Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/6Y_XpwxgV6Cx5HcNiL9wXAbeI3o.roa
File: 6Y_XpwxgV6Cx5HcNiL9wXAbeI3o.roa (raw, json)
Hash identifier: OgaZO/0vJUr5w6lhffgj3nC6Noe9BXwN4Eu0QEcnyUY=
Subject key identifier: E9:8F:D7:A7:0C:60:57:A0:B1:E4:77:0D:88:BF:70:5C:06:DE:23:7A
Certificate issuer: /CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Certificate serial: 0192E3D5A2A3160C7EAE585DACD281C784AE
Authority key identifier: D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/6Y_XpwxgV6Cx5HcNiL9wXAbeI3o.roa
Signing time: Thu 31 Oct 2024 18:28:01 +0000
ROA not before: Thu 31 Oct 2024 18:28:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 62.164.224.0/20 maxlen: 20
62.164.240.0/20 maxlen: 24
66.9.96.0/20 maxlen: 24
66.117.8.0/22 maxlen: 24
77.223.192.0/21 maxlen: 24
77.223.200.0/23 maxlen: 24
79.139.64.0/23 maxlen: 24
83.142.200.0/21 maxlen: 24
84.247.59.0/24 maxlen: 24
88.135.96.0/20 maxlen: 24
89.34.171.0/24 maxlen: 24
93.119.184.0/21 maxlen: 24
94.26.110.0/23 maxlen: 24
94.101.103.0/24 maxlen: 24
95.178.8.0/21 maxlen: 24
116.50.16.0/21 maxlen: 24
121.127.48.0/20 maxlen: 24
121.127.56.0/21 maxlen: 24
168.75.224.0/20 maxlen: 24
176.222.48.0/22 maxlen: 24
192.200.192.0/19 maxlen: 24
194.149.76.0/22 maxlen: 24
195.133.202.0/23 maxlen: 24
198.14.16.0/20 maxlen: 24
198.145.112.0/22 maxlen: 24
205.134.244.0/22 maxlen: 24
212.32.96.0/20 maxlen: 24
212.32.112.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Dec 2024 18:37:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e3:d5:a2:a3:16:0c:7e:ae:58:5d:ac:d2:81:c7:84:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Validity
Not Before: Oct 31 18:28:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e98fd7a70c6057a0b1e4770d88bf705c06de237a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3d:d1:67:d1:26:23:c5:a9:83:4c:f8:41:c7:
5f:3e:70:a1:17:cd:04:46:f1:a8:95:13:e4:1e:3a:
16:31:d7:c6:76:0e:91:13:1c:58:7b:ef:ce:66:18:
a3:34:2a:55:d9:ab:88:51:d5:57:20:eb:90:e2:69:
b0:0a:f0:26:07:09:f3:7a:74:de:f5:72:aa:be:6a:
05:79:34:9a:2b:a1:e3:64:3d:d9:e2:2f:da:5e:d2:
e2:15:18:fb:5b:64:b4:f6:c5:0e:9e:e6:1f:69:16:
6c:80:44:54:3d:00:b3:7d:da:ad:62:87:20:24:90:
a6:03:6f:b2:0c:7c:46:62:75:10:c9:a0:fc:b0:c8:
03:46:6b:b6:bb:a0:20:ca:46:63:df:74:ed:8c:5e:
50:ac:37:b2:99:3e:c6:f2:d2:46:94:b9:d0:b5:2b:
0d:c1:39:7e:ec:1e:04:fb:00:83:1a:e4:cd:b2:aa:
66:ea:1c:3a:27:48:23:0f:09:02:6f:4d:e1:19:62:
8f:34:e6:a6:93:26:5d:0e:18:77:ee:07:fe:45:a6:
ed:93:d1:78:13:a9:74:2a:ea:a1:05:30:b9:24:c7:
5a:bf:6e:78:de:96:aa:82:ba:06:21:32:e2:ea:5e:
46:2f:5d:e4:46:0f:23:d8:06:f9:a7:43:d5:71:3d:
08:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:8F:D7:A7:0C:60:57:A0:B1:E4:77:0D:88:BF:70:5C:06:DE:23:7A
X509v3 Authority Key Identifier:
keyid:D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/6Y_XpwxgV6Cx5HcNiL9wXAbeI3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.164.224.0/19
66.9.96.0/20
66.117.8.0/22
77.223.192.0-77.223.201.255
79.139.64.0/23
83.142.200.0/21
84.247.59.0/24
88.135.96.0/20
89.34.171.0/24
93.119.184.0/21
94.26.110.0/23
94.101.103.0/24
95.178.8.0/21
116.50.16.0/21
121.127.48.0/20
168.75.224.0/20
176.222.48.0/22
192.200.192.0/19
194.149.76.0/22
195.133.202.0/23
198.14.16.0/20
198.145.112.0/22
205.134.244.0/22
212.32.96.0/19
Signature Algorithm: sha256WithRSAEncryption
30:bc:71:e7:1d:b8:b2:94:a4:d2:c1:e6:d4:06:01:48:ea:6b:
27:db:fa:43:89:6c:d3:d6:6d:e8:77:27:4c:0a:28:a7:a6:21:
cc:38:d8:23:6e:25:12:61:b7:09:18:e3:96:46:0d:4a:53:bb:
16:03:5c:b9:fb:94:18:06:3e:a5:97:53:da:2d:10:c4:be:44:
72:61:fe:30:44:d1:d4:7a:e1:07:ce:67:4c:b4:03:c1:8a:42:
e6:ea:ff:b1:8a:a0:d8:03:e4:0d:03:a8:91:c1:60:b5:40:aa:
34:f8:3e:55:80:cd:d6:ed:95:4d:e3:5b:33:7e:6d:24:d3:25:
a9:2a:95:f3:f0:fe:51:1c:41:73:da:cc:fb:16:8a:6c:c6:7b:
9b:a0:c9:a5:d9:4e:65:f0:b5:ad:1c:5f:bd:26:ae:d6:59:3c:
55:35:c9:f1:90:a4:9b:7a:2a:c3:d8:b9:02:9e:8e:60:c5:34:
0c:cd:63:17:eb:cf:9d:a4:7f:6a:c2:c6:57:1f:24:d7:cf:f9:
48:32:08:c3:60:59:e9:3b:ba:74:12:6a:64:14:79:6c:81:e9:
64:08:ca:7e:42:8a:27:03:95:e7:8d:53:62:f3:a6:14:e8:17:
42:79:97:77:e2:71:7c:7e:f9:02:0e:a8:23:84:13:e3:bb:dc:
e2:a1:c4:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:28:30 2025 by rpki-client