Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/ax9ttttI3Sr7kLEGIFjPi1zUsP4.roa
File: ax9ttttI3Sr7kLEGIFjPi1zUsP4.roa (raw, json)
Hash identifier: QTkeG50UZxdR8DjuQasoqNlIU7LUSjuj25jgNjSS0gA=
Subject key identifier: 6B:1F:6D:B6:DB:48:DD:2A:FB:90:B1:06:20:58:CF:8B:5C:D4:B0:FE
Certificate issuer: /CN=66d337d330ba44efcfef555355132a6a2c69783c
Certificate serial: 0190DDEBF75EF7B5DA14D74794D34F173AE5
Authority key identifier: 66:D3:37:D3:30:BA:44:EF:CF:EF:55:53:55:13:2A:6A:2C:69:78:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtM30zC6RO_P71VTVRMqaixpeDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/ax9ttttI3Sr7kLEGIFjPi1zUsP4.roa
Signing time: Tue 23 Jul 2024 04:49:07 +0000
ROA not before: Tue 23 Jul 2024 04:49:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51130
IP address blocks: 212.86.64.0/19 maxlen: 19
212.86.64.0/24 maxlen: 24
212.86.65.0/24 maxlen: 24
212.86.66.0/24 maxlen: 24
212.86.67.0/24 maxlen: 24
212.86.68.0/24 maxlen: 24
212.86.69.0/24 maxlen: 24
212.86.70.0/24 maxlen: 24
212.86.71.0/24 maxlen: 24
212.86.72.0/24 maxlen: 24
212.86.73.0/24 maxlen: 24
212.86.74.0/24 maxlen: 24
212.86.75.0/24 maxlen: 24
212.86.76.0/24 maxlen: 24
212.86.77.0/24 maxlen: 24
212.86.78.0/24 maxlen: 24
212.86.79.0/24 maxlen: 24
212.86.80.0/24 maxlen: 24
212.86.81.0/24 maxlen: 24
212.86.82.0/24 maxlen: 24
212.86.83.0/24 maxlen: 24
212.86.84.0/24 maxlen: 24
212.86.85.0/24 maxlen: 24
212.86.86.0/24 maxlen: 24
212.86.87.0/24 maxlen: 24
212.86.88.0/24 maxlen: 24
212.86.89.0/24 maxlen: 24
212.86.90.0/24 maxlen: 24
212.86.91.0/24 maxlen: 24
212.86.92.0/24 maxlen: 24
212.86.93.0/24 maxlen: 24
212.86.94.0/24 maxlen: 24
212.86.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:dd:eb:f7:5e:f7:b5:da:14:d7:47:94:d3:4f:17:3a:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d337d330ba44efcfef555355132a6a2c69783c
Validity
Not Before: Jul 23 04:49:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b1f6db6db48dd2afb90b1062058cf8b5cd4b0fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c8:a2:84:12:15:12:20:af:59:be:04:61:ec:
cc:34:b3:94:65:13:19:d6:1e:f2:42:de:41:23:dc:
e0:58:b7:cf:ad:db:95:6c:f5:02:af:a7:73:8c:38:
3e:12:a1:9e:25:40:3e:17:9c:cc:69:25:9b:52:15:
ef:8c:cb:27:aa:6a:6d:19:28:68:3b:74:8e:a4:b6:
fc:9a:1a:3e:70:69:98:ff:65:e8:e7:31:0d:93:26:
02:10:67:d5:56:ef:12:de:8a:c1:f2:07:52:ef:e3:
10:a7:4f:92:5a:82:17:bc:41:76:b6:db:4c:e3:6c:
67:0a:2a:e9:47:e6:81:a5:42:eb:f2:75:bb:8d:1d:
1b:dd:7d:98:f5:7e:32:fc:73:7e:08:2c:7e:f3:5a:
e2:ce:ff:41:95:b7:c2:e5:3d:18:ac:00:87:98:2d:
13:d7:2a:9e:f3:8d:02:b5:d7:4e:f6:e7:d9:72:6c:
fb:0e:67:d8:3d:3f:76:38:d3:4b:2e:2e:15:a2:01:
83:cd:bd:a3:51:00:66:b9:0a:5a:b8:b1:6b:cc:fa:
b6:3b:6d:f3:6e:54:e7:35:57:aa:dd:1e:4c:14:a6:
d9:16:03:9c:0d:aa:9a:6f:7c:49:03:9a:70:8f:12:
9c:c6:96:58:47:09:ea:f5:f5:8c:19:9a:96:a1:da:
73:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:1F:6D:B6:DB:48:DD:2A:FB:90:B1:06:20:58:CF:8B:5C:D4:B0:FE
X509v3 Authority Key Identifier:
keyid:66:D3:37:D3:30:BA:44:EF:CF:EF:55:53:55:13:2A:6A:2C:69:78:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtM30zC6RO_P71VTVRMqaixpeDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/ax9ttttI3Sr7kLEGIFjPi1zUsP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/ZtM30zC6RO_P71VTVRMqaixpeDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.86.64.0/19
Signature Algorithm: sha256WithRSAEncryption
30:ac:04:79:b8:26:75:c3:aa:0d:7d:90:07:59:09:ac:34:e7:
0b:91:65:18:3c:33:54:63:e3:a7:02:50:a2:51:d2:dd:b7:c3:
41:af:16:bf:75:ce:0d:f5:5c:af:01:4a:6d:30:48:4d:ae:a6:
a0:a7:0b:d4:33:47:ca:79:18:97:43:c1:bb:5e:a2:54:a9:2b:
dc:4c:d4:e2:6c:f8:5a:f8:39:43:07:1b:cc:f7:0c:9b:57:ba:
b7:4f:25:f1:3e:12:22:7d:a6:e0:99:b4:99:40:bf:5f:64:91:
fd:4b:4d:9c:e3:3c:9d:64:59:bb:43:c4:9d:e0:5b:b1:80:57:
8b:99:5c:c7:d8:08:e0:31:4b:d2:5f:6b:c0:ee:9d:85:40:16:
27:1e:28:24:44:27:d9:0b:41:1f:c3:f7:c3:15:14:47:a5:bc:
fd:00:bc:e3:0a:f5:a2:ba:8e:bd:55:aa:48:13:1c:f3:db:1b:
ff:0e:33:08:43:88:e1:87:87:4a:3e:91:0d:63:13:b7:dd:e2:
b6:8b:0d:4f:06:db:b4:10:35:8c:f7:8f:28:5e:f6:94:aa:05:
2f:ef:a5:98:59:d3:25:08:6e:33:49:c2:13:0e:90:ba:1b:df:
69:3b:90:ed:6f:97:0c:55:13:a5:ed:e0:e2:8d:f2:51:42:f2:
e5:56:b3:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:49:36 2025 by rpki-client