Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/W0tHw0I1z_nh0D8287705Idq8Vg.roa
File: W0tHw0I1z_nh0D8287705Idq8Vg.roa (raw, json)
Hash identifier: ssraLwLcPLvlUO2Da+3K+sQOPxe6g6bsP0oQ807zNWA=
Subject key identifier: 5B:4B:47:C3:42:35:CF:F9:E1:D0:3F:36:F3:BE:F4:E4:87:6A:F1:58
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 01913AF1189D7ED15E0D297E4476F4B29DFE
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/W0tHw0I1z_nh0D8287705Idq8Vg.roa
Signing time: Sat 10 Aug 2024 06:19:24 +0000
ROA not before: Sat 10 Aug 2024 06:19:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6424
IP address blocks: 103.243.124.0/22 maxlen: 22
146.19.95.0/24 maxlen: 24
146.19.249.0/24 maxlen: 24
185.112.251.0/24 maxlen: 24
185.166.144.0/24 maxlen: 24
188.93.192.0/21 maxlen: 24
188.93.196.0/24 maxlen: 24
188.93.198.0/24 maxlen: 24
188.93.199.0/24 maxlen: 24
193.107.13.0/24 maxlen: 24
193.109.184.0/21 maxlen: 24
193.109.184.0/24 maxlen: 24
193.163.151.0/24 maxlen: 24
212.52.23.0/24 maxlen: 24
2001:b18::/32 maxlen: 48
2001:b18:a::/48 maxlen: 48
2001:b18:b::/48 maxlen: 48
2001:b18:1000::/48 maxlen: 48
2001:b18:1001::/48 maxlen: 48
2001:b18:1002::/48 maxlen: 48
2001:b18:1008::/48 maxlen: 48
2001:b18:1012::/48 maxlen: 48
2001:b18:1016::/48 maxlen: 48
2001:b18:1018::/48 maxlen: 48
2001:b18:1020::/48 maxlen: 48
2001:b18:1031::/48 maxlen: 48
2a0d:82c0::/29 maxlen: 48
2a0d:82c0::/32 maxlen: 32
2a0d:82c7:d::/48 maxlen: 48
2a0e:5f00::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 10 Aug 2024 07:22:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:3a:f1:18:9d:7e:d1:5e:0d:29:7e:44:76:f4:b2:9d:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Aug 10 06:19:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b4b47c34235cff9e1d03f36f3bef4e4876af158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a9:6c:2b:93:1f:6f:8c:80:fb:71:2c:77:b3:
92:3c:79:72:28:f7:8e:c9:6e:c7:7d:8d:17:0c:9c:
96:a2:1e:64:a5:ba:1b:e9:2e:74:d3:b4:76:f5:a7:
ae:2f:4e:61:b1:5e:72:17:f5:ec:0e:2e:91:7a:70:
02:a4:88:28:de:f6:55:e1:7b:07:3e:f6:33:00:f6:
1b:a1:40:d5:9e:c3:be:c1:07:9a:27:18:96:ea:c7:
58:25:a7:91:43:98:75:a5:85:b6:86:21:ea:16:1f:
b3:a0:59:f6:9e:2f:a2:34:18:43:8d:36:b7:ff:d0:
fc:4f:d2:ba:5c:b6:f9:24:d1:db:17:83:29:00:01:
7b:93:6f:00:82:ea:22:75:54:dd:13:49:6e:dd:7e:
1a:bc:3e:00:8a:85:e9:c1:b6:f4:cf:20:d7:d2:94:
38:fa:21:d8:9d:37:23:89:22:2a:7b:03:4a:ee:28:
e5:ba:a0:f2:b5:7a:6b:6f:e3:24:9e:32:03:15:a1:
13:3e:27:54:8b:45:d4:b2:01:fd:3d:4f:a3:d9:5b:
0a:55:21:79:63:64:f9:e2:46:9b:8b:49:40:4e:58:
c5:f4:9d:ed:64:bb:5d:4c:6a:77:d9:6d:1c:f3:f8:
37:a6:08:77:77:e5:ec:f1:bd:6c:63:db:05:4e:f6:
d4:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:4B:47:C3:42:35:CF:F9:E1:D0:3F:36:F3:BE:F4:E4:87:6A:F1:58
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/W0tHw0I1z_nh0D8287705Idq8Vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.243.124.0/22
146.19.95.0/24
146.19.249.0/24
185.112.251.0/24
185.166.144.0/24
188.93.192.0/21
193.107.13.0/24
193.109.184.0/21
193.163.151.0/24
212.52.23.0/24
IPv6:
2001:b18::/32
2a0d:82c0::/29
2a0e:5f00::/32
Signature Algorithm: sha256WithRSAEncryption
6d:0a:f7:85:d3:e9:5d:42:b6:75:30:90:78:95:ef:cf:17:ea:
5a:9a:d8:b6:e4:ee:b4:09:51:3b:6a:76:5c:9f:77:bf:14:2e:
20:8c:96:15:7b:38:04:a3:e9:ca:21:40:e9:f8:45:d9:0d:17:
4b:82:3a:bb:83:05:f1:30:85:be:93:8a:b7:a6:6e:d5:e7:be:
10:47:d3:f9:6f:0d:79:0e:1a:e8:18:9f:5c:45:99:e7:2d:ea:
9a:8b:58:83:26:e9:a3:b6:44:cd:75:0f:b4:10:87:fe:49:70:
f8:ae:8f:00:fd:b0:5f:e4:d7:7f:b6:b9:7d:04:e4:71:c9:9a:
5a:8e:2a:44:a4:88:7f:fb:d2:4f:60:6f:8d:c7:70:f9:a0:ee:
db:95:b8:33:2c:69:7e:86:37:b9:10:5a:21:7a:76:2a:ad:ea:
70:2a:94:a2:76:ab:eb:dd:5d:a2:23:e7:98:ec:5d:2a:2b:bf:
24:07:7b:07:f8:22:90:3c:94:3d:13:df:47:91:cc:58:2a:52:
9f:5b:86:0c:a6:15:ca:0e:e3:c5:85:72:43:34:ac:c8:9e:96:
d8:db:59:95:ff:57:0f:69:2a:ce:08:2a:ae:79:3b:cf:cb:87:
77:fc:f4:9a:ce:99:4a:53:bb:2a:b3:21:34:fa:4c:b1:ab:8f:
ec:87:0b:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:33:43 2025 by rpki-client