Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d572c3-350f-479b-a7b3-153e9182af41/1/rcHTg1QhpBFCr8a3HXWqqEZBJJY.roa
File: rcHTg1QhpBFCr8a3HXWqqEZBJJY.roa (raw, json)
Hash identifier: rlk4yXRWrJ2y49WwPYEU1ISVMmHCd+nfLLajmeW/5+I=
Subject key identifier: AD:C1:D3:83:54:21:A4:11:42:AF:C6:B7:1D:75:AA:A8:46:41:24:96
Certificate issuer: /CN=553ca7b2e6c1e17f5f3edbe375e19ece39533910
Certificate serial: 01942748843138B86ABC4FFCC29F0E78CF94
Authority key identifier: 55:3C:A7:B2:E6:C1:E1:7F:5F:3E:DB:E3:75:E1:9E:CE:39:53:39:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VTynsubB4X9fPtvjdeGezjlTORA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d572c3-350f-479b-a7b3-153e9182af41/1/rcHTg1QhpBFCr8a3HXWqqEZBJJY.roa
Signing time: Thu 02 Jan 2025 13:50:51 +0000
ROA not before: Thu 02 Jan 2025 13:50:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49318
IP address blocks: 46.28.248.0/21 maxlen: 21
46.28.248.0/24 maxlen: 24
46.28.249.0/24 maxlen: 24
46.28.250.0/24 maxlen: 24
46.28.251.0/24 maxlen: 24
46.28.252.0/24 maxlen: 24
46.28.253.0/24 maxlen: 24
46.28.254.0/24 maxlen: 24
46.28.255.0/24 maxlen: 24
188.93.176.0/21 maxlen: 21
188.93.176.0/24 maxlen: 24
188.93.177.0/24 maxlen: 24
188.93.178.0/24 maxlen: 24
188.93.179.0/24 maxlen: 24
188.93.180.0/24 maxlen: 24
188.93.181.0/24 maxlen: 24
188.93.182.0/24 maxlen: 24
188.93.183.0/24 maxlen: 24
194.110.124.0/23 maxlen: 23
194.110.124.0/24 maxlen: 24
194.110.125.0/24 maxlen: 24
194.110.130.0/23 maxlen: 23
194.110.130.0/24 maxlen: 24
194.110.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Mar 2025 20:04:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:84:31:38:b8:6a:bc:4f:fc:c2:9f:0e:78:cf:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=553ca7b2e6c1e17f5f3edbe375e19ece39533910
Validity
Not Before: Jan 2 13:50:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=adc1d3835421a41142afc6b71d75aaa846412496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:98:5c:8a:3d:d1:af:ca:4e:71:5f:61:59:85:
40:0e:c8:14:98:99:59:2f:a0:54:92:bc:13:22:04:
a4:1e:76:fe:34:df:fa:d4:90:21:fd:28:1c:21:c0:
e7:b5:98:b4:0b:eb:ff:7b:c1:82:d2:0e:3d:4d:93:
7e:0a:96:53:9f:f5:08:3a:76:7a:1c:e6:d0:19:47:
be:3b:3e:f6:53:07:ee:6b:17:c0:2b:2f:9c:cf:9f:
59:d9:4c:42:1f:a1:61:c4:d9:56:e9:21:bd:c9:1c:
d4:ae:ef:eb:d8:ab:71:8e:52:ab:ce:e4:b7:51:e2:
01:45:20:2c:c7:dc:c6:d5:83:e7:c1:a4:d2:11:7f:
ca:eb:3e:5c:3f:db:06:8d:83:32:ec:eb:11:e7:a3:
83:61:70:03:6b:e2:f4:e1:af:52:af:c0:02:5f:b1:
64:53:24:35:53:0e:8c:d2:6a:b2:cc:2f:22:30:5a:
bf:dd:69:7b:24:a9:d7:9a:dc:07:96:f8:48:56:ed:
c9:d7:51:f0:25:45:4c:25:28:72:d4:f2:c0:7f:af:
e0:d5:b1:7c:44:aa:f0:4b:dc:ef:4b:58:5c:4f:da:
58:70:00:0f:14:26:60:8f:d1:75:05:de:29:43:0c:
3e:a2:27:41:09:3b:32:00:b9:c9:60:c0:81:45:14:
af:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C1:D3:83:54:21:A4:11:42:AF:C6:B7:1D:75:AA:A8:46:41:24:96
X509v3 Authority Key Identifier:
