Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/7r4bTYixB5CexjQFZHzHVLxMAVU.roa
File: 7r4bTYixB5CexjQFZHzHVLxMAVU.roa (raw, json)
Hash identifier: doCRyUwqh2rXiXQBwKCpxHCEBrJVuiJEPVT8go2ijyU=
Subject key identifier: EE:BE:1B:4D:88:B1:07:90:9E:C6:34:05:64:7C:C7:54:BC:4C:01:55
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 019192C0EDDE8FE6E2B6727CD7C2D6A6EE27
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/7r4bTYixB5CexjQFZHzHVLxMAVU.roa
Signing time: Tue 27 Aug 2024 07:33:22 +0000
ROA not before: Tue 27 Aug 2024 07:33:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25490
IP address blocks: 62.183.0.0/17 maxlen: 17
62.183.0.0/19 maxlen: 19
62.183.32.0/20 maxlen: 20
62.183.48.0/23 maxlen: 23
62.183.50.0/24 maxlen: 24
62.183.52.0/22 maxlen: 22
62.183.56.0/22 maxlen: 22
62.183.60.0/22 maxlen: 22
62.183.64.0/21 maxlen: 21
62.183.64.0/24 maxlen: 24
62.183.72.0/22 maxlen: 22
62.183.88.0/22 maxlen: 22
62.183.96.0/22 maxlen: 22
83.239.0.0/18 maxlen: 18
83.239.0.0/20 maxlen: 20
83.239.16.0/20 maxlen: 20
83.239.32.0/19 maxlen: 19
83.239.32.0/21 maxlen: 21
83.239.40.0/22 maxlen: 22
83.239.48.0/20 maxlen: 20
83.239.64.0/19 maxlen: 19
83.239.96.0/20 maxlen: 20
83.239.200.0/21 maxlen: 24
83.239.224.0/20 maxlen: 20
83.239.240.0/22 maxlen: 22
83.239.244.0/22 maxlen: 22
85.172.0.0/19 maxlen: 19
85.172.32.0/19 maxlen: 19
85.172.64.0/21 maxlen: 21
85.172.72.0/22 maxlen: 22
85.172.79.0/24 maxlen: 24
85.172.82.0/23 maxlen: 23
85.172.84.0/22 maxlen: 22
85.172.96.0/20 maxlen: 20
85.172.160.0/21 maxlen: 21
85.173.4.0/22 maxlen: 22
85.173.144.0/20 maxlen: 20
85.174.128.0/18 maxlen: 18
85.174.143.0/24 maxlen: 24
85.174.224.0/20 maxlen: 20
85.174.240.0/20 maxlen: 20
85.175.0.0/16 maxlen: 23
85.175.0.0/19 maxlen: 19
85.175.32.0/21 maxlen: 21
85.175.46.0/24 maxlen: 24
85.175.62.0/23 maxlen: 23
85.175.65.0/24 maxlen: 24
85.175.66.0/23 maxlen: 23
85.175.71.0/24 maxlen: 24
85.175.72.0/22 maxlen: 22
85.175.82.0/23 maxlen: 23
85.175.91.0/24 maxlen: 24
85.175.96.0/22 maxlen: 22
85.175.100.0/23 maxlen: 23
85.175.152.0/23 maxlen: 23
85.175.170.0/23 maxlen: 23
85.175.192.0/20 maxlen: 20
85.175.216.0/22 maxlen: 22
85.175.226.0/23 maxlen: 23
85.175.236.0/24 maxlen: 24
94.233.144.0/21 maxlen: 21
94.233.160.0/20 maxlen: 20
109.172.72.0/24 maxlen: 24
178.34.0.0/17 maxlen: 17
