:a9:8c:58:24:75:a5:5c:b4:0b:b3:1a:b3:
a3:d4:d8:6b:ae:4e:27:e1:f0:25:0b:9a:ef:0e:38:27:d9:25:
94:5a:72:3e:cf:29:ce:06:b4:cf:70:39:37:e7:52:44:f4:f2:
88:59:c4:2c:44:e3:7b:64:18:b8:1c:17:fd:ec:ac:74:60:19:
83:dd:f2:9d:11:64:7a:3c:09:a5:d2:e0:3a:cb:5c:e1:d1:36:
01:d3:e1:c3:85:97:fc:2d:01:6b:07:ee:3c:9e:c3:92:6f:93:
45:6d:38:ef:6d:ea:92:1c:33:53:be:25:67:29:be:89:d0:7f:
0f:f7:b4:f0:c4:89:03:c8:53:59:b8:75:48:7a:a6:4d:2b:93:
2b:66:7a:a3:0a:e9:5f:f2:86:73:99:c8:f6:f1:9c:c3:d3:1a:
72:57:20:c6:38:3b:e3:1e:d4:4e:3b:57:b9:e8:79:1b:f5:09:
d7:88:e9:ad:d2:34:1d:b3:cc:cb:f6:a2:11:20:ae:48:6a:5c:
23:22:ff:fd:58:92:f4:c1:d2:e2:7b:25:bf:b3:a1:60:7e:72:
d3:96:34:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:39:24 2025 by rpki-client