Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/24c324-a15e-4cd0-94c1-73ff40959348/1/YbBUuml2EuE7G6D90Ahkbg--82Y.roa
File: YbBUuml2EuE7G6D90Ahkbg--82Y.roa (raw, json)
Hash identifier: pwn0qf+IDkpjfbNroP8lNl3nZ3Rj7EtomuXV6/XGrKg=
Subject key identifier: 61:B0:54:BA:69:76:12:E1:3B:1B:A0:FD:D0:08:64:6E:0F:BE:F3:66
Certificate issuer: /CN=567190854786a16afa6b0ec78dfb0620abaacfef
Certificate serial: 0194D57DEA962CBB9010488158246DE61F93
Authority key identifier: 56:71:90:85:47:86:A1:6A:FA:6B:0E:C7:8D:FB:06:20:AB:AA:CF:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VnGQhUeGoWr6aw7HjfsGIKuqz-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/24c324-a15e-4cd0-94c1-73ff40959348/1/YbBUuml2EuE7G6D90Ahkbg--82Y.roa
Signing time: Wed 05 Feb 2025 09:43:06 +0000
ROA not before: Wed 05 Feb 2025 09:43:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20712
IP address blocks: 5.172.160.0/20 maxlen: 24
5.172.170.0/24 maxlen: 24
81.2.64.0/18 maxlen: 24
81.187.0.0/16 maxlen: 24
81.187.161.0/24 maxlen: 24
90.155.0.0/18 maxlen: 24
90.155.64.0/19 maxlen: 20
90.155.96.0/20 maxlen: 20
178.238.144.0/20 maxlen: 24
194.4.172.0/22 maxlen: 24
217.169.0.0/19 maxlen: 24
2001:8b0::/32 maxlen: 63
2001:8b0:a::666/128 maxlen: 128
2001:8b6::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 12 Feb 2025 12:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:d5:7d:ea:96:2c:bb:90:10:48:81:58:24:6d:e6:1f:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=567190854786a16afa6b0ec78dfb0620abaacfef
Validity
Not Before: Feb 5 09:43:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=61b054ba697612e13b1ba0fdd008646e0fbef366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:1d:10:b4:4b:90:a7:9c:b1:e0:e1:27:5a:10:
c5:11:56:3a:b7:e5:a6:b7:0c:b5:c4:72:b8:ae:e0:
bd:f6:85:64:aa:01:ec:1f:7f:ce:34:bc:66:b4:fc:
a4:cc:b7:59:d3:31:e5:ae:a5:0a:52:49:0c:57:c2:
41:38:04:29:92:93:12:32:9b:2b:7c:86:c2:b6:da:
ea:04:f3:ee:39:de:98:82:72:8a:81:58:a6:f2:c1:
e2:2b:33:13:97:cb:4e:5c:d2:72:8d:6d:bd:d4:1e:
74:2b:fa:90:11:19:08:94:10:4c:16:92:c2:c8:4c:
85:49:17:01:6a:60:18:88:54:34:ea:90:eb:9d:d8:
45:73:21:16:eb:85:97:89:3a:61:c3:8e:2e:ce:01:
39:a1:f1:1c:89:bc:d8:92:36:1c:f5:b8:bb:0c:fc:
4a:3b:2c:f6:11:3e:12:f2:f1:7b:34:a1:c6:4e:e9:
91:45:3b:4d:46:21:5d:d5:92:0c:3a:d9:36:11:7d:
85:df:07:2a:c7:52:09:14:bc:72:e3:70:cc:e6:06:
d2:9b:94:41:11:02:d3:fa:30:76:f1:17:b7:ba:e7:
5a:3f:31:79:be:9e:7b:d5:e5:85:35:59:39:89:89:
df:4e:07:d5:e9:03:67:fd:50:41:1a:1a:0d:b5:66:
13:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B0:54:BA:69:76:12:E1:3B:1B:A0:FD:D0:08:64:6E:0F:BE:F3:66
X509v3 Authority Key Identifier:
keyid:56:71:90:85:47:86:A1:6A:FA:6B:0E:C7:8D:FB:06:20:AB:AA:CF:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VnGQhUeGoWr6aw7HjfsGIKuqz-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/24c324-a15e-4cd0-94c1-73ff40959348/1/YbBUuml2EuE7G6D90Ahkbg--82Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/24c324-a15e-4cd0-94c1-73ff40959348/1/VnGQhUeGoWr6aw7HjfsGIKuqz-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.160.0/20
81.2.64.0/18
81.187.0.0/16
90.155.0.0-90.155.111.255
178.238.144.0/20
194.4.172.0/22
217.169.0.0/19
IPv6:
2001:8b0::/32
2001:8b6::/32
Signature Algorithm: sha256WithRSAEncryption
01:a5:4d:aa:78:b0:b8:d5:59:6d:f8:d4:b2:67:13:a9:4f:87:
d7:e7:90:1c:ad:77:e5:8a:6a:05:73:1f:af:26:ec:cb:f6:93:
ad:9f:58:bd:c6:47:9a:85:42:4d:79:82:1a:46:88:76:2f:6c:
ec:d7:ed:95:4c:62:cb:db:7e:cb:18:59:6c:84:91:e5:68:4a:
98:80:88:39:5b:99:25:68:58:15:42:37:b0:92:7e:61:1e:cb:
f7:a5:c7:68:58:4a:8a:3d:4b:a0:86:84:11:da:b7:93:1d:28:
f4:53:20:f1:79:4b:a7:76:ce:1e:3d:3b:73:f7:c6:d5:53:29:
fe:40:4e:ee:84:24:d5:8e:4c:06:da:b6:01:8f:69:e1:d9:cd:
c9:51:72:ef:5a:86:1e:28:69:b8:59:8f:71:b4:ce:dd:40:de:
9f:14:22:54:18:96:62:a8:1f:f1:bb:79:bd:d0:3e:58:06:c5:
36:65:0c:03:e1:f5:ae:ec:6e:df:c4:9a:32:e4:d4:b8:ec:e0:
62:84:e7:92:5b:54:65:d9:f6:96:6b:01:05:9b:5c:2a:d0:88:
97:76:9b:02:12:e1:8e:56:f6:ed:38:0e:4e:7e:0e:a5:df:09:
4a:45:d9:a0:ee:ce:34:c6:d8:7d:14:3c:50:92:98:32:72:09:
8d:be:1d:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:30:47 2025 by rpki-client