Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/79aca9-51dd-4f22-b404-d53866e9186a/1/YkM_jW6WZva_jS6FKP4Su3nmaYc.roa
File: YkM_jW6WZva_jS6FKP4Su3nmaYc.roa (raw, json)
Hash identifier: aoy10w12z8mizee+u67TfNZ8SoQA9SIMs0nWv9kVXU4=
Subject key identifier: 62:43:3F:8D:6E:96:66:F6:BF:8D:2E:85:28:FE:12:BB:79:E6:69:87
Certificate issuer: /CN=2d1172c1c73f971a9fb2e89b7917200c500ee407
Certificate serial: 0193CF1F69268443A40F8920E504EDC2D870
Authority key identifier: 2D:11:72:C1:C7:3F:97:1A:9F:B2:E8:9B:79:17:20:0C:50:0E:E4:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRFywcc_lxqfsuibeRcgDFAO5Ac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/79aca9-51dd-4f22-b404-d53866e9186a/1/YkM_jW6WZva_jS6FKP4Su3nmaYc.roa
Signing time: Mon 16 Dec 2024 10:59:22 +0000
ROA not before: Mon 16 Dec 2024 10:59:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197143
IP address blocks: 46.245.160.0/24 maxlen: 24
46.245.161.0/24 maxlen: 24
46.245.162.0/24 maxlen: 24
46.245.163.0/24 maxlen: 24
46.245.164.0/24 maxlen: 24
46.245.165.0/24 maxlen: 24
46.245.166.0/24 maxlen: 24
46.245.167.0/24 maxlen: 24
185.33.128.0/24 maxlen: 24
185.33.129.0/24 maxlen: 24
185.33.130.0/24 maxlen: 24
185.33.131.0/24 maxlen: 24
185.218.218.0/24 maxlen: 24
185.218.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:47:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:cf:1f:69:26:84:43:a4:0f:89:20:e5:04:ed:c2:d8:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1172c1c73f971a9fb2e89b7917200c500ee407
Validity
Not Before: Dec 16 10:59:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62433f8d6e9666f6bf8d2e8528fe12bb79e66987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6f:ad:6e:49:06:15:9b:bd:f8:ba:00:16:dd:
93:e8:a1:1d:5b:77:e8:08:e3:6a:e8:e8:48:65:0e:
16:53:f3:ce:98:df:c1:6e:0a:ad:cc:33:d7:8e:c5:
a7:41:cc:ae:12:79:64:92:7d:2b:5d:8b:cb:bf:82:
12:ad:87:8f:37:b7:02:78:e1:e2:19:73:70:ce:50:
0f:d1:1a:00:c7:59:18:d0:9c:83:ff:44:25:e7:4a:
f7:51:e9:5b:e8:d6:cf:b9:db:c8:92:c8:ce:08:e8:
bb:11:61:46:28:37:9e:33:65:14:31:e5:e5:16:a3:
b0:00:13:b0:52:b0:b8:36:8d:8a:a3:ff:ee:5f:c5:
49:7d:e4:33:c4:1b:58:3c:26:83:de:fd:1d:e5:bb:
cc:a3:a8:9f:71:b9:05:5a:0b:b4:3f:c8:e1:13:5f:
da:9c:97:43:e1:9a:c2:2e:a2:c0:9b:05:12:91:89:
0c:35:71:15:58:74:6c:ef:c6:3d:8f:66:e7:98:cf:
37:80:39:2a:83:ac:1d:50:90:e0:7f:4d:71:ec:0b:
15:1e:ee:c2:16:25:ef:4c:c9:7a:57:4e:09:8b:16:
5d:6e:51:69:2f:61:3d:4f:4e:05:26:04:c8:af:b0:
55:d6:a9:25:e2:16:cc:46:f5:49:60:30:9c:8b:c0:
92:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:43:3F:8D:6E:96:66:F6:BF:8D:2E:85:28:FE:12:BB:79:E6:69:87
X509v3 Authority Key Identifier:
keyid:2D:11:72:C1:C7:3F:97:1A:9F:B2:E8:9B:79:17:20:0C:50:0E:E4:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRFywcc_lxqfsuibeRcgDFAO5Ac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/79aca9-51dd-4f22-b404-d53866e9186a/1/YkM_jW6WZva_jS6FKP4Su3nmaYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/79aca9-51dd-4f22-b404-d53866e9186a/1/LRFywcc_lxqfsuibeRcgDFAO5Ac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.245.160.0/21
185.33.128.0/22
185.218.218.0/23
Signature Algorithm: sha256WithRSAEncryption
79:1f:ab:5c:fc:1e:83:c3:fa:4c:99:cc:4f:8a:37:e6:78:2d:
e1:56:6d:52:07:86:50:90:4c:25:7e:cd:16:e9:26:68:7f:37:
92:44:a7:3d:23:c3:d8:34:65:c5:65:fd:74:11:a6:28:01:bc:
25:a7:9a:37:87:d0:ad:01:ab:c5:7b:4e:f4:c2:1f:c6:ec:35:
6b:e4:a1:0a:50:b7:d7:e3:32:3c:4b:63:da:9b:6c:7b:71:aa:
f2:8d:71:fd:a3:62:37:17:85:72:76:5b:61:7c:f9:28:3b:69:
2e:13:96:7b:f5:36:8d:98:5f:f9:44:c0:91:af:37:11:ba:cf:
8c:65:ac:f2:2d:ae:82:1b:eb:22:32:46:b8:3f:df:d9:71:d1:
07:ff:89:71:03:5e:49:49:31:0b:24:bb:44:25:b3:ae:1c:0a:
73:a1:55:3f:61:b6:03:e3:04:f4:e1:d2:2a:3d:ed:42:f7:d4:
00:da:5f:47:08:b0:be:3a:1c:ce:84:b9:8f:aa:db:13:31:f1:
d1:ef:aa:55:9e:ee:1e:56:1b:a3:0a:cd:9c:2c:59:40:09:fa:
0f:33:b0:65:3c:a4:74:38:f3:54:59:87:94:59:c3:f8:92:05:
c3:37:72:70:67:f3:01:44:b6:e3:1a:99:4e:92:9b:09:ec:a8:
38:d6:96:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:16:22 2025 by rpki-client