Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/uCoSDEOY42j7EZSMQVHbmhskcl4.roa
File: uCoSDEOY42j7EZSMQVHbmhskcl4.roa (raw, json)
Hash identifier: yd7GGrvLJ32fyxGov+xoW58ic77OoDKiSevlKh4hfYo=
Subject key identifier: B8:2A:12:0C:43:98:E3:68:FB:11:94:8C:41:51:DB:9A:1B:24:72:5E
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 0197C3074473F4A0E19735E3365C31EE842D
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/uCoSDEOY42j7EZSMQVHbmhskcl4.roa
Signing time: Mon 30 Jun 2025 22:48:42 +0000
ROA not before: Mon 30 Jun 2025 22:48:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209847
IP address blocks: 94.131.13.0/24 maxlen: 24
94.131.14.0/24 maxlen: 24
103.113.69.0/24 maxlen: 24
103.231.72.0/24 maxlen: 24
103.231.73.0/24 maxlen: 24
146.19.170.0/24 maxlen: 24
176.120.67.0/24 maxlen: 24
185.242.84.0/24 maxlen: 24
213.159.69.0/24 maxlen: 24
2a09:7c43::/32 maxlen: 32
2a0b:cf43::/32 maxlen: 32
2a11:3c01::/32 maxlen: 32
2a11:4c00::/32 maxlen: 32
2a11:4c04::/32 maxlen: 32
2a11:7e06::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 03 Jul 2025 15:16:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c3:07:44:73:f4:a0:e1:97:35:e3:36:5c:31:ee:84:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Jun 30 22:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b82a120c4398e368fb11948c4151db9a1b24725e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1b:94:26:5e:bc:20:6e:a2:b1:10:06:12:da:
31:17:e2:3e:c1:56:96:0f:b5:8b:76:e8:d4:c7:c8:
6b:37:e8:26:02:f2:53:d7:32:4b:f5:55:89:c6:43:
23:c2:9a:da:8a:c5:73:fa:83:30:fa:58:c7:cd:2e:
cc:a7:c0:cb:d7:41:66:6d:03:05:5a:91:d9:8f:82:
63:8a:5b:da:ec:a2:4e:10:bc:55:d9:9f:5d:3f:31:
86:e3:d1:5f:0a:40:9c:38:1c:12:b5:b3:b0:e0:25:
d8:a1:86:81:69:a0:82:5a:1e:4d:68:24:6f:fa:8e:
d7:10:02:6c:ca:67:19:f3:59:6d:69:ac:87:42:07:
b9:93:3f:1f:1d:df:55:6c:fb:93:67:1d:35:96:c6:
7f:7b:e5:b9:3e:ff:ac:43:6e:19:f9:26:b4:b4:11:
1d:a6:2d:4b:ab:df:12:03:1b:c5:42:4d:76:64:88:
0a:21:86:7e:20:b2:ef:ce:1c:ff:a4:b7:ec:67:26:
18:87:b6:e8:d9:bf:3f:33:33:9b:1a:ea:90:f2:6b:
e4:89:7c:83:a3:ec:fa:77:d9:53:b4:94:6c:ef:00:
54:a5:6b:b8:da:33:00:b1:f2:84:75:eb:ed:18:2b:
40:43:e8:fe:a3:92:43:53:c3:12:be:8a:4b:a1:98:
15:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:2A:12:0C:43:98:E3:68:FB:11:94:8C:41:51:DB:9A:1B:24:72:5E
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/uCoSDEOY42j7EZSMQVHbmhskcl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.13.0-94.131.14.255
103.113.69.0/24
103.231.72.0/23
146.19.170.0/24
176.120.67.0/24
185.242.84.0/24
213.159.69.0/24
IPv6:
2a09:7c43::/32
2a0b:cf43::/32
2a11:3c01::/32
2a11:4c00::/32
2a11:4c04::/32
2a11:7e06::/32
Signature Algorithm: sha256WithRSAEncryption
31:7f:72:15:c7:93:fe:a3:1e:0d:39:95:aa:fc:50:5c:26:b3:
fa:e2:83:04:2e:4b:bd:47:44:6c:17:e9:0e:b1:70:04:b1:98:
f0:4a:52:c5:24:41:15:49:07:2a:5e:8e:cf:bb:17:f7:ae:d1:
a2:af:7b:2d:db:9f:76:2c:cc:27:40:75:00:e5:72:94:be:56:
3d:6c:a1:28:90:6c:99:55:dd:79:31:d3:c1:3a:95:d8:52:72:
13:cc:d2:7c:79:49:8c:92:6d:3b:cc:39:a9:41:fc:f9:cd:1d:
d8:cd:12:ea:5c:24:d8:78:8a:37:28:7a:2e:13:78:53:73:bb:
7b:3b:f1:34:05:5d:f7:b8:d8:8f:0a:ec:2c:4e:52:5d:74:3e:
02:d4:23:3f:50:c7:4e:93:d6:fa:20:aa:b3:8e:5f:9b:cf:09:
6d:2d:79:ec:3b:57:ff:a7:81:8f:2f:23:fa:d9:1b:12:a1:52:
c5:90:8d:9b:2f:4f:58:d0:fd:f3:67:3d:47:5b:27:0f:5c:64:
7a:9a:eb:64:45:f8:47:4b:a4:6d:8c:94:7c:0c:25:b2:76:d7:
a1:4c:f0:c0:1e:66:29:33:d1:31:9b:38:d8:90:e9:b7:10:66:
9d:2e:6e:60:3f:62:14:da:36:7c:0d:ec:56:73:ba:4f:ed:32:
b3:76:a5:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 23:39:17 2025 by rpki-client