keyid:55:3C:A7:B2:E6:C1:E1:7F:5F:3E:DB:E3:75:E1:9E:CE:39:53:39:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VTynsubB4X9fPtvjdeGezjlTORA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d572c3-350f-479b-a7b3-153e9182af41/1/rcHTg1QhpBFCr8a3HXWqqEZBJJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d572c3-350f-479b-a7b3-153e9182af41/1/VTynsubB4X9fPtvjdeGezjlTORA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.248.0/21
188.93.176.0/21
194.110.124.0/23
194.110.130.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:00:a8:9a:62:52:8c:9b:7a:b9:02:fb:36:43:8e:76:56:fa:
1c:a4:26:4e:36:c5:b8:31:be:9f:db:19:61:5b:3f:f5:14:99:
ca:3d:18:c3:26:12:e7:82:c0:c3:2c:0c:50:30:f7:cf:a7:a1:
d4:ce:01:24:6b:bf:d4:92:dd:74:c5:2e:40:25:f2:1d:8d:0f:
84:06:f6:fb:23:fa:8a:fa:13:9d:a5:be:a0:97:d9:7b:ab:92:
d4:cc:b9:4f:7f:66:5e:1a:ba:f6:57:01:1c:5b:34:1e:da:91:
52:49:b7:1c:de:41:7e:54:48:5b:25:2d:ae:73:e6:49:df:8f:
0c:2d:0b:73:9d:ab:57:09:84:1a:c7:2c:34:47:50:89:07:8e:
5f:ff:6e:86:50:97:cd:9a:25:93:07:8e:b3:db:43:32:f3:4d:
8f:16:df:81:77:16:e3:d7:d7:f1:3d:49:b4:32:96:a8:51:46:
f2:8a:65:87:02:8b:4e:5e:fd:30:1b:60:ab:e2:b2:6e:29:2a:
96:8a:43:50:48:7d:2d:5c:e8:ca:79:48:fb:14:3e:0d:c1:69:
12:dd:3f:fc:df:e3:45:bb:fc:d1:1d:ee:1a:ae:28:4a:52:00:
55:13:12:f9:71:31:4f:04:ed:a2:c3:5d:4f:84:5b:3d:48:4f:
03:ca:52:e1
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAZQnSIQxOLhqvE/8wp8OeM+UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1M2NhN2IyZTZjMWUxN2Y1ZjNlZGJlMzc1ZTE5ZWNlMzk1
MzM5MTAwHhcNMjUwMTAyMTM1MDUxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZGMxZDM4MzU0MjFhNDExNDJhZmM2YjcxZDc1YWFhODQ2NDEyNDk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0phcij3Rr8pOcV9hWYVADsgUmJlZ
L6BUkrwTIgSkHnb+NN/61JAh/SgcIcDntZi0C+v/e8GC0g49TZN+CpZTn/UIOnZ6
HObQGUe+Oz72UwfuaxfAKy+cz59Z2UxCH6FhxNlW6SG9yRzUru/r2KtxjlKrzuS3
UeIBRSAsx9zG1YPnwaTSEX/K6z5cP9sGjYMy7OsR56ODYXADa+L04a9Sr8ACX7Fk
UyQ1Uw6M0mqyzC8iMFq/3Wl7JKnXmtwHlvhIVu3J11HwJUVMJShy1PLAf6/g1bF8
RKrwS9zvS1hcT9pYcAAPFCZgj9F1Bd4pQww+oidBCTsyALnJYMCBRRSv6QIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFK3B04NUIaQRQq/Gtx11qqhGQSSWMB8GA1UdIwQY
MBaAFFU8p7LmweF/Xz7b43Xhns45UzkQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVlR5bnN1YkI0WDlmUHR2amRlR2V6amxUT1JBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kNTcyYzMtMzUwZi00NzliLWE3YjMt
MTUzZTkxODJhZjQxLzEvcmNIVGcxUWhwQkZDcjhhM0hYV3FxRVpCSkpZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9kNTcyYzMtMzUwZi00NzliLWE3YjMtMTUzZTkxODJhZjQx
LzEvVlR5bnN1YkI0WDlmUHR2amRlR2V6amxUT1JBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQDLhz4AwQD
vF2wAwQBwm58AwQBwm6CMA0GCSqGSIb3DQEBCwUAA4IBAQBKAKiaYlKMm3q5Avs2
Q452VvocpCZONsW4Mb6f2xlhWz/1FJnKPRjDJhLngsDDLAxQMPfPp6HUzgEka7/U
kt10xS5AJfIdjQ+EBvb7I/qK+hOdpb6gl9l7q5LUzLlPf2ZeGrr2VwEcWzQe2pFS
Sbcc3kF+VEhbJS2uc+ZJ348MLQtznatXCYQaxyw0R1CJB45f/26GUJfNmiWTB46z
20My802PFt+Bdxbj19fxPUm0MpaoUUbyimWHAotOXv0wG2Cr4rJuKSqWikNQSH0t
XOjKeUj7FD4NwWkS3T/83+NFu/zRHe4arihKUgBVExL5cTFPBO2iw11PhFs9SE8D
ylLh
-----END CERTIFICATE-----
Generated at Tue Apr 15 05:21:43 2025 by rpki-client