Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/ra6IL-7DXHARSx9klTNF5qLi19w.roa
File: ra6IL-7DXHARSx9klTNF5qLi19w.roa (raw, json)
Hash identifier: uBWs6hiN7RqIGzVYgfDr++CeGhOF/tPciWAed1UFtFI=
Subject key identifier: AD:AE:88:2F:EE:C3:5C:70:11:4B:1F:64:95:33:45:E6:A2:E2:D7:DC
Certificate issuer: /CN=fdd2b36206439bbce15b363f09eeff1d738cecc7
Certificate serial: 0195410EE4B0D656A51A936D74032E964F69
Authority key identifier: FD:D2:B3:62:06:43:9B:BC:E1:5B:36:3F:09:EE:FF:1D:73:8C:EC:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_dKzYgZDm7zhWzY_Ce7_HXOM7Mc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/ra6IL-7DXHARSx9klTNF5qLi19w.roa
Signing time: Wed 26 Feb 2025 07:00:49 +0000
ROA not before: Wed 26 Feb 2025 07:00:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16010
IP address blocks: 5.178.128.0/17 maxlen: 24
5.178.128.0/18 maxlen: 18
5.178.192.0/18 maxlen: 18
46.49.0.0/17 maxlen: 24
46.49.0.0/18 maxlen: 18
46.49.64.0/18 maxlen: 18
62.168.160.0/19 maxlen: 24
77.74.40.0/21 maxlen: 21
80.241.240.0/22 maxlen: 22
80.241.248.0/22 maxlen: 22
80.241.253.0/24 maxlen: 24
80.241.254.0/23 maxlen: 23
82.211.128.0/18 maxlen: 19
82.211.128.0/19 maxlen: 19
82.211.160.0/19 maxlen: 19
85.114.224.0/19 maxlen: 24
89.232.32.0/19 maxlen: 24
93.177.128.0/18 maxlen: 24
93.177.128.0/19 maxlen: 19
93.177.160.0/19 maxlen: 19
94.137.160.0/19 maxlen: 24
94.240.192.0/18 maxlen: 24
94.240.192.0/19 maxlen: 19
94.240.224.0/19 maxlen: 19
95.104.0.0/17 maxlen: 24
95.104.0.0/18 maxlen: 18
95.104.64.0/18 maxlen: 18
109.172.128.0/17 maxlen: 24
134.19.224.0/19 maxlen: 24
185.115.4.0/22 maxlen: 22
185.115.4.0/24 maxlen: 24
188.121.192.0/19 maxlen: 24
188.129.128.0/17 maxlen: 18
212.58.96.0/19 maxlen: 24
212.72.128.0/23 maxlen: 24
212.72.131.0/24 maxlen: 24
212.72.132.0/22 maxlen: 22
212.72.136.0/21 maxlen: 24
212.72.144.0/21 maxlen: 21
212.72.152.0/23 maxlen: 23
212.72.154.0/24 maxlen: 24
212.72.156.0/22 maxlen: 22
213.157.192.0/19 maxlen: 24
213.200.0.0/19 maxlen: 24
2a0b:6200::/29 maxlen: 64
Validation: Failed, certificate revoked on Wed 26 Feb 2025 07:50:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:41:0e:e4:b0:d6:56:a5:1a:93:6d:74:03:2e:96:4f:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdd2b36206439bbce15b363f09eeff1d738cecc7
Validity
Not Before: Feb 26 07:00:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=adae882feec35c70114b1f64953345e6a2e2d7dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:e3:9f:79:b9:4f:7c:6e:2b:d1:a5:e8:04:ec:
9c:48:3c:c6:24:60:1b:72:69:1a:ef:c8:25:61:b4:
