Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/7YSVNUzXNPg6VLv7KnmFC0-d-jw.roa
File: 7YSVNUzXNPg6VLv7KnmFC0-d-jw.roa (raw, json)
Hash identifier: 2xvJYlobA0pTXVUp7kE/MXq8/oUwwwx3GF2k5SxRu6U=
Subject key identifier: ED:84:95:35:4C:D7:34:F8:3A:54:BB:FB:2A:79:85:0B:4F:9D:FA:3C
Certificate issuer: /CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Certificate serial: 0193BFEA978B22012060881F370468FFB9C1
Authority key identifier: 11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/7YSVNUzXNPg6VLv7KnmFC0-d-jw.roa
Signing time: Fri 13 Dec 2024 12:07:22 +0000
ROA not before: Fri 13 Dec 2024 12:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48467
IP address blocks: 94.228.160.0/24 maxlen: 24
94.228.167.0/24 maxlen: 24
94.228.170.0/24 maxlen: 24
94.228.171.0/24 maxlen: 24
94.228.172.0/22 maxlen: 22
94.228.172.0/24 maxlen: 24
178.236.240.0/23 maxlen: 23
178.236.242.0/24 maxlen: 24
178.236.245.0/24 maxlen: 24
178.236.248.0/22 maxlen: 22
178.236.252.0/24 maxlen: 24
178.236.255.0/24 maxlen: 24
185.46.44.0/22 maxlen: 22
185.46.44.0/23 maxlen: 23
185.46.44.0/24 maxlen: 24
185.46.45.0/24 maxlen: 24
185.46.46.0/23 maxlen: 23
185.46.46.0/24 maxlen: 24
185.46.47.0/24 maxlen: 24
2a02:2070::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 23 Dec 2024 11:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bf:ea:97:8b:22:01:20:60:88:1f:37:04:68:ff:b9:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Validity
Not Before: Dec 13 12:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed8495354cd734f83a54bbfb2a79850b4f9dfa3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:78:51:a7:2c:15:62:7b:5d:97:7b:8a:bd:dc:
6e:8f:24:be:39:f5:ee:69:2a:fa:c7:04:df:cb:a6:
1b:9f:7a:a8:6d:16:bd:c0:54:96:1c:89:dd:d3:4b:
13:9c:51:c9:87:a0:e2:64:0e:53:eb:22:02:14:e9:
70:78:2e:ce:0d:72:12:fc:6d:7d:bb:b1:2b:19:80:
ab:2e:89:a8:ad:85:bc:5c:8a:1c:ee:c5:f3:ba:d5:
4b:d5:5e:e0:d1:b3:31:48:5c:c9:61:32:67:f6:b8:
43:0b:28:86:87:1e:90:06:4f:fb:0d:ab:f7:33:17:
93:85:fb:84:6f:28:5f:b7:bc:a6:5a:d3:8f:8c:bf:
18:6d:be:23:af:5f:46:3f:24:91:ab:78:07:b8:5d:
57:1a:b4:32:56:e8:b4:41:68:fe:d8:c5:67:55:77:
31:2e:f9:87:3c:f2:15:78:2e:47:7d:91:d8:89:9f:
09:65:fd:12:e5:2d:26:d5:98:ad:e4:c2:0b:02:b0:
ea:ca:fa:7b:3f:99:c4:71:29:93:84:da:ac:69:c8:
71:53:ed:33:01:45:d2:92:f5:6f:e7:da:e3:39:51:
ae:75:74:e7:da:79:30:df:bf:a3:6c:24:b6:ec:91:
c6:f2:3e:08:48:13:d1:b1:21:d0:1d:0b:bb:8d:ea:
58:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:84:95:35:4C:D7:34:F8:3A:54:BB:FB:2A:79:85:0B:4F:9D:FA:3C
X509v3 Authority Key Identifier:
keyid:11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/7YSVNUzXNPg6VLv7KnmFC0-d-jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/EX-dVYJrQkht_ITTXBpjpc6HUHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.228.160.0/24
94.228.167.0/24
94.228.170.0-94.228.175.255
178.236.240.0-178.236.242.255
178.236.245.0/24
178.236.248.0-178.236.252.255
178.236.255.0/24
185.46.44.0/22
IPv6:
2a02:2070::/32
Signature Algorithm: sha256WithRSAEncryption
9c:3e:ae:c9:60:45:40:b8:21:ec:f2:13:7a:15:25:28:bd:da:
79:c0:a6:a5:a2:4e:0f:0f:67:1a:8d:05:b7:63:7b:35:70:30:
5e:f5:ac:38:ac:b6:c4:93:48:1a:40:84:37:74:bf:28:3d:d8:
21:f1:97:fb:38:8b:45:c4:22:94:9a:93:dd:aa:80:89:67:78:
bf:c3:13:65:1b:2b:36:2d:22:f4:45:5d:6b:57:a7:9e:eb:9f:
75:53:91:c3:f2:ca:1c:29:b2:19:4f:45:16:d9:05:11:c5:39:
77:d7:bc:15:be:ae:cf:8f:a6:29:0e:73:31:9f:9e:66:1c:06:
b5:6f:c5:e4:30:1c:60:96:fc:27:eb:b7:b3:02:46:34:b6:d9:
bd:bc:99:34:7c:6a:c4:31:22:c8:9f:69:2a:74:67:ea:ca:f9:
0b:aa:22:36:b6:5e:b5:d9:7b:bf:23:82:11:c6:42:d8:e3:1b:
b9:45:38:79:a5:49:30:45:8f:fb:36:e5:8d:97:ef:77:35:08:
78:b8:65:40:90:99:8a:ca:a3:c3:3f:fe:6c:39:1a:d5:36:c8:
27:36:f9:25:90:d5:4c:f6:b3:33:2f:c2:87:f5:10:6d:fb:5f:
c0:aa:00:fd:48:62:75:c5:5d:17:f4:4c:7a:55:f8:e3:35:ae:
0f:2b:ff:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:17:39 2025 by rpki-client