Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/yJLLtqr7n1Sk1e18C_dblnbo28k.roa
File: yJLLtqr7n1Sk1e18C_dblnbo28k.roa (raw, json)
Hash identifier: RX0nU9tbGHTeLrWXva02yonhC+kgtEkHJE0NHXcADG4=
Subject key identifier: C8:92:CB:B6:AA:FB:9F:54:A4:D5:ED:7C:0B:F7:5B:96:76:E8:DB:C9
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 019427483C5A2DD48EFBE36807C101FEAFE8
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/yJLLtqr7n1Sk1e18C_dblnbo28k.roa
Signing time: Thu 02 Jan 2025 13:50:32 +0000
ROA not before: Thu 02 Jan 2025 13:50:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3399
IP address blocks: 192.36.22.0/24 maxlen: 24
192.36.208.0/24 maxlen: 24
192.165.178.0/23 maxlen: 23
193.180.23.0/24 maxlen: 24
193.180.96.0/22 maxlen: 22
193.180.164.0/23 maxlen: 23
193.181.248.0/22 maxlen: 22
193.182.111.0/24 maxlen: 24
193.183.116.0/24 maxlen: 24
194.68.170.0/23 maxlen: 23
194.68.170.0/24 maxlen: 24
194.68.171.0/24 maxlen: 24
194.68.220.0/23 maxlen: 23
194.71.216.0/23 maxlen: 23
194.71.216.0/24 maxlen: 24
194.71.217.0/24 maxlen: 24
194.103.80.0/22 maxlen: 22
194.132.40.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 05 Feb 2025 09:22:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:3c:5a:2d:d4:8e:fb:e3:68:07:c1:01:fe:af:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 13:50:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c892cbb6aafb9f54a4d5ed7c0bf75b9676e8dbc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d5:2e:7c:91:ba:b3:8f:b2:91:d0:a6:1a:f7:
c0:b7:ae:d3:20:bc:c2:5e:95:ae:ef:0a:41:21:89:
a4:2e:99:49:28:df:54:77:29:b1:62:0f:03:f1:30:
73:ef:bc:98:47:da:f3:cf:11:1b:57:3a:39:ac:d3:
be:ec:bb:84:ad:1a:58:7b:75:fc:ef:e9:af:e5:34:
e8:d7:ae:a3:c4:85:ca:34:4b:35:4b:82:b8:03:e3:
66:da:5d:54:c7:57:bb:e8:50:f7:be:ee:6b:e0:3a:
b3:b8:c2:4f:67:35:2a:68:61:4d:5e:59:81:67:8f:
df:fa:f6:6a:f2:3d:58:d0:a4:73:c6:66:b1:ec:de:
a7:8d:31:f5:b1:60:3e:82:ef:d3:8b:25:a1:0d:38:
d8:eb:c2:0f:b3:1a:a2:19:92:a2:ae:de:80:62:00:
16:4a:66:ef:90:9b:c4:c0:bd:49:c1:fc:84:3f:e5:
75:e3:f7:39:89:6b:fb:8c:c2:e9:52:e4:c6:81:73:
3e:81:b1:8b:fc:0b:04:52:bd:91:19:49:63:7f:24:
4b:68:b7:42:31:dc:79:73:83:71:88:b9:91:dc:92:
e3:a4:28:4c:b9:7e:67:1b:0d:99:07:90:b6:61:02:
c5:b3:36:16:36:0c:90:38:cf:7e:60:1f:10:ef:52:
1b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:92:CB:B6:AA:FB:9F:54:A4:D5:ED:7C:0B:F7:5B:96:76:E8:DB:C9
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/yJLLtqr7n1Sk1e18C_dblnbo28k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.36.22.0/24
192.36.208.0/24
192.165.178.0/23
193.180.23.0/24
193.180.96.0/22
193.180.164.0/23
193.181.248.0/22
193.182.111.0/24
193.183.116.0/24
194.68.170.0/23
194.68.220.0/23
194.71.216.0/23
194.103.80.0/22
194.132.40.0/22
Signature Algorithm: sha256WithRSAEncryption
93:c6:3a:bc:59:b2:b2:c2:10:a4:68:52:84:52:80:db:fc:eb:
a6:4d:52:c0:20:a8:79:d2:a6:ce:92:b2:08:ed:30:cd:18:0f:
43:db:2c:fb:66:39:e3:e9:11:f4:2f:86:95:16:53:54:c7:21:
21:35:a7:74:c3:f1:23:8b:6e:5b:27:89:bf:c5:5c:84:cb:e0:
38:11:3b:3d:0f:8f:8e:b8:da:d6:e2:4b:ac:dc:29:08:ae:7e:
16:03:07:70:45:c2:65:d8:de:ca:0d:5b:95:ea:f1:41:d5:a3:
18:dd:0b:9c:13:1f:79:ac:c0:84:c6:77:69:de:1c:99:07:89:
63:bb:d1:71:43:83:5c:64:c3:a6:6c:7b:fa:c2:f3:d1:ab:ef:
9b:12:89:d1:0a:33:03:e1:18:51:3e:38:4b:d6:26:20:b8:2b:
01:24:37:ef:ba:6b:09:b6:79:dd:37:e1:39:b4:6d:cb:51:57:
62:d7:68:b7:49:a7:c1:07:93:99:a4:c4:e2:35:aa:9d:5c:45:
0a:07:c4:72:6e:aa:3d:2f:bb:4a:95:18:25:53:c1:6d:93:0c:
dc:95:98:68:79:49:79:06:8a:5e:87:19:4f:cf:cd:12:53:ec:
d4:bb:38:5b:31:42:9d:bf:eb:bd:97:fc:86:bf:8c:76:48:ad:
f1:39:cc:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:44 2025 by rpki-client