Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/1-Z7EPb-Gf8i2Q4WDVn_Mt-BVQls.roa
File: 1-Z7EPb-Gf8i2Q4WDVn_Mt-BVQls.roa (raw, json)
Hash identifier: n+0+BJRNWYBQ1+pAHhQHSqqwPrzDkuL3ZcRbFBm2mac=
Subject key identifier: F9:9E:C4:3D:BF:86:7F:C8:B6:43:85:83:56:7F:CC:B7:E0:55:42:5B
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0191935ABC7FD7586521A76EB0FCC5247E17
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/1-Z7EPb-Gf8i2Q4WDVn_Mt-BVQls.roa
Signing time: Tue 27 Aug 2024 10:21:22 +0000
ROA not before: Tue 27 Aug 2024 10:21:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13118
IP address blocks: 46.237.0.0/18 maxlen: 18
46.237.0.0/19 maxlen: 19
46.237.48.0/20 maxlen: 20
77.234.0.0/19 maxlen: 19
85.113.192.0/19 maxlen: 19
85.113.192.0/20 maxlen: 20
85.113.204.0/24 maxlen: 24
87.253.0.0/19 maxlen: 19
87.253.0.0/20 maxlen: 20
87.253.13.0/24 maxlen: 24
87.253.16.0/21 maxlen: 21
87.253.24.0/21 maxlen: 21
93.181.208.0/20 maxlen: 20
93.181.224.0/24 maxlen: 24
93.181.225.0/24 maxlen: 24
93.181.240.0/20 maxlen: 20
95.86.192.0/19 maxlen: 19
95.86.206.0/24 maxlen: 24
95.86.207.0/24 maxlen: 24
95.86.208.0/24 maxlen: 24
95.86.209.0/24 maxlen: 24
95.86.224.0/19 maxlen: 19
95.106.160.0/19 maxlen: 19
109.161.0.0/17 maxlen: 17
109.161.0.0/19 maxlen: 19
109.161.0.0/21 maxlen: 21
109.161.8.0/21 maxlen: 21
109.161.32.0/19 maxlen: 19
109.161.52.0/24 maxlen: 24
109.161.57.0/24 maxlen: 24
109.161.60.0/22 maxlen: 22
109.161.64.0/19 maxlen: 19
109.161.64.0/20 maxlen: 20
217.15.128.0/19 maxlen: 24
217.15.134.0/24 maxlen: 24
217.15.144.0/20 maxlen: 20
Validation: Failed, certificate revoked on Wed 28 Aug 2024 10:53:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:93:5a:bc:7f:d7:58:65:21:a7:6e:b0:fc:c5:24:7e:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Aug 27 10:21:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f99ec43dbf867fc8b6438583567fccb7e055425b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e4:ee:8d:82:c7:ec:5b:0d:2f:08:6a:5a:3a:
e8:af:01:de:cc:3d:df:85:77:64:f7:df:30:f6:79:
80:31:6c:d1:bd:56:34:00:64:28:8f:8d:d9:6a:95:
17:3d:b9:e9:67:be:13:91:f9:a0:e1:18:25:dd:68:
05:2c:08:eb:2e:c2:c9:32:b3:1e:e9:29:09:fb:1a:
ba:aa:9d:ac:75:08:14:ea:34:0b:18:e9:c6:bd:7a:
26:cd:3a:33:85:43:9b:27:f8:82:2f:9b:27:f5:de:
eb:0c:62:da:74:63:99:b4:10:9b:eb:57:c5:81:a5:
3f:21:a1:3e:e0:22:ca:f2:00:e5:82:89:1e:23:0c:
55:31:4e:69:04:fe:87:d4:39:da:5a:46:33:ad:fe:
92:1a:ca:d6:0a:1d:19:8a:bd:80:98:30:73:92:b3:
cc:86:ae:dc:81:ea:7e:0f:39:b6:b8:cb:9b:05:a3:
85:0f:0d:c3:a9:91:1b:15:61:b5:dc:ca:c9:0d:de:
7f:7f:3a:0a:76:2e:a0:d1:e7:b4:7d:58:c1:d8:1d:
53:6d:e4:7a:71:05:4e:e2:8c:8a:22:a3:c6:7b:5c:
a0:af:d7:fd:2b:e6:b8:3c:96:35:2a:f2:96:68:d7:
d5:11:f2:f4:e0:a8:3f:24:c0:ef:de:23:9f:da:3e:
96:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:9E:C4:3D:BF:86:7F:C8:B6:43:85:83:56:7F:CC:B7:E0:55:42:5B
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/1-Z7EPb-Gf8i2Q4WDVn_Mt-BVQls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.237.0.0/18
77.234.0.0/19
85.113.192.0/19
87.253.0.0/19
93.181.208.0-93.181.225.255
93.181.240.0/20
95.86.192.0/18
95.106.160.0/19
109.161.0.0/17
217.15.128.0/19
Signature Algorithm: sha256WithRSAEncryption
3f:fc:96:12:a6:6a:35:ca:63:20:ab:af:3b:ea:ce:f4:0b:ff:
2a:35:4e:4b:6d:75:79:18:34:c1:08:86:48:11:f1:c8:db:0e:
11:ac:f6:77:f0:46:f6:41:e6:2c:b4:c1:86:4a:21:f1:fb:1a:
32:6d:de:1e:4c:4f:f7:ab:4d:5b:72:b7:6d:28:57:4e:cc:ad:
56:37:a7:36:4a:06:1d:26:c7:0d:15:cc:29:83:0c:48:47:0a:
5f:c7:0c:28:99:c7:7c:ab:cc:dc:f5:7c:f8:54:7a:cc:2f:d2:
49:ef:93:42:7c:7d:98:6d:e9:30:b5:f2:cd:d4:8b:17:30:b4:
12:4a:1b:04:90:ee:08:7b:44:49:21:a7:3b:e2:80:85:58:a6:
2b:09:08:81:7e:bd:04:f2:24:83:7e:c7:3f:d5:a2:21:1d:cf:
c5:9e:0d:6c:8b:53:ee:6c:e8:80:73:34:e5:36:16:ba:09:24:
a2:6f:77:5c:8d:c5:67:7b:7f:da:de:15:98:98:41:07:dc:22:
cb:cb:6f:5b:0c:92:b9:0b:05:e7:15:81:7a:1a:87:90:ef:a0:
cd:8f:f8:dc:ad:a2:49:48:87:d8:7d:34:6c:0e:0c:ce:89:72:
63:b2:d0:74:e6:6f:28:a3:65:b0:7c:bf:62:18:e0:1e:c7:64:
b2:8e:d0:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:30:59 2025 by rpki-client