Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/901ad2-6c6c-43c6-a280-4250ce5517d9/1/wM_83nMF-cQ4n7aTakM00EeKPas.roa
File: wM_83nMF-cQ4n7aTakM00EeKPas.roa (raw, json)
Hash identifier: YxveY5akmZkactTxMhIDq5rGJLDpuLqwwZ+KKSwl5uk=
Subject key identifier: C0:CF:FC:DE:73:05:F9:C4:38:9F:B6:93:6A:43:34:D0:47:8A:3D:AB
Certificate issuer: /CN=89b5fad18dd9110413a31b4d8e18765a27d4c3f1
Certificate serial: 018CC871321B774314E3A08AF7495DE88016
Authority key identifier: 89:B5:FA:D1:8D:D9:11:04:13:A3:1B:4D:8E:18:76:5A:27:D4:C3:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ibX60Y3ZEQQToxtNjhh2WifUw_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/901ad2-6c6c-43c6-a280-4250ce5517d9/1/wM_83nMF-cQ4n7aTakM00EeKPas.roa
Signing time: Tue 02 Jan 2024 04:31:50 +0000
ROA not before: Tue 02 Jan 2024 04:31:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8412
IP address blocks: 62.178.0.0/16 maxlen: 17
195.34.136.0/21 maxlen: 22
195.34.144.0/20 maxlen: 21
84.112.0.0/14 maxlen: 15
213.47.0.0/17 maxlen: 18
84.115.208.0/20 maxlen: 20
84.115.224.0/20 maxlen: 20
80.241.16.0/20 maxlen: 21
217.25.122.0/23 maxlen: 23
185.35.152.0/22 maxlen: 23
80.108.0.0/15 maxlen: 16
213.47.128.0/18 maxlen: 19
217.25.112.0/20 maxlen: 22
213.47.208.0/21 maxlen: 22
213.47.216.0/22 maxlen: 23
213.47.224.0/19 maxlen: 20
212.186.0.0/16 maxlen: 17
80.110.64.0/23 maxlen: 23
195.34.128.0/23 maxlen: 24
195.34.131.0/24 maxlen: 24
212.17.64.0/18 maxlen: 19
80.110.0.0/16 maxlen: 17
213.47.192.0/20 maxlen: 21
2a02:838c::/30 maxlen: 30
2a02:8380::/30 maxlen: 33
2a02:8389:c000::/36 maxlen: 36
2a02:8380::/28 maxlen: 29
2a00:e360::/32 maxlen: 33
2a02:838a::/41 maxlen: 44
2a02:8384::/31 maxlen: 32
2a02:8388::/29 maxlen: 30
2a02:8388::/31 maxlen: 36
Validation: Failed, certificate revoked on Wed 01 Jan 2025 11:47:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:32:1b:77:43:14:e3:a0:8a:f7:49:5d:e8:80:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89b5fad18dd9110413a31b4d8e18765a27d4c3f1
Validity
Not Before: Jan 2 04:31:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0cffcde7305f9c4389fb6936a4334d0478a3dab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:84:80:a2:e0:03:85:ac:20:b4:51:1a:22:4f:
45:0a:bf:ee:19:fd:23:7e:67:f1:8c:10:6f:1a:51:
49:ce:02:c5:9d:3a:44:75:7e:37:8a:fa:3f:0d:4f:
4d:ae:2e:63:89:05:b6:b4:e4:3a:c5:a8:03:e4:a7:
65:d7:0f:cc:93:45:ee:7d:e7:7e:46:cd:98:24:6d:
f7:69:cf:a8:af:eb:23:0d:a4:24:e3:58:fc:6a:08:
97:8f:53:25:42:ce:83:82:02:75:90:0b:22:29:16:
af:26:aa:87:4f:3f:25:e3:53:69:0d:c0:67:8f:24:
62:e6:d3:00:2f:fe:d6:d2:67:5d:4b:e9:90:8d:f3:
b8:f6:57:a3:d2:41:4c:6d:ff:de:6f:d1:82:eb:fe:
03:f4:fd:57:05:e4:92:65:a7:a4:18:3b:e5:65:31:
e1:12:78:b3:32:79:0f:4e:c5:df:17:29:a6:4f:40:
b6:c5:56:b0:83:27:bb:99:ee:d5:bd:1f:c7:49:0a:
44:82:a4:3b:4e:07:fc:e3:49:a6:94:36:5e:48:4f:
7e:c3:72:15:54:bc:fe:46:51:93:ee:68:fc:00:6b:
ed:d7:b7:dd:d6:4f:8f:4c:4d:46:d3:07:84:59:54:
35:e6:c5:a3:a9:90:27:d3:d0:d2:50:0e:1a:11:af:
4d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:CF:FC:DE:73:05:F9:C4:38:9F:B6:93:6A:43:34:D0:47:8A:3D:AB
X509v3 Authority Key Identifier:
keyid:89:B5:FA:D1:8D:D9:11:04:13:A3:1B:4D:8E:18:76:5A:27:D4:C3:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ibX60Y3ZEQQToxtNjhh2WifUw_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/901ad2-6c6c-43c6-a280-4250ce5517d9/1/wM_83nMF-cQ4n7aTakM00EeKPas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/901ad2-6c6c-43c6-a280-4250ce5517d9/1/ibX60Y3ZEQQToxtNjhh2WifUw_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.178.0.0/16
80.108.0.0-80.110.255.255
80.241.16.0/20
84.112.0.0/14
185.35.152.0/22
195.34.128.0/23
195.34.131.0/24
195.34.136.0-195.34.159.255
212.17.64.0/18
212.186.0.0/16
213.47.0.0-213.47.219.255
213.47.224.0/19
217.25.112.0/20
IPv6:
2a00:e360::/32
2a02:8380::/28
Signature Algorithm: sha256WithRSAEncryption
88:82:80:ef:82:71:97:eb:03:7e:1a:85:39:3d:cd:b3:76:36:
f1:0c:01:d7:be:2f:a1:1f:29:11:06:3e:aa:db:8b:a9:47:62:
80:18:d1:fd:79:c7:90:36:cf:94:56:03:15:af:20:b5:43:3f:
36:48:a0:33:99:09:f6:f6:7c:3a:25:80:82:bb:b6:de:b9:37:
38:43:9d:71:96:fb:8f:41:30:75:1f:18:be:a8:65:32:19:51:
65:80:e0:af:61:5e:9a:c6:d9:02:10:ff:6e:9b:0f:69:0b:df:
6b:c4:1a:6d:c1:42:49:10:75:7d:b0:7b:9e:e0:4d:95:78:62:
66:8b:45:a8:c5:78:a4:5b:d8:13:db:dd:4c:15:01:1d:ea:13:
07:20:25:36:4e:a8:cc:c3:9b:00:a7:49:af:c3:a8:df:2d:28:
b5:d0:13:7b:58:5a:ee:99:2d:5f:d8:74:7d:e4:f6:51:93:25:
1b:1f:27:7a:e2:a4:77:57:f3:46:b0:61:c8:66:c3:fb:bd:ec:
67:e4:b2:9d:96:45:c3:42:f7:0b:c7:b1:1f:de:a7:14:b5:13:
3c:4a:c0:f1:50:76:6f:12:d1:a4:09:c2:3f:53:d3:16:8f:64:
68:ad:23:e2:93:f2:b1:8e:46:7f:de:77:67:3e:22:d5:a6:71:
fd:2f:45:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:12:09 2025 by rpki-client