Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/8aSDYYdXUdtt-mVAx5iZKmnIrx0.roa
File: 8aSDYYdXUdtt-mVAx5iZKmnIrx0.roa (raw, json)
Hash identifier: +LTycLffiErAkPQHKVcZTxospAUNDlgTbAuZqYX9Vrg=
Subject key identifier: F1:A4:83:61:87:57:51:DB:6D:FA:65:40:C7:98:99:2A:69:C8:AF:1D
Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Certificate serial: 01938C89EF0CD910F37C38A213A0B90ED7DA
Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/8aSDYYdXUdtt-mVAx5iZKmnIrx0.roa
Signing time: Tue 03 Dec 2024 12:41:10 +0000
ROA not before: Tue 03 Dec 2024 12:41:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42065
IP address blocks: 91.108.0.0/22 maxlen: 24
91.108.24.0/21 maxlen: 24
91.108.32.0/23 maxlen: 24
91.108.52.0/24 maxlen: 24
94.124.176.0/22 maxlen: 23
94.124.178.0/23 maxlen: 24
95.140.92.0/24 maxlen: 24
95.140.94.0/24 maxlen: 24
95.161.0.0/18 maxlen: 24
95.161.88.0/22 maxlen: 24
95.161.95.0/24 maxlen: 24
95.161.96.0/23 maxlen: 24
95.161.102.0/23 maxlen: 24
95.161.104.0/23 maxlen: 24
95.161.124.0/24 maxlen: 24
95.161.125.0/24 maxlen: 24
95.161.127.0/24 maxlen: 24
95.161.240.0/20 maxlen: 24
95.161.248.0/21 maxlen: 21
185.51.60.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Dec 2024 14:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8c:89:ef:0c:d9:10:f3:7c:38:a2:13:a0:b9:0e:d7:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Validity
Not Before: Dec 3 12:41:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1a48361875751db6dfa6540c798992a69c8af1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ea:02:d4:76:fe:74:3f:37:c5:a6:9d:d6:9e:
af:1c:37:01:36:52:15:48:4c:64:51:d9:f2:49:e4:
bd:a9:aa:4a:0f:6b:d8:04:a8:dc:57:53:2b:53:b9:
14:5f:d8:0d:4e:7e:c0:3a:e8:7a:19:46:f9:e8:c1:
b4:53:8e:5b:b4:4a:8a:67:e4:a4:f3:6f:9b:92:a2:
38:63:2a:e1:31:81:85:2e:91:e9:59:7c:00:e7:91:
40:99:92:d0:9d:d9:ec:9b:51:22:31:e1:a2:46:a1:
ca:08:80:12:93:0a:53:7a:d0:94:66:86:b2:4f:42:
56:65:04:c3:57:3a:6a:86:c6:96:f8:ea:cd:c3:36:
48:f0:6e:ec:f8:b0:67:bc:85:ec:65:c7:d3:a0:c6:
83:d1:a4:5f:5c:b8:dc:2d:ac:2c:b1:50:65:89:2b:
4a:7c:b4:64:ac:c3:47:ec:67:5a:62:00:12:0c:20:
c2:40:75:46:ea:db:e3:30:bd:7a:8f:f5:c1:03:31:
c9:3a:04:e1:d7:83:fe:0c:fb:e6:ca:c0:d4:fe:21:
70:67:e4:74:95:8f:d5:b8:a5:be:12:c6:9d:7b:d5:
f9:7f:77:7d:86:e8:e2:b7:fd:da:96:34:cf:73:59:
83:3f:1b:44:58:42:8c:0a:b0:02:90:e5:bf:d1:56:
cf:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:A4:83:61:87:57:51:DB:6D:FA:65:40:C7:98:99:2A:69:C8:AF:1D
X509v3 Authority Key Identifier:
keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/8aSDYYdXUdtt-mVAx5iZKmnIrx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.108.0.0/22
91.108.24.0-91.108.33.255
91.108.52.0/24
94.124.176.0/22
95.140.92.0/24
95.140.94.0/24
95.161.0.0/18
95.161.88.0/22
95.161.95.0-95.161.97.255
95.161.102.0-95.161.105.255
95.161.124.0/23
95.161.127.0/24
95.161.240.0/20
185.51.60.0/22
Signature Algorithm: sha256WithRSAEncryption
95:49:90:d7:65:7e:64:07:4e:16:0d:ea:ef:1b:db:40:a6:e4:
42:8c:e9:6f:3c:89:ea:eb:14:fa:d0:74:06:aa:16:c8:1b:e6:
b7:bc:8c:28:42:37:16:53:62:5f:71:cc:c6:09:13:ee:b7:c5:
ed:41:96:66:41:4c:d7:d2:fd:be:ae:27:0b:ae:22:6e:87:e6:
4c:59:09:e3:ee:1f:72:3d:be:97:12:59:ec:d2:3a:32:3f:3e:
9e:ad:49:7e:b1:81:27:7d:85:38:c8:22:e1:73:ba:2e:f8:c5:
f3:5f:75:61:e8:0b:20:18:9a:79:8b:91:54:63:8c:30:d8:c5:
16:ea:97:37:19:99:3d:d2:82:c9:81:81:0f:16:7e:09:9a:d5:
0f:ac:00:aa:35:4a:60:e0:58:7d:86:1f:0f:ba:b6:b3:17:e3:
d4:7e:50:d3:b4:8c:2e:57:49:06:1a:9f:55:7a:80:e1:a9:32:
8c:c1:f6:cc:c5:3e:0d:f3:a3:4e:15:22:29:2d:0d:60:33:3c:
5d:96:50:d5:45:d1:ab:53:9c:c2:45:bc:05:5c:e6:79:cc:ef:
90:70:2c:36:82:08:b7:bc:3c:96:37:f3:e6:8f:ba:28:93:db:
78:8e:2d:51:cb:b9:72:55:93:27:39:d2:fe:5f:e3:af:55:41:
7b:54:7c:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 20:18:49 2025 by rpki-client