Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/0HHyYI73ZDa-u4NklkFS8LCOLJc.roa
File: 0HHyYI73ZDa-u4NklkFS8LCOLJc.roa (raw, json)
Hash identifier: sS06BHfJBd+hB1TfVWEuYigMgWomukh1ew28pwX2jk4=
Subject key identifier: D0:71:F2:60:8E:F7:64:36:BE:BB:83:64:96:41:52:F0:B0:8E:2C:97
Certificate issuer: /CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865
Certificate serial: 01929A59B02B9A037FB722C2486F43512411
Authority key identifier: C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/0HHyYI73ZDa-u4NklkFS8LCOLJc.roa
Signing time: Thu 17 Oct 2024 12:00:21 +0000
ROA not before: Thu 17 Oct 2024 12:00:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206618
IP address blocks: 143.163.1.0/24 maxlen: 24
143.163.12.0/22 maxlen: 22
143.163.16.0/23 maxlen: 23
143.163.22.0/24 maxlen: 24
143.163.66.0/23 maxlen: 23
143.163.66.0/24 maxlen: 24
143.163.67.0/24 maxlen: 24
193.23.96.0/24 maxlen: 24
194.114.32.0/23 maxlen: 23
194.114.40.0/23 maxlen: 23
194.114.61.0/24 maxlen: 24
194.114.62.0/23 maxlen: 23
194.114.62.0/24 maxlen: 24
194.114.63.0/24 maxlen: 24
194.114.64.0/23 maxlen: 23
194.114.66.0/23 maxlen: 23
194.114.70.0/23 maxlen: 23
194.114.74.0/24 maxlen: 24
194.114.77.0/24 maxlen: 24
194.114.78.0/23 maxlen: 23
194.114.80.0/23 maxlen: 23
194.114.82.0/24 maxlen: 24
194.114.85.0/24 maxlen: 24
194.114.94.0/23 maxlen: 23
194.114.96.0/22 maxlen: 22
194.114.96.0/23 maxlen: 23
194.114.96.0/24 maxlen: 24
194.114.97.0/24 maxlen: 24
194.114.98.0/23 maxlen: 23
194.114.100.0/22 maxlen: 22
194.114.104.0/21 maxlen: 21
194.114.104.0/24 maxlen: 24
194.114.112.0/22 maxlen: 22
194.114.116.0/22 maxlen: 22
194.114.125.0/24 maxlen: 24
194.114.126.0/24 maxlen: 24
2a01:4dc0::/42 maxlen: 42
Validation: Failed, certificate revoked on Thu 02 Jan 2025 11:49:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9a:59:b0:2b:9a:03:7f:b7:22:c2:48:6f:43:51:24:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865
Validity
Not Before: Oct 17 12:00:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d071f2608ef76436bebb8364964152f0b08e2c97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:12:5d:bf:08:a7:d6:d2:16:ed:b0:4a:d8:0a:
92:96:c1:18:87:fe:75:8a:f2:e9:4c:17:dc:fc:11:
d0:ac:82:00:3c:94:a9:d9:78:5b:0f:d2:51:fa:17:
c3:40:1b:71:ae:23:f4:14:b9:e6:37:a3:36:94:1a:
19:a5:76:fe:1e:41:9e:6d:2e:f5:0a:5c:20:27:b7:
e7:9e:fb:42:67:9f:5f:b7:f6:5e:79:0b:73:55:84:
fd:88:c9:48:e8:eb:27:fd:0b:73:88:72:a0:3f:a4:
f9:b7:9b:3a:19:86:9b:13:53:96:91:16:62:ad:92:
5b:ef:af:1a:19:5d:d5:cd:04:dc:23:4f:5d:41:0c:
d1:66:ee:a2:9a:a9:06:1a:c5:c7:df:e3:73:1a:4e:
11:69:61:53:1f:fc:59:0f:c5:56:0c:a4:3e:0b:1b:
54:fb:ec:e6:6b:a0:78:b6:5a:21:bf:36:17:de:d7:
90:de:a0:be:e2:72:c2:1c:60:ee:0c:fb:9d:4e:6b:
02:18:45:24:fe:62:41:5c:9a:9f:d2:6d:ce:52:bd:
ae:a3:c9:71:f5:6b:03:02:76:91:d2:20:ab:11:1d:
75:97:9b:da:b0:78:bd:9b:7d:83:e7:0c:02:a7:97:
67:8f:35:0d:bd:f9:f0:a3:9d:16:b3:54:ad:0d:51:
fc:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:71:F2:60:8E:F7:64:36:BE:BB:83:64:96:41:52:F0:B0:8E:2C:97
X509v3 Authority Key Identifier:
keyid:C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/0HHyYI73ZDa-u4NklkFS8LCOLJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/x_BLeLLu35mO3VzB6IZxyNEPGGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.163.1.0/24
143.163.12.0-143.163.17.255
143.163.22.0/24
143.163.66.0/23
193.23.96.0/24
194.114.32.0/23
194.114.40.0/23
194.114.61.0-194.114.67.255
194.114.70.0/23
194.114.74.0/24
194.114.77.0-194.114.82.255
194.114.85.0/24
194.114.94.0-194.114.119.255
194.114.125.0-194.114.126.255
IPv6:
2a01:4dc0::/42
Signature Algorithm: sha256WithRSAEncryption
94:79:7d:b0:3e:a4:c0:77:55:d7:39:ef:3f:f6:4c:b6:24:06:
49:72:ed:94:d3:92:ba:bc:2e:13:b6:e7:d0:e1:be:b3:46:84:
5a:18:13:7b:e4:cf:e9:98:d5:fc:7b:e8:73:5f:70:68:f1:57:
6d:d2:cd:8e:8d:aa:b7:ca:0a:29:5b:5d:93:ec:46:df:d2:cb:
d1:2f:71:35:60:d5:6e:06:9a:6a:0c:28:ce:2b:f8:d4:4f:54:
45:2d:4f:c4:66:07:61:dd:49:03:37:87:57:3f:79:1d:63:a3:
18:3e:56:82:d4:5e:9a:a6:8d:c4:fe:eb:4b:2a:3a:c4:27:4e:
ed:9a:d1:a9:14:b5:f6:66:a0:69:13:fe:5c:c6:46:f1:94:72:
f7:d4:52:73:55:a7:e1:3f:ee:c1:8b:e7:eb:c0:25:a2:1f:ee:
67:49:6f:62:18:1d:6d:ac:4e:35:fd:96:70:5e:85:47:63:87:
50:be:7c:6b:ec:e8:13:ac:f9:6d:06:cf:02:e3:15:56:c2:92:
fc:68:90:d5:10:65:1f:a0:f0:ab:74:0b:e3:a3:35:1e:bd:5e:
b1:95:83:cd:b8:4a:0b:b0:85:7e:43:86:00:a0:63:d0:85:b5:
1b:d1:79:5f:9e:13:0b:86:c7:10:c6:b5:5c:64:7f:21:e6:7f:
19:d4:49:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 01:53:40 2025 by rpki-client