Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/6pGuRjfyRdtLDhQM6YeLARt4WLY.roa
File: 6pGuRjfyRdtLDhQM6YeLARt4WLY.roa (raw, json)
Hash identifier: ykA+EFZ5PmCtMeq9PsbgfL6vUovaPnhVBW56V3MK9b0=
Subject key identifier: EA:91:AE:46:37:F2:45:DB:4B:0E:14:0C:E9:87:8B:01:1B:78:58:B6
Certificate issuer: /CN=b914961f67f22c61e84a66c8ad9c1a8ce51d099b
Certificate serial: 01956F8B5FC60287E539728D35C7F456F5EB
Authority key identifier: B9:14:96:1F:67:F2:2C:61:E8:4A:66:C8:AD:9C:1A:8C:E5:1D:09:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRSWH2fyLGHoSmbIrZwajOUdCZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/6pGuRjfyRdtLDhQM6YeLARt4WLY.roa
Signing time: Fri 07 Mar 2025 07:39:19 +0000
ROA not before: Fri 07 Mar 2025 07:39:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202766
IP address blocks: 77.72.104.0/21 maxlen: 24
84.18.0.0/19 maxlen: 24
92.60.160.0/20 maxlen: 24
176.98.220.0/22 maxlen: 24
185.66.60.0/22 maxlen: 24
185.145.224.0/22 maxlen: 24
185.155.64.0/22 maxlen: 24
185.173.44.0/22 maxlen: 24
185.187.180.0/22 maxlen: 24
185.224.76.0/22 maxlen: 24
193.34.240.0/22 maxlen: 24
195.5.64.0/19 maxlen: 24
195.5.64.0/24 maxlen: 24
195.5.65.0/24 maxlen: 24
195.5.66.0/24 maxlen: 24
195.5.67.0/24 maxlen: 24
212.49.128.0/18 maxlen: 24
212.66.161.0/24 maxlen: 24
212.66.162.0/23 maxlen: 24
212.66.164.0/22 maxlen: 24
212.66.168.0/21 maxlen: 24
212.66.176.0/20 maxlen: 24
212.163.0.0/16 maxlen: 24
213.9.128.0/17 maxlen: 24
213.192.192.0/18 maxlen: 24
2001:ac0::/29 maxlen: 48
2001:ac0::/32 maxlen: 48
2a0d:59c1::/32 maxlen: 32
2a0d:59c7::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 01 Apr 2025 11:23:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:6f:8b:5f:c6:02:87:e5:39:72:8d:35:c7:f4:56:f5:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b914961f67f22c61e84a66c8ad9c1a8ce51d099b
Validity
Not Before: Mar 7 07:39:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ea91ae4637f245db4b0e140ce9878b011b7858b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:87:8d:8b:9d:61:9b:34:78:83:35:ca:4a:a4:
91:c3:aa:54:d7:cf:23:aa:a5:e7:bc:89:90:3e:e9:
d9:e1:c0:10:f6:55:d3:7f:c8:2f:64:be:3e:40:fc:
66:aa:fc:a2:85:22:67:a4:bf:6a:22:f5:4f:e8:04:
b3:61:22:e8:d1:61:db:fa:fd:02:9c:4c:e6:17:49:
e4:78:59:22:b3:61:60:03:ca:0a:68:2d:63:a6:77:
f0:86:4c:9b:2a:ab:0f:5f:15:bf:02:36:14:2f:b6:
33:a3:17:e2:60:ed:e5:1f:74:80:9d:6c:07:f1:54:
59:a0:d1:ff:25:f2:e7:66:6f:ec:21:b8:94:c4:cf:
8e:78:04:cd:a9:53:1a:27:a1:f1:7c:0f:f3:81:4c:
1b:f4:67:6f:8e:2c:4a:52:e6:3f:86:ab:d4:15:d1:
60:43:3f:ec:92:68:da:25:d7:d2:ea:52:32:a2:17:
dd:f9:c3:00:1f:4c:9e:52:0d:3e:7f:95:0f:e9:1e:
20:72:5f:37:6a:76:23:b5:94:22:e1:2f:cc:af:d7:
7b:b4:b6:eb:15:dd:7e:80:ba:77:12:7d:60:2a:b6:
30:24:ae:05:58:4f:04:1f:d8:87:f2:b3:42:61:1b:
b9:29:39:f2:38:39:4c:7b:35:03:cc:c9:1c:5d:8b:
00:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:91:AE:46:37:F2:45:DB:4B:0E:14:0C:E9:87:8B:01:1B:78:58:B6
X509v3 Authority Key Identifier:
keyid:B9:14:96:1F:67:F2:2C:61:E8:4A:66:C8:AD:9C:1A:8C:E5:1D:09:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRSWH2fyLGHoSmbIrZwajOUdCZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/6pGuRjfyRdtLDhQM6YeLARt4WLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/uRSWH2fyLGHoSmbIrZwajOUdCZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.104.0/21
84.18.0.0/19
92.60.160.0/20
176.98.220.0/22
185.66.60.0/22
185.145.224.0/22
185.155.64.0/22
185.173.44.0/22
185.187.180.0/22
185.224.76.0/22
193.34.240.0/22
195.5.64.0/19
212.49.128.0/18
212.66.161.0-212.66.191.255
212.163.0.0/16
213.9.128.0/17
213.192.192.0/18
IPv6:
2001:ac0::/29
2a0d:59c1::/32
2a0d:59c7::/32
Signature Algorithm: sha256WithRSAEncryption
7c:c8:8d:02:99:45:27:67:d9:0c:d1:9a:d3:07:40:77:3b:93:
52:31:53:5d:e2:48:09:c0:df:bf:d8:52:e9:f1:50:95:fe:d7:
4f:22:88:77:01:00:0b:b1:40:75:5f:81:f3:26:a4:e0:54:a5:
2b:82:02:35:24:5f:09:4e:d1:9b:c0:3d:6c:ef:e2:30:1e:9c:
17:a5:ff:e6:18:22:6c:b8:a6:0d:a7:89:b5:7c:ce:5f:49:eb:
13:d9:b6:f4:c9:83:71:33:76:b9:4d:60:37:a5:d8:f8:a6:96:
56:30:a2:83:76:ec:9f:86:7d:32:2a:2c:ab:66:37:08:44:f5:
63:0a:d5:69:b0:a4:35:a0:bc:f4:cf:f8:05:50:94:df:12:bd:
f5:94:0e:11:a7:fe:d8:20:3d:65:2b:76:f1:93:ac:5f:62:b7:
ac:ae:2a:73:9a:9e:35:6d:c3:be:06:70:96:fe:d3:07:39:3d:
3e:3e:71:34:bf:a9:2d:ff:19:be:cc:b5:b0:c6:11:b8:f3:7c:
44:3d:8a:81:15:f2:55:9e:36:b4:b2:63:af:38:f5:b3:9e:3b:
64:c9:2b:93:b2:5f:25:0a:80:92:d7:91:3d:41:1a:13:b0:3c:
7f:51:45:c0:d8:5d:01:83:79:e1:40:84:1f:f1:d4:57:b1:53:
23:4f:68:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:15:43 2025 by rpki-client