Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/1d2ef8-a86e-446f-8c35-b833bd9e0b3a/1/mjhm2eNy0jBLRAqIwWAfN1iTWms.roa
File: mjhm2eNy0jBLRAqIwWAfN1iTWms.roa (raw, json)
Hash identifier: BjH31YpO0xyIlwqpXkEC2lHfsPnoR3e6rjNch47lr3c=
Subject key identifier: 9A:38:66:D9:E3:72:D2:30:4B:44:0A:88:C1:60:1F:37:58:93:5A:6B
Certificate issuer: /CN=0d69e3ee55dd862674d458661ba34908b0617fa1
Certificate serial: 019428235A98B84D7BDE51CD92B495260B2F
Authority key identifier: 0D:69:E3:EE:55:DD:86:26:74:D4:58:66:1B:A3:49:08:B0:61:7F:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DWnj7lXdhiZ01FhmG6NJCLBhf6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/1d2ef8-a86e-446f-8c35-b833bd9e0b3a/1/mjhm2eNy0jBLRAqIwWAfN1iTWms.roa
Signing time: Thu 02 Jan 2025 17:49:53 +0000
ROA not before: Thu 02 Jan 2025 17:49:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60294
IP address blocks: 46.245.216.0/21 maxlen: 21
94.31.64.0/18 maxlen: 18
94.31.67.0/24 maxlen: 24
94.31.68.0/22 maxlen: 22
94.31.72.0/22 maxlen: 22
94.31.80.0/20 maxlen: 20
94.31.92.0/23 maxlen: 23
94.31.94.0/23 maxlen: 23
94.31.96.0/20 maxlen: 20
94.31.108.0/22 maxlen: 22
94.31.112.0/23 maxlen: 23
94.31.114.0/23 maxlen: 23
94.31.116.0/22 maxlen: 22
150.5.0.0/18 maxlen: 24
185.7.196.0/22 maxlen: 22
185.22.44.0/22 maxlen: 22
185.22.44.0/24 maxlen: 24
185.22.45.0/24 maxlen: 24
185.22.140.0/22 maxlen: 22
185.113.120.0/22 maxlen: 22
185.158.40.0/22 maxlen: 22
185.158.41.0/24 maxlen: 24
2a00:6020::/32 maxlen: 32
2a00:6020:0:21::/64 maxlen: 64
2a00:61e0::/32 maxlen: 32
2a03:fc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 10 Jan 2025 09:20:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:5a:98:b8:4d:7b:de:51:cd:92:b4:95:26:0b:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d69e3ee55dd862674d458661ba34908b0617fa1
Validity
Not Before: Jan 2 17:49:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9a3866d9e372d2304b440a88c1601f3758935a6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:57:9e:58:c9:50:0e:c7:24:48:de:54:67:f3:
c9:aa:91:ca:ab:e1:e4:fa:dd:47:96:db:96:c0:59:
c2:ab:ba:e2:7b:1b:72:ce:4e:0f:7c:cd:5b:bb:97:
08:b5:de:1f:a7:a2:3a:82:2e:a2:de:e7:7b:d3:38:
24:e0:6e:0b:f8:03:92:59:99:12:0d:be:7c:96:f5:
ee:66:75:41:be:07:a2:33:7b:f5:70:5b:fe:82:59:
a9:f1:19:61:57:9c:5e:b1:f9:36:47:1a:9e:3b:b3:
1f:11:a6:46:8e:de:ae:ba:06:2b:26:87:53:18:6d:
ea:16:f6:09:c0:37:e2:11:cc:3b:2f:30:72:3f:66:
6c:c5:ba:f6:e5:9d:7c:1b:88:06:48:8f:9b:0b:db:
dc:73:10:7f:21:9c:d5:a3:03:d8:ac:d8:62:1a:00:
90:72:15:a9:59:bd:5f:87:20:26:d2:1a:65:b3:85:
77:82:06:15:ab:d9:b5:ff:d0:aa:fc:6b:13:20:f3:
74:fc:77:10:04:15:fb:3d:d9:cd:4c:69:2b:6d:f1:
16:b1:1b:88:54:54:bd:d5:73:07:e1:dc:5a:be:ec:
11:fd:77:a9:f5:7a:86:8f:5e:0d:f0:87:23:c5:63:
e1:82:28:b7:92:cd:85:c1:7b:31:51:19:01:f8:91:
a3:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:38:66:D9:E3:72:D2:30:4B:44:0A:88:C1:60:1F:37:58:93:5A:6B
X509v3 Authority Key Identifier:
keyid:0D:69:E3:EE:55:DD:86:26:74:D4:58:66:1B:A3:49:08:B0:61:7F:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DWnj7lXdhiZ01FhmG6NJCLBhf6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1d2ef8-a86e-446f-8c35-b833bd9e0b3a/1/mjhm2eNy0jBLRAqIwWAfN1iTWms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1d2ef8-a86e-446f-8c35-b833bd9e0b3a/1/DWnj7lXdhiZ01FhmG6NJCLBhf6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.245.216.0/21
94.31.64.0/18
150.5.0.0/18
185.7.196.0/22
185.22.44.0/22
185.22.140.0/22
185.113.120.0/22
185.158.40.0/22
IPv6:
2a00:6020::/32
2a00:61e0::/32
2a03:fc0::/32
Signature Algorithm: sha256WithRSAEncryption
5d:a7:d1:6a:75:7f:2a:ca:e3:e2:d2:76:46:97:7a:3e:06:91:
c9:c2:66:3e:38:05:1e:47:de:18:27:71:4c:72:8b:30:09:ff:
ff:f4:af:6e:22:4c:c7:16:b8:6a:d0:ee:24:48:a3:e2:51:d8:
3d:9b:58:fc:9b:d5:ce:18:de:07:37:8a:42:30:55:c9:cc:85:
60:dc:e3:e1:13:40:a2:19:ca:06:08:14:5c:13:23:59:72:90:
9a:28:d4:13:58:b3:e4:0f:af:c2:56:5d:50:b2:f0:07:00:e0:
de:ff:af:62:82:a0:ac:01:c4:06:0c:2f:0a:69:cb:b2:0a:cf:
90:cf:8b:49:59:7c:ef:eb:ad:e6:49:d0:c0:53:27:4c:f4:fa:
f9:ff:54:11:82:69:2c:df:10:2e:e1:f1:ab:d0:2c:e2:8b:67:
b9:27:d8:7f:c1:1a:c8:b7:35:50:36:db:2a:82:03:64:49:10:
c4:f0:7a:b9:37:a5:e5:d3:60:41:77:be:36:7c:5a:4d:ae:1f:
b4:82:c7:49:2f:d4:d3:b3:63:c3:66:b4:59:34:88:82:8b:9f:
78:78:86:8e:5e:6c:8a:e0:e3:cb:c7:33:2a:a9:2d:41:34:83:
84:f8:61:49:94:6c:0f:af:f2:93:33:a6:ae:dd:18:b5:2a:9b:
8c:f4:99:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 07:35:42 2025 by rpki-client