Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/_veN-VIDLhZBiptGQlf_o-0QboI.roa
File: _veN-VIDLhZBiptGQlf_o-0QboI.roa (raw, json)
Hash identifier: 5ZcbSZWMFnlRXEgJcv/A7HlAqpW11QbCO1MHucDOIL0=
Subject key identifier: FE:F7:8D:F9:52:03:2E:16:41:8A:9B:46:42:57:FF:A3:ED:10:6E:82
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0194FF5DC5A6863EDF43D842D9AD91425F46
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/_veN-VIDLhZBiptGQlf_o-0QboI.roa
Signing time: Thu 13 Feb 2025 12:52:03 +0000
ROA not before: Thu 13 Feb 2025 12:52:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 174
IP address blocks: 37.60.141.0/24 maxlen: 24
87.120.191.0/24 maxlen: 24
87.121.70.0/23 maxlen: 24
87.121.88.0/24 maxlen: 24
87.121.144.0/23 maxlen: 24
93.123.47.0/24 maxlen: 24
94.156.11.0/24 maxlen: 24
94.156.162.0/23 maxlen: 24
94.156.164.0/23 maxlen: 24
141.98.1.0/24 maxlen: 24
212.73.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Mar 2025 08:23:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ff:5d:c5:a6:86:3e:df:43:d8:42:d9:ad:91:42:5f:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Feb 13 12:52:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fef78df952032e16418a9b464257ffa3ed106e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:08:f5:9c:86:87:01:df:b9:45:53:fd:ed:6d:
47:7b:b7:0c:a0:50:0f:d4:c2:5f:83:d1:04:b3:f4:
bb:bd:ae:0b:b7:75:38:2b:13:69:8a:cb:27:79:e0:
42:5f:04:a1:cf:a7:a2:f4:d8:22:b0:92:b7:2f:fe:
f6:30:7d:cc:ea:02:33:73:66:0e:3a:86:44:81:92:
f5:45:c3:35:cb:93:f7:35:25:37:12:74:2d:66:a4:
fd:32:c5:5b:d8:2a:54:20:43:16:9d:ba:b7:bf:fa:
34:44:4c:12:5a:c3:8d:01:fe:ea:19:76:83:28:ca:
87:41:3f:95:23:03:5c:1d:92:95:8a:14:74:a3:37:
e0:72:38:c8:dc:c5:f2:34:b9:ec:29:7e:28:9c:90:
bf:cd:16:e7:ef:75:da:93:b5:56:aa:ed:91:ef:77:
7f:1a:a3:88:9b:ac:fa:8e:c2:55:ec:23:85:f3:b2:
b8:fb:6d:fb:c4:ad:62:c1:25:53:41:d9:96:6c:23:
9a:12:d4:44:05:15:e4:cc:b9:9d:e8:bc:29:7f:49:
e0:b0:95:7a:b5:7e:c1:6f:89:a5:2e:7b:f9:41:ed:
bc:8c:55:79:78:37:77:af:24:94:44:15:63:48:02:
3e:55:9c:ac:f9:90:f6:86:ee:08:eb:cf:1c:c7:5b:
3b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F7:8D:F9:52:03:2E:16:41:8A:9B:46:42:57:FF:A3:ED:10:6E:82
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/_veN-VIDLhZBiptGQlf_o-0QboI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.141.0/24
87.120.191.0/24
87.121.70.0/23
87.121.88.0/24
87.121.144.0/23
93.123.47.0/24
94.156.11.0/24
94.156.162.0-94.156.165.255
141.98.1.0/24
212.73.149.0/24
Signature Algorithm: sha256WithRSAEncryption
50:37:35:6d:d0:a4:5c:fa:f9:50:1b:f4:20:a0:ff:60:6c:9b:
b2:ff:f2:b4:ad:cb:43:54:b6:dd:3d:90:1c:50:c6:29:36:94:
3e:5f:f6:e3:37:6f:ae:e6:30:e6:48:4b:74:bc:b3:1f:e6:6e:
08:c7:e0:b5:78:1f:4a:5f:8e:8f:7a:d8:69:86:b5:56:bf:8f:
31:53:a3:29:9b:68:8b:eb:cb:af:d1:96:14:35:0e:a9:6e:3b:
e4:c8:62:62:f6:50:b9:fe:29:e6:c8:72:9f:45:d9:ce:67:70:
04:ed:bd:d0:ea:1c:42:82:c3:30:0c:9f:8f:af:85:0a:6b:5a:
d8:68:1c:8b:cd:6a:b0:80:07:f0:4d:13:29:05:24:ea:98:c5:
73:c9:2c:fd:b5:ea:b2:6d:4a:3f:85:f7:4e:8b:65:fc:3a:c9:
d1:35:c9:01:62:9b:ed:51:63:89:9e:80:0d:54:f4:69:ba:41:
7e:47:92:66:1a:1d:1c:95:92:9a:f3:f6:40:cf:ce:6d:16:f0:
1a:f8:7d:44:36:69:23:49:8e:cf:e1:67:f7:ea:de:2d:9e:43:
f7:ed:f0:0b:5f:46:5f:73:d0:31:7d:f3:73:59:99:c5:af:48:
b9:5d:ca:5a:2b:02:19:f3:43:00:b2:9d:ae:6c:7c:7a:c4:d8:
8c:db:81:ac
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 17 09:28:53 2025 by rpki-client