Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/v6CQe2ZqhSWJy2I2FySguHcRz8o.roa
File: v6CQe2ZqhSWJy2I2FySguHcRz8o.roa (raw, json)
Hash identifier: iwHP4f0O7fAcv4Vwek7zP1dz7jOPdlMan+Z+bLp39NI=
Subject key identifier: BF:A0:90:7B:66:6A:85:25:89:CB:62:36:17:24:A0:B8:77:11:CF:CA
Certificate issuer: /CN=ec3543aa00373e9e4d10e64c83d3779b378888c1
Certificate serial: 019425FBF90EFB75023E91C0D7C2B969210E
Authority key identifier: EC:35:43:AA:00:37:3E:9E:4D:10:E6:4C:83:D3:77:9B:37:88:88:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7DVDqgA3Pp5NEOZMg9N3mzeIiME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/v6CQe2ZqhSWJy2I2FySguHcRz8o.roa
Signing time: Thu 02 Jan 2025 07:47:37 +0000
ROA not before: Thu 02 Jan 2025 07:47:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15598
IP address blocks: 62.146.0.0/22 maxlen: 22
62.146.4.0/22 maxlen: 22
62.146.8.0/22 maxlen: 22
62.146.12.0/22 maxlen: 22
62.146.16.0/22 maxlen: 22
62.146.17.0/24 maxlen: 24
62.146.20.0/22 maxlen: 22
62.146.24.0/22 maxlen: 22
62.146.28.0/22 maxlen: 22
62.146.32.0/22 maxlen: 22
62.146.36.0/22 maxlen: 22
62.146.40.0/22 maxlen: 22
62.146.44.0/22 maxlen: 22
62.146.48.0/22 maxlen: 22
62.146.52.0/22 maxlen: 22
62.146.56.0/22 maxlen: 22
62.146.60.0/22 maxlen: 22
62.146.64.0/22 maxlen: 22
62.146.68.0/22 maxlen: 22
62.146.72.0/22 maxlen: 22
62.146.76.0/22 maxlen: 22
62.146.80.0/22 maxlen: 22
62.146.84.0/22 maxlen: 22
62.146.88.0/22 maxlen: 22
62.146.92.0/22 maxlen: 22
62.146.96.0/22 maxlen: 22
62.146.100.0/22 maxlen: 22
62.146.104.0/22 maxlen: 22
62.146.108.0/22 maxlen: 22
62.146.112.0/22 maxlen: 22
62.146.116.0/22 maxlen: 22
62.146.120.0/22 maxlen: 22
62.146.124.0/22 maxlen: 22
62.146.128.0/22 maxlen: 22
62.146.132.0/22 maxlen: 22
62.146.136.0/22 maxlen: 22
62.146.140.0/22 maxlen: 22
62.146.144.0/22 maxlen: 22
62.146.148.0/22 maxlen: 22
62.146.152.0/22 maxlen: 22
62.146.156.0/22 maxlen: 22
62.146.160.0/22 maxlen: 22
62.146.184.0/22 maxlen: 22
62.146.188.0/22 maxlen: 22
62.146.192.0/22 maxlen: 22
62.146.196.0/22 maxlen: 22
62.146.200.0/22 maxlen: 22
62.146.204.0/22 maxlen: 22
62.146.208.0/22 maxlen: 22
62.146.212.0/22 maxlen: 22
62.146.216.0/22 maxlen: 22
62.146.220.0/22 maxlen: 22
62.146.240.0/22 maxlen: 22
80.190.4.0/22 maxlen: 22
80.190.8.0/21 maxlen: 21
80.190.16.0/21 maxlen: 21
80.190.24.0/21 maxlen: 21
80.190.32.0/21 maxlen: 21
80.190.40.0/21 maxlen: 21
80.190.48.0/21 maxlen: 21
80.190.56.0/21 maxlen: 21
80.190.64.0/21 maxlen: 21
80.190.88.0/21 maxlen: 21
80.190.96.0/21 maxlen: 21
80.190.104.0/21 maxlen: 21
80.190.112.0/21 maxlen: 21
80.190.120.0/21 maxlen: 21
80.190.128.0/21 maxlen: 21
80.190.136.0/21 maxlen: 21
80.190.144.0/21 maxlen: 21
80.190.152.0/21 maxlen: 21
80.190.160.0/21 maxlen: 21
80.190.168.0/21 maxlen: 21
80.190.176.0/21 maxlen: 21
80.190.184.0/21 maxlen: 21
80.190.192.0/21 maxlen: 21
80.190.200.0/21 maxlen: 21
80.190.208.0/21 maxlen: 21
80.190.216.0/21 maxlen: 21
80.190.224.0/21 maxlen: 21
80.190.232.0/21 maxlen: 21
80.190.240.0/21 maxlen: 21
80.190.248.0/21 maxlen: 21
81.17.104.0/22 maxlen: 22
81.17.108.0/22 maxlen: 22
81.17.112.0/22 maxlen: 22
81.17.116.0/22 maxlen: 22
