Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/LYnqWB1bhkkqN1s5FRa1CAMrzuw.roa
File: LYnqWB1bhkkqN1s5FRa1CAMrzuw.roa (raw, json)
Hash identifier: 8z+lQqXKNbiGqbs7dMbgQ94lz9ytwaB61eFhYn7j3A4=
Subject key identifier: 2D:89:EA:58:1D:5B:86:49:2A:37:5B:39:15:16:B5:08:03:2B:CE:EC
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 01956201304C9ED21A52F26493AC582347C3
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/LYnqWB1bhkkqN1s5FRa1CAMrzuw.roa
Signing time: Tue 04 Mar 2025 16:33:19 +0000
ROA not before: Tue 04 Mar 2025 16:33:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29262
IP address blocks: 185.85.189.0/24 maxlen: 24
185.85.190.0/24 maxlen: 24
185.85.191.0/24 maxlen: 24
185.85.237.0/24 maxlen: 24
185.85.238.0/24 maxlen: 24
185.85.239.0/24 maxlen: 24
185.86.5.0/24 maxlen: 24
185.86.13.0/24 maxlen: 24
185.86.153.0/24 maxlen: 24
185.86.154.0/24 maxlen: 24
185.86.164.0/24 maxlen: 24
185.86.165.0/24 maxlen: 24
185.86.166.0/24 maxlen: 24
185.86.167.0/24 maxlen: 24
185.87.24.0/24 maxlen: 24
185.87.26.0/24 maxlen: 24
185.87.27.0/24 maxlen: 24
185.87.121.0/24 maxlen: 24
185.87.122.0/24 maxlen: 24
185.87.123.0/24 maxlen: 24
185.98.60.0/24 maxlen: 24
185.119.80.0/24 maxlen: 24
185.119.81.0/24 maxlen: 24
185.119.82.0/24 maxlen: 24
185.119.83.0/24 maxlen: 24
185.141.32.0/24 maxlen: 24
2a0b:6780::/29 maxlen: 29
2a0c:67c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 11 Mar 2025 09:37:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:62:01:30:4c:9e:d2:1a:52:f2:64:93:ac:58:23:47:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Mar 4 16:33:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2d89ea581d5b86492a375b391516b508032bceec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:20:ee:71:09:e6:d1:37:ee:90:70:ef:94:3d:
fe:22:c1:0c:39:93:59:f0:7d:19:f5:3d:4d:f1:3e:
29:03:d6:db:29:48:75:92:de:b2:d6:85:9d:af:25:
68:be:bc:2f:81:a0:9a:e6:47:9a:68:88:fd:e0:cc:
00:64:54:41:09:27:f0:c1:69:00:0e:00:45:77:35:
56:43:2c:08:31:e5:9d:45:b5:10:e8:79:ac:7e:03:
1e:c0:f6:06:8d:c4:5c:ba:10:bd:1f:3d:61:80:e6:
d3:fa:aa:20:b4:a6:35:a2:3a:b7:8c:4b:e4:87:2d:
cb:d9:78:a1:86:a7:f3:23:6e:61:1c:da:83:e2:60:
71:3f:4d:ef:9b:71:24:ee:97:7c:b4:73:7b:34:9e:
0f:1f:f9:2d:ac:a4:f4:97:82:00:6e:64:b4:a6:9a:
6b:9b:1b:a2:23:c8:4a:6a:9c:ad:85:cc:13:6c:59:
f5:c8:35:0a:56:80:a1:71:71:ca:e6:7b:9b:82:79:
30:9a:39:6c:34:01:3e:7d:ee:e5:cd:2e:6a:ac:5d:
bf:42:4c:b3:78:66:02:50:6a:08:87:2c:25:49:87:
92:7e:f8:d1:10:60:55:96:fe:55:c1:a5:ae:ea:ce:
1d:86:d1:14:1a:55:8d:6d:71:75:72:57:f5:08:a4:
ac:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:89:EA:58:1D:5B:86:49:2A:37:5B:39:15:16:B5:08:03:2B:CE:EC
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/LYnqWB1bhkkqN1s5FRa1CAMrzuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.189.0-185.85.191.255
185.85.237.0-185.85.239.255
185.86.5.0/24
185.86.13.0/24
185.86.153.0-185.86.154.255
185.86.164.0/22
185.87.24.0/24
185.87.26.0/23
185.87.121.0-185.87.123.255
185.98.60.0/24
185.119.80.0/22
185.141.32.0/24
IPv6:
2a0b:6780::/29
2a0c:67c0::/29
Signature Algorithm: sha256WithRSAEncryption
39:f9:74:70:d3:fb:ed:bc:40:cf:95:08:fb:81:d9:3e:10:05:
b1:c8:92:c8:c3:02:08:ce:c5:64:42:72:f5:53:0b:5c:45:eb:
88:9c:2e:ef:39:51:07:62:01:53:8d:aa:12:51:87:84:f4:f5:
b0:be:e9:da:33:47:72:14:bc:66:82:f5:17:ea:c2:2f:7e:be:
c6:3e:89:a9:23:4f:69:32:f1:c4:ea:3a:be:94:93:ea:3c:44:
8b:1a:8a:c7:a3:1d:44:fe:c7:07:6f:6c:dc:47:ae:a1:72:d8:
60:79:62:d8:0b:65:9c:ce:d7:54:d5:30:77:69:91:47:b1:49:
5b:90:ac:48:61:42:19:20:dd:c3:3e:63:85:e9:37:cc:f4:c1:
03:24:ae:2a:f6:6b:08:96:f2:48:f0:79:49:f9:ad:33:56:60:
fd:f2:c8:35:83:6a:60:13:67:be:8d:49:21:00:70:f7:98:2b:
e3:63:ea:cd:1f:7e:08:d6:7d:76:b4:ec:38:8e:46:21:e5:0f:
32:8e:9b:fe:29:22:c1:86:91:ff:15:0b:b0:05:fe:74:c4:0d:
90:60:45:dc:8b:ad:a3:1e:7d:cb:12:b4:dc:41:24:a4:70:63:
ef:a6:1b:fd:7d:cb:78:a1:75:8b:9c:5a:e4:78:fb:23:06:d2:
34:d9:95:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:16:25 2025 by rpki-client