Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/YWm2ha9a5cPzFVXjCx7a5bgSwDc.roa
File: YWm2ha9a5cPzFVXjCx7a5bgSwDc.roa (raw, json)
Hash identifier: 7eQKTJ8EIPNRwucxWtpjDS6qto1NkF3h9a8sMdBxO3w=
Subject key identifier: 61:69:B6:85:AF:5A:E5:C3:F3:15:55:E3:0B:1E:DA:E5:B8:12:C0:37
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0193CE9F3E2A9D9135F54A405B2B829B36F0
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/YWm2ha9a5cPzFVXjCx7a5bgSwDc.roa
Signing time: Mon 16 Dec 2024 08:39:22 +0000
ROA not before: Mon 16 Dec 2024 08:39:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25490
IP address blocks: 62.183.0.0/17 maxlen: 17
62.183.0.0/19 maxlen: 19
62.183.32.0/20 maxlen: 20
62.183.48.0/23 maxlen: 23
62.183.50.0/24 maxlen: 24
62.183.52.0/22 maxlen: 22
62.183.56.0/22 maxlen: 22
62.183.60.0/22 maxlen: 22
62.183.64.0/21 maxlen: 21
62.183.64.0/24 maxlen: 24
62.183.72.0/22 maxlen: 22
62.183.88.0/22 maxlen: 22
62.183.96.0/22 maxlen: 22
83.239.0.0/18 maxlen: 18
83.239.0.0/20 maxlen: 20
83.239.16.0/20 maxlen: 20
83.239.32.0/19 maxlen: 19
83.239.32.0/21 maxlen: 21
83.239.40.0/22 maxlen: 22
83.239.48.0/20 maxlen: 20
83.239.64.0/19 maxlen: 19
83.239.96.0/20 maxlen: 20
83.239.200.0/21 maxlen: 24
83.239.224.0/20 maxlen: 20
83.239.240.0/22 maxlen: 22
83.239.244.0/22 maxlen: 22
85.172.0.0/19 maxlen: 19
85.172.32.0/19 maxlen: 19
85.172.64.0/21 maxlen: 21
85.172.72.0/22 maxlen: 22
85.172.79.0/24 maxlen: 24
85.172.82.0/23 maxlen: 23
85.172.84.0/22 maxlen: 22
85.172.96.0/21 maxlen: 21
85.172.104.0/22 maxlen: 22
85.172.108.0/23 maxlen: 23
85.172.160.0/21 maxlen: 21
85.173.4.0/22 maxlen: 22
85.173.144.0/20 maxlen: 20
85.173.152.0/22 maxlen: 22
85.174.128.0/18 maxlen: 18
85.174.143.0/24 maxlen: 24
85.174.224.0/20 maxlen: 20
85.174.240.0/20 maxlen: 20
85.175.0.0/16 maxlen: 23
85.175.0.0/19 maxlen: 19
85.175.32.0/21 maxlen: 21
85.175.46.0/24 maxlen: 24
85.175.62.0/23 maxlen: 23
85.175.65.0/24 maxlen: 24
85.175.66.0/23 maxlen: 23
85.175.71.0/24 maxlen: 24
85.175.72.0/22 maxlen: 22
85.175.82.0/23 maxlen: 23
85.175.91.0/24 maxlen: 24
85.175.96.0/22 maxlen: 22
85.175.100.0/23 maxlen: 23
85.175.152.0/23 maxlen: 23
85.175.170.0/23 maxlen: 23
85.175.194.0/23 maxlen: 24
85.175.196.0/22 maxlen: 24
85.175.200.0/21 maxlen: 24
85.175.216.0/22 maxlen: 22
85.175.226.0/23 maxlen: 23
85.175.236.0/24 maxlen: 24
94.233.144.0/21 maxlen: 21
94.233.160.0/20 maxlen: 20
109.172.72.0/24 maxlen: 24
178.34.0.0/17 maxlen: 17