82.149.64.0/22 maxlen: 22
82.149.68.0/22 maxlen: 22
82.149.84.0/22 maxlen: 22
82.149.88.0/22 maxlen: 22
82.149.92.0/22 maxlen: 22
185.234.108.0/24 maxlen: 24
212.112.224.0/19 maxlen: 19
212.123.96.0/19 maxlen: 19
2a01:138::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 21 Feb 2025 12:07:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fb:f9:0e:fb:75:02:3e:91:c0:d7:c2:b9:69:21:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec3543aa00373e9e4d10e64c83d3779b378888c1
Validity
Not Before: Jan 2 07:47:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bfa0907b666a852589cb62361724a0b87711cfca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e8:fe:15:7d:e0:64:73:44:6c:18:e0:18:40:
92:37:50:0c:37:f6:8e:7a:75:67:8d:6d:ca:42:52:
72:f2:0f:91:9a:1e:0f:46:1e:7e:da:ce:3b:bb:b4:
13:32:f6:27:da:ed:a0:7a:33:a0:55:b3:e7:30:3f:
b4:6a:a3:62:a5:5c:7a:dc:85:59:78:2a:a7:fb:99:
1a:59:e6:2f:2a:50:fd:ec:8c:53:48:f2:62:37:4c:
9f:88:0e:15:bd:5e:61:27:1b:14:19:bd:e7:1e:c5:
1e:5b:8f:43:29:29:cd:cc:87:4f:85:c2:00:00:10:
47:42:78:71:dc:ff:f1:d8:d5:6f:bf:91:41:35:3c:
ae:df:c8:92:5d:68:33:fa:bf:b8:c3:86:85:45:da:
19:d6:6c:0f:4f:ca:e8:0d:92:5f:c1:15:4c:4d:d2:
56:db:33:ae:87:42:57:fc:d4:69:d8:24:ce:f6:3e:
20:0e:78:38:15:0e:ee:23:96:76:c6:0d:20:f5:46:
7b:9e:9d:c1:47:3b:20:29:11:fe:0e:68:e3:eb:60:
aa:43:48:97:1b:77:6b:d1:22:db:60:2d:0b:f0:99:
77:3c:a8:05:2c:57:c9:d3:9c:70:fc:72:28:9d:17:
f6:54:30:d0:51:72:0e:e4:06:28:9f:41:66:b3:0a:
31:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:A0:90:7B:66:6A:85:25:89:CB:62:36:17:24:A0:B8:77:11:CF:CA
X509v3 Authority Key Identifier:
keyid:EC:35:43:AA:00:37:3E:9E:4D:10:E6:4C:83:D3:77:9B:37:88:88:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7DVDqgA3Pp5NEOZMg9N3mzeIiME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/v6CQe2ZqhSWJy2I2FySguHcRz8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/7DVDqgA3Pp5NEOZMg9N3mzeIiME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.146.0.0-62.146.163.255
62.146.184.0-62.146.223.255
62.146.240.0/22
80.190.4.0-80.190.71.255
80.190.88.0-80.190.255.255
81.17.104.0-81.17.119.255
82.149.64.0/21
82.149.84.0-82.149.95.255
185.234.108.0/24
212.112.224.0/19
212.123.96.0/19
IPv6:
2a01:138::/32
Signature Algorithm: sha256WithRSAEncryption
5a:b1:a4:3f:22:03:f7:40:99:74:9e:ec:fa:e7:ab:88:de:c1:
00:c4:15:eb:7c:82:10:34:69:c3:c7:58:88:68:22:7b:0b:52:
aa:aa:04:4c:1f:ea:f8:b6:1f:73:a2:8b:4c:f3:b7:f0:71:9a:
3f:ff:6a:d4:29:74:87:ce:41:59:4f:df:fc:85:52:bd:61:79:
b4:03:a1:9a:1c:f7:e8:8d:d4:e6:cf:c5:5c:7e:30:08:84:3f:
14:82:0e:f3:5a:78:a3:72:e6:8c:23:d0:3b:a9:d7:13:ea:1d:
8f:f5:ce:6d:ed:c0:f6:83:e9:3c:bf:e3:d8:e9:4c:85:1f:a4:
08:c8:88:34:c6:66:60:e3:0d:64:69:9d:4d:77:dc:b8:29:77:
21:23:7e:a7:96:e6:4b:80:5f:0a:84:15:59:ba:4c:a4:dd:e4:
ab:8a:6f:6f:81:f9:2e:cd:05:45:ab:72:04:cb:1e:1b:7c:ae:
35:1a:86:10:11:96:95:62:ba:c5:3e:1b:27:7e:2e:96:91:28:
ba:dc:3b:ce:4c:9f:70:a8:00:0f:27:51:72:55:cb:a0:44:19:
d4:67:b5:a8:7f:c8:4e:33:38:2b:17:3d:42:97:3c:c3:14:5c:
00:62:c8:c2:c5:22:a6:d2:b8:07:ba:a1:03:3c:53:88:66:be:
d7:53:5c:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:02:50 2025 by rpki-client