Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/6616ac-87cd-4edf-b107-046a3a9aacb9/1/1-H_vpyOIH9VlCzWHTu8nxBlKZmg.roa
File: 1-H_vpyOIH9VlCzWHTu8nxBlKZmg.roa (raw, json)
Hash identifier: cnyY5RMQFuMx8f5BZQqVuEtBp9UIUmQ1hzDXNhKkLvQ=
Subject key identifier: F8:7F:EF:A7:23:88:1F:D5:65:0B:35:87:4E:EF:27:C4:19:4A:66:68
Certificate issuer: /CN=ede0294d1305bebaf6894642bfd92fd439825102
Certificate serial: 018CC8DEA9D6C9079FD42540693D96648A75
Authority key identifier: ED:E0:29:4D:13:05:BE:BA:F6:89:46:42:BF:D9:2F:D4:39:82:51:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7eApTRMFvrr2iUZCv9kv1DmCUQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/6616ac-87cd-4edf-b107-046a3a9aacb9/1/1-H_vpyOIH9VlCzWHTu8nxBlKZmg.roa
Signing time: Tue 02 Jan 2024 06:31:24 +0000
ROA not before: Tue 02 Jan 2024 06:31:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48953
IP address blocks: 185.24.125.0/24 maxlen: 24
185.24.124.0/24 maxlen: 24
185.24.126.0/24 maxlen: 24
185.24.127.0/24 maxlen: 24
46.252.106.0/24 maxlen: 24
46.252.107.0/24 maxlen: 24
46.252.110.0/24 maxlen: 24
46.252.108.0/24 maxlen: 24
46.252.109.0/24 maxlen: 24
46.252.111.0/24 maxlen: 24
185.205.94.0/24 maxlen: 24
185.205.92.0/22 maxlen: 24
46.252.96.0/24 maxlen: 24
46.252.97.0/24 maxlen: 24
46.252.98.0/24 maxlen: 24
46.252.103.0/24 maxlen: 24
46.252.104.0/24 maxlen: 24
46.252.101.0/24 maxlen: 24
46.252.102.0/24 maxlen: 24
46.252.105.0/24 maxlen: 24
46.252.99.0/24 maxlen: 24
46.252.100.0/24 maxlen: 24
46.30.176.0/24 maxlen: 24
46.30.178.0/24 maxlen: 24
46.30.179.0/24 maxlen: 24
46.30.177.0/24 maxlen: 24
46.30.182.0/24 maxlen: 24
46.30.183.0/24 maxlen: 24
46.30.180.0/24 maxlen: 24
46.30.181.0/24 maxlen: 24
2a00:66e0::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Apr 2024 17:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:a9:d6:c9:07:9f:d4:25:40:69:3d:96:64:8a:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ede0294d1305bebaf6894642bfd92fd439825102
Validity
Not Before: Jan 2 06:31:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f87fefa723881fd5650b35874eef27c4194a6668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:47:a6:c8:9e:54:5e:73:22:2d:df:a8:62:ac:
9d:3f:56:84:40:f5:23:66:c5:de:88:31:c7:0f:94:
aa:7c:d3:80:ed:d7:b6:c6:39:52:cb:44:22:25:18:
62:5b:e4:fa:4f:28:69:8b:1a:a2:32:6b:1c:8f:1d:
c2:76:3f:ba:b9:84:a1:af:5a:3f:38:a3:8e:a3:6e:
ca:57:11:20:65:01:f2:a5:98:9e:ce:d3:10:c2:19:
f9:6f:ad:47:1a:d7:7a:3b:22:45:2f:77:bd:0a:51:
5e:35:fe:33:3d:0a:32:8a:b8:3f:1f:8d:37:d7:95:
55:a0:16:66:94:45:7b:47:7b:dc:37:20:52:10:42:
c3:7f:22:41:47:d4:bc:a0:1d:9d:ef:b4:c4:78:4a:
70:0d:61:95:f2:f1:c9:fa:a3:80:03:4e:35:54:70:
ea:72:09:f1:90:de:fa:d4:17:d3:31:c7:9b:ab:3d:
8b:87:7d:33:c3:4c:9e:e8:26:b5:63:a1:4e:84:28:
b3:24:24:be:6f:a1:41:d6:f9:f9:68:03:59:d6:18:
fb:bd:78:e1:58:a2:44:37:5e:c0:9f:ba:99:53:47:
da:b7:12:33:49:02:3b:b4:97:8d:02:9e:c9:75:0f:
8b:5f:6b:2a:f0:15:aa:ea:9d:5d:54:28:a7:9e:95:
f6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:7F:EF:A7:23:88:1F:D5:65:0B:35:87:4E:EF:27:C4:19:4A:66:68
X509v3 Authority Key Identifier:
keyid:ED:E0:29:4D:13:05:BE:BA:F6:89:46:42:BF:D9:2F:D4:39:82:51:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7eApTRMFvrr2iUZCv9kv1DmCUQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6616ac-87cd-4edf-b107-046a3a9aacb9/1/1-H_vpyOIH9VlCzWHTu8nxBlKZmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6616ac-87cd-4edf-b107-046a3a9aacb9/1/7eApTRMFvrr2iUZCv9kv1DmCUQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.30.176.0/21
46.252.96.0/20
185.24.124.0/22
185.205.92.0/22
IPv6:
2a00:66e0::/32
Signature Algorithm: sha256WithRSAEncryption
6b:0d:0e:ab:3f:96:7a:f3:0b:74:3a:ab:16:28:73:2c:75:eb:
61:a8:5c:be:15:ee:22:e4:30:67:57:97:96:a3:44:85:7a:6c:
0d:36:7c:5d:21:53:ea:94:16:53:97:91:e1:ec:87:28:e8:83:
19:44:25:ec:1e:03:f4:f5:5f:24:38:08:49:45:6b:34:56:57:
69:e0:15:53:ef:83:dc:b2:2e:af:64:21:21:bf:de:77:db:38:
3f:6d:ff:f6:0c:46:9f:d3:d0:9e:30:84:24:c8:b9:00:5f:b8:
9c:41:65:64:0d:76:d1:b6:92:35:e3:60:aa:a1:d7:32:a4:3e:
00:0c:43:4a:ef:af:ce:0d:d9:d9:b2:85:e6:34:0e:90:ad:aa:
6f:22:81:01:5e:a8:fa:52:b5:84:cc:d5:61:64:5a:f7:59:cb:
c0:93:c4:8c:22:89:1b:7c:7e:20:10:7f:eb:1e:6c:31:a4:a3:
ef:dd:b9:f0:92:1d:e6:f2:89:5d:a6:94:3f:8a:97:eb:51:93:
05:9f:10:e9:02:90:77:ac:61:11:69:61:3e:f4:af:9f:5d:f0:
40:55:28:1f:65:1f:c6:9f:d4:56:5c:c6:d9:7e:4f:c7:a9:32:
2d:8b:4d:4e:59:58:e1:97:f4:f3:66:64:51:ba:bb:11:02:c2:
5b:af:59:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 21:17:09 2025 by rpki-client