80:03:99:85:37:51:6f:70:0c:13:2c:41:19:6a:da:
09:e9:95:d6:00:07:27:10:93:d0:11:4d:fb:45:e4:
0f:37:03:23:f6:6e:d3:f7:da:b8:fa:ee:52:7f:c9:
4c:cd:d7:d0:fb:be:81:d7:64:5b:a3:3c:dd:c2:fe:
cf:f7:b6:5a:88:1d:74:83:3e:84:e8:c1:9b:0e:42:
69:60:cd:31:d0:64:5e:b1:00:68:00:52:9b:18:fc:
d2:12:b9:3c:6e:68:b3:33:e3:00:0b:75:43:72:4a:
e9:43:e7:c2:c1:f6:10:5a:72:0b:ed:b9:3f:50:8b:
4a:70:1f:e5:bc:b3:18:6c:bd:94:45:ad:fb:28:23:
e8:4d:85:89:a9:5a:8f:77:20:bd:a1:15:49:90:35:
5f:c5:67:38:53:50:90:74:57:da:f3:0d:e9:d0:0c:
dd:36:a8:e3:bf:31:28:8a:3e:64:80:e4:ee:58:d8:
bd:51:72:6e:5a:92:3f:95:0c:82:40:8d:90:62:c2:
90:57:3e:38:52:16:cf:1d:ee:cb:62:ce:fa:20:31:
31:0d:6d:33:41:68:29:64:3a:18:1b:fb:e3:e3:ac:
dd:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:AE:88:2F:EE:C3:5C:70:11:4B:1F:64:95:33:45:E6:A2:E2:D7:DC
X509v3 Authority Key Identifier:
keyid:FD:D2:B3:62:06:43:9B:BC:E1:5B:36:3F:09:EE:FF:1D:73:8C:EC:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_dKzYgZDm7zhWzY_Ce7_HXOM7Mc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/ra6IL-7DXHARSx9klTNF5qLi19w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/_dKzYgZDm7zhWzY_Ce7_HXOM7Mc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.128.0/17
46.49.0.0/17
62.168.160.0/19
77.74.40.0/21
80.241.240.0/22
80.241.248.0/22
80.241.253.0-80.241.255.255
82.211.128.0/18
85.114.224.0/19
89.232.32.0/19
93.177.128.0/18
94.137.160.0/19
94.240.192.0/18
95.104.0.0/17
109.172.128.0/17
134.19.224.0/19
185.115.4.0/22
188.121.192.0/19
188.129.128.0/17
212.58.96.0/19
212.72.128.0/23
212.72.131.0-212.72.154.255
212.72.156.0/22
213.157.192.0/19
213.200.0.0/19
IPv6:
2a0b:6200::/29
Signature Algorithm: sha256WithRSAEncryption
0d:f9:88:ed:00:66:18:33:9c:4e:06:6b:3e:d8:d7:91:b9:5a:
42:b7:0f:f1:4e:9d:42:07:85:37:12:e6:79:cc:d5:1d:e6:55:
f4:29:7d:00:a4:8c:51:51:0c:66:36:0d:7a:25:fb:0a:03:a3:
12:e6:41:bc:64:c0:ff:f0:d0:09:cb:31:ae:52:a1:6a:e7:18:
bf:ea:9b:10:8b:a2:96:72:3b:75:be:c3:7a:ca:a9:37:d4:2d:
b4:18:72:9f:df:0b:db:16:62:b2:fa:c3:3b:1c:41:29:f6:ce:
66:8d:fe:69:5e:0f:01:15:a7:c2:24:eb:f0:9c:52:ce:d7:20:
45:dc:17:9e:e3:e4:c4:73:16:85:41:bb:51:98:c7:cb:57:d2:
c8:9a:69:0f:06:2e:bc:e3:32:cb:5c:fb:d9:aa:d2:9b:89:96:
3c:55:d0:28:ce:19:44:63:d4:3c:2c:7f:1d:1b:3b:76:21:aa:
04:3d:ca:b9:2f:c4:64:cd:e1:30:1d:a6:66:3f:2c:27:76:31:
ee:31:5e:59:80:81:cd:31:3f:a7:e8:7d:9e:59:ce:2b:ce:c6:
45:e7:61:e5:75:d3:2c:d3:6b:29:49:94:0e:b3:32:9f:f8:ea:
e3:aa:29:6a:de:03:d6:d9:9a:81:dc:54:ad:5b:15:26:6b:0f:
4e:e1:fe:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:41:01 2025 by rpki-client