Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/YbV_ULU9Uwg0PRWI75UsFEvYuOg.roa
File: YbV_ULU9Uwg0PRWI75UsFEvYuOg.roa (raw, json)
Hash identifier: y2RjfV+0LcgrIjfBfNfh6JXblC1JUkL4dU9nFBXv2/Q=
Subject key identifier: 61:B5:7F:50:B5:3D:53:08:34:3D:15:88:EF:95:2C:14:4B:D8:B8:E8
Certificate issuer: /CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Certificate serial: 01946A1C4AA4EE8DF4A73A49DD78D29326ED
Authority key identifier: 12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/YbV_ULU9Uwg0PRWI75UsFEvYuOg.roa
Signing time: Wed 15 Jan 2025 13:17:06 +0000
ROA not before: Wed 15 Jan 2025 13:17:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215245
IP address blocks: 86.54.5.0/24 maxlen: 24
185.144.70.0/24 maxlen: 24
185.144.71.0/24 maxlen: 24
194.46.60.0/24 maxlen: 24
194.117.224.0/24 maxlen: 24
194.117.225.0/24 maxlen: 24
2a14:6780:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 17 Jan 2025 10:11:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:6a:1c:4a:a4:ee:8d:f4:a7:3a:49:dd:78:d2:93:26:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Validity
Not Before: Jan 15 13:17:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=61b57f50b53d5308343d1588ef952c144bd8b8e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:32:4d:cb:bd:3f:fa:a0:a7:c0:72:16:9c:22:
8e:3f:1b:e1:24:8d:ec:ce:d6:db:f1:61:e7:68:9b:
60:81:a8:30:b9:fa:76:80:af:3f:32:61:c1:5b:3a:
b9:5d:ef:99:ba:2b:a8:e0:50:fa:fd:6b:92:db:52:
5c:19:d3:24:a5:4c:37:5c:91:1b:2f:47:58:fa:0d:
7e:0c:b9:60:79:2f:0c:16:75:88:0a:2a:f2:2f:fa:
a4:65:ca:7d:83:69:52:f2:69:49:62:1e:5d:fe:f7:
70:04:d6:41:98:a8:ba:96:05:f0:d7:9c:22:11:8c:
9e:54:91:e5:93:a3:40:6d:7d:9e:42:39:f3:ab:4e:
5a:ab:9b:04:a6:0b:01:4a:48:52:d9:9a:f2:bc:29:
19:5d:d8:83:f1:24:08:51:f0:05:ed:9a:fb:71:c7:
22:2c:20:9f:6a:56:34:93:d7:23:8c:64:8a:4b:0c:
2c:da:c7:4a:0c:35:06:71:45:98:a3:ab:ff:3e:95:
f5:bf:a9:c0:64:be:4d:a6:8e:fb:38:4b:40:6f:64:
ee:6c:71:a4:e5:12:5d:85:ac:1d:08:52:4f:73:71:
98:01:b4:21:c9:c6:15:c9:b3:e1:c0:0e:09:cd:2d:
69:e5:30:12:40:2e:55:79:73:c8:b6:75:c6:43:b3:
c0:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B5:7F:50:B5:3D:53:08:34:3D:15:88:EF:95:2C:14:4B:D8:B8:E8
X509v3 Authority Key Identifier:
keyid:12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/YbV_ULU9Uwg0PRWI75UsFEvYuOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.54.5.0/24
185.144.70.0/23
194.46.60.0/24
194.117.224.0/23
IPv6:
2a14:6780:4::/48
Signature Algorithm: sha256WithRSAEncryption
4f:17:04:c6:0f:32:e5:a9:5c:84:40:77:30:0e:18:5e:82:f0:
