Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/mYTAwmUrrOOag_ufpfUTPA0YjWM.roa
File: mYTAwmUrrOOag_ufpfUTPA0YjWM.roa (raw, json)
Hash identifier: 5BuP4eG4P6nIDPqNPSlc4ksTPW4wbVwKLQYkwDybWtM=
Subject key identifier: 99:84:C0:C2:65:2B:AC:E3:9A:83:FB:9F:A5:F5:13:3C:0D:18:8D:63
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 018D82C48C628538E9F1F8709238C546CE6B
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/mYTAwmUrrOOag_ufpfUTPA0YjWM.roa
Signing time: Wed 07 Feb 2024 08:52:15 +0000
ROA not before: Wed 07 Feb 2024 08:52:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21341
IP address blocks: 62.220.96.0/21 maxlen: 24
62.220.104.0/21 maxlen: 24
62.220.120.0/22 maxlen: 22
62.220.124.0/23 maxlen: 23
81.12.8.0/22 maxlen: 22
81.12.12.0/22 maxlen: 22
81.12.16.0/21 maxlen: 21
81.12.48.0/22 maxlen: 24
81.12.58.0/24 maxlen: 24
81.12.59.0/24 maxlen: 24
87.107.24.0/22 maxlen: 22
87.107.34.0/23 maxlen: 23
87.107.40.0/24 maxlen: 24
87.107.41.0/24 maxlen: 24
87.107.42.0/23 maxlen: 23
87.107.50.0/23 maxlen: 24
87.107.51.0/24 maxlen: 24
87.107.52.0/23 maxlen: 23
87.107.68.0/22 maxlen: 24
87.107.88.0/22 maxlen: 22
87.107.96.0/22 maxlen: 24
87.107.106.0/23 maxlen: 24
87.107.108.0/22 maxlen: 24
87.107.112.0/22 maxlen: 24
87.107.116.0/23 maxlen: 23
87.107.120.0/21 maxlen: 24
87.107.128.0/22 maxlen: 22
87.107.132.0/22 maxlen: 22
87.107.168.0/22 maxlen: 24
87.107.173.0/24 maxlen: 24
185.60.136.0/24 maxlen: 24
185.60.137.0/24 maxlen: 24
185.60.138.0/24 maxlen: 24
185.60.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Mar 2024 11:19:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:82:c4:8c:62:85:38:e9:f1:f8:70:92:38:c5:46:ce:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Feb 7 08:52:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9984c0c2652bace39a83fb9fa5f5133c0d188d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:6e:21:3f:ae:c8:bd:4b:5f:04:a5:a8:cf:0d:
17:03:f1:8b:37:8b:68:43:cf:4b:1a:9c:aa:0c:7e:
82:07:0b:ce:de:8f:b5:8f:3b:a2:bf:a8:ba:a7:54:
9d:f0:34:cf:b7:22:a2:e5:4d:65:31:74:58:06:5d:
58:aa:4e:90:da:e5:49:9e:b4:e2:51:e1:69:c4:cf:
60:fa:bd:2e:26:70:af:db:dc:89:a6:d8:5c:dd:a6:
6f:72:4b:51:c3:8e:63:2f:6a:d7:82:0f:b0:96:0f:
83:d5:84:70:2f:a4:ed:83:b7:16:a5:db:20:b5:f0:
8b:8f:ea:8f:5b:98:0e:c9:e0:82:1b:8d:26:bf:40:
7d:b7:a3:04:39:24:a6:cf:fc:3a:a0:c9:0c:07:90:
31:94:46:fd:44:50:c2:d4:db:42:0f:48:f3:80:2f:
11:94:9c:a3:67:c8:13:6d:21:c6:ef:aa:32:c3:51:
df:97:af:0a:fb:61:d8:f5:b1:f7:79:c3:70:ce:bf:
bd:ef:e8:ca:e3:8d:08:0f:bf:b0:30:ea:82:b9:cc:
86:8f:cc:32:cc:fb:c5:85:da:e9:e1:b9:f2:66:1f:
13:47:63:50:4d:95:00:40:68:67:5d:e7:ff:7d:d0:
b6:76:f9:d1:7b:53:21:25:ce:3b:be:c1:fa:90:bf:
85:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:84:C0:C2:65:2B:AC:E3:9A:83:FB:9F:A5:F5:13:3C:0D:18:8D:63
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/mYTAwmUrrOOag_ufpfUTPA0YjWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.96.0/20
62.220.120.0-62.220.125.255
81.12.8.0-81.12.23.255
81.12.48.0/22
81.12.58.0/23
87.107.24.0/22
87.107.34.0/23
87.107.40.0/22
87.107.50.0-87.107.53.255
87.107.68.0/22
87.107.88.0/22
87.107.96.0/22
87.107.106.0-87.107.117.255
87.107.120.0-87.107.135.255
87.107.168.0/22
87.107.173.0/24
185.60.136.0/22
Signature Algorithm: sha256WithRSAEncryption
33:2d:ee:ee:a1:43:26:d6:c7:51:3c:40:f7:3a:c1:a5:e2:d9:
99:e8:c9:38:ff:5b:98:a0:d0:6b:68:32:09:c6:a0:4d:e6:bf:
14:b2:07:41:7d:47:c8:8c:b1:4d:14:37:4f:ed:be:17:19:36:
bb:87:c8:db:51:3e:41:75:a2:96:c1:52:ce:6b:0d:7a:85:35:
ce:56:7e:c9:a6:be:8e:36:c7:01:81:4c:b2:5f:8a:9e:89:2f:
0b:b1:0e:16:63:ad:26:0e:b8:a0:7f:97:6c:84:8f:c7:ab:f2:
a5:33:67:98:97:e9:f6:b1:78:3a:4e:58:43:e1:b7:a7:3e:61:
41:5f:09:6c:6a:5c:77:07:b7:77:a0:fc:2b:95:31:8a:87:46:
7a:81:63:f5:88:ac:9c:87:2a:6d:64:d4:4b:f0:7a:9c:3f:65:
10:55:49:93:d3:d4:b7:cb:52:55:23:c6:cb:ac:37:b4:23:01:
4f:39:a9:bc:a0:2a:45:56:7b:30:73:8d:76:6c:da:bb:97:fe:
57:f1:71:8b:ad:de:da:2d:4c:1e:74:e3:e8:38:89:a0:e5:58:
9a:db:02:ec:27:39:e4:72:6d:df:a9:f2:d1:6b:ff:7e:4a:f9:
52:79:48:28:7a:67:91:60:ca:6b:31:68:75:88:ae:29:3c:a6:
bf:9e:e8:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:09 2025 by rpki-client