Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/c47dG_ZDzS8HkpRIZPgQMjQGn8Y.roa
File: c47dG_ZDzS8HkpRIZPgQMjQGn8Y.roa (raw, json)
Hash identifier: jzQcjw1Zhf1NsP7PptesGGe5XW4w8FeeMHvi7nyOS7s=
Subject key identifier: 73:8E:DD:1B:F6:43:CD:2F:07:92:94:48:64:F8:10:32:34:06:9F:C6
Certificate issuer: /CN=b35002ba088d5bd09c1553dced5b0bf3907ff736
Certificate serial: 018CF27593A672349115524F2A6E08497B1F
Authority key identifier: B3:50:02:BA:08:8D:5B:D0:9C:15:53:DC:ED:5B:0B:F3:90:7F:F7:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s1ACugiNW9CcFVPc7VsL85B_9zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/c47dG_ZDzS8HkpRIZPgQMjQGn8Y.roa
Signing time: Wed 10 Jan 2024 08:20:40 +0000
ROA not before: Wed 10 Jan 2024 08:20:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48108
IP address blocks: 176.116.0.0/24 maxlen: 24
94.247.137.0/24 maxlen: 24
146.19.84.0/24 maxlen: 24
185.235.230.0/24 maxlen: 24
31.222.227.0/24 maxlen: 24
2001:678:e30::/48 maxlen: 48
2a11:8481::/32 maxlen: 32
2a0a:2e80::/32 maxlen: 32
2a11:8482::/32 maxlen: 32
2a0a:2e82::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 11 Jan 2024 06:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f2:75:93:a6:72:34:91:15:52:4f:2a:6e:08:49:7b:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b35002ba088d5bd09c1553dced5b0bf3907ff736
Validity
Not Before: Jan 10 08:20:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=738edd1bf643cd2f0792944864f8103234069fc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8e:b7:b3:78:dc:83:ba:8b:df:24:57:49:26:
25:64:70:0f:83:63:cc:7d:55:e5:66:16:da:00:ef:
c6:17:ae:40:94:52:e4:ce:4c:20:db:88:6b:e5:02:
4d:87:37:c1:e4:b3:f8:be:b5:8f:00:12:da:40:32:
cc:44:d8:8b:a4:a4:f6:18:1f:7f:2e:d2:c0:24:39:
1c:ef:04:d5:e2:91:b2:65:38:95:b9:fe:c5:34:1e:
bb:fd:67:5c:fa:22:a9:32:00:37:36:7b:7c:5c:62:
d0:c2:0b:3f:a9:74:37:8b:78:c0:17:5a:ee:9d:cb:
4f:92:45:51:48:ba:21:7a:ad:1e:ec:3a:39:39:17:
88:9c:67:7b:78:84:9f:d5:9f:1c:3e:ca:d4:67:4c:
94:62:30:bb:5e:14:19:3f:50:fe:c2:3c:3f:80:12:
d9:8e:c3:a0:01:f6:56:4b:d1:51:9a:9e:3e:04:25:
d3:d9:ab:3a:27:dd:54:e5:4a:cf:7a:69:16:23:1a:
8b:5d:45:4b:b1:34:75:6e:46:ca:18:54:59:8b:ba:
b1:90:e3:6c:b0:73:64:05:6e:ca:05:73:87:9a:b3:
e0:aa:f4:a0:39:38:0c:17:99:1b:19:73:d7:f2:02:
92:d2:5a:55:04:8c:16:2b:78:88:7d:7c:9f:cd:28:
97:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:8E:DD:1B:F6:43:CD:2F:07:92:94:48:64:F8:10:32:34:06:9F:C6
X509v3 Authority Key Identifier:
keyid:B3:50:02:BA:08:8D:5B:D0:9C:15:53:DC:ED:5B:0B:F3:90:7F:F7:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s1ACugiNW9CcFVPc7VsL85B_9zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/c47dG_ZDzS8HkpRIZPgQMjQGn8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/s1ACugiNW9CcFVPc7VsL85B_9zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.227.0/24
94.247.137.0/24
146.19.84.0/24
176.116.0.0/24
185.235.230.0/24
IPv6:
2001:678:e30::/48
2a0a:2e80::/32
2a0a:2e82::/32
2a11:8481::-2a11:8482:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
3a:90:7e:61:5a:b5:a0:96:21:10:d8:8b:62:97:38:ba:c0:d7:
c3:57:73:be:dc:ba:07:56:6e:6b:49:7e:b8:f0:15:e5:01:b9:
57:ba:1e:7e:80:8f:9e:2c:5f:94:17:87:54:c8:b3:c9:0c:97:
cb:48:fe:d9:cf:75:2d:64:f3:cd:41:a0:b4:ae:e3:a8:da:04:
c5:3b:06:d4:e3:0f:1d:96:49:7f:84:3c:75:40:fa:dd:b3:71:
86:04:08:0d:f9:16:58:68:6e:52:ae:43:ed:4f:cf:52:e1:20:
f7:95:7d:88:d2:fb:0b:1f:ce:9c:17:a9:f7:d6:ac:05:44:ae:
b6:2a:11:3a:ab:4f:84:c9:52:ba:a5:2b:35:39:2b:c5:1c:d0:
df:f0:35:e8:06:d2:15:08:c7:dc:94:70:55:eb:47:21:fb:55:
cc:be:63:e9:f2:e4:77:35:d6:24:20:7a:26:d1:bc:f4:c0:65:
13:14:54:43:9f:86:85:4f:cb:e2:68:05:f3:b5:6f:c6:b2:4e:
e6:9b:fb:d7:f1:f3:42:2f:22:3d:86:2d:f0:5c:89:b5:d5:f0:
ac:57:c6:38:66:01:ac:c1:2e:00:77:84:fa:77:5c:fe:8b:21:
2d:52:13:4d:20:be:d5:ad:1b:89:d4:19:8d:c8:99:03:18:1a:
1c:64:6e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:45:20 2025 by rpki-client