Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/6c0e22-fb61-49db-b065-993cd8388fd5/1/7gdjw1EXNmX4uKx2DCEWouMFY4o.roa
File: 7gdjw1EXNmX4uKx2DCEWouMFY4o.roa (raw, json)
Hash identifier: QA2JAEraMhgRP1uHMm7/oHFr30HcxFHQq6be4QVbSvk=
Subject key identifier: EE:07:63:C3:51:17:36:65:F8:B8:AC:76:0C:21:16:A2:E3:05:63:8A
Certificate issuer: /CN=0c6f182804b56e508aa372c03cceb73ef8c2c68b
Certificate serial: 019265D5939F0C2E5C719B07BDABFDDE2584
Authority key identifier: 0C:6F:18:28:04:B5:6E:50:8A:A3:72:C0:3C:CE:B7:3E:F8:C2:C6:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DG8YKAS1blCKo3LAPM63PvjCxos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/6c0e22-fb61-49db-b065-993cd8388fd5/1/7gdjw1EXNmX4uKx2DCEWouMFY4o.roa
Signing time: Mon 07 Oct 2024 07:15:48 +0000
ROA not before: Mon 07 Oct 2024 07:15:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29061
IP address blocks: 92.62.64.0/20 maxlen: 24
92.62.64.0/21 maxlen: 24
92.62.65.0/24 maxlen: 24
92.62.66.0/23 maxlen: 24
95.87.72.0/21 maxlen: 24
95.87.72.0/22 maxlen: 24
95.87.76.0/22 maxlen: 24
95.87.80.0/21 maxlen: 24
95.87.88.0/23 maxlen: 24
95.87.92.0/22 maxlen: 24
95.87.92.0/24 maxlen: 24
95.87.93.0/24 maxlen: 24
95.87.94.0/24 maxlen: 24
95.87.95.0/24 maxlen: 24
185.53.228.0/22 maxlen: 24
185.53.228.0/24 maxlen: 24
185.53.229.0/24 maxlen: 24
185.53.230.0/24 maxlen: 24
185.53.231.0/24 maxlen: 24
217.29.16.0/20 maxlen: 24
217.29.16.0/21 maxlen: 24
217.29.16.0/24 maxlen: 24
217.29.17.0/24 maxlen: 24
217.29.18.0/24 maxlen: 24
217.29.19.0/24 maxlen: 24
217.29.20.0/24 maxlen: 24
217.29.21.0/24 maxlen: 24
217.29.22.0/24 maxlen: 24
217.29.23.0/24 maxlen: 24
217.29.24.0/21 maxlen: 24
217.29.24.0/24 maxlen: 24
217.29.25.0/24 maxlen: 24
217.29.26.0/24 maxlen: 24
217.29.27.0/24 maxlen: 24
217.29.28.0/24 maxlen: 24
217.29.31.0/24 maxlen: 24
2a02:820::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:65:d5:93:9f:0c:2e:5c:71:9b:07:bd:ab:fd:de:25:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c6f182804b56e508aa372c03cceb73ef8c2c68b
Validity
Not Before: Oct 7 07:15:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee0763c351173665f8b8ac760c2116a2e305638a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d3:a3:81:ad:84:6c:e1:74:d5:40:f4:8b:61:
bc:bd:06:37:13:81:05:ab:fd:64:12:99:1e:15:5a:
54:8b:7d:3c:13:73:e3:36:a6:fc:f2:ae:ec:58:08:
9a:57:e1:07:de:29:d4:2f:be:c6:47:cb:58:83:56:
e5:7e:de:0e:68:cc:de:5d:c8:ff:e6:2a:54:98:3d:
27:52:f4:8a:a6:ed:36:0f:ad:1b:8f:65:03:4a:07:
43:8d:a6:37:c9:d1:0d:ad:b7:14:9e:e5:b6:0b:9b:
27:2d:6b:58:57:6d:58:f5:70:10:3f:47:5f:92:cc:
7d:83:34:c3:9b:3c:73:e7:84:7f:25:d2:1c:c6:7c:
18:84:a3:93:5f:ff:98:45:19:fa:03:7a:71:bc:e9:
41:82:43:f1:52:3e:0a:3b:91:8b:7f:3d:89:1f:dc:
d9:1d:68:d5:8a:5d:ca:f2:f1:31:d0:b8:94:6b:2a:
fa:99:c0:f3:05:b3:a1:c1:d6:b1:57:6c:67:79:35:
06:cc:a1:48:aa:89:b1:ce:38:87:5c:7a:c6:cb:ad:
7e:35:07:8b:5c:e1:e9:79:2f:2f:fa:47:b4:f7:e7:
03:5c:67:de:cc:85:cd:5f:94:86:5b:18:2e:90:38:
f9:ca:38:ec:ad:9f:68:64:72:f7:c2:c3:9a:b3:1c:
cd:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:07:63:C3:51:17:36:65:F8:B8:AC:76:0C:21:16:A2:E3:05:63:8A
X509v3 Authority Key Identifier:
keyid:0C:6F:18:28:04:B5:6E:50:8A:A3:72:C0:3C:CE:B7:3E:F8:C2:C6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DG8YKAS1blCKo3LAPM63PvjCxos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/6c0e22-fb61-49db-b065-993cd8388fd5/1/7gdjw1EXNmX4uKx2DCEWouMFY4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/6c0e22-fb61-49db-b065-993cd8388fd5/1/DG8YKAS1blCKo3LAPM63PvjCxos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.62.64.0/20
95.87.72.0-95.87.89.255
95.87.92.0/22
185.53.228.0/22
217.29.16.0/20
IPv6:
2a02:820::/32
Signature Algorithm: sha256WithRSAEncryption
65:76:1e:96:c4:19:88:44:6c:1f:c4:ee:62:91:f6:e8:21:54:
9a:66:4b:d0:f8:74:0e:b4:11:29:28:49:e3:a5:a6:2e:37:92:
71:ca:73:e6:25:ae:f8:ef:71:8d:a1:f3:77:a4:bf:7d:21:c8:
01:99:51:b6:9e:60:43:5c:20:57:8d:4f:48:80:34:da:6c:62:
3d:9b:25:7f:50:f3:00:33:a4:d0:93:a0:c3:50:29:e6:64:7d:
73:00:bf:28:cc:73:fe:a3:b4:82:08:e6:2b:93:b4:9d:d0:f8:
06:15:5a:49:1c:9b:b9:f6:00:8b:e9:dd:f0:d5:64:85:80:8b:
c6:72:25:07:c2:59:84:1f:20:41:19:9e:31:68:f8:5c:5e:10:
78:b0:14:15:c4:bc:f0:c9:bd:e4:a0:61:9a:1f:c1:ac:2f:32:
97:51:c5:96:97:1f:ed:89:fa:af:ff:24:e2:23:95:18:9c:ce:
b2:96:3f:c8:b8:4f:59:f5:f2:3e:a6:69:66:cb:2f:a1:cf:af:
ea:86:5f:ac:cf:fb:3a:62:36:74:ba:74:e4:32:1f:e5:d6:65:
27:40:a5:8a:3b:13:a7:d0:8a:c8:90:0c:7e:18:5b:88:5e:69:
1c:85:6a:34:a3:25:22:41:4e:dc:aa:14:9d:d2:6e:87:9e:d5:
a4:cb:45:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:04:27 2025 by rpki-client