Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/E1LIq6Xxn_5KCsZvw9ZIYhs07fI.roa
File: E1LIq6Xxn_5KCsZvw9ZIYhs07fI.roa (raw, json)
Hash identifier: wBq9zZEIFdj9FRRK+YpSyVIY8MZu8SbElWUZ9vsWYII=
Subject key identifier: 13:52:C8:AB:A5:F1:9F:FE:4A:0A:C6:6F:C3:D6:48:62:1B:34:ED:F2
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 019424B29B511F70A3F227FCD373E56AC98D
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/E1LIq6Xxn_5KCsZvw9ZIYhs07fI.roa
Signing time: Thu 02 Jan 2025 01:47:52 +0000
ROA not before: Thu 02 Jan 2025 01:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5503
IP address blocks: 62.171.192.0/19 maxlen: 24
62.171.224.0/22 maxlen: 24
62.171.252.0/22 maxlen: 24
185.192.228.0/22 maxlen: 24
194.154.0.0/19 maxlen: 24
194.238.32.0/19 maxlen: 24
194.238.64.0/19 maxlen: 24
213.18.248.0/21 maxlen: 24
217.177.16.0/20 maxlen: 24
217.177.36.0/22 maxlen: 24
217.177.56.0/21 maxlen: 24
217.177.64.0/21 maxlen: 24
217.177.76.0/22 maxlen: 24
217.177.88.0/21 maxlen: 24
217.179.0.0/17 maxlen: 24
217.179.192.0/18 maxlen: 24
217.180.0.0/21 maxlen: 24
217.180.8.0/22 maxlen: 24
217.180.24.0/21 maxlen: 24
217.180.32.0/22 maxlen: 24
217.180.48.0/22 maxlen: 24
217.181.0.0/18 maxlen: 24
2a02:fb0::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 14 Jan 2025 22:17:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:9b:51:1f:70:a3:f2:27:fc:d3:73:e5:6a:c9:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Jan 2 01:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1352c8aba5f19ffe4a0ac66fc3d648621b34edf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3f:6b:2e:a6:f0:25:85:ef:df:67:9f:d2:e0:
9e:1c:bc:4f:4f:37:0c:b0:86:93:03:b9:37:ee:2b:
84:85:08:1e:7e:7e:71:bc:02:15:ce:71:63:2e:6b:
fd:a8:69:ab:24:e3:6b:c1:19:03:15:ff:dd:92:af:
a7:a7:77:50:bd:f2:c2:08:ee:0e:a6:31:a4:ed:96:
e2:05:ee:ff:df:a1:c2:79:49:c3:03:f4:c2:8b:9b:
b8:23:d1:db:b5:6d:98:ac:95:19:31:f7:40:1a:63:
aa:11:00:8a:ad:e7:d8:0a:87:36:9d:84:9b:5c:cf:
0f:39:98:08:06:42:67:14:00:b0:89:c9:c1:7d:ca:
cd:b8:a0:05:b6:b3:fe:8d:5b:8b:df:90:3d:e1:e2:
89:36:0b:47:80:56:bf:70:53:ef:2e:f1:03:63:87:
89:f2:bb:25:a8:5d:61:be:8f:67:40:4d:3f:76:59:
53:06:ac:f3:2c:98:82:4f:c5:99:60:9d:cc:f5:80:
6c:1c:c8:d8:24:6b:a9:3d:53:64:36:e4:5b:3f:48:
ff:b2:26:68:c0:c3:78:c4:45:cd:37:d7:8c:a4:f7:
0f:07:67:4c:5c:66:be:68:88:98:a9:2d:1e:6e:23:
3e:d1:37:53:2a:7e:b0:3a:b6:80:68:a4:a2:86:70:
6f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:52:C8:AB:A5:F1:9F:FE:4A:0A:C6:6F:C3:D6:48:62:1B:34:ED:F2
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/E1LIq6Xxn_5KCsZvw9ZIYhs07fI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.171.192.0-62.171.227.255
62.171.252.0/22
185.192.228.0/22
194.154.0.0/19
194.238.32.0-194.238.95.255
213.18.248.0/21
217.177.16.0/20
217.177.36.0/22
217.177.56.0-217.177.71.255
217.177.76.0/22
217.177.88.0/21
217.179.0.0/17
217.179.192.0-217.180.11.255
217.180.24.0-217.180.35.255
217.180.48.0/22
217.181.0.0/18
IPv6:
2a02:fb0::/32
Signature Algorithm: sha256WithRSAEncryption
1a:41:0c:dd:99:be:8e:91:23:c7:30:95:4f:31:65:66:64:19:
a8:e7:b8:1d:f6:7b:62:fb:0f:12:d6:d6:ea:e6:ca:30:1e:aa:
c8:f5:2d:fc:06:28:e7:27:13:ed:c8:0e:64:e0:2a:b3:06:e2:
9b:f9:75:b6:c6:d4:46:e4:4f:e3:7b:bf:de:e4:0e:96:17:b4:
f9:e3:c4:e1:db:3e:d8:f6:df:70:bd:02:f1:36:e5:4b:a5:be:
31:52:35:1b:e3:87:e5:a5:a7:7b:f9:65:b7:7c:5a:fb:ef:ed:
1a:67:4d:cf:c1:79:20:37:41:06:08:6c:ab:69:05:07:89:8e:
16:ad:0a:30:c3:e6:c4:24:47:5c:8e:c4:83:e0:7c:f5:e0:eb:
0b:bb:3b:2e:c5:7a:f5:23:9b:c6:c4:70:6a:f4:c6:f7:39:a0:
fe:a0:16:1c:55:ad:40:b9:eb:ad:b0:ed:cd:67:67:50:28:1f:
ee:7f:4a:59:70:ec:13:3b:b5:00:e6:58:f3:13:3a:61:53:fd:
43:1a:6c:fc:be:b8:7b:ff:4c:24:3b:b6:1a:27:88:8a:ea:0b:
55:6a:a7:1b:18:99:4d:bb:69:65:7d:43:f3:09:9a:f9:89:06:
aa:27:bf:f2:11:8e:0a:cb:08:13:6e:28:c4:c6:17:6f:3e:2b:
da:0e:0b:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:04:49 2025 by rpki-client