Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/ygh9wXWTM9tm973vFkqZwUsNVck.roa
File: ygh9wXWTM9tm973vFkqZwUsNVck.roa (raw, json)
Hash identifier: McLBlGxuud+i4vbc5wNa0/Tpl2KEGTEwbvwsmOXKwDY=
Subject key identifier: CA:08:7D:C1:75:93:33:DB:66:F7:BD:EF:16:4A:99:C1:4B:0D:55:C9
Certificate issuer: /CN=d055e0b86f3f5125054863cf9264e6346e09bbb7
Certificate serial: 018CC50006509B0105724B436C7ABEB30DD1
Authority key identifier: D0:55:E0:B8:6F:3F:51:25:05:48:63:CF:92:64:E6:34:6E:09:BB:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0FXguG8_USUFSGPPkmTmNG4Ju7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/ygh9wXWTM9tm973vFkqZwUsNVck.roa
Signing time: Mon 01 Jan 2024 12:29:22 +0000
ROA not before: Mon 01 Jan 2024 12:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203053
IP address blocks: 86.107.43.0/24 maxlen: 24
89.39.209.0/24 maxlen: 24
86.107.78.0/24 maxlen: 24
86.107.79.0/24 maxlen: 24
188.214.214.0/24 maxlen: 24
86.105.228.0/24 maxlen: 24
185.146.85.0/24 maxlen: 24
185.146.84.0/22 maxlen: 22
185.146.87.0/24 maxlen: 24
185.146.86.0/24 maxlen: 24
93.119.122.0/24 maxlen: 24
89.42.13.0/24 maxlen: 24
89.40.33.0/24 maxlen: 24
89.40.32.0/24 maxlen: 24
188.212.127.0/24 maxlen: 24
176.126.172.0/24 maxlen: 24
93.113.55.0/24 maxlen: 24
93.113.54.0/24 maxlen: 24
89.37.29.0/24 maxlen: 24
37.156.181.0/24 maxlen: 24
37.156.180.0/24 maxlen: 24
31.14.56.0/24 maxlen: 24
188.212.252.0/24 maxlen: 24
188.212.255.0/24 maxlen: 24
93.114.248.0/24 maxlen: 24
85.204.69.0/24 maxlen: 24
89.44.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 May 2024 11:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:06:50:9b:01:05:72:4b:43:6c:7a:be:b3:0d:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d055e0b86f3f5125054863cf9264e6346e09bbb7
Validity
Not Before: Jan 1 12:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca087dc1759333db66f7bdef164a99c14b0d55c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:86:32:1a:a6:d2:ff:53:9a:45:ff:ee:cd:8f:
6d:9e:3e:18:29:4f:ba:37:ad:82:48:c3:3a:84:0f:
95:3e:c8:30:ba:59:ea:bb:e7:e7:e9:5f:db:98:2f:
5f:8a:5d:2f:69:ff:d2:a3:15:74:af:ea:3e:f7:a8:
2f:14:2d:51:d4:1d:58:3a:96:74:72:a0:04:65:9b:
da:0a:95:5e:cf:14:de:62:1a:33:4e:02:d2:80:bc:
9f:75:e1:5b:a7:c0:e2:53:f1:8d:f8:06:01:b3:e6:
4e:f9:7e:85:c9:a3:79:4d:0e:2b:95:03:18:74:df:
b6:6c:c2:3c:39:17:f8:8e:7c:77:15:36:d5:38:4d:
99:1f:f4:80:f8:1a:8c:48:10:1e:96:9d:8b:e0:e0:
8d:1e:d4:fe:23:e4:5a:8a:a9:d3:c4:0d:39:13:b6:
e4:a8:86:cf:34:a6:bf:58:2a:ba:61:21:07:dc:dd:
8a:92:fe:15:22:e8:b2:76:6c:79:30:41:2f:66:b5:
cd:35:82:90:b1:70:35:cd:e3:70:6e:3a:4d:95:b7:
48:97:6b:20:5c:52:48:90:c5:bb:1c:c3:cf:17:60:
fa:7e:2b:38:17:c1:e3:18:15:c3:70:c8:c1:71:25:
4f:8f:ab:ff:9a:2f:67:2b:c8:58:27:be:b6:4a:4b:
a4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:08:7D:C1:75:93:33:DB:66:F7:BD:EF:16:4A:99:C1:4B:0D:55:C9
X509v3 Authority Key Identifier:
keyid:D0:55:E0:B8:6F:3F:51:25:05:48:63:CF:92:64:E6:34:6E:09:BB:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0FXguG8_USUFSGPPkmTmNG4Ju7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/ygh9wXWTM9tm973vFkqZwUsNVck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/0FXguG8_USUFSGPPkmTmNG4Ju7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.56.0/24
37.156.180.0/23
85.204.69.0/24
86.105.228.0/24
86.107.43.0/24
86.107.78.0/23
89.37.29.0/24
89.39.209.0/24
89.40.32.0/23
89.42.13.0/24
89.44.105.0/24
93.113.54.0/23
93.114.248.0/24
93.119.122.0/24
176.126.172.0/24
185.146.84.0/22
188.212.127.0/24
188.212.252.0/24
188.212.255.0/24
188.214.214.0/24
Signature Algorithm: sha256WithRSAEncryption
82:9c:ac:15:81:4b:68:e8:07:5b:9d:a9:e4:01:62:d0:08:82:
08:61:52:70:7f:bf:b9:71:3a:70:cf:4f:aa:5d:5a:c7:e1:eb:
a7:44:ee:10:94:b9:b0:6e:05:9a:f5:37:cd:ba:2e:a5:6e:76:
82:7a:aa:49:aa:06:93:62:a0:5f:c0:37:14:47:33:bb:e0:db:
66:d5:2e:6b:69:66:0a:64:fb:dc:f7:1d:aa:e8:73:53:c8:8b:
2b:68:6a:82:a9:d0:f3:2e:61:2a:03:95:9a:07:b4:30:12:7e:
33:df:62:fd:2c:99:89:b2:2c:75:8f:cd:4b:78:50:55:6f:1f:
b4:5f:70:a9:fb:a1:e4:0e:ec:fe:51:c7:05:ee:be:78:68:a7:
b7:d5:8f:3a:2d:57:13:29:a1:a4:4a:0d:16:76:5c:36:4c:3d:
47:fa:84:24:07:67:d7:d2:74:2d:e8:ba:50:44:fb:c1:a2:f9:
23:91:b1:6a:d5:5d:77:0e:07:fb:30:88:8b:8f:44:24:66:b7:
3b:30:0b:ed:99:08:58:8d:6e:8c:84:c5:e8:6e:60:cf:c6:0d:
c7:88:58:b3:8b:d0:48:a0:1b:80:90:ba:da:a5:93:3c:30:f9:
ce:ac:66:b4:e4:5e:ae:ad:56:48:fd:31:35:16:94:6e:84:4f:
db:9b:2c:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:12 2025 by rpki-client