Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/AHY-ep6UrGmd-8UYZsi-4gmnPBI.roa
File: AHY-ep6UrGmd-8UYZsi-4gmnPBI.roa (raw, json)
Hash identifier: WBV8PqagT3pxSQmS/pEw1BO5doO1EMI1RxtpEHoxa0o=
Subject key identifier: 00:76:3E:7A:9E:94:AC:69:9D:FB:C5:18:66:C8:BE:E2:09:A7:3C:12
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0194ACE4DA7EFB410E5E030444D83BBE8AE7
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/AHY-ep6UrGmd-8UYZsi-4gmnPBI.roa
Signing time: Tue 28 Jan 2025 12:31:06 +0000
ROA not before: Tue 28 Jan 2025 12:31:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 26383
IP address blocks: 45.144.172.0/24 maxlen: 24
45.144.174.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
92.114.54.0/24 maxlen: 24
93.113.171.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
185.141.219.0/24 maxlen: 24
185.198.235.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.45.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.13.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
212.192.20.0/24 maxlen: 24
212.192.23.0/24 maxlen: 24
212.192.214.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Jan 2025 13:26:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ac:e4:da:7e:fb:41:0e:5e:03:04:44:d8:3b:be:8a:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 28 12:31:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=00763e7a9e94ac699dfbc51866c8bee209a73c12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5f:77:b5:b5:9a:73:69:e3:27:9b:b4:22:ab:
e8:cb:f6:e5:a4:d6:e6:52:a6:f5:27:65:c7:a6:e1:
45:24:f6:be:a8:e9:f3:16:34:6e:a0:df:85:2a:e1:
ee:0b:3d:ad:9f:51:62:e2:c5:6e:f9:45:fd:53:23:
74:55:12:28:49:82:43:c0:41:5f:9d:38:c1:80:2d:
f4:ba:8d:b9:c0:6c:e1:1b:7b:25:70:05:6c:4b:53:
9d:13:a1:e9:e4:d0:95:1c:5e:14:8f:a3:39:da:bc:
05:8c:0a:05:48:c6:ac:55:cd:f5:37:ee:8c:db:ca:
85:86:c7:ae:c3:58:3c:d5:61:e3:d8:a1:ee:fa:88:
54:07:5f:fe:16:55:11:f4:17:79:68:df:1c:7e:45:
f2:fc:15:ea:7f:ff:33:6f:64:e3:b4:ff:e0:f9:d9:
e7:23:a4:0b:70:02:a8:06:84:4a:8f:da:59:61:05:
bb:53:af:2c:ba:8f:d6:2b:f3:a6:f3:cb:34:54:76:
4d:3c:8c:e3:5e:84:ee:d8:66:40:37:f4:f8:56:45:
ae:e2:42:26:c2:11:b0:a1:ab:3a:1a:cc:cb:67:7d:
0e:69:a7:4a:51:9a:a1:cc:22:41:5d:d6:92:e4:71:
c0:8b:a1:11:b7:bb:1c:25:ac:60:71:e5:34:5f:d5:
e0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:76:3E:7A:9E:94:AC:69:9D:FB:C5:18:66:C8:BE:E2:09:A7:3C:12
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/AHY-ep6UrGmd-8UYZsi-4gmnPBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.172.0/24
45.144.174.0/24
86.107.100.0/24
92.114.54.0/24
93.113.171.0/24
185.72.8.0/24
185.141.219.0/24
185.198.235.0/24
193.124.49.0/24
194.58.34.0/24
194.58.44.0-194.58.46.255
212.192.12.0/23
212.192.15.0/24
212.192.20.0/24
212.192.23.0/24
212.192.214.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:0a:7c:68:c4:79:9c:50:93:23:5b:d7:11:ff:ed:7d:4c:24:
3d:58:4d:8d:d8:e3:2f:47:78:39:19:99:d6:fc:a0:da:e3:f8:
63:3e:40:96:55:17:c3:61:f7:35:78:9e:33:ec:95:7a:4d:c9:
fe:55:bc:f3:f6:90:68:68:98:ad:ba:4b:aa:cf:9c:fb:b3:67:
ff:5f:29:06:14:f2:6a:5a:09:2c:49:34:37:61:45:41:40:ee:
91:73:5b:8e:3d:23:5d:c4:28:98:3c:1c:11:e5:fb:6d:0b:54:
12:89:bd:fb:33:04:d6:a4:fa:16:cc:d1:43:6f:e9:7f:35:08:
d3:23:67:84:0a:18:c8:db:17:32:df:15:44:90:a2:dd:c5:2e:
7d:8e:df:56:a5:c0:eb:c1:b5:99:f1:8b:4e:78:73:33:e5:79:
f3:31:b6:f2:db:a4:41:1b:08:d7:ae:6d:8d:1f:03:96:7e:89:
42:76:b2:ec:18:ef:0a:34:ee:01:b7:f9:01:b9:97:ea:4e:37:
1c:82:83:c4:22:b2:1c:14:57:94:05:ba:7f:e2:8d:f7:68:a2:
4e:c2:34:d4:89:4c:7e:09:b6:7a:e3:24:01:51:e6:e6:2b:02:
4e:03:03:78:5b:a1:9f:e2:17:60:d1:cc:51:1b:3f:78:b1:fe:
08:02:09:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:42:43 2025 by rpki-client