2a02:8040::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 17 Dec 2024 01:31:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ce:9f:3e:2a:9d:91:35:f5:4a:40:5b:2b:82:9b:36:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Dec 16 08:39:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6169b685af5ae5c3f31555e30b1edae5b812c037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f9:91:b5:01:6c:5c:0f:91:30:b6:5e:63:91:
bc:62:48:54:06:b6:2d:3c:60:04:74:97:23:4b:c0:
0a:3e:99:83:f7:0d:5b:d5:b3:4b:28:c3:f9:2c:a5:
21:6b:c7:a4:76:60:9a:d2:4f:6d:f7:4d:58:ab:33:
26:71:b9:21:ae:26:1e:9c:53:d5:96:bf:ee:20:7e:
66:62:b8:a8:8c:ab:64:94:1d:20:94:01:13:a8:30:
98:9f:4e:0b:a9:1c:6a:29:94:4c:c1:3f:54:bb:18:
03:dc:6b:d4:57:72:b9:fe:90:dd:de:7e:97:7b:04:
9c:71:01:14:a4:54:48:0b:fa:79:0a:16:23:5e:95:
fd:02:2f:4e:be:b2:95:c7:4d:db:e0:a6:ba:a0:f5:
63:23:47:2a:43:c2:99:5e:fb:9b:5f:a0:50:5e:07:
fd:7e:d9:01:ee:fa:61:de:3d:93:3a:8e:31:a2:1a:
67:4f:e6:02:90:f8:9d:90:4f:aa:7c:3d:c4:57:6e:
64:65:9c:16:60:49:ac:18:c9:44:32:3e:e0:1c:90:
6c:a2:78:b1:4a:a4:30:11:fb:13:42:dd:0f:0d:24:
95:0c:9b:be:49:c1:f0:42:4c:eb:d9:36:c4:81:d3:
9c:99:4a:a2:61:c4:e7:72:da:a2:a0:29:f2:0d:4b:
3e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:69:B6:85:AF:5A:E5:C3:F3:15:55:E3:0B:1E:DA:E5:B8:12:C0:37
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/YWm2ha9a5cPzFVXjCx7a5bgSwDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.183.0.0/17
83.239.0.0-83.239.111.255
83.239.200.0/21
83.239.224.0-83.239.247.255
85.172.0.0-85.172.75.255
85.172.79.0/24
85.172.82.0-85.172.87.255
85.172.96.0-85.172.109.255
85.172.160.0/21
85.173.4.0/22
85.173.144.0/20
85.174.128.0/18
85.174.224.0-85.175.255.255
94.233.144.0/21
94.233.160.0/20
109.172.72.0/24
178.34.0.0/17
IPv6:
2a02:8040::/32
Signature Algorithm: sha256WithRSAEncryption
43:6e:0e:f7:8f:db:76:18:aa:77:3a:e6:39:a3:d3:5d:62:9a:
a7:3e:2a:cb:77:aa:3d:74:5c:ec:95:97:ca:79:eb:a1:2a:27:
26:06:a2:64:56:03:87:e2:8c:80:76:a8:99:03:04:19:ad:9f:
21:52:0d:f7:75:71:c2:8c:fb:60:58:3c:cd:52:1a:8f:43:a4:
29:9f:2f:4f:0b:7b:2d:0d:5b:e6:39:43:92:74:68:27:c1:5b:
94:a9:33:f0:ee:a5:a3:5c:f0:b6:31:f0:c6:45:ee:87:49:04:
ec:e6:c9:b1:36:ae:5e:5f:6e:36:57:31:0e:ee:b8:0a:7c:8e:
6a:a9:5a:fe:44:21:65:64:3e:76:a3:57:ab:8e:71:b3:21:3c:
dd:42:d1:45:d1:7a:67:1c:cd:46:f9:c3:e7:17:d5:c8:dd:e4:
7a:e4:b3:df:df:cc:ff:46:a6:3a:eb:89:0b:16:51:a9:cf:5c:
17:a2:55:86:0d:7e:c0:3e:85:21:b7:5c:58:22:d7:4d:0c:14:
ff:e6:e0:3c:92:37:c6:5c:04:0b:ff:c2:2d:d1:b9:07:48:95:
45:f3:87:51:a9:a7:07:9d:a3:50:9e:c0:a0:8b:e2:c4:ae:fe:
4f:1a:9f:2a:6e:b5:b2:c2:c4:79:81:f5:18:10:90:39:d8:c6:
37:25:30:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:13:30 2025 by rpki-client