Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YmTTlRO2yRsAIHjcKaB7IjToQfs.roa
File: YmTTlRO2yRsAIHjcKaB7IjToQfs.roa (raw, json)
Hash identifier: lPIP4XAEp1ZpMYE5Pz/5C3crVOMAb1ztsqqHJYioWK0=
Subject key identifier: 62:64:D3:95:13:B6:C9:1B:00:20:78:DC:29:A0:7B:22:34:E8:41:FB
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 019528C79652C7D91C17286516CC2404186B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YmTTlRO2yRsAIHjcKaB7IjToQfs.roa
Signing time: Fri 21 Feb 2025 13:52:03 +0000
ROA not before: Fri 21 Feb 2025 13:52:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 45.131.186.0/24 maxlen: 24
2a06:de01:140::/44 maxlen: 48
2a06:de01:141::/48 maxlen: 48
2a06:de01:142::/48 maxlen: 48
2a06:de01:143::/48 maxlen: 48
2a06:de01:144::/48 maxlen: 48
2a06:de01:145::/48 maxlen: 48
2a06:de03:3691::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
Validation: Failed, certificate revoked on Fri 21 Feb 2025 14:16:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:28:c7:96:52:c7:d9:1c:17:28:65:16:cc:24:04:18:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 21 13:52:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6264d39513b6c91b002078dc29a07b2234e841fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7f:14:7a:76:54:4d:6b:79:b9:6e:3c:5d:b0:
f6:a4:93:58:8b:60:1d:7a:6f:dd:2e:73:37:df:b0:
c4:6c:0a:f5:b7:97:91:61:70:99:8d:cd:27:5a:54:
34:0c:88:3f:c6:3b:d5:cb:c0:a1:80:1d:d2:66:e0:
f1:89:72:53:71:d6:e5:b0:c3:fc:0e:53:54:ef:f2:
32:46:18:7c:9b:67:3c:7b:b2:63:d9:b9:95:0d:b7:
fb:f2:61:6f:4e:f8:48:8a:c7:cf:09:7a:a8:43:11:
d4:39:f4:15:ab:b7:4b:a2:4e:e4:37:35:bd:92:28:
b6:72:32:57:ef:f8:79:91:c0:ec:a0:59:31:87:36:
9f:64:a4:86:97:8a:b5:6d:64:34:8a:2a:2d:a4:f9:
1b:73:9a:27:25:1a:6f:cb:c3:80:14:21:be:bc:c9:
16:61:98:00:cf:df:2b:98:48:8d:11:2b:3f:70:38:
1f:cb:55:41:9b:37:7c:c6:51:09:fe:c0:57:06:89:
ca:26:4f:8f:bd:8d:dc:ed:1b:a3:6d:ca:60:44:3a:
f7:c4:36:39:e9:fd:03:40:92:e0:ec:c3:8f:15:8f:
f6:cc:66:f5:9a:1c:6c:73:d4:56:4b:88:f9:1a:b1:
f8:70:83:67:dd:fc:1d:27:4f:d5:f9:e7:8e:0a:15:
5e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:64:D3:95:13:B6:C9:1B:00:20:78:DC:29:A0:7B:22:34:E8:41:FB
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YmTTlRO2yRsAIHjcKaB7IjToQfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.186.0/24
IPv6:
2a06:de01:140::/44
2a06:de03:3691::/48
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
90:89:6b:51:43:c7:2e:e1:97:62:10:83:23:7b:0e:93:c4:c6:
1e:47:a3:63:0a:c5:a0:9b:0a:3f:03:50:b8:52:50:0c:9d:a3:
73:df:ba:9d:be:e6:a0:65:85:55:23:39:08:33:e6:c5:6d:13:
62:4d:52:aa:89:e6:38:6a:74:70:0c:3a:34:9b:67:c2:3d:04:
e9:42:22:5b:15:85:1c:c5:e2:09:9b:ed:37:d8:82:74:70:73:
39:f0:ca:c1:63:3f:df:8f:0e:4b:36:0c:29:85:6e:29:6b:97:
a0:6d:01:2a:94:76:a9:d7:89:3c:3a:5d:d3:0c:58:e2:a3:2b:
1e:ef:96:a1:d5:2e:4d:01:2b:b7:8e:ae:0d:d8:45:3e:00:65:
4a:0e:f9:a9:1e:8d:5a:8e:3b:ae:23:71:62:cb:b4:98:16:8b:
3c:2e:d9:ec:c4:41:b9:c5:ac:59:21:5c:2b:d4:47:24:d8:ed:
7b:c2:77:c6:31:52:d1:1b:af:5e:59:eb:2d:8d:12:8a:79:2b:
75:10:d2:d3:2d:f4:b8:7f:e2:98:05:34:40:db:8d:21:67:a6:
5a:db:f3:e4:0b:2c:df:c0:3e:b2:61:80:35:d7:19:b5:6f:4f:
c0:70:96:56:aa:73:96:63:75:a6:f6:f5:5a:72:25:05:f3:7b:
54:b1:de:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 19:22:05 2025 by rpki-client