Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/E_6YnwFkLeJi2cxaoFOFjbB3f7A.roa
File: E_6YnwFkLeJi2cxaoFOFjbB3f7A.roa (raw, json)
Hash identifier: c/Z2CsqoKQmvHivPWbELU8ghon4vnCC/uNjhAffPJDg=
Subject key identifier: 13:FE:98:9F:01:64:2D:E2:62:D9:CC:5A:A0:53:85:8D:B0:77:7F:B0
Certificate issuer: /CN=162e48329c8be8ef209e9958da66ab0240145e19
Certificate serial: 01942521D477CCFD3B880481FDD223850CEA
Authority key identifier: 16:2E:48:32:9C:8B:E8:EF:20:9E:99:58:DA:66:AB:02:40:14:5E:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fi5IMpyL6O8gnplY2marAkAUXhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/E_6YnwFkLeJi2cxaoFOFjbB3f7A.roa
Signing time: Thu 02 Jan 2025 03:49:21 +0000
ROA not before: Thu 02 Jan 2025 03:49:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57795
IP address blocks: 23.249.232.0/21 maxlen: 24
37.114.88.0/21 maxlen: 24
64.26.32.0/20 maxlen: 24
83.174.128.0/20 maxlen: 24
93.92.24.0/21 maxlen: 24
149.143.0.0/19 maxlen: 24
185.6.204.0/22 maxlen: 24
185.34.176.0/22 maxlen: 24
185.37.64.0/22 maxlen: 24
185.37.64.0/23 maxlen: 24
185.43.212.0/22 maxlen: 24
185.144.20.0/22 maxlen: 24
185.221.156.0/22 maxlen: 24
185.254.41.0/24 maxlen: 24
185.254.42.0/23 maxlen: 24
2a00:9340::/29 maxlen: 29
2a00:f5e0::/32 maxlen: 32
2a07:36c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 14 Jan 2025 20:53:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:d4:77:cc:fd:3b:88:04:81:fd:d2:23:85:0c:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=162e48329c8be8ef209e9958da66ab0240145e19
Validity
Not Before: Jan 2 03:49:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=13fe989f01642de262d9cc5aa053858db0777fb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:63:bf:60:3e:28:4b:dc:c2:a4:d9:20:6a:2c:
8e:60:34:55:60:52:ea:f1:5c:09:ce:ba:6f:1c:d4:
88:52:4b:b1:b9:6e:c0:6e:f6:80:ab:c6:c7:84:6b:
b0:3c:09:7c:0b:be:6a:6d:5a:a0:ac:64:8c:00:32:
fc:86:93:36:df:8b:98:79:ea:56:00:0d:8d:82:e8:
c4:bf:5a:2d:7b:f1:64:fe:a5:6d:a9:34:d2:fa:28:
0e:6d:64:68:05:56:c8:4f:c0:bd:8b:7e:4d:ff:62:
b4:07:5a:3f:ce:4f:89:7e:e1:4b:f4:fb:c5:e7:55:
c9:b3:dd:a7:15:16:e8:ff:2b:56:0d:41:ed:44:65:
f1:3f:f2:c8:e1:e2:dd:39:88:5e:72:07:6b:4a:45:
28:c7:10:58:22:68:b2:a6:20:82:f7:5d:08:78:25:
1f:55:e8:72:08:17:15:5c:da:c3:fb:c6:34:84:df:
b0:2e:f1:8d:93:0f:c2:cf:a0:28:60:7d:60:fe:17:
2e:46:0e:4d:32:3e:ac:5a:dd:06:28:dd:48:f3:44:
92:55:df:c7:25:2d:14:f2:c9:bd:d6:3a:6f:1d:25:
47:56:c5:7c:4f:04:f6:76:9d:37:bb:50:7b:07:74:
d6:e6:2d:89:54:64:0c:dc:da:7d:f9:0a:69:f2:d2:
63:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:FE:98:9F:01:64:2D:E2:62:D9:CC:5A:A0:53:85:8D:B0:77:7F:B0
X509v3 Authority Key Identifier:
keyid:16:2E:48:32:9C:8B:E8:EF:20:9E:99:58:DA:66:AB:02:40:14:5E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fi5IMpyL6O8gnplY2marAkAUXhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/E_6YnwFkLeJi2cxaoFOFjbB3f7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/Fi5IMpyL6O8gnplY2marAkAUXhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.249.232.0/21
