Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/cCdCEGB63nbqbXT-U41QAlFFhOg.roa
File: cCdCEGB63nbqbXT-U41QAlFFhOg.roa (raw, json)
Hash identifier: M/FMEE6scSv/NL9kC73QmYDx6anPDbBEb94C4mn16cs=
Subject key identifier: 70:27:42:10:60:7A:DE:76:EA:6D:74:FE:53:8D:50:02:51:45:84:E8
Certificate issuer: /CN=8e626c909eb4951154bcee8221e43951b4257624
Certificate serial: 018E608F4273357EDEC18A024CFE257B7C07
Authority key identifier: 8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/cCdCEGB63nbqbXT-U41QAlFFhOg.roa
Signing time: Thu 21 Mar 2024 10:29:45 +0000
ROA not before: Thu 21 Mar 2024 10:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51088
IP address blocks: 5.10.192.0/24 maxlen: 24
31.41.255.0/24 maxlen: 24
31.134.200.0/21 maxlen: 21
46.244.0.0/19 maxlen: 19
46.244.96.0/19 maxlen: 19
62.3.55.0/24 maxlen: 24
77.246.245.0/24 maxlen: 24
146.19.97.0/24 maxlen: 24
178.249.152.0/21 maxlen: 21
185.51.52.0/23 maxlen: 23
185.205.52.0/22 maxlen: 22
212.24.126.0/24 maxlen: 24
2a02:1668::/32 maxlen: 32
2a02:166a::/32 maxlen: 32
2a02:166b::/32 maxlen: 32
2a05:2900::/29 maxlen: 29
2a06:2602::/32 maxlen: 32
2a0a:e80::/29 maxlen: 29
2a0b:1c0::/29 maxlen: 29
2a0f:ba00::/29 maxlen: 29
2a13:800::/29 maxlen: 29
2a13:2c00::/29 maxlen: 29
2a13:3400::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 27 Mar 2024 16:17:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:60:8f:42:73:35:7e:de:c1:8a:02:4c:fe:25:7b:7c:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e626c909eb4951154bcee8221e43951b4257624
Validity
Not Before: Mar 21 10:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=70274210607ade76ea6d74fe538d5002514584e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:03:1a:00:a9:e7:74:d9:6d:62:e3:4d:51:d6:
e0:52:e3:6d:cc:7a:99:d0:6e:8a:bb:91:0b:df:b8:
b8:a2:bc:e9:03:4c:71:5e:8d:e0:b9:af:f0:11:3a:
9a:db:66:43:10:11:4c:53:b2:7f:b4:41:a2:7c:75:
72:b8:5c:17:3d:ec:c6:76:9d:d3:3c:07:fb:f1:40:
2b:4e:a9:cb:09:32:0e:6b:9d:6b:75:4e:ee:3d:33:
55:c8:4f:0e:38:4e:81:26:74:94:7e:b9:65:6a:fc:
b4:07:e1:48:3d:7a:c6:c5:b8:13:86:05:e7:41:9d:
19:04:c3:1e:b9:67:15:20:be:bf:f7:ea:36:e5:ff:
15:fa:b2:9a:0d:71:06:fa:64:a5:f0:31:0c:85:89:
d7:76:c0:80:48:a3:14:ff:f0:0d:6f:d7:52:c0:a5:
de:12:ce:4b:19:f7:ee:18:7b:96:e1:56:37:35:9e:
46:2c:86:1c:9a:fe:2d:8b:b6:22:3f:58:c6:59:f7:
31:d3:d7:68:eb:ce:49:02:31:37:ea:b7:f9:ba:f7:
f3:ab:7e:1b:29:d0:9b:42:9a:2f:52:f7:e8:a4:ce:
ab:98:26:b7:98:36:33:d9:27:26:43:96:a3:4e:1c:
aa:a5:25:76:d9:de:63:df:14:7e:b6:a9:2b:7f:42:
b4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:27:42:10:60:7A:DE:76:EA:6D:74:FE:53:8D:50:02:51:45:84:E8
X509v3 Authority Key Identifier:
keyid:8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/cCdCEGB63nbqbXT-U41QAlFFhOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/jmJskJ60lRFUvO6CIeQ5UbQldiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.192.0/24
31.41.255.0/24
31.134.200.0/21
46.244.0.0/19
46.244.96.0/19
62.3.55.0/24
77.246.245.0/24
146.19.97.0/24
178.249.152.0/21
185.51.52.0/23
185.205.52.0/22
212.24.126.0/24
IPv6:
2a02:1668::/32
2a02:166a::/31
2a05:2900::/29
2a06:2602::/32
2a0a:e80::/29
2a0b:1c0::/29
2a0f:ba00::/29
2a13:800::/29
2a13:2c00::/29
2a13:3400::/29
Signature Algorithm: sha256WithRSAEncryption
78:50:18:b2:b0:60:7b:ab:57:2a:b3:52:15:81:42:f9:db:fb:
56:e5:f1:1d:98:be:a3:21:1c:1f:14:08:db:8f:74:07:1d:ab:
30:48:7f:e0:ab:59:d7:de:f9:8c:f1:e9:37:7e:3e:37:1e:b0:
54:de:08:c7:51:c5:e7:d8:46:4d:89:ab:92:cc:44:3d:5d:fc:
e2:05:b9:7d:78:19:a2:9e:8f:20:2f:fc:f2:d0:54:25:fc:70:
24:4c:cd:96:db:54:69:95:08:81:df:e1:cb:af:42:4b:8a:11:
25:e5:8a:06:50:16:0d:89:0f:8f:20:55:4f:d7:23:42:5b:2a:
a5:35:31:b2:fc:46:51:69:a9:ff:3c:67:ed:4e:17:78:6e:67:
2a:f5:d1:f0:9c:10:c1:2b:86:8b:bb:2a:b4:8d:d4:81:2c:ae:
bb:59:06:2e:04:55:49:a2:9e:60:ed:37:42:7b:7f:76:32:b1:
5e:4e:09:79:a3:58:87:f1:c0:d4:af:84:44:94:91:1d:58:b0:
a5:bf:9e:8e:a9:43:7d:36:e8:2f:75:85:d9:66:01:2e:8b:db:
32:55:05:01:3c:8b:98:5a:48:f3:49:a6:74:4e:55:fc:47:0b:
45:67:b3:5d:c9:53:6e:c3:c5:d5:9e:b0:60:63:6c:65:c8:7c:
19:fd:d8:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:42:55 2025 by rpki-client