Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/cnruzVWQDfh7zC2qXO6ZDdkZZe8.roa
File: cnruzVWQDfh7zC2qXO6ZDdkZZe8.roa (raw, json)
Hash identifier: pwkh7oLmsrzeAgAUuZAS5cG9vEPXHlQicsrycofLzmM=
Subject key identifier: 72:7A:EE:CD:55:90:0D:F8:7B:CC:2D:AA:5C:EE:99:0D:D9:19:65:EF
Certificate issuer: /CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Certificate serial: 0193C01CF198B0B69A2B2B1BE9CDD3A3F3A2
Authority key identifier: 27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/cnruzVWQDfh7zC2qXO6ZDdkZZe8.roa
Signing time: Fri 13 Dec 2024 13:02:22 +0000
ROA not before: Fri 13 Dec 2024 13:02:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60781
IP address blocks: 5.79.64.0/18 maxlen: 18
37.48.64.0/18 maxlen: 18
62.212.64.0/19 maxlen: 19
81.17.47.0/24 maxlen: 24
81.17.49.0/24 maxlen: 24
81.17.50.0/24 maxlen: 24
81.17.51.0/24 maxlen: 24
81.17.52.0/24 maxlen: 24
81.17.53.0/24 maxlen: 24
81.17.54.0/24 maxlen: 24
81.17.55.0/24 maxlen: 24
81.171.0.0/19 maxlen: 19
82.192.64.0/19 maxlen: 19
83.149.64.0/18 maxlen: 18
85.17.0.0/16 maxlen: 16
89.149.192.0/18 maxlen: 18
89.149.192.0/20 maxlen: 20
94.75.192.0/18 maxlen: 18
95.168.160.0/20 maxlen: 20
95.211.0.0/16 maxlen: 16
95.211.51.0/24 maxlen: 24
95.211.85.0/24 maxlen: 24
173.234.68.0/22 maxlen: 22
178.162.128.0/18 maxlen: 18
178.162.162.0/23 maxlen: 23
178.162.164.0/22 maxlen: 22
178.162.168.0/22 maxlen: 22
178.162.176.0/20 maxlen: 20
185.17.184.0/22 maxlen: 22
212.7.192.0/20 maxlen: 20
212.7.208.0/22 maxlen: 22
212.32.224.0/19 maxlen: 19
213.227.128.0/19 maxlen: 19
2001:1af8::/32 maxlen: 32
2001:1af8:8000::/36 maxlen: 36
2001:1af8:8000::/40 maxlen: 40
2001:1af8:8100::/44 maxlen: 44
2001:1af8:8110::/44 maxlen: 44
Validation: Failed, certificate revoked on Wed 01 Jan 2025 11:48:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:c0:1c:f1:98:b0:b6:9a:2b:2b:1b:e9:cd:d3:a3:f3:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Validity
Not Before: Dec 13 13:02:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=727aeecd55900df87bcc2daa5cee990dd91965ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:dd:8c:63:65:66:ab:00:a2:b4:f7:fb:80:67:
f1:37:76:23:28:64:17:36:33:18:49:63:e2:7b:b1:
0d:71:aa:07:ea:e4:b5:d7:38:1f:05:38:be:21:76:
09:14:d9:cc:da:b7:36:63:07:1d:dd:88:94:77:14:
00:ce:9f:1e:4a:03:55:a8:d3:99:b3:a2:46:5c:9b:
f2:0f:cb:0e:a9:eb:cf:e6:3c:05:40:58:57:c6:91:
5c:86:7e:2c:2b:1a:c7:ca:3d:b9:29:60:7e:7c:97:
76:d4:e1:15:df:f8:d1:1e:a4:37:43:a5:81:40:16:
78:92:c4:b5:b1:79:5c:e7:11:17:c0:16:0e:bf:6c:
5b:e9:eb:bb:2c:f7:a3:6c:4a:d0:0c:42:2f:1c:30:
2a:fa:01:1a:3a:a5:11:b6:ac:06:fb:f3:3a:09:8a:
3b:fa:f9:7d:84:91:28:e0:9e:d3:ff:a8:0c:ce:4f:
3e:55:45:36:86:86:74:4d:45:97:5d:65:70:eb:55:
26:1d:5a:11:bd:37:83:0e:14:5d:52:96:95:a3:15:
cc:9f:bd:52:6e:14:6c:36:9c:9d:cb:66:ac:9a:0f:
38:34:ed:c3:24:7d:d0:ae:32:57:1e:2d:5a:a1:60:
63:2a:a6:d2:09:f1:bb:3e:39:e8:c3:43:01:9b:0f:
5c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:7A:EE:CD:55:90:0D:F8:7B:CC:2D:AA:5C:EE:99:0D:D9:19:65:EF
X509v3 Authority Key Identifier:
keyid:27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/cnruzVWQDfh7zC2qXO6ZDdkZZe8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.79.64.0/18
37.48.64.0/18
62.212.64.0/19
81.17.47.0/24
81.17.49.0-81.17.55.255
81.171.0.0/19
82.192.64.0/19
83.149.64.0/18
85.17.0.0/16
89.149.192.0/18
94.75.192.0/18
95.168.160.0/20
95.211.0.0/16
173.234.68.0/22
178.162.128.0/18
185.17.184.0/22
212.7.192.0-212.7.211.255
212.32.224.0/19
213.227.128.0/19
IPv6:
2001:1af8::/32
Signature Algorithm: sha256WithRSAEncryption
af:ec:b0:59:02:83:64:00:3e:c3:51:b8:11:f1:b9:1d:bd:88:
d0:32:1d:ae:0b:63:04:6e:d8:3d:1d:e6:57:83:c8:be:2f:f2:
cd:f3:c4:41:56:1d:3a:50:7f:4b:75:7e:c6:0f:6d:ad:6d:3f:
31:14:83:6f:13:72:24:08:a3:03:8f:c1:b6:d3:62:19:1a:d7:
32:f5:c3:43:8a:27:2e:56:14:dc:1b:ff:06:27:aa:f3:5a:bc:
04:2c:d1:10:7d:60:4d:ab:f4:d9:ed:14:ba:75:5b:ab:a1:95:
0d:4b:cf:af:5b:5f:1f:9c:80:7e:87:50:a9:00:b4:b9:0a:ba:
81:6e:63:6b:ad:39:9f:45:e2:a8:9d:90:9e:af:89:9e:66:88:
ee:d4:fc:c2:0c:18:0c:e0:44:02:47:f7:21:8c:d6:43:9e:46:
ac:c3:e5:34:f0:af:2b:d5:35:fb:79:6a:79:1d:94:0d:ca:85:
ff:21:32:3b:7f:ad:dd:db:76:51:03:84:b4:34:d8:b8:03:50:
48:11:ed:73:2d:c8:91:f4:14:9c:de:b6:34:8c:86:73:cd:9f:
46:29:02:83:20:c6:af:95:11:e7:5a:80:7c:9f:fe:11:9b:f6:
e6:f2:2a:44:7a:38:09:01:7d:20:6e:ea:28:3b:36:92:6a:2d:
21:df:7a:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 14:18:29 2025 by rpki-client