Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/pWBvWXX1XJCCyJqqCTaL2qpCr9Q.roa
File: pWBvWXX1XJCCyJqqCTaL2qpCr9Q.roa (raw, json)
Hash identifier: Yn5LG7HYMtqFY0b+T77hGhaJwf+Ug48I0PfCmg26HKs=
Subject key identifier: A5:60:6F:59:75:F5:5C:90:82:C8:9A:AA:09:36:8B:DA:AA:42:AF:D4
Certificate issuer: /CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Certificate serial: 01940802CBDAB21B8AE6305723FCD190744E
Authority key identifier: 66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/pWBvWXX1XJCCyJqqCTaL2qpCr9Q.roa
Signing time: Fri 27 Dec 2024 12:06:28 +0000
ROA not before: Fri 27 Dec 2024 12:06:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8814
IP address blocks: 80.69.52.0/24 maxlen: 24
80.69.54.0/24 maxlen: 24
80.69.55.0/24 maxlen: 24
80.69.58.0/24 maxlen: 24
80.69.59.0/24 maxlen: 24
80.69.61.0/24 maxlen: 24
80.69.62.0/24 maxlen: 24
80.69.63.0/24 maxlen: 24
91.135.245.0/24 maxlen: 24
91.135.246.0/24 maxlen: 24
91.135.247.0/24 maxlen: 24
91.135.248.0/24 maxlen: 24
91.135.249.0/24 maxlen: 24
91.135.250.0/24 maxlen: 24
91.135.251.0/24 maxlen: 24
91.135.254.0/24 maxlen: 24
91.135.255.0/24 maxlen: 24
92.39.88.0/24 maxlen: 24
92.39.89.0/24 maxlen: 24
92.39.95.0/24 maxlen: 24
158.181.32.0/24 maxlen: 24
158.181.33.0/24 maxlen: 24
158.181.35.0/24 maxlen: 24
158.181.36.0/24 maxlen: 24
158.181.40.0/22 maxlen: 22
158.181.44.0/22 maxlen: 22
212.47.128.0/22 maxlen: 22
212.47.132.0/22 maxlen: 22
212.47.136.0/22 maxlen: 22
212.47.140.0/22 maxlen: 22
212.47.144.0/22 maxlen: 22
212.47.148.0/22 maxlen: 22
212.47.152.0/24 maxlen: 24
212.47.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:08:02:cb:da:b2:1b:8a:e6:30:57:23:fc:d1:90:74:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Validity
Not Before: Dec 27 12:06:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a5606f5975f55c9082c89aaa09368bdaaa42afd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:97:10:2a:da:1a:45:c5:ed:6c:5f:41:f8:bc:
b6:de:a6:9c:dc:e8:52:8d:7b:83:b6:13:90:9e:96:
bf:9b:bd:e5:51:79:5a:c9:ed:fe:2c:de:da:26:28:
e4:f0:4f:8c:63:2a:eb:dc:28:5e:ba:04:66:19:96:
01:b7:15:28:1e:c7:9d:9a:0e:1d:82:48:df:29:8a:
9f:9e:91:9c:71:e2:78:03:5e:77:d9:40:af:eb:5b:
03:b1:e7:97:d8:ef:45:fd:72:71:a1:3f:e4:26:ca:
84:95:32:05:3d:7e:10:2d:05:03:cb:ad:14:5a:42:
5b:f4:c5:13:12:bb:57:95:21:7b:2a:9d:5e:30:82:
98:3c:02:85:08:eb:42:81:52:b9:dd:f7:d5:ec:00:
71:db:ac:52:ca:e0:ec:22:b0:11:89:e3:a4:48:05:
d9:7a:57:75:34:63:68:87:89:50:a6:be:c4:75:1c:
7c:12:80:a1:06:12:85:bf:25:6e:69:6f:9e:e3:7d:
2a:35:ac:0f:0d:ed:01:2f:dd:59:64:d9:29:87:12:
84:ac:b2:d9:6e:f4:60:58:63:94:1c:f9:ea:0e:ea:
ec:9a:1b:7d:ca:32:dc:fc:d1:13:f6:4f:f4:d3:6d:
f9:b3:24:7a:fe:51:46:04:84:b0:f9:9b:ed:68:22:
56:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:60:6F:59:75:F5:5C:90:82:C8:9A:AA:09:36:8B:DA:AA:42:AF:D4
X509v3 Authority Key Identifier:
keyid:66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/pWBvWXX1XJCCyJqqCTaL2qpCr9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.69.52.0/24
80.69.54.0/23
80.69.58.0/23
80.69.61.0-80.69.63.255
91.135.245.0-91.135.251.255
91.135.254.0/23
92.39.88.0/23
92.39.95.0/24
158.181.32.0/23
158.181.35.0-158.181.36.255
158.181.40.0/21
212.47.128.0-212.47.152.255
212.47.159.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:d7:a6:9d:0a:d8:e3:e6:a8:87:04:43:fb:90:98:b7:6f:9f:
5c:81:02:7f:61:26:f5:6d:a0:51:1c:ad:64:78:43:e1:91:a2:
30:86:c9:d3:df:41:93:50:db:a6:86:e7:6c:4e:fc:e2:a2:fc:
13:c9:d9:e4:65:fa:cd:2e:da:9e:a3:51:6f:b7:48:4f:18:8a:
78:d9:ea:26:3d:58:92:c5:6d:1c:dc:4a:84:2f:19:27:34:c6:
fd:85:42:d9:2d:dc:9b:96:44:f7:12:b2:9f:56:05:0a:ed:92:
0d:6c:72:7b:e4:8d:11:f0:32:cb:07:e0:ae:01:0a:43:24:8b:
52:1f:e7:5e:7d:a0:bf:c5:83:26:62:c3:79:62:9f:6e:13:fe:
05:de:ee:4e:f2:ad:ab:5a:a0:1d:9f:c2:75:dd:8e:a4:70:44:
8d:d3:0a:d6:c1:61:9e:2a:ae:44:a8:6f:bf:0f:2d:3e:8a:91:
3e:76:41:48:fc:d3:30:6e:2c:1d:f1:3a:97:31:e5:27:85:c4:
6b:9c:e7:9a:65:2e:0b:9f:52:d5:ee:28:33:84:00:73:07:fe:
f4:c5:74:51:10:3b:a1:71:c2:cc:87:aa:56:da:da:d5:f4:75:
74:39:69:0e:02:39:b3:29:ce:0d:78:b2:ed:21:b4:98:34:31:
91:e7:fb:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 11:14:40 2025 by rpki-client