Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/B_yLdb3kmj5vWwGqDlG8ecJ3wr8.roa
File: B_yLdb3kmj5vWwGqDlG8ecJ3wr8.roa (raw, json)
Hash identifier: rf+Gx5gdpzGZhhSIIjjEM0FLOTyqKyeMb4zKeFjh+cg=
Subject key identifier: 07:FC:8B:75:BD:E4:9A:3E:6F:5B:01:AA:0E:51:BC:79:C2:77:C2:BF
Certificate issuer: /CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Certificate serial: 0194221FD172C56E2F9C72D1EF49B6C55741
Authority key identifier: 64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/B_yLdb3kmj5vWwGqDlG8ecJ3wr8.roa
Signing time: Wed 01 Jan 2025 13:48:18 +0000
ROA not before: Wed 01 Jan 2025 13:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49367
IP address blocks: 31.193.188.0/24 maxlen: 24
37.156.174.0/24 maxlen: 24
45.83.56.0/22 maxlen: 22
45.86.144.0/22 maxlen: 22
77.81.103.0/24 maxlen: 24
85.204.255.0/24 maxlen: 24
86.107.110.0/24 maxlen: 24
89.34.236.0/23 maxlen: 23
89.34.239.0/24 maxlen: 24
89.39.254.0/24 maxlen: 24
89.40.142.0/23 maxlen: 23
89.40.227.0/24 maxlen: 24
89.42.134.0/24 maxlen: 24
89.43.34.0/24 maxlen: 24
89.43.35.0/24 maxlen: 24
89.43.52.0/24 maxlen: 24
91.212.52.0/24 maxlen: 24
91.229.186.0/24 maxlen: 24
93.113.144.0/21 maxlen: 21
93.113.144.0/22 maxlen: 22
93.113.144.0/24 maxlen: 24
93.113.145.0/24 maxlen: 24
93.113.146.0/24 maxlen: 24
93.113.147.0/24 maxlen: 24
93.113.148.0/22 maxlen: 22
93.113.148.0/24 maxlen: 24
93.113.149.0/24 maxlen: 24
93.113.150.0/24 maxlen: 24
93.113.151.0/24 maxlen: 24
94.176.212.0/24 maxlen: 24
94.177.21.0/24 maxlen: 24
94.177.48.0/23 maxlen: 23
185.184.240.0/22 maxlen: 22
185.184.240.0/24 maxlen: 24
185.184.241.0/24 maxlen: 24
185.184.242.0/24 maxlen: 24
185.184.243.0/24 maxlen: 24
185.198.244.0/24 maxlen: 24
185.198.245.0/24 maxlen: 24
185.198.246.0/24 maxlen: 24
185.198.247.0/24 maxlen: 24
188.208.16.0/23 maxlen: 23
188.208.16.0/24 maxlen: 24
188.208.17.0/24 maxlen: 24
188.211.248.0/24 maxlen: 24
188.215.6.0/23 maxlen: 23
188.215.6.0/24 maxlen: 24
188.215.7.0/24 maxlen: 24
188.215.94.0/24 maxlen: 24
188.240.228.0/23 maxlen: 23
188.240.228.0/24 maxlen: 24
188.240.229.0/24 maxlen: 24
193.239.140.0/23 maxlen: 23
217.198.177.0/24 maxlen: 24
2a04:68c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 Jan 2025 18:53:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:d1:72:c5:6e:2f:9c:72:d1:ef:49:b6:c5:57:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Validity
Not Before: Jan 1 13:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07fc8b75bde49a3e6f5b01aa0e51bc79c277c2bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3e:d0:41:5d:5e:58:f8:aa:74:15:da:af:c6:
