Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/Vu2ZyJPbuCZMkgUAMFaQUrr8Y1w.roa
File: Vu2ZyJPbuCZMkgUAMFaQUrr8Y1w.roa (raw, json)
Hash identifier: qLYvV3JkG8ZJKsZtJrQsdn32sqVnCFvN9HW8TNxltNU=
Subject key identifier: 56:ED:99:C8:93:DB:B8:26:4C:92:05:00:30:56:90:52:BA:FC:63:5C
Certificate issuer: /CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Certificate serial: 0191F58F82E7066F75E8066CD1DE27D8E6E1
Authority key identifier: 1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/Vu2ZyJPbuCZMkgUAMFaQUrr8Y1w.roa
Signing time: Sun 15 Sep 2024 12:01:48 +0000
ROA not before: Sun 15 Sep 2024 12:01:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 82.97.196.0/23 maxlen: 24
89.38.106.0/23 maxlen: 24
91.238.148.0/23 maxlen: 24
185.77.250.0/23 maxlen: 24
188.214.89.0/24 maxlen: 24
188.241.59.0/24 maxlen: 24
193.169.8.0/23 maxlen: 24
193.192.52.0/23 maxlen: 24
193.239.172.0/23 maxlen: 24
193.239.246.0/23 maxlen: 24
194.24.234.0/23 maxlen: 24
194.88.134.0/23 maxlen: 24
194.135.132.0/23 maxlen: 24
194.246.106.0/23 maxlen: 24
195.2.196.0/23 maxlen: 24
195.13.48.0/23 maxlen: 24
195.34.80.0/23 maxlen: 24
195.93.140.0/23 maxlen: 24
195.128.188.0/23 maxlen: 24
195.133.208.0/23 maxlen: 24
195.135.192.0/23 maxlen: 24
195.189.250.0/23 maxlen: 24
195.210.44.0/23 maxlen: 24
195.254.140.0/23 maxlen: 24
213.159.10.0/23 maxlen: 24
213.159.12.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 15 Sep 2024 15:16:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:f5:8f:82:e7:06:6f:75:e8:06:6c:d1:de:27:d8:e6:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Validity
Not Before: Sep 15 12:01:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56ed99c893dbb8264c92050030569052bafc635c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d3:d4:ab:96:a8:7b:76:37:03:c0:35:c5:d2:
8a:06:ed:ba:72:35:be:15:9a:a6:bc:2c:12:c2:c1:
e4:eb:72:b0:5c:1b:ac:b3:ac:d9:7b:ea:61:56:01:
8a:f6:f8:af:76:81:4b:ca:01:c5:ad:09:d3:1e:9c:
a3:a1:c9:1d:5c:9b:d9:e9:a1:7c:5a:3f:ee:b6:0e:
a8:c9:21:db:81:68:21:92:fb:18:ff:e5:84:11:88:
72:eb:d7:6d:8b:1c:9d:42:2b:09:d3:e6:f5:3c:29:
01:21:dc:e2:3e:25:3e:48:e6:8c:2f:98:d3:e5:20:
25:3f:07:b5:1c:eb:b7:7c:ff:ce:99:67:65:1c:99:
08:8a:55:4a:62:e9:7e:cc:43:00:86:64:3f:d5:29:
2e:c9:86:2c:9c:e2:5d:47:42:d5:eb:07:fe:9b:54:
3d:bd:3f:9e:85:4f:f3:85:70:b6:e4:a2:b8:8b:ec:
b6:9a:63:56:df:84:ca:72:99:a9:16:1d:da:ff:70:
79:2b:81:32:5f:ad:47:f6:45:18:bc:63:3b:36:9b:
2f:fa:95:c5:06:32:70:df:9c:3d:fb:21:98:6e:a5:
b3:b8:3c:0d:a1:ac:89:16:d9:dc:f0:d1:86:4e:78:
f4:97:32:ab:2d:9f:d3:27:75:82:54:f1:5c:fc:9a:
36:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:ED:99:C8:93:DB:B8:26:4C:92:05:00:30:56:90:52:BA:FC:63:5C
X509v3 Authority Key Identifier:
keyid:1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/Vu2ZyJPbuCZMkgUAMFaQUrr8Y1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.97.196.0/23
89.38.106.0/23
91.238.148.0/23
185.77.250.0/23
188.214.89.0/24
188.241.59.0/24
193.169.8.0/23
193.192.52.0/23
193.239.172.0/23
193.239.246.0/23
194.24.234.0/23
194.88.134.0/23
194.135.132.0/23
194.246.106.0/23
195.2.196.0/23
195.13.48.0/23
195.34.80.0/23
195.93.140.0/23
195.128.188.0/23
195.133.208.0/23
195.135.192.0/23
195.189.250.0/23
195.210.44.0/23
195.254.140.0/23
213.159.10.0-213.159.13.255
Signature Algorithm: sha256WithRSAEncryption
94:91:84:11:ff:59:b9:bb:61:10:c3:e2:6b:ac:91:17:0b:6c:
4d:64:a8:6f:51:f0:e4:71:ce:a0:fb:7a:f7:b2:68:ef:c0:0f:
fe:d1:45:6d:e4:73:4d:94:d4:fc:a9:a6:c0:89:19:ab:41:be:
57:dc:cf:90:d0:06:f9:fe:2d:a5:65:53:60:3f:dc:fc:e0:bd:
bb:3b:43:cb:6c:92:3e:f3:fe:3d:3e:e7:72:08:1e:8e:a0:89:
ba:45:ed:50:1c:6e:69:19:28:ea:f7:80:f7:69:34:9d:df:fc:
11:b6:25:d0:6e:85:c7:40:57:72:66:c3:80:51:b4:db:c2:71:
dc:b5:20:79:92:e7:96:06:f2:44:09:fc:f6:f3:aa:3a:98:3e:
f3:12:33:b7:b5:7b:5a:3b:68:b6:d6:dd:50:db:2c:db:fd:d0:
6c:4f:40:59:4a:dc:d2:d8:0f:f0:dd:bd:07:50:14:03:f0:76:
19:ca:33:47:a0:4a:22:92:fb:1f:76:84:3b:b0:09:3e:7d:d9:
73:2c:19:bc:bf:bb:dc:10:38:df:8f:6d:71:10:02:32:55:f4:
b2:e2:37:97:5c:07:26:b0:2d:02:58:2e:65:86:cc:f4:22:b2:
90:95:85:ab:93:e3:50:39:88:99:69:4f:68:85:23:86:b7:7f:
f5:b0:1e:f7
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Apr 17 04:18:14 2025 by rpki-client