Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/Ax8cWflMEEAChsmju7mb_aHJWbY.roa
File: Ax8cWflMEEAChsmju7mb_aHJWbY.roa (raw, json)
Hash identifier: DhRzGvh3fxGuu3lnbJ77UG7hE7BiT+7/uHxFl3jZm1o=
Subject key identifier: 03:1F:1C:59:F9:4C:10:40:02:86:C9:A3:BB:B9:9B:FD:A1:C9:59:B6
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 0194EF04DBBEF007008EEE54C14D932E26A5
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/Ax8cWflMEEAChsmju7mb_aHJWbY.roa
Signing time: Mon 10 Feb 2025 08:41:00 +0000
ROA not before: Mon 10 Feb 2025 08:41:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24852
IP address blocks: 79.132.160.0/20 maxlen: 20
84.55.32.0/24 maxlen: 24
84.55.33.0/24 maxlen: 24
84.55.34.0/23 maxlen: 23
84.55.36.0/23 maxlen: 23
84.55.48.0/21 maxlen: 21
84.55.56.0/23 maxlen: 23
84.55.58.0/23 maxlen: 23
84.55.60.0/23 maxlen: 23
84.55.62.0/23 maxlen: 23
88.223.0.0/18 maxlen: 18
88.223.96.0/22 maxlen: 22
88.223.104.0/21 maxlen: 21
88.223.112.0/20 maxlen: 20
88.223.128.0/22 maxlen: 22
88.223.144.0/21 maxlen: 21
88.223.152.0/24 maxlen: 24
88.223.153.0/24 maxlen: 24
88.223.160.0/22 maxlen: 22
88.223.179.0/24 maxlen: 24
88.223.182.0/24 maxlen: 24
88.223.192.0/20 maxlen: 20
95.173.32.0/23 maxlen: 23
185.104.176.0/22 maxlen: 22
213.164.112.0/22 maxlen: 22
213.164.116.0/23 maxlen: 23
213.164.118.0/24 maxlen: 24
217.147.34.0/24 maxlen: 24
217.147.35.0/24 maxlen: 24
217.147.36.0/23 maxlen: 23
217.147.38.0/24 maxlen: 24
217.147.40.0/24 maxlen: 24
217.147.41.0/24 maxlen: 24
217.147.44.0/23 maxlen: 23
217.147.46.0/24 maxlen: 24
217.147.47.0/24 maxlen: 24
2a01:7c80::/33 maxlen: 33
Validation: Failed, certificate revoked on Fri 21 Feb 2025 11:23:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ef:04:db:be:f0:07:00:8e:ee:54:c1:4d:93:2e:26:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Feb 10 08:41:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=031f1c59f94c10400286c9a3bbb99bfda1c959b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:14:b6:fe:64:e9:7e:d2:d9:c8:10:ca:0e:ea:
23:e3:c0:67:90:58:59:74:58:dd:90:17:82:3f:a5:
40:54:4a:15:7a:94:f5:99:46:87:74:85:02:2b:8b:
cd:ef:db:5e:7c:55:d8:c6:3d:18:86:d8:79:94:a9:
af:c7:62:bd:d2:30:05:ef:67:d4:32:e5:cf:ab:f6:
1c:cd:d8:17:be:02:d2:3d:23:92:01:23:8c:58:8f:
04:bd:79:ca:94:1c:9a:94:7e:d2:ab:ca:3b:fb:81:
b3:60:fe:18:54:c6:5b:f3:4e:ad:21:ec:6a:e0:44:
c4:59:c2:7a:df:d0:24:a1:41:9e:4c:92:89:fd:5e:
8b:20:1e:6a:1e:45:47:45:e3:04:09:50:b3:34:9f:
67:88:32:4c:96:78:d9:e7:be:0e:20:d1:44:c6:8c:
06:e3:ad:36:fe:28:9a:82:0c:2e:a4:e2:28:2a:b7:
90:04:f6:59:f4:ec:06:c7:64:bf:38:19:45:aa:72:
68:3e:50:db:90:a5:96:4c:cc:93:0a:91:5b:90:d2:
b9:2e:71:8d:6d:b2:62:10:c5:35:38:87:cf:3a:f5:
1d:f3:72:a5:cf:c1:18:92:d6:ad:f6:40:b6:b1:17:
51:e2:7d:e3:be:4d:79:c8:d3:34:18:fc:82:2f:33:
32:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:1F:1C:59:F9:4C:10:40:02:86:C9:A3:BB:B9:9B:FD:A1:C9:59:B6
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/Ax8cWflMEEAChsmju7mb_aHJWbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.160.0/20
84.55.32.0-84.55.37.255
84.55.48.0/20
88.223.0.0/18
88.223.96.0/22
88.223.104.0-88.223.131.255
88.223.144.0-88.223.153.255
88.223.160.0/22
88.223.179.0/24
88.223.182.0/24
88.223.192.0/20
95.173.32.0/23
185.104.176.0/22
213.164.112.0-213.164.118.255
217.147.34.0-217.147.38.255
217.147.40.0/23
217.147.44.0/22
IPv6:
2a01:7c80::/33
Signature Algorithm: sha256WithRSAEncryption
7b:f2:c8:3d:19:4e:ea:f9:68:b3:68:7d:ec:6a:1a:ff:d5:84:
0a:8b:fe:28:ed:a5:37:f6:cc:6f:a5:ad:7e:31:5f:f3:df:9e:
8b:8c:b2:1e:39:46:fa:2b:bd:65:40:a7:7c:25:45:72:c8:94:
32:90:05:ee:d9:a0:b0:df:d1:83:02:58:4b:98:d2:8f:f9:4f:
07:92:78:a7:bd:8e:00:6a:a8:6b:bd:f5:e6:08:a7:86:95:00:
72:3f:29:58:07:c6:35:e8:68:08:ff:9a:90:7d:12:04:fe:4e:
04:38:1c:e0:30:ed:c3:50:c3:77:ea:3b:2b:a4:76:35:f6:1a:
14:f8:7b:36:7d:6b:b1:c6:f8:81:07:37:d5:21:ca:fb:ab:58:
7a:6c:56:e7:65:62:a3:18:39:28:d8:d2:d3:e6:9c:c8:10:c4:
61:11:4a:e3:2b:ca:06:a8:b4:27:0d:de:2b:69:7c:7c:08:2b:
38:3d:79:2d:cc:9c:a6:5c:d0:ba:db:6d:21:ce:5b:ef:50:3e:
cb:4a:c2:5b:3e:5a:36:56:88:ff:42:74:02:82:2d:9d:43:77:
b3:2d:ad:12:17:5b:22:c1:2e:3f:a9:b5:02:9f:a7:82:d5:07:
c1:ce:4c:c1:0e:90:dd:ce:aa:9d:70:38:fe:7b:e5:89:ab:cd:
f8:ac:59:17
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 6 20:16:44 2025 by rpki-client