Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/yU93agFl9b-DWzbTfUxBUP36zDM.roa
File: yU93agFl9b-DWzbTfUxBUP36zDM.roa (raw, json)
Hash identifier: XuBRojJfyB/41Z2UYQ2bKMFQjLzW7IyJAlC6Nb12tKM=
Subject key identifier: C9:4F:77:6A:01:65:F5:BF:83:5B:36:D3:7D:4C:41:50:FD:FA:CC:33
Certificate issuer: /CN=16d96cf4109a4a85d1863bf54aa4fa3e81e0c0e6
Certificate serial: 0191FFDF3AE2752EF65822F35E1AAA92BD2F
Authority key identifier: 16:D9:6C:F4:10:9A:4A:85:D1:86:3B:F5:4A:A4:FA:3E:81:E0:C0:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ftls9BCaSoXRhjv1SqT6PoHgwOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/yU93agFl9b-DWzbTfUxBUP36zDM.roa
Signing time: Tue 17 Sep 2024 12:05:05 +0000
ROA not before: Tue 17 Sep 2024 12:05:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12778
IP address blocks: 5.32.136.0/21 maxlen: 24
77.234.128.0/19 maxlen: 19
91.199.161.0/24 maxlen: 24
185.205.116.0/22 maxlen: 24
194.247.162.0/23 maxlen: 24
212.72.96.0/19 maxlen: 19
2a02:d68::/32 maxlen: 32
2a06:c180::/29 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:49:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ff:df:3a:e2:75:2e:f6:58:22:f3:5e:1a:aa:92:bd:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16d96cf4109a4a85d1863bf54aa4fa3e81e0c0e6
Validity
Not Before: Sep 17 12:05:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c94f776a0165f5bf835b36d37d4c4150fdfacc33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ae:79:2a:2d:7d:1a:7e:58:6d:19:04:39:db:
10:3b:12:08:2f:57:42:b9:af:75:9e:8e:49:bc:63:
48:3b:2a:35:50:75:2a:29:93:20:e2:b2:ce:54:b7:
49:ca:55:17:fb:29:b6:8b:af:56:64:01:a8:27:9f:
4f:c1:d2:39:a5:10:73:5d:9d:91:86:c1:7b:67:0a:
8a:06:b9:6b:79:f1:29:f4:07:2c:63:c2:38:52:03:
c3:f6:e1:f7:1d:26:3f:6c:de:58:cd:af:09:3a:3b:
20:10:6f:7b:ae:52:a4:22:7f:fd:32:4a:93:ce:3c:
7c:cf:58:9c:6a:02:50:d1:ca:01:7d:f9:a7:0d:cd:
85:0a:66:9f:12:a1:b4:68:aa:dd:fe:52:73:4d:2c:
b0:a1:92:83:b8:04:c1:cb:4f:01:8d:d7:72:3c:6d:
bd:b8:16:bb:88:64:11:f2:f9:e6:6a:2a:28:62:ed:
6c:7c:ba:f4:4e:3a:4b:86:49:12:40:92:a0:28:d2:
7f:f6:62:76:74:d5:8a:14:e6:11:74:4d:98:56:53:
2f:69:b3:89:d9:f3:ca:86:32:ab:1e:99:60:fc:66:
ef:c8:47:04:5d:cf:91:fe:1c:3d:f0:e6:36:8f:fd:
92:be:b4:2d:8b:56:9d:0f:c1:bf:1d:1e:37:19:59:
07:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:4F:77:6A:01:65:F5:BF:83:5B:36:D3:7D:4C:41:50:FD:FA:CC:33
X509v3 Authority Key Identifier:
keyid:16:D9:6C:F4:10:9A:4A:85:D1:86:3B:F5:4A:A4:FA:3E:81:E0:C0:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ftls9BCaSoXRhjv1SqT6PoHgwOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/yU93agFl9b-DWzbTfUxBUP36zDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/136156-0753-4072-92b0-1407c08db582/1/Ftls9BCaSoXRhjv1SqT6PoHgwOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.32.136.0/21
77.234.128.0/19
91.199.161.0/24
185.205.116.0/22
194.247.162.0/23
212.72.96.0/19
IPv6:
2a02:d68::/32
2a06:c180::/29
Signature Algorithm: sha256WithRSAEncryption
1a:72:f9:d3:7f:1b:07:5e:ef:f3:a1:8d:cf:3d:16:b2:19:8c:
95:18:01:27:f1:d1:51:d5:ca:f1:42:24:fb:c8:57:07:e6:dc:
2b:1c:a8:2c:99:c9:e4:ed:42:6e:d6:48:15:11:fd:3c:41:6a:
6e:c0:5d:ed:2f:5d:60:79:b6:c4:f6:82:e8:a9:87:0c:19:ca:
fe:bd:5a:80:e0:8b:48:62:0c:6d:08:04:d7:6a:a6:20:7a:13:
68:fa:84:f9:f5:b5:55:d2:a1:88:59:da:02:88:e3:99:d3:04:
6d:21:9f:a0:d9:e1:80:3b:ac:28:c0:78:ee:f9:08:ee:3f:3f:
83:36:16:cd:33:73:98:22:f0:af:e0:4a:c4:bc:02:a9:40:2c:
5d:a4:ee:30:7b:cc:f9:fe:8b:1f:21:53:f1:8f:19:7f:c6:9b:
19:49:7c:2a:17:78:b1:d6:b2:5b:ff:25:93:9f:e9:cd:02:9f:
29:43:55:b2:78:ce:27:1f:c3:25:25:89:d8:53:b4:5a:43:98:
a4:aa:da:4c:0c:b9:22:62:c5:1a:84:6b:7f:64:ae:b1:f8:c2:
b5:d8:cc:45:79:25:83:67:e9:86:ec:67:29:5e:92:b0:f0:73:
ca:99:0e:2a:a0:7c:22:16:59:67:53:a4:03:3e:5f:e8:72:94:
03:a0:c1:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 00:45:52 2025 by rpki-client