Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/UMevr9m0mEk40RObdUc8ZSG_UXA.roa
File: UMevr9m0mEk40RObdUc8ZSG_UXA.roa (raw, json)
Hash identifier: wxWds1c/vNLm17A4HVD+cTOA4VNvolC2ASSbNowtXvI=
Subject key identifier: 50:C7:AF:AF:D9:B4:98:49:38:D1:13:9B:75:47:3C:65:21:BF:51:70
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0197110A925BD5DE8A44FBE5D93BA5B338D2
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/UMevr9m0mEk40RObdUc8ZSG_UXA.roa
Signing time: Tue 27 May 2025 09:19:54 +0000
ROA not before: Tue 27 May 2025 09:19:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201776
IP address blocks: 2.63.144.0/20 maxlen: 20
2.63.176.0/20 maxlen: 20
2.63.224.0/20 maxlen: 20
46.61.150.0/24 maxlen: 24
46.61.245.0/24 maxlen: 24
84.42.92.0/22 maxlen: 24
84.42.92.0/24 maxlen: 24
84.42.93.0/24 maxlen: 24
84.42.94.0/24 maxlen: 24
84.42.95.0/24 maxlen: 24
85.174.144.0/20 maxlen: 24
92.50.204.0/23 maxlen: 23
92.50.204.0/24 maxlen: 24
92.50.205.0/24 maxlen: 24
176.119.169.0/24 maxlen: 24
176.119.170.0/24 maxlen: 24
176.119.171.0/24 maxlen: 24
176.119.172.0/24 maxlen: 24
176.208.74.0/24 maxlen: 24
176.211.120.0/22 maxlen: 22
188.128.76.0/23 maxlen: 24
188.128.76.0/24 maxlen: 24
188.128.77.0/24 maxlen: 24
188.254.122.0/23 maxlen: 24
188.254.122.0/24 maxlen: 24
188.254.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Jun 2025 07:21:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:11:0a:92:5b:d5:de:8a:44:fb:e5:d9:3b:a5:b3:38:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: May 27 09:19:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=50c7afafd9b4984938d1139b75473c6521bf5170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d9:d4:49:2d:d5:92:ae:85:a3:48:da:25:5a:
06:6c:a9:99:9b:cc:1b:c6:20:d3:c9:f5:d5:2f:89:
b4:dd:20:2e:4d:2a:c7:4a:b9:ae:0a:34:a1:c3:7f:
32:37:56:db:97:90:47:4e:8c:db:8f:a4:a2:b7:d5:
c4:0e:cd:6c:f0:1f:69:84:93:ab:d2:2a:2b:73:eb:
26:02:11:e4:5e:a7:00:fd:61:bb:54:b4:1b:f5:19:
1e:19:a1:d2:f8:31:f0:e7:13:7e:99:a3:aa:82:4c:
fb:9e:80:40:21:cf:b4:61:51:65:f1:41:98:30:11:
9f:b2:5a:9b:80:99:9e:cf:81:74:a7:99:b3:df:68:
f1:7c:64:cd:6e:68:d1:f0:a3:e1:0c:13:5d:e4:ce:
12:3d:d6:55:68:ea:c4:ce:34:8b:e9:23:50:fa:49:
a1:e4:aa:02:bf:e7:95:68:fe:4a:c9:19:2f:ba:b4:
c7:75:cb:e2:2c:de:80:b1:77:7f:25:f1:1f:e3:3d:
3e:45:70:6a:ac:82:ef:e0:0a:06:e2:cd:fb:5f:1e:
9b:6f:7b:0c:db:05:c9:1f:01:96:93:63:b9:17:89:
f8:dd:f8:c0:33:b2:81:c0:3f:6f:16:c6:15:b9:70:
86:ac:3e:1d:fd:93:dd:b5:c7:3c:d1:45:4c:fe:13:
d6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C7:AF:AF:D9:B4:98:49:38:D1:13:9B:75:47:3C:65:21:BF:51:70
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/UMevr9m0mEk40RObdUc8ZSG_UXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.63.144.0/20
2.63.176.0/20
2.63.224.0/20
46.61.150.0/24
46.61.245.0/24
84.42.92.0/22
85.174.144.0/20
92.50.204.0/23
176.119.169.0-176.119.172.255
176.208.74.0/24
176.211.120.0/22
188.128.76.0/23
188.254.122.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:ef:a0:47:0d:06:42:ce:ea:62:2b:94:fd:e5:fe:3a:63:50:
a0:6f:e3:10:28:8c:74:63:d6:52:60:34:01:2e:44:79:7e:15:
6d:c3:a8:35:c4:fa:48:d8:9f:aa:7a:de:26:14:92:4d:25:84:
03:ba:ae:22:5e:2b:90:f5:86:79:b6:36:6b:dd:54:7f:60:13:
b3:f1:c8:e5:12:90:1c:3c:5c:73:6b:45:46:4a:d1:8c:7a:b4:
50:f3:26:6d:b6:c0:1c:86:6f:8f:ff:64:22:8a:db:1f:b8:14:
ad:f3:93:16:98:bf:02:89:91:77:2f:57:18:a6:e2:04:e0:e2:
c7:c4:61:b7:4c:62:95:a3:b0:ee:a3:ff:b3:78:5e:8c:64:32:
ad:92:bf:53:1f:17:31:79:b8:5e:3f:75:9c:94:77:64:cb:02:
06:a4:04:e4:5b:3c:31:2e:85:98:b2:10:8d:55:11:03:e2:16:
3f:a2:8c:ba:73:de:25:e2:b8:d2:8b:cb:6c:de:b2:da:9a:57:
17:af:7f:62:d8:2e:f5:90:dc:b0:e0:55:48:74:d2:51:00:3b:
b1:12:1d:40:9a:bc:36:c2:39:7f:4b:3c:a3:e6:35:d0:98:13:
2f:1c:05:32:08:a8:da:c9:f8:14:24:5d:d9:0f:14:f4:2c:0f:
5c:f5:21:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 14:49:15 2025 by rpki-client