Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/1-yvPSxRvLJNg8zE3ABRNiHfdCnU.roa
File: 1-yvPSxRvLJNg8zE3ABRNiHfdCnU.roa (raw, json)
Hash identifier: muoYIA5R4EcNpcKr/54tCV8FBZUDS17aQhAP6M5Aii4=
Subject key identifier: FB:2B:CF:4B:14:6F:2C:93:60:F3:31:37:00:14:4D:88:77:DD:0A:75
Certificate issuer: /CN=f0f14ed124f9a2f3deab1006f184cf4fb80a3aec
Certificate serial: 018CC7273D6C9354F97DF5BE73335CE15875
Authority key identifier: F0:F1:4E:D1:24:F9:A2:F3:DE:AB:10:06:F1:84:CF:4F:B8:0A:3A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PFO0ST5ovPeqxAG8YTPT7gKOuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/1-yvPSxRvLJNg8zE3ABRNiHfdCnU.roa
Signing time: Mon 01 Jan 2024 22:31:26 +0000
ROA not before: Mon 01 Jan 2024 22:31:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206825
IP address blocks: 185.36.112.0/22 maxlen: 22
195.5.96.0/23 maxlen: 23
185.186.116.0/22 maxlen: 22
85.204.37.0/24 maxlen: 24
195.181.254.0/24 maxlen: 24
185.11.16.0/22 maxlen: 22
185.11.16.0/23 maxlen: 23
185.11.18.0/23 maxlen: 23
195.192.252.0/24 maxlen: 24
80.208.255.0/24 maxlen: 24
31.14.30.0/24 maxlen: 24
31.14.29.0/24 maxlen: 24
94.177.133.0/24 maxlen: 24
178.157.95.0/24 maxlen: 24
185.207.240.0/22 maxlen: 22
103.197.8.0/22 maxlen: 22
212.103.52.0/22 maxlen: 22
46.102.102.0/24 maxlen: 24
217.61.255.0/24 maxlen: 24
5.182.107.0/24 maxlen: 24
212.237.254.0/24 maxlen: 24
2a03:4f40::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 16 Feb 2024 08:48:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:3d:6c:93:54:f9:7d:f5:be:73:33:5c:e1:58:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0f14ed124f9a2f3deab1006f184cf4fb80a3aec
Validity
Not Before: Jan 1 22:31:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fb2bcf4b146f2c9360f3313700144d8877dd0a75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d9:d4:41:57:32:20:e5:8a:61:7b:d3:55:66:
df:fe:7b:10:45:cd:65:5d:52:09:78:32:45:53:62:
6e:33:59:8e:64:5a:a4:2b:17:d5:f0:d9:79:2c:8d:
da:e3:cb:03:60:5e:c4:e0:d2:18:44:4c:09:fa:f6:
95:26:f0:4b:8e:c3:96:f4:32:b5:f7:9d:b4:46:55:
c9:08:1a:f1:f2:24:76:53:fe:5c:02:74:2e:21:33:
69:b0:77:ae:cf:b2:8b:f2:19:c7:7c:63:7c:42:07:
fa:26:c8:72:95:87:18:6e:fe:b2:a7:05:34:b7:8c:
05:f0:dc:9a:0b:9b:33:9b:0f:b9:38:a3:ca:75:4b:
4d:8a:30:d5:9c:38:d6:7a:58:95:db:09:d1:d7:0c:
0a:60:6c:da:91:e8:2e:88:44:60:4a:52:4b:8c:69:
61:01:31:d1:11:9b:af:f7:d8:c3:53:bd:c8:30:cb:
d4:7c:de:78:82:32:6b:16:9a:ae:bd:08:33:fa:dc:
df:cc:a6:fa:84:18:77:c7:58:af:9e:9c:dd:f3:7d:
a8:9f:b8:d7:3c:87:09:c8:9e:fd:64:8d:28:3d:e1:
7c:3d:b2:6d:50:cb:6e:d2:f3:12:30:38:fd:3c:2f:
0d:f0:8c:cb:85:c6:30:21:cf:52:74:60:b8:10:65:
b1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:2B:CF:4B:14:6F:2C:93:60:F3:31:37:00:14:4D:88:77:DD:0A:75
X509v3 Authority Key Identifier:
keyid:F0:F1:4E:D1:24:F9:A2:F3:DE:AB:10:06:F1:84:CF:4F:B8:0A:3A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PFO0ST5ovPeqxAG8YTPT7gKOuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/1-yvPSxRvLJNg8zE3ABRNiHfdCnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/8PFO0ST5ovPeqxAG8YTPT7gKOuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.107.0/24
31.14.29.0-31.14.30.255
46.102.102.0/24
80.208.255.0/24
85.204.37.0/24
94.177.133.0/24
103.197.8.0/22
178.157.95.0/24
185.11.16.0/22
185.36.112.0/22
185.186.116.0/22
185.207.240.0/22
195.5.96.0/23
195.181.254.0/24
195.192.252.0/24
212.103.52.0/22
212.237.254.0/24
217.61.255.0/24
IPv6:
2a03:4f40::/32
Signature Algorithm: sha256WithRSAEncryption
50:30:09:42:0b:3a:dd:c4:81:b2:95:f7:09:c7:95:01:84:c5:
9e:4e:db:c6:2b:a0:46:85:6c:fd:e5:db:bd:22:d7:76:a5:33:
92:6d:be:f1:73:9f:9d:60:80:34:0d:1d:e8:80:6f:41:6e:9e:
4a:ec:02:70:6a:73:fa:fd:6c:96:67:b4:f5:de:74:05:82:25:
70:10:0a:18:a4:3a:cc:e1:38:cb:8a:01:f5:55:ae:d2:c0:19:
3f:85:4f:a4:1a:e2:b4:10:02:7a:1d:2d:1f:00:10:c8:f2:bd:
22:72:c3:e7:64:01:87:be:9a:b5:6b:e8:2a:6d:1a:ed:7c:ec:
fe:a1:6b:9c:3d:e6:08:23:61:8b:3c:85:78:36:5d:27:a7:92:
1f:2f:6f:ba:92:48:aa:f7:1f:15:0b:77:dc:8a:8e:3d:b0:f9:
52:70:99:82:14:68:52:42:0b:8d:28:24:af:df:cb:b7:00:5a:
53:8d:73:e3:0e:13:0a:b2:60:9d:98:76:80:6e:c1:0d:d4:e5:
9f:f0:31:ab:4f:e2:f1:d3:a1:b8:38:8f:20:ca:fb:c6:71:20:
4f:e5:b6:b7:79:05:8d:ed:35:6e:02:27:34:76:bf:85:bf:88:
ff:11:80:00:60:ed:7e:c1:06:0c:99:9c:54:7d:00:9d:79:10:
d9:c5:f9:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 08:33:50 2025 by rpki-client