Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/d7SuYRi-T6Lc7-i43NaezdlCwzQ.roa
File: d7SuYRi-T6Lc7-i43NaezdlCwzQ.roa (raw, json)
Hash identifier: nQdlCLu2RBFNKIKQI59c33RlI7PTX4nH7NjSEHxz558=
Subject key identifier: 77:B4:AE:61:18:BE:4F:A2:DC:EF:E8:B8:DC:D6:9E:CD:D9:42:C3:34
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0194DF129CEAFB44B5B5A8934CF99B30C0FC
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/d7SuYRi-T6Lc7-i43NaezdlCwzQ.roa
Signing time: Fri 07 Feb 2025 06:22:06 +0000
ROA not before: Fri 07 Feb 2025 06:22:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7018
IP address blocks: 37.202.193.0/24 maxlen: 24
37.202.195.0/24 maxlen: 24
37.202.196.0/24 maxlen: 24
37.202.197.0/24 maxlen: 24
37.202.198.0/24 maxlen: 24
37.202.199.0/24 maxlen: 24
37.202.200.0/24 maxlen: 24
37.202.201.0/24 maxlen: 24
37.202.219.0/24 maxlen: 24
37.202.223.0/24 maxlen: 24
151.242.99.0/24 maxlen: 24
151.242.104.0/24 maxlen: 24
151.242.106.0/24 maxlen: 24
151.242.108.0/24 maxlen: 24
151.242.111.0/24 maxlen: 24
151.242.118.0/24 maxlen: 24
151.242.121.0/24 maxlen: 24
151.242.122.0/24 maxlen: 24
151.242.127.0/24 maxlen: 24
151.243.93.0/24 maxlen: 24
151.243.96.0/24 maxlen: 24
151.243.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Mar 2025 07:39:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:df:12:9c:ea:fb:44:b5:b5:a8:93:4c:f9:9b:30:c0:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Feb 7 06:22:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=77b4ae6118be4fa2dcefe8b8dcd69ecdd942c334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:07:e2:3b:e5:0d:6b:2d:25:ad:71:54:98:4d:
de:1d:c7:70:d3:96:b2:27:3d:ae:8c:09:2a:92:10:
09:97:99:cf:73:46:0a:7c:ad:d1:2f:fd:ad:a6:be:
c4:40:4a:06:5c:eb:18:18:90:20:ee:2f:d6:e0:13:
83:54:62:9d:4a:52:9c:71:21:e8:75:40:24:d4:c0:
6c:c4:d1:fe:69:4b:fa:ab:c5:0d:21:54:be:fe:c4:
ed:b8:d5:c3:f0:a6:c1:bc:80:bc:18:35:5f:7e:50:
a8:3c:1e:22:1e:43:2d:f7:aa:ec:f8:3d:e8:2d:1b:
4a:e0:b9:a0:09:ac:66:6c:a4:be:7c:ff:68:8b:6a:
cb:1e:67:f8:4f:f1:e2:32:38:2d:e6:75:58:14:f5:
ec:63:fd:40:d4:2b:5c:ef:36:b8:87:da:5e:02:a5:
de:d6:98:69:34:14:f5:cf:1c:12:67:d7:93:16:80:
55:03:6f:47:4a:f6:3c:95:8d:e9:de:ed:da:e6:ce:
c3:61:36:c4:81:2b:05:21:55:7a:03:bb:f4:48:8e:
d5:a6:1e:e4:e5:29:0d:ee:2a:22:dc:d8:50:1a:8c:
0d:99:85:6a:e8:9d:ee:e4:3a:23:b0:45:47:3b:ed:
19:e6:5b:9b:cb:7e:3d:ee:f3:04:33:a4:00:ef:c1:
d3:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:B4:AE:61:18:BE:4F:A2:DC:EF:E8:B8:DC:D6:9E:CD:D9:42:C3:34
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/d7SuYRi-T6Lc7-i43NaezdlCwzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.193.0/24
37.202.195.0-37.202.201.255
37.202.219.0/24
37.202.223.0/24
151.242.99.0/24
151.242.104.0/24
151.242.106.0/24
151.242.108.0/24
151.242.111.0/24
151.242.118.0/24
151.242.121.0-151.242.122.255
151.242.127.0/24
151.243.93.0/24
151.243.96.0/24
151.243.99.0/24
Signature Algorithm: sha256WithRSAEncryption
72:34:5d:fe:92:6d:55:66:b6:c1:79:bb:fd:d7:d6:e9:51:35:
00:3b:47:a6:6b:a0:ee:c2:99:20:49:98:f5:4f:67:39:73:e9:
2c:87:00:95:4f:20:ab:20:f2:50:e4:96:0e:80:4e:3a:e6:1a:
8f:d4:4d:7a:ae:03:12:0b:87:fa:d0:00:52:ff:f5:5e:40:9e:
f1:d6:28:9b:16:d4:30:c6:04:b9:fe:24:96:70:5b:e5:7c:2d:
8b:0c:a1:70:a3:d2:a2:7d:46:08:89:a4:91:a2:4c:47:63:71:
54:45:94:39:5c:9f:13:20:a0:2a:2b:5f:07:de:91:1b:fd:d4:
14:61:cf:a8:b7:10:b8:31:90:65:b2:4d:db:cf:40:90:38:ec:
6f:52:e5:05:1e:10:34:c1:b9:7c:1c:41:7f:e5:b7:9f:3b:db:
2a:b3:3a:ee:2f:b3:c1:97:08:b8:c1:dc:03:b8:e0:5f:6f:a3:
26:68:d8:4d:e7:b1:a4:a6:1b:6a:80:92:51:53:86:11:a0:01:
04:66:e4:0a:b9:8f:9a:9b:55:59:e5:36:f9:13:b0:a5:ac:0a:
7a:a7:32:bc:97:ac:98:55:04:b0:22:36:5e:b6:57:4f:cb:f2:
a2:8b:c0:e7:70:5d:26:91:41:e3:22:18:b4:53:ef:db:76:bc:
4b:03:5a:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:23:49 2025 by rpki-client