Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/m_-w8MFMUmsKtyAMzo-gKd4PsF4.roa
File: m_-w8MFMUmsKtyAMzo-gKd4PsF4.roa (raw, json)
Hash identifier: PNaFxj917iX4GEfcQQyfGoc2Ozyldd8hXlcOtZgzFQ8=
Subject key identifier: 9B:FF:B0:F0:C1:4C:52:6B:0A:B7:20:0C:CE:8F:A0:29:DE:0F:B0:5E
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 019424B29E7292A325AC38F6AEC30FB77B31
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/m_-w8MFMUmsKtyAMzo-gKd4PsF4.roa
Signing time: Thu 02 Jan 2025 01:47:53 +0000
ROA not before: Thu 02 Jan 2025 01:47:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16276
IP address blocks: 62.171.228.0/24 maxlen: 24
62.171.229.0/24 maxlen: 24
62.171.231.0/24 maxlen: 24
62.171.248.0/24 maxlen: 24
62.171.251.0/24 maxlen: 24
217.177.32.0/24 maxlen: 24
217.177.35.0/24 maxlen: 24
217.180.12.0/24 maxlen: 24
217.180.13.0/24 maxlen: 24
217.180.14.0/24 maxlen: 24
217.180.16.0/24 maxlen: 24
217.180.17.0/24 maxlen: 24
217.180.18.0/24 maxlen: 24
217.180.19.0/24 maxlen: 24
217.180.20.0/24 maxlen: 24
217.180.38.0/24 maxlen: 24
217.180.45.0/24 maxlen: 24
217.180.58.0/24 maxlen: 24
217.180.59.0/24 maxlen: 24
217.180.61.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Jan 2025 08:04:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:9e:72:92:a3:25:ac:38:f6:ae:c3:0f:b7:7b:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Jan 2 01:47:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9bffb0f0c14c526b0ab7200cce8fa029de0fb05e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:81:bd:91:11:67:a6:b4:7a:50:43:85:84:ce:
fa:23:04:ed:fc:a6:b9:a4:ce:6d:5f:f5:3d:ab:07:
cc:e5:e6:34:b1:5f:44:04:9c:bc:d2:6b:34:3d:9b:
dd:30:f2:41:46:cd:90:bd:12:f0:bc:73:d5:91:1e:
75:d3:2d:db:c2:b9:27:90:30:a8:2d:78:d5:d7:af:
ab:68:78:6f:fc:87:db:47:86:8c:97:13:89:74:ac:
f9:26:66:87:ed:9e:db:db:76:a5:a4:6e:af:c6:a2:
55:bf:cd:19:b7:51:49:e0:78:6e:30:db:1a:a1:c2:
29:5f:a1:2b:64:ff:99:be:41:e1:2f:0b:db:a2:c0:
c8:61:7a:6e:02:38:99:89:60:d9:23:27:18:a6:d0:
a3:8c:bf:3f:e0:96:40:5a:9a:03:e3:f1:cc:87:08:
71:8d:b9:9a:67:63:0c:75:92:67:5c:20:f7:4e:ee:
f0:a5:91:99:1c:ce:bf:61:82:91:ea:38:d5:b0:37:
de:02:73:82:7c:51:f2:9f:79:c6:f6:b0:7d:1e:35:
75:3c:e1:2c:b7:8a:84:57:24:ec:b0:ea:1a:04:9a:
54:db:92:2a:8f:c7:15:92:ca:6f:77:7f:df:b6:a4:
fd:b5:37:67:67:21:2d:04:bd:d9:70:a6:4b:4d:cf:
fb:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:FF:B0:F0:C1:4C:52:6B:0A:B7:20:0C:CE:8F:A0:29:DE:0F:B0:5E
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/m_-w8MFMUmsKtyAMzo-gKd4PsF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.171.228.0/23
62.171.231.0/24
62.171.248.0/24
62.171.251.0/24
217.177.32.0/24
217.177.35.0/24
217.180.12.0-217.180.14.255
217.180.16.0-217.180.20.255
217.180.38.0/24
217.180.45.0/24