37.114.88.0/21
64.26.32.0/20
83.174.128.0/20
93.92.24.0/21
149.143.0.0/19
185.6.204.0/22
185.34.176.0/22
185.37.64.0/22
185.43.212.0/22
185.144.20.0/22
185.221.156.0/22
185.254.41.0-185.254.43.255
IPv6:
2a00:9340::/29
2a00:f5e0::/32
2a07:36c0::/29
Signature Algorithm: sha256WithRSAEncryption
58:b6:e2:56:2d:1b:45:36:a9:b5:c9:6c:6f:bb:38:79:84:98:
67:f4:da:78:4a:ec:74:d3:c1:d3:00:5c:2a:78:bf:4e:a3:6a:
92:16:ed:07:29:ce:7e:f9:5e:dd:79:27:e8:bd:57:84:62:37:
ad:22:04:97:6c:81:48:b7:a3:ee:6e:9d:29:07:8f:32:8d:52:
44:45:43:f3:b6:38:f3:99:70:f2:8b:86:ea:d7:46:e7:2e:44:
19:e5:3c:10:95:3d:d4:7b:2b:fe:e1:56:87:c0:ab:5d:49:bc:
e3:62:1d:00:a0:34:94:52:ee:42:88:c0:73:dd:81:84:ce:2d:
bc:ba:c4:9f:47:87:ff:ff:fd:75:3a:c3:9b:d4:4c:ac:77:a8:
f5:b6:16:e0:0c:61:32:66:2b:45:c6:81:82:e9:99:77:a8:5c:
d5:7c:9f:61:12:57:3c:d7:dc:e6:b7:c7:f3:ba:85:c3:2b:ed:
47:e5:c6:6f:75:7d:5b:ad:45:fe:0e:1c:f1:d6:ee:b3:be:74:
b3:67:e2:62:46:19:e0:cb:17:a5:0e:05:ed:1a:9e:d0:92:2c:
28:fe:7b:42:cc:a5:5a:6e:67:d2:80:23:93:06:f6:0a:e6:b9:
d1:4f:33:13:3b:49:f5:17:c8:3d:19:bb:73:52:9e:fc:ad:27:
a9:2d:c8:ae
-----BEGIN CERTIFICATE-----
MIIFazCCBFOgAwIBAgISAZQlIdR3zP07iASB/dIjhQzqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2MmU0ODMyOWM4YmU4ZWYyMDllOTk1OGRhNjZhYjAyNDAx
NDVlMTkwHhcNMjUwMTAyMDM0OTIxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxM2ZlOTg5ZjAxNjQyZGUyNjJkOWNjNWFhMDUzODU4ZGIwNzc3ZmIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmO/YD4oS9zCpNkgaiyOYDRVYFLq
8VwJzrpvHNSIUkuxuW7AbvaAq8bHhGuwPAl8C75qbVqgrGSMADL8hpM234uYeepW
AA2NgujEv1ote/Fk/qVtqTTS+igObWRoBVbIT8C9i35N/2K0B1o/zk+JfuFL9PvF
51XJs92nFRbo/ytWDUHtRGXxP/LI4eLdOYhecgdrSkUoxxBYImiypiCC910IeCUf
VehyCBcVXNrD+8Y0hN+wLvGNkw/Cz6AoYH1g/hcuRg5NMj6sWt0GKN1I80SSVd/H
JS0U8sm91jpvHSVHVsV8TwT2dp03u1B7B3TW5i2JVGQM3Np9+Qpp8tJjaQIDAQAB
o4ICdzCCAnMwHQYDVR0OBBYEFBP+mJ8BZC3iYtnMWqBThY2wd3+wMB8GA1UdIwQY
MBaAFBYuSDKci+jvIJ6ZWNpmqwJAFF4ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmk1SU1weUw2TzhnbnBsWTJtYXJBa0FVWGhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi84ZTIwNjctMjgzYi00ZTRlLWI2N2Ut
NjlmMzNmZTFiNTMwLzEvRV82WW53RmtMZUppMmN4YW9GT0ZqYkIzZjdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi84ZTIwNjctMjgzYi00ZTRlLWI2N2UtNjlmMzNmZTFiNTMw
LzEvRmk1SU1weUw2TzhnbnBsWTJtYXJBa0FVWGhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGMBggrBgEFBQcBBwEB/wR9MHswXAQCAAEwVgMEAxf56AME
AyVyWAMEBEAaIAMEBFOugAMEA11cGAMEBZWPAAMEArkGzAMEArkisAMEArklQAME
Arkr1AMEArmQFAMEArndnDAMAwQAuf4pAwQCuf4oMBsEAgACMBUDBQMqAJNAAwUA
KgD14AMFAyoHNsAwDQYJKoZIhvcNAQELBQADggEBAFi24lYtG0U2qbXJbG+7OHmE
mGf02nhK7HTTwdMAXCp4v06japIW7Qcpzn75Xt15J+i9V4RiN60iBJdsgUi3o+5u
nSkHjzKNUkRFQ/O2OPOZcPKLhurXRucuRBnlPBCVPdR7K/7hVofAq11JvONiHQCg
NJRS7kKIwHPdgYTOLby6xJ9Hh////XU6w5vUTKx3qPW2FuAMYTJmK0XGgYLpmXeo
XNV8n2ESVzzX3Oa3x/O6hcMr7Uflxm91fVutRf4OHPHW7rO+dLNn4mJGGeDLF6UO
Be0antCSLCj+e0LMpVpuZ9KAI5MG9grmudFPMxM7SfUXyD0Zu3NSnvytJ6ktyK4=
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:44:08 2025 by rpki-client