Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/d3be70-ddf1-48f5-866f-ea67a98625fe/1/9Npjyr6bGOl7LzXEuEJ48N6JFAc.roa
File: 9Npjyr6bGOl7LzXEuEJ48N6JFAc.roa (raw, json)
Hash identifier: /dT7lMwBMo+PrykBEZA+p4IamRrFoSPvefWnNzrlQ0A=
Subject key identifier: F4:DA:63:CA:BE:9B:18:E9:7B:2F:35:C4:B8:42:78:F0:DE:89:14:07
Certificate issuer: /CN=b914166b685ac015b94126cdb8b18c83a12ed862
Certificate serial: 01955C4EDE2C756171C0370F16199AEDF412
Authority key identifier: B9:14:16:6B:68:5A:C0:15:B9:41:26:CD:B8:B1:8C:83:A1:2E:D8:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRQWa2hawBW5QSbNuLGMg6Eu2GI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/d3be70-ddf1-48f5-866f-ea67a98625fe/1/9Npjyr6bGOl7LzXEuEJ48N6JFAc.roa
Signing time: Mon 03 Mar 2025 14:00:27 +0000
ROA not before: Mon 03 Mar 2025 14:00:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47583
IP address blocks: 69.62.64.0/23 maxlen: 24
69.62.66.0/23 maxlen: 24
69.62.68.0/22 maxlen: 24
69.62.72.0/21 maxlen: 24
69.62.80.0/22 maxlen: 24
69.62.84.0/23 maxlen: 24
69.62.88.0/21 maxlen: 24
69.62.96.0/21 maxlen: 24
69.62.104.0/24 maxlen: 24
69.62.105.0/24 maxlen: 24
69.62.106.0/23 maxlen: 24
69.62.108.0/22 maxlen: 24
69.62.112.0/22 maxlen: 24
69.62.116.0/22 maxlen: 24
69.62.120.0/23 maxlen: 24
69.62.122.0/24 maxlen: 24
69.62.123.0/24 maxlen: 24
69.62.124.0/24 maxlen: 24
69.62.126.0/23 maxlen: 24
103.199.184.0/22 maxlen: 24
194.164.148.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Mar 2025 13:48:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5c:4e:de:2c:75:61:71:c0:37:0f:16:19:9a:ed:f4:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b914166b685ac015b94126cdb8b18c83a12ed862
Validity
Not Before: Mar 3 14:00:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f4da63cabe9b18e97b2f35c4b84278f0de891407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:21:9d:46:d9:44:dd:cd:07:1f:d8:26:28:15:
78:e4:a7:32:b6:4b:11:01:ce:ba:29:da:22:91:74:
d3:9a:1f:f8:32:40:88:7b:f3:90:68:47:1c:5b:01:
02:cd:1d:33:10:76:9b:c7:3e:7e:3b:c8:0f:b0:0e:
c3:b4:fa:da:28:a9:08:bd:06:41:35:f9:51:d6:1a:
23:cc:c0:36:6b:6a:c7:c4:dd:28:a3:95:a1:85:f5:
8c:0b:3f:d8:c0:8f:35:9f:30:1c:df:09:00:81:ee:
78:66:c8:64:10:a0:25:53:47:ab:22:db:fe:43:8b:
94:be:dd:81:65:4f:18:bc:3c:da:cf:c7:81:c5:1b:
62:b8:9b:44:a5:82:12:83:a3:15:8f:dc:53:b1:0d:
a7:db:23:9e:8d:e0:d7:49:ce:03:c5:98:ba:76:12:
34:fe:06:18:a2:0f:f9:93:49:70:0e:08:04:c1:c5:
4a:a0:10:3c:15:ce:e3:ca:2a:b3:10:03:6c:2f:04:
3f:1f:ea:53:2e:ed:f6:ec:43:d0:63:bd:ef:00:c7:
8d:ac:91:c5:81:14:ee:4a:ed:fe:6a:e5:02:3d:74:
8f:4d:96:a9:8f:7e:c8:15:d2:e8:14:50:d1:a3:1c:
ba:b4:a0:47:7c:f3:de:11:1c:ea:55:55:be:af:ea:
05:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:DA:63:CA:BE:9B:18:E9:7B:2F:35:C4:B8:42:78:F0:DE:89:14:07
X509v3 Authority Key Identifier:
keyid:B9:14:16:6B:68:5A:C0:15:B9:41:26:CD:B8:B1:8C:83:A1:2E:D8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRQWa2hawBW5QSbNuLGMg6Eu2GI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/d3be70-ddf1-48f5-866f-ea67a98625fe/1/9Npjyr6bGOl7LzXEuEJ48N6JFAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/d3be70-ddf1-48f5-866f-ea67a98625fe/1/uRQWa2hawBW5QSbNuLGMg6Eu2GI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
69.62.64.0-69.62.85.255
69.62.88.0-69.62.124.255
69.62.126.0/23
103.199.184.0/22
194.164.148.0/22
Signature Algorithm: sha256WithRSAEncryption
94:91:9f:98:12:ba:82:d7:c7:c1:83:fb:18:5c:a0:3b:42:6c:
39:1f:cc:8d:26:1d:c6:a7:18:e1:0b:79:19:c5:43:43:cd:e2:
21:0b:74:cc:04:d8:03:b0:49:e5:a7:8b:20:b1:02:e2:ad:2b:
5b:96:1b:5f:1c:1d:6d:02:b4:5e:ff:be:85:1f:27:6e:d6:86:
04:8f:ac:33:3a:68:6e:b1:e9:cd:9a:58:26:fb:c7:f7:e8:5f:
85:37:78:9f:8e:16:a7:82:95:e7:36:cc:6d:b5:8a:90:5f:0d:
37:2d:72:38:b6:ec:28:62:b0:5e:ce:7d:f5:16:29:31:0c:ac:
86:0c:94:dc:84:0b:e3:43:d1:53:b4:7e:18:ad:9f:02:ec:e0:
6d:10:39:14:75:3e:1f:67:14:c7:24:d0:22:90:c2:af:7c:d9:
c1:70:11:9c:3c:14:ec:a6:c2:d5:f6:11:e3:c6:3a:5c:73:0e:
58:50:e3:f0:9f:a3:d4:cc:4c:5b:10:b2:07:f5:b2:e7:19:c9:
32:7e:a4:ea:a8:74:7e:7d:58:bc:59:2d:45:6e:1b:fd:1b:2b:
1d:c7:4d:84:a9:c8:d5:71:6a:02:9b:f9:19:fc:58:a5:31:d4:
9e:0c:84:f0:a8:2f:85:6a:54:86:dc:0d:4a:0c:a4:52:3f:f2:
c2:90:16:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 20:20:59 2025 by rpki-client