Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/aRisAUmow83gOgAnUQl72BUKofk.roa
File: aRisAUmow83gOgAnUQl72BUKofk.roa (raw, json)
Hash identifier: 4Mx4VZ4CRY1RzQxiA7GZ0H9PRBa+Jcwklsg8HjZ8D7k=
Subject key identifier: 69:18:AC:01:49:A8:C3:CD:E0:3A:00:27:51:09:7B:D8:15:0A:A1:F9
Certificate issuer: /CN=81eed4091383d9ed4056d9f4eff7d2622ddce205
Certificate serial: 018CC94CC6831B9A1602EF4F066E53F8FCF6
Authority key identifier: 81:EE:D4:09:13:83:D9:ED:40:56:D9:F4:EF:F7:D2:62:2D:DC:E2:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ge7UCROD2e1AVtn07_fSYi3c4gU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/aRisAUmow83gOgAnUQl72BUKofk.roa
Signing time: Tue 02 Jan 2024 08:31:41 +0000
ROA not before: Tue 02 Jan 2024 08:31:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3265
IP address blocks: 82.92.0.0/14 maxlen: 14
195.64.80.0/20 maxlen: 20
194.109.0.0/16 maxlen: 16
62.251.0.0/17 maxlen: 17
83.160.0.0/14 maxlen: 14
82.161.0.0/16 maxlen: 16
83.68.0.0/20 maxlen: 20
213.84.0.0/16 maxlen: 16
80.100.0.0/15 maxlen: 15
83.68.16.0/21 maxlen: 21
83.68.24.0/22 maxlen: 22
83.68.31.0/24 maxlen: 24
83.68.28.0/24 maxlen: 24
83.68.29.0/24 maxlen: 24
62.216.0.0/19 maxlen: 19
213.222.0.0/19 maxlen: 19
212.238.0.0/16 maxlen: 16
80.126.0.0/15 maxlen: 15
2001:888::/32 maxlen: 32
2001:888::/29 maxlen: 29
2001:888::/30 maxlen: 30
2001:980::/30 maxlen: 30
2001:980::/29 maxlen: 29
2001:980::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 18 Mar 2024 06:59:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:c6:83:1b:9a:16:02:ef:4f:06:6e:53:f8:fc:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81eed4091383d9ed4056d9f4eff7d2622ddce205
Validity
Not Before: Jan 2 08:31:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6918ac0149a8c3cde03a002751097bd8150aa1f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c4:ad:67:67:bc:de:81:52:f8:e5:c4:c1:19:
6e:2d:77:09:69:0e:ac:04:8f:c4:a2:c1:a1:e3:12:
a7:89:64:9e:5d:5c:cf:0c:88:29:cf:43:df:de:4f:
ad:85:0e:93:18:17:fe:29:ae:75:2e:b6:7a:69:f3:
6c:d8:03:af:b5:f1:34:30:4f:dc:91:7a:eb:1f:25:
c2:c2:b0:c1:8e:09:1d:30:65:c5:dd:6b:4c:c9:08:
58:97:bc:43:d5:f1:9c:05:22:2c:39:e6:02:3f:99:
c1:c3:a0:99:dc:fa:00:c3:96:67:6c:3b:b7:e8:8d:
8c:ac:fc:f6:33:ed:fa:f5:ff:8b:0d:26:e7:c1:70:
29:3f:34:dc:2c:b4:2f:e0:d1:a4:d5:99:06:81:bc:
42:cc:cc:ab:4f:c4:43:a6:b3:82:33:a6:e6:f1:93:
10:3a:86:15:07:02:1d:b6:b4:b3:8d:c6:dd:6f:9b:
31:56:db:9f:e9:d3:6f:62:b4:41:d3:12:3d:b0:c0:
23:26:b7:84:14:56:c1:73:c3:fd:cb:7c:6b:24:c3:
0a:50:ac:f7:cf:f6:3b:a2:3d:2f:aa:a8:cb:f4:4e:
8e:f0:34:7e:14:fb:7d:a1:d2:74:ce:91:ed:80:08:
f5:52:60:c9:b3:c0:29:b6:b9:30:2e:f4:22:ea:de:
63:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:18:AC:01:49:A8:C3:CD:E0:3A:00:27:51:09:7B:D8:15:0A:A1:F9
X509v3 Authority Key Identifier:
keyid:81:EE:D4:09:13:83:D9:ED:40:56:D9:F4:EF:F7:D2:62:2D:DC:E2:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ge7UCROD2e1AVtn07_fSYi3c4gU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/aRisAUmow83gOgAnUQl72BUKofk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4a9cc4-2b9a-4ef2-a33a-872b3710c2a1/1/ge7UCROD2e1AVtn07_fSYi3c4gU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.216.0.0/19
62.251.0.0/17
80.100.0.0/15
80.126.0.0/15
82.92.0.0/14
82.161.0.0/16
83.68.0.0-83.68.29.255
83.68.31.0/24
83.160.0.0/14
194.109.0.0/16
195.64.80.0/20
212.238.0.0/16
213.84.0.0/16
213.222.0.0/19
IPv6:
2001:888::/29
2001:980::/29
Signature Algorithm: sha256WithRSAEncryption
6a:05:c1:35:39:ab:55:45:17:b8:7d:4b:19:e4:7e:53:90:d3:
2c:92:0b:bc:a3:a9:b6:78:8f:a1:b3:3c:6f:c6:05:5e:8d:44:
a8:89:04:f6:44:9d:9a:29:38:ff:c3:41:c5:e5:07:99:e3:20:
47:4e:54:a1:d1:09:6e:d3:19:c3:cf:7f:6b:13:30:fa:d3:07:
74:9f:f6:e4:a2:93:83:9e:35:31:ea:ea:0c:0a:6d:f4:2e:f3:
4e:ae:73:78:98:5d:65:0f:08:3e:30:d9:84:fb:e5:d5:c1:d7:
be:9d:bd:f4:07:77:4b:9c:ca:85:1a:f5:97:b5:07:8d:c1:7e:
da:f6:61:4b:b4:60:3f:df:5a:75:ab:d5:f2:40:40:37:f2:2f:
c7:de:c5:ae:29:cd:f4:b2:74:fc:5e:73:00:20:c5:c2:b2:14:
47:00:5e:94:ea:65:b9:0d:90:42:e8:cd:e1:54:84:1a:ce:1e:
93:02:21:23:fe:1f:c1:c3:f4:df:21:d8:85:e8:71:e1:ac:3d:
87:bb:6b:9e:11:ff:79:eb:e5:a3:d3:ca:80:3e:01:49:30:20:
e8:20:f1:47:53:30:c4:9f:64:2a:d1:e2:3f:d7:03:a5:d0:fe:
ad:91:7f:d3:37:6f:d0:81:59:c1:59:7d:43:d0:77:6f:02:da:
4d:f4:e5:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:23:18 2025 by rpki-client