217.180.58.0/23
217.180.61.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:13:4b:ff:96:2a:80:25:8a:1d:69:3b:d4:3e:2f:99:fa:20:
a0:97:8a:f0:f8:ce:b5:e7:ca:a0:5a:4a:60:ea:84:ae:8e:42:
02:d4:0e:f0:59:62:a1:c5:4f:71:d5:37:1f:d8:85:b9:7f:34:
c4:41:39:44:5a:07:da:bb:6e:cd:2a:1b:e4:59:18:78:99:64:
6c:5b:39:a0:8d:7c:e7:fb:fc:00:dd:fe:35:ff:40:19:12:d9:
73:d0:35:27:51:53:04:c7:36:10:f9:a9:41:c4:72:ba:03:23:
3b:86:91:c9:24:03:f0:4c:40:9e:2c:f4:fa:79:a0:9f:68:7b:
78:24:2c:43:75:99:4f:c1:b2:9c:00:8d:db:ee:81:3a:67:49:
17:8e:d4:3f:c7:1b:d8:47:b0:45:c5:04:9f:8c:4b:3e:51:ea:
48:4c:b5:b5:95:c3:94:4b:86:c0:6c:f1:7e:12:45:c2:32:b1:
43:b9:19:ca:80:a3:5d:16:42:32:31:33:e4:73:9d:8c:a0:ba:
ab:70:ca:40:a9:ec:13:8f:9c:e1:4c:47:34:2a:73:d9:2f:27:
58:22:7b:4b:54:d5:89:f3:2e:1b:04:d2:ca:e2:75:d0:2f:ef:
83:10:10:3d:34:76:1c:60:1d:57:a4:f0:77:9c:cc:be:66:53:
19:81:36:cc
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgISAZQksp5ykqMlrDj2rsMPt3sxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhNTgzNmRkZTliOWRhZWYzNWE4YTdmNzRkNjMyNmY2YjQy
ZGE3NGQwHhcNMjUwMTAyMDE0NzUzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YmZmYjBmMGMxNGM1MjZiMGFiNzIwMGNjZThmYTAyOWRlMGZiMDVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw4G9kRFnprR6UEOFhM76IwTt/Ka5
pM5tX/U9qwfM5eY0sV9EBJy80ms0PZvdMPJBRs2QvRLwvHPVkR510y3bwrknkDCo
LXjV16+raHhv/IfbR4aMlxOJdKz5JmaH7Z7b23alpG6vxqJVv80Zt1FJ4HhuMNsa
ocIpX6ErZP+ZvkHhLwvbosDIYXpuAjiZiWDZIycYptCjjL8/4JZAWpoD4/HMhwhx
jbmaZ2MMdZJnXCD3Tu7wpZGZHM6/YYKR6jjVsDfeAnOCfFHyn3nG9rB9HjV1POEs
t4qEVyTssOoaBJpU25Iqj8cVkspvd3/ftqT9tTdnZyEtBL3ZcKZLTc/7DQIDAQAB
o4ICWzCCAlcwHQYDVR0OBBYEFJv/sPDBTFJrCrcgDM6PoCneD7BeMB8GA1UdIwQY
MBaAFGpYNt3pudrvNain901jJva0LadNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWxnMjNlbTUydTgxcUtmM1RXTW05clF0cDAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi84MzgwMzItZGI5Ny00OTdmLThjOTUt
YzE5OTQyNzM3ZTZkLzEvbV8tdzhNRk1VbXNLdHlBTXpvLWdLZDRQc0Y0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi84MzgwMzItZGI5Ny00OTdmLThjOTUtYzE5OTQyNzM3ZTZk
LzEvYWxnMjNlbTUydTgxcUtmM1RXTW05clF0cDAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHEGCCsGAQUFBwEHAQH/BGIwYDBeBAIAATBYAwQBPqvkAwQA
PqvnAwQAPqv4AwQAPqv7AwQA2bEgAwQA2bEjMAwDBALZtAwDBADZtA4wDAMEBNm0
EAMEANm0FAMEANm0JgMEANm0LQMEAdm0OgMEANm0PTANBgkqhkiG9w0BAQsFAAOC
AQEATBNL/5YqgCWKHWk71D4vmfogoJeK8PjOtefKoFpKYOqEro5CAtQO8FliocVP
cdU3H9iFuX80xEE5RFoH2rtuzSob5FkYeJlkbFs5oI185/v8AN3+Nf9AGRLZc9A1
J1FTBMc2EPmpQcRyugMjO4aRySQD8ExAniz0+nmgn2h7eCQsQ3WZT8GynACN2+6B
OmdJF47UP8cb2EewRcUEn4xLPlHqSEy1tZXDlEuGwGzxfhJFwjKxQ7kZyoCjXRZC
MjEz5HOdjKC6q3DKQKnsE4+c4UxHNCpz2S8nWCJ7S1TVifMuGwTSyuJ10C/vgxAQ
PTR2HGAdV6Twd5zMvmZTGYE2zA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 14:59:39 2025 by rpki-client