Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/YH6ggsJDnEQcs3XP5dAew3lmu-8.roa
File: YH6ggsJDnEQcs3XP5dAew3lmu-8.roa (raw, json)
Hash identifier: 0vANs0TX4lOWMiM+RFwbVofiGVzQdWxue0CdPMAv2wE=
Subject key identifier: 60:7E:A0:82:C2:43:9C:44:1C:B3:75:CF:E5:D0:1E:C3:79:66:BB:EF
Certificate issuer: /CN=5c6b0c001a99ab6296e242173bf7e7fdcf03c019
Certificate serial: 01900CB4A7728BAB4077AF10ED0140E4B217
Authority key identifier: 5C:6B:0C:00:1A:99:AB:62:96:E2:42:17:3B:F7:E7:FD:CF:03:C0:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGsMABqZq2KW4kIXO_fn_c8DwBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/YH6ggsJDnEQcs3XP5dAew3lmu-8.roa
Signing time: Wed 12 Jun 2024 13:48:04 +0000
ROA not before: Wed 12 Jun 2024 13:48:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44600
IP address blocks: 46.182.80.0/22 maxlen: 22
46.182.84.0/22 maxlen: 22
91.202.72.0/22 maxlen: 22
94.131.244.0/24 maxlen: 24
94.131.245.0/24 maxlen: 24
94.131.248.0/24 maxlen: 24
94.131.249.0/24 maxlen: 24
94.131.250.0/23 maxlen: 23
94.131.250.0/24 maxlen: 24
94.131.252.0/24 maxlen: 24
94.131.253.0/24 maxlen: 24
94.131.254.0/24 maxlen: 24
94.131.255.0/24 maxlen: 24
185.41.248.0/22 maxlen: 22
185.46.148.0/22 maxlen: 22
185.128.232.0/22 maxlen: 22
185.128.235.0/24 maxlen: 24
185.156.52.0/24 maxlen: 24
185.156.53.0/24 maxlen: 24
185.156.54.0/24 maxlen: 24
185.156.55.0/24 maxlen: 24
2a03:a600::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 09 Sep 2024 10:10:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:0c:b4:a7:72:8b:ab:40:77:af:10:ed:01:40:e4:b2:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c6b0c001a99ab6296e242173bf7e7fdcf03c019
Validity
Not Before: Jun 12 13:48:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=607ea082c2439c441cb375cfe5d01ec37966bbef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:63:07:33:05:25:87:39:06:4a:6b:f3:0e:81:
47:d8:de:10:bc:18:07:45:e6:76:c8:ac:fe:26:60:
71:3d:00:c8:11:20:ac:d4:81:eb:44:0b:c3:f8:c4:
22:99:0b:94:4b:db:a8:ab:43:e5:cd:8b:3b:dc:00:
81:5d:bb:ca:fb:fc:c0:6c:0f:18:46:28:e3:1f:98:
37:32:28:65:c4:c9:39:17:5c:23:40:65:9e:4b:33:
a7:e6:fc:fb:33:e5:01:a7:a8:56:63:f9:65:16:44:
39:bc:66:ee:44:c2:77:be:21:94:1d:a3:f9:12:bf:
2b:db:ed:2b:9c:a2:03:c1:f7:eb:5c:e2:df:0e:60:
d9:c6:a1:d8:b9:61:3d:a7:d8:28:ce:f1:f6:0f:d2:
21:8b:f5:e0:e8:fe:c2:44:c3:4b:2d:31:38:dd:3c:
66:10:a2:c5:0e:76:a3:e1:7f:4b:30:35:5b:93:e8:
fd:87:0c:fb:74:a2:4e:e1:bf:77:be:66:fb:68:3c:
6e:0d:fb:31:da:43:cb:b2:71:fa:6b:1c:e4:b0:4a:
dd:7a:18:49:12:11:2b:e3:12:6d:9e:e6:b1:d5:36:
46:28:ad:75:81:8a:25:cf:03:2b:aa:85:41:54:fe:
5a:9d:f9:ba:e3:b1:0f:79:d0:9d:e0:a4:71:75:11:
b0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:7E:A0:82:C2:43:9C:44:1C:B3:75:CF:E5:D0:1E:C3:79:66:BB:EF
X509v3 Authority Key Identifier:
keyid:5C:6B:0C:00:1A:99:AB:62:96:E2:42:17:3B:F7:E7:FD:CF:03:C0:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGsMABqZq2KW4kIXO_fn_c8DwBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/YH6ggsJDnEQcs3XP5dAew3lmu-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/XGsMABqZq2KW4kIXO_fn_c8DwBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.182.80.0/21
91.202.72.0/22
94.131.244.0/23
94.131.248.0/21
185.41.248.0/22
185.46.148.0/22
185.128.232.0/22
185.156.52.0/22
IPv6:
2a03:a600::/29
Signature Algorithm: sha256WithRSAEncryption
37:28:83:79:18:32:fd:f6:7c:32:20:1b:91:01:8b:d4:3d:55:
2b:75:77:64:d2:9c:7f:c4:2e:5c:f1:a3:69:a6:8d:5c:83:d0:
dc:be:ef:12:1b:2f:90:1d:ad:db:3a:8a:c9:15:84:ce:25:1c:
d7:a4:09:3b:e6:56:90:7c:94:21:df:53:ca:2a:7b:5c:a9:c9:
c9:07:90:63:1b:1a:2f:c7:16:74:ad:4d:6b:b1:59:4f:1c:9d:
f6:90:60:65:04:ce:cd:2d:91:3e:1f:a2:20:5b:ce:93:5a:52:
c6:68:a4:a0:da:a8:7d:ee:93:b6:d9:19:43:80:c7:40:ce:9a:
47:a5:65:29:6a:5c:a5:00:80:63:ad:05:87:89:b1:c7:e0:5e:
6a:fe:a3:6c:5e:fd:85:43:e8:f8:6d:5c:ca:69:ca:f2:4f:94:
6b:ab:c6:42:ea:f9:ee:51:68:db:d4:07:cd:81:a8:0a:93:89:
7a:2e:6a:1e:e4:7e:93:f7:32:da:4e:e2:d4:8c:f3:9b:09:41:
98:e3:06:85:c9:c5:50:09:b3:15:18:7b:ec:70:d8:54:af:ab:
58:87:42:4f:89:44:8c:fe:21:22:3d:09:a3:40:df:0d:40:b3:
8f:6b:43:df:90:ca:3e:6a:7a:7d:17:ec:8e:dd:dc:69:66:b1:
05:cf:74:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:54:30 2025 by rpki-client