0d:5d:e7:14:14:3b:10:39:0e:92:63:bb:94:c0:92:f7:98:96:
35:36:fc:d7:ff:e6:6e:53:e7:69:a0:eb:49:92:8a:66:89:5b:
14:00:e2:a1:8d:78:c4:1c:a6:e9:34:9b:39:30:2a:e4:bf:b5:
05:d4:0a:d4:c9:0c:55:8a:af:2a:d3:4c:42:5a:b7:28:43:09:
75:5c:9d:8d:81:43:c1:de:59:42:b4:e6:7a:95:f3:c2:63:d5:
6b:e8:f6:dc:64:77:af:f0:09:41:87:9c:d3:89:51:de:d2:d0:
9d:a5:2c:18:20:d5:fd:da:23:93:a3:bf:d1:26:de:48:be:13:
70:60:01:87:a7:90:f7:2d:56:9e:e6:57:83:a2:f5:5e:fe:6f:
19:0b:1a:ec:10:ed:80:0f:d4:40:f8:88:29:b3:4a:29:be:87:
17:1d:ab:8e:26:2e:45:65:11:06:32:e4:0d:21:c2:f9:ee:04:
f5:57:6f:5c:ef:f3:ee:bc:01:67:4d:2e:a2:ef:ba:3d:15:e6:
70:bd:b8:a8:6c:97:18:a1:b9:5f:dd:aa:f3:e8:29:4d:17:4e:
e2:cb:de:da:56:58:74:f5:24:f3:ee:68:4e:f3:7c:f2:43:df:
ca:2a:41:59
-----BEGIN CERTIFICATE-----
MIIFIDCCBAigAwIBAgISAZRqHEqk7o30pzpJ3XjSkybtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyYmUyOWM5NTY4OTRjNDljNmQ0YmUwZWQ5ODg4MmI5MGQx
YmM3N2YwHhcNMjUwMTE1MTMxNzA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MWI1N2Y1MGI1M2Q1MzA4MzQzZDE1ODhlZjk1MmMxNDRiZDhiOGU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojJNy70/+qCnwHIWnCKOPxvhJI3s
ztbb8WHnaJtggagwufp2gK8/MmHBWzq5Xe+Zuiuo4FD6/WuS21JcGdMkpUw3XJEb
L0dY+g1+DLlgeS8MFnWICiryL/qkZcp9g2lS8mlJYh5d/vdwBNZBmKi6lgXw15wi
EYyeVJHlk6NAbX2eQjnzq05aq5sEpgsBSkhS2ZryvCkZXdiD8SQIUfAF7Zr7ccci
LCCfalY0k9cjjGSKSwws2sdKDDUGcUWYo6v/PpX1v6nAZL5Npo77OEtAb2TubHGk
5RJdhawdCFJPc3GYAbQhycYVybPhwA4JzS1p5TASQC5VeXPItnXGQ7PA1wIDAQAB
o4ICLDCCAigwHQYDVR0OBBYEFGG1f1C1PVMIND0ViO+VLBRL2LjoMB8GA1UdIwQY
MBaAFBK+KclWiUxJxtS+DtmIgrkNG8d/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXI0cHlWYUpURW5HMUw0TzJZaUN1UTBieDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9jMjc4OGYtOGM4Yy00N2JiLWI5MjIt
YWE2ZWQ0ZGFmYjNiLzEvWWJWX1VMVTlVd2cwUFJXSTc1VXNGRXZZdU9nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS9jMjc4OGYtOGM4Yy00N2JiLWI5MjItYWE2ZWQ0ZGFmYjNi
LzEvRXI0cHlWYUpURW5HMUw0TzJZaUN1UTBieDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEHAQH/BDMwMTAeBAIAATAYAwQAVjYFAwQB
uZBGAwQAwi48AwQBwnXgMA8EAgACMAkDBwAqFGeAAAQwDQYJKoZIhvcNAQELBQAD
ggEBAE8XBMYPMuWpXIRAdzAOGF6C8A1d5xQUOxA5DpJju5TAkveYljU2/Nf/5m5T
52mg60mSimaJWxQA4qGNeMQcpuk0mzkwKuS/tQXUCtTJDFWKryrTTEJatyhDCXVc
nY2BQ8HeWUK05nqV88Jj1Wvo9txkd6/wCUGHnNOJUd7S0J2lLBgg1f3aI5Ojv9Em
3ki+E3BgAYenkPctVp7mV4Oi9V7+bxkLGuwQ7YAP1ED4iCmzSim+hxcdq44mLkVl
EQYy5A0hwvnuBPVXb1zv8+68AWdNLqLvuj0V5nC9uKhslxihuV/dqvPoKU0XTuLL
3tpWWHT1JPPuaE7zfPJD38oqQVk=
-----END CERTIFICATE-----
Generated at Thu Apr 17 22:21:32 2025 by rpki-client