Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/V5t2FC9eMsAp_W60KbwQa7ETGyQ.roa
File: V5t2FC9eMsAp_W60KbwQa7ETGyQ.roa (raw, json)
Hash identifier: ohTvV/HbVa0HgqoXrZAwYBntOcxbDdjWGHXea+dOuv8=
Subject key identifier: 57:9B:76:14:2F:5E:32:C0:29:FD:6E:B4:29:BC:10:6B:B1:13:1B:24
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018EE609D2048D9A2F50B829CEF89D613335
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/V5t2FC9eMsAp_W60KbwQa7ETGyQ.roa
Signing time: Tue 16 Apr 2024 08:33:07 +0000
ROA not before: Tue 16 Apr 2024 08:33:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50835
IP address blocks: 37.97.120.0/24 maxlen: 24
37.97.121.0/24 maxlen: 24
46.173.248.0/22 maxlen: 24
46.173.254.0/23 maxlen: 23
64.43.120.0/22 maxlen: 24
77.36.66.0/23 maxlen: 23
81.161.8.0/22 maxlen: 22
81.161.48.0/22 maxlen: 22
91.193.30.0/23 maxlen: 23
91.200.134.0/23 maxlen: 23
91.224.212.0/24 maxlen: 24
91.232.19.0/24 maxlen: 24
91.232.56.0/23 maxlen: 23
91.232.226.0/24 maxlen: 24
91.233.200.0/24 maxlen: 24
91.236.76.0/24 maxlen: 24
91.238.39.0/24 maxlen: 24
91.239.226.0/24 maxlen: 24
91.246.192.0/22 maxlen: 24
91.246.203.0/24 maxlen: 24
93.120.40.0/23 maxlen: 23
109.207.128.0/24 maxlen: 24
109.207.130.0/24 maxlen: 24
109.207.132.0/24 maxlen: 24
176.96.94.0/24 maxlen: 24
176.110.112.0/23 maxlen: 23
176.113.180.0/22 maxlen: 22
176.115.236.0/22 maxlen: 24
176.116.228.0/24 maxlen: 24
176.116.236.0/24 maxlen: 24
176.121.108.0/23 maxlen: 24
176.121.110.0/23 maxlen: 24
193.36.220.0/22 maxlen: 22
194.33.66.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 16 Apr 2024 10:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e6:09:d2:04:8d:9a:2f:50:b8:29:ce:f8:9d:61:33:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Apr 16 08:33:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=579b76142f5e32c029fd6eb429bc106bb1131b24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:17:ea:0c:4f:83:6d:f0:43:c6:e8:25:c3:5d:
86:d5:a4:e7:5c:a6:5a:22:9a:8b:f9:64:a4:43:b5:
f5:61:72:7a:11:1c:74:21:74:d0:98:f2:39:4f:c0:
73:13:72:8d:88:f5:c4:d9:d0:21:72:45:33:67:0f:
2a:04:64:93:80:39:19:1b:4a:c2:ed:0e:91:63:b2:
e9:5c:1b:04:c0:4b:40:a3:fc:55:44:90:fd:da:70:
a6:c7:b5:75:ea:bc:79:d1:b8:71:0d:d3:6a:82:58:
96:b5:15:f3:e8:23:6d:0a:bd:be:28:24:2e:c0:1c:
3e:d8:fe:c0:8c:81:cd:c3:5b:e0:5f:ae:14:6b:e3:
f9:8e:67:7f:cc:9d:ae:7e:fd:b6:bf:7f:c4:c7:4f:
d7:d9:67:4e:33:31:a0:12:e0:18:0c:f0:ff:25:c5:
a6:39:c1:71:92:a9:08:c8:6c:e9:d9:11:4e:07:8f:
3b:2f:76:5b:5d:75:2f:61:46:5e:0f:18:fa:97:d5:
94:83:e1:45:07:4a:86:01:0a:fe:de:84:ff:9b:c3:
2d:9e:a4:56:66:bf:4d:07:cd:27:fb:b9:19:dc:b9:
64:77:ec:7c:00:1f:29:9a:57:dd:18:5a:82:65:fc:
06:f4:01:82:9b:9f:3c:c3:a9:0c:7d:d4:f1:a1:0d:
61:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:9B:76:14:2F:5E:32:C0:29:FD:6E:B4:29:BC:10:6B:B1:13:1B:24
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/V5t2FC9eMsAp_W60KbwQa7ETGyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.97.120.0/23
46.173.248.0/22
46.173.254.0/23
64.43.120.0/22
77.36.66.0/23
81.161.8.0/22
81.161.48.0/22
91.193.30.0/23
91.200.134.0/23
91.224.212.0/24
91.232.19.0/24
91.232.56.0/23
91.232.226.0/24
91.233.200.0/24
91.236.76.0/24
91.238.39.0/24
91.239.226.0/24
91.246.192.0/22
91.246.203.0/24
93.120.40.0/23
109.207.128.0/24
109.207.130.0/24
109.207.132.0/24
176.96.94.0/24
176.110.112.0/23
176.113.180.0/22
176.115.236.0/22
176.116.228.0/24
176.116.236.0/24
176.121.108.0/22
193.36.220.0/22
194.33.66.0/23
Signature Algorithm: sha256WithRSAEncryption
77:c8:50:35:49:eb:ce:5d:d3:b0:3b:ed:bb:bb:f5:98:3f:8f:
c4:ae:0f:81:e9:d3:dc:c4:0f:cd:39:83:3c:d9:0b:ac:61:00:
d4:06:d2:ca:c9:ac:79:1c:30:cf:41:89:e7:82:b3:8e:7a:f9:
6d:19:e1:92:59:38:5b:32:d7:76:2f:da:51:62:ee:68:27:b1:
de:d6:09:fa:d4:de:1b:f6:c2:e9:f1:e7:42:86:6f:41:c8:58:
4e:02:6d:99:0a:64:c5:cb:c2:a9:c7:c7:2e:ad:d1:02:68:9b:
69:fd:7f:0d:0d:98:3a:00:1b:f8:dc:a1:6a:d3:a5:19:a4:9d:
4d:a6:46:68:dc:87:76:62:33:89:c1:39:a4:5d:66:ea:1e:01:
25:ea:b7:1c:fa:e5:42:ad:2b:18:27:28:99:80:ef:ce:7b:e3:
82:43:aa:85:ec:a4:78:42:7b:b5:de:40:66:af:0c:59:38:35:
2c:42:a8:79:2b:2f:f7:28:cf:12:ec:fd:47:43:45:52:43:54:
eb:38:09:62:b5:38:cf:0e:6f:b5:19:25:9c:e0:62:35:40:d9:
54:41:2e:44:5b:2c:7d:03:45:bc:3d:a9:04:bc:9d:85:ef:78:
31:17:e4:9c:2e:32:ce:ee:53:a4:8e:19:e1:3a:eb:b2:56:ac:
93:df:34:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:14:47 2025 by rpki-client