37:f8:6a:0b:80:64:ac:c5:34:68:56:a6:6e:ee:d3:
dd:57:14:55:0f:74:53:94:af:f6:19:50:64:7a:24:
c4:21:8e:7a:ab:b3:68:9a:24:bb:9c:72:0f:42:e1:
57:f6:80:43:40:36:a6:43:84:39:1f:94:22:f6:0c:
7c:4b:7d:ff:ee:63:e4:53:b6:31:be:f4:02:88:60:
64:59:db:62:65:7c:5b:3f:ad:25:4b:7f:d1:cc:fc:
8b:27:d7:0d:93:fc:e5:71:16:25:81:b3:15:2c:92:
e4:b0:90:c9:e3:08:c8:6a:4e:5e:8d:9f:7e:16:5c:
20:fd:da:ee:7b:56:ba:5b:00:fe:75:7b:90:c3:9a:
3e:2a:07:c3:26:d7:fa:05:99:4a:bb:34:4c:a3:ab:
4d:52:83:c0:11:d7:29:97:a4:ce:3c:eb:72:93:e7:
9b:fc:23:24:45:ec:10:55:12:3d:7a:a8:65:9c:d0:
ac:27:03:6c:77:9e:c5:72:6e:6d:61:eb:f4:57:36:
30:f5:1e:88:de:b9:42:65:99:f8:c9:1d:1e:12:e0:
b6:dd:ba:2c:35:a3:a1:f7:a6:1b:40:b6:09:c9:b7:
50:cd:ba:e6:72:3d:03:23:d3:60:c0:b5:4f:2d:39:
18:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:FC:8B:75:BD:E4:9A:3E:6F:5B:01:AA:0E:51:BC:79:C2:77:C2:BF
X509v3 Authority Key Identifier:
keyid:64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/B_yLdb3kmj5vWwGqDlG8ecJ3wr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZPpm-4SngaBYT9DRwt85vaR2BRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.188.0/24
37.156.174.0/24
45.83.56.0/22
45.86.144.0/22
77.81.103.0/24
85.204.255.0/24
86.107.110.0/24
89.34.236.0/23
89.34.239.0/24
89.39.254.0/24
89.40.142.0/23
89.40.227.0/24
89.42.134.0/24
89.43.34.0/23
89.43.52.0/24
91.212.52.0/24
91.229.186.0/24
93.113.144.0/21
94.176.212.0/24
94.177.21.0/24
94.177.48.0/23
185.184.240.0/22
185.198.244.0/22
188.208.16.0/23
188.211.248.0/24
188.215.6.0/23
188.215.94.0/24
188.240.228.0/23
193.239.140.0/23
217.198.177.0/24
IPv6:
2a04:68c0::/32
Signature Algorithm: sha256WithRSAEncryption
ac:a0:fd:20:df:f9:a6:5c:88:3d:3a:8a:2d:fd:a8:dd:e0:42:
b1:53:cb:3c:b1:e4:f3:6a:d3:dc:f4:d7:29:ce:8c:33:fc:db:
47:c3:79:cb:a9:ce:cc:c8:1c:22:58:bb:72:bf:46:5e:8e:d3:
ba:41:3f:78:6b:ce:08:6b:71:eb:5c:ec:d9:c4:a4:6c:ea:c0:
0a:0e:73:b9:8a:52:da:b8:9d:91:65:a6:9a:0e:9d:f1:98:76:
78:99:91:f1:d3:38:fc:21:e6:73:ca:1a:65:49:83:d3:d6:7c:
3f:bf:bd:57:cc:95:cf:fa:13:bc:fb:d7:b0:f6:41:e6:40:ee:
59:5d:77:3a:d3:31:de:86:cd:5d:0e:4e:80:7e:f1:16:f9:dd:
95:14:6f:ae:e9:f5:e2:9b:b2:b3:e9:7f:fd:08:b1:73:21:af:
57:31:9c:90:87:88:13:80:06:45:f9:b4:b0:d7:0b:df:04:1e:
da:85:5c:b9:f7:9d:00:37:02:75:e4:ed:c1:24:cf:4a:f2:53:
77:d2:59:09:9c:78:a6:c1:60:93:5f:05:c9:45:af:d9:37:97:
9a:31:6c:6f:00:98:32:31:32:b9:8c:f8:2d:fd:f0:ec:a9:b3:
7f:78:83:34:65:9e:74:89:3f:72:7b:52:8a:ca:c2:7c:f8:d3:
7c:0e:e6:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:32:50 2025 by rpki-client