2a02:8040::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 31 Oct 2024 01:10:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:92:c0:ed:de:8f:e6:e2:b6:72:7c:d7:c2:d6:a6:ee:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Aug 27 07:33:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eebe1b4d88b107909ec63405647cc754bc4c0155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:c6:24:ff:22:f6:58:e3:16:47:b0:78:c0:3f:
d3:75:53:74:56:ab:c6:52:5e:a8:45:c7:76:05:21:
83:c1:88:3b:f0:ed:bf:a1:9b:d4:7b:fe:ab:58:6c:
6f:c7:83:d2:d3:24:df:df:5a:6b:dd:23:b1:39:4e:
3e:7d:f9:7c:ab:52:e9:db:52:57:ef:68:62:eb:84:
dc:6d:92:86:52:14:0f:cb:ad:cb:8b:d8:3f:1d:6a:
35:77:b0:62:7e:b8:ef:d0:12:da:5e:19:db:b2:2d:
30:8d:59:a0:df:99:35:4c:ab:b7:f9:ed:f1:08:e7:
5c:d4:01:e4:73:24:7d:d6:5f:b3:a4:42:95:e1:6d:
d3:ca:1d:b2:12:81:76:5f:51:09:01:58:06:c2:d5:
1f:5a:32:6c:61:a6:ec:d3:96:38:20:11:75:bd:7e:
3d:f8:42:e7:b5:5b:af:95:1e:ac:fd:5e:ff:95:aa:
6a:9f:c9:02:56:5d:65:e6:23:6a:bd:7a:21:0a:5e:
c4:95:59:24:94:95:0c:e6:01:61:11:fd:6a:41:e7:
c2:c9:79:00:e9:1d:c2:3c:d5:bb:68:e0:94:6b:a3:
02:40:e3:47:eb:af:ec:5f:9f:80:cb:df:1f:6e:e0:
0a:01:5a:cb:7f:fe:7a:c6:8e:ef:64:bd:82:ff:1b:
23:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:BE:1B:4D:88:B1:07:90:9E:C6:34:05:64:7C:C7:54:BC:4C:01:55
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/7r4bTYixB5CexjQFZHzHVLxMAVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.183.0.0/17
83.239.0.0-83.239.111.255
83.239.200.0/21
83.239.224.0-83.239.247.255
85.172.0.0-85.172.75.255
85.172.79.0/24
85.172.82.0-85.172.87.255
85.172.96.0/20
85.172.160.0/21
85.173.4.0/22
85.173.144.0/20
85.174.128.0/18
85.174.224.0-85.175.255.255
94.233.144.0/21
94.233.160.0/20
109.172.72.0/24
178.34.0.0/17
IPv6:
2a02:8040::/32
Signature Algorithm: sha256WithRSAEncryption
63:19:66:b7:5a:02:84:dc:1f:00:71:0f:75:a8:84:4e:62:46:
82:62:66:c7:2e:02:a0:76:d8:75:c0:c8:b8:c9:bd:09:cc:ae:
b7:1c:64:91:90:9a:17:c9:8c:03:f6:95:1f:28:81:77:34:3e:
85:89:bb:7d:b8:04:04:a9:38:49:36:95:ec:dd:cd:14:5b:60:
6c:d8:1c:c3:26:c8:1c:bc:90:8f:0c:a9:66:29:56:26:2b:ec:
5b:d8:ba:d0:ce:27:d0:9c:35:36:8f:25:5d:93:80:c7:09:47:
9d:c3:d5:2f:94:d6:83:e8:b8:bc:f2:d0:9a:7f:1f:7e:f0:7d:
19:a7:da:ea:54:91:3a:d7:f9:a4:9b:25:f3:29:e0:63:e2:8e:
f1:53:3b:d2:f3:60:96:a0:8a:92:d3:42:18:f0:d1:23:24:c9:
7c:b4:db:63:51:f5:50:bf:7f:ff:25:0d:6c:da:82:ec:2b:09:
90:1f:c1:54:9b:2a:81:2d:08:ca:cb:cd:05:70:8c:6e:93:0e:
60:00:1c:68:df:10:61:9c:39:a4:6e:a7:9e:f4:e7:8b:f3:4b:
e0:79:dc:4d:ac:2f:23:39:7f:66:42:0c:80:ee:69:27:3f:1b:
57:58:3f:d5:28:c7:30:26:f2:ee:69:18:62:1f:fd:97:af:c3:
2c:6c:cd:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:03:25 2025 by rpki-client