Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/rUDgBQXtTPbzkrooXP3G3VgVrMs.roa
File: rUDgBQXtTPbzkrooXP3G3VgVrMs.roa (raw, json)
Hash identifier: GGNxyPUlhS7iw1nhRQuRcdTDGq6nLi6hu8sHbqh2AaI=
Subject key identifier: AD:40:E0:05:05:ED:4C:F6:F3:92:BA:28:5C:FD:C6:DD:58:15:AC:CB
Certificate issuer: /CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Certificate serial: 0194B67C4BB9DD459291C4321B1675163407
Authority key identifier: EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/rUDgBQXtTPbzkrooXP3G3VgVrMs.roa
Signing time: Thu 30 Jan 2025 09:13:06 +0000
ROA not before: Thu 30 Jan 2025 09:13:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203217
IP address blocks: 93.180.216.0/21 maxlen: 21
93.180.216.0/23 maxlen: 23
93.180.216.0/24 maxlen: 24
93.180.217.0/24 maxlen: 24
93.180.218.0/23 maxlen: 23
93.180.218.0/24 maxlen: 24
93.180.219.0/24 maxlen: 24
93.180.220.0/23 maxlen: 23
93.180.220.0/24 maxlen: 24
93.180.221.0/24 maxlen: 24
93.180.222.0/24 maxlen: 24
93.180.223.0/24 maxlen: 24
138.124.156.0/22 maxlen: 22
138.124.156.0/23 maxlen: 23
138.124.156.0/24 maxlen: 24
138.124.157.0/24 maxlen: 24
138.124.158.0/23 maxlen: 23
138.124.158.0/24 maxlen: 24
138.124.159.0/24 maxlen: 24
144.86.228.0/22 maxlen: 22
144.86.228.0/23 maxlen: 23
144.86.228.0/24 maxlen: 24
144.86.229.0/24 maxlen: 24
144.86.230.0/23 maxlen: 23
144.86.230.0/24 maxlen: 24
144.86.231.0/24 maxlen: 24
185.20.196.0/22 maxlen: 22
185.20.196.0/23 maxlen: 23
185.20.196.0/24 maxlen: 24
185.20.197.0/24 maxlen: 24
185.20.198.0/23 maxlen: 23
185.20.198.0/24 maxlen: 24
185.20.199.0/24 maxlen: 24
185.138.120.0/23 maxlen: 23
185.138.120.0/24 maxlen: 24
185.138.121.0/24 maxlen: 24
185.138.122.0/23 maxlen: 23
185.138.122.0/24 maxlen: 24
185.138.123.0/24 maxlen: 24
185.254.12.0/23 maxlen: 23
185.254.13.0/24 maxlen: 24
185.254.14.0/23 maxlen: 23
185.254.14.0/24 maxlen: 24
185.254.15.0/24 maxlen: 24
195.133.220.0/23 maxlen: 23
195.133.220.0/24 maxlen: 24
195.133.221.0/24 maxlen: 24
195.133.222.0/23 maxlen: 23
195.133.222.0/24 maxlen: 24
195.133.223.0/24 maxlen: 24
199.74.188.0/23 maxlen: 23
199.74.188.0/24 maxlen: 24
199.74.189.0/24 maxlen: 24
199.74.190.0/23 maxlen: 23
199.74.190.0/24 maxlen: 24
199.74.191.0/24 maxlen: 24
2a0b:1880::/48 maxlen: 48
2a0b:1880:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 30 Jan 2025 09:44:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:b6:7c:4b:b9:dd:45:92:91:c4:32:1b:16:75:16:34:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Validity
Not Before: Jan 30 09:13:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ad40e00505ed4cf6f392ba285cfdc6dd5815accb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a4:5d:40:11:52:8d:dc:00:24:a1:6c:fd:1d:
81:eb:36:ed:12:3e:1d:16:ed:e2:a4:22:d9:7b:19:
26:4b:18:2b:ac:6c:e8:36:2a:5f:03:65:f4:8c:eb:
2b:07:1d:44:e4:b0:fb:79:b7:18:2d:d5:b3:4d:78:
cc:97:ff:b6:c9:b5:5d:a5:0d:74:6b:3d:c7:d3:03:
66:f7:3f:ee:de:54:ec:75:08:ba:cb:50:72:61:97:
4b:73:1d:0e:18:a2:c8:78:db:08:83:81:3c:06:ca:
45:c3:9c:74:ce:ba:16:94:d0:a3:1c:aa:02:2d:9e:
bb:a2:68:b8:60:7d:e8:64:f5:6b:02:90:0c:76:d3:
41:0e:df:31:56:59:77:09:bf:d1:62:b8:ef:68:59:
03:d3:43:04:a0:41:e6:cf:a4:fd:20:bb:c1:c6:f1:
0d:39:6d:8c:ee:04:3f:3f:db:36:68:09:18:e5:29:
97:c3:1e:63:b4:b6:76:d8:ad:6c:97:fa:a5:be:f0:
fe:fa:33:c1:eb:44:97:28:e4:0a:6c:4a:79:a7:02:
3c:00:fd:61:f8:74:62:42:e5:2b:eb:33:71:bc:7f:
b6:dd:8a:7a:60:a1:14:02:0b:c1:c8:f6:d9:e0:88:
aa:e3:47:ec:d5:05:3d:c2:9f:25:fe:f6:da:40:94:
15:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:40:E0:05:05:ED:4C:F6:F3:92:BA:28:5C:FD:C6:DD:58:15:AC:CB
X509v3 Authority Key Identifier:
keyid:EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/rUDgBQXtTPbzkrooXP3G3VgVrMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/71TZ5B6l4tFht8TNsuRwLE8kjhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.180.216.0/21
138.124.156.0/22
144.86.228.0/22
185.20.196.0/22
185.138.120.0/22
185.254.12.0/22
195.133.220.0/22
199.74.188.0/22
IPv6:
2a0b:1880::/47
Signature Algorithm: sha256WithRSAEncryption
82:3e:a6:a3:42:75:c7:c2:28:94:81:0e:dc:f8:b4:1e:6b:3e:
fd:79:02:2b:43:61:fa:ce:e3:35:e9:90:0c:29:95:42:32:9e:
ce:48:b2:8b:2d:9a:35:22:a5:46:25:20:f8:fc:56:f5:c3:78:
4d:90:93:6f:f6:b2:8e:44:8e:ed:ba:61:6a:20:0b:77:95:da:
bb:8c:64:b8:bf:1a:20:3a:b9:57:eb:6a:78:bc:52:11:cd:1e:
5b:11:b7:61:b5:eb:ab:2e:a4:3b:24:56:e4:68:3b:06:f9:4a:
fb:0f:7e:6d:c6:c1:2f:be:fa:45:91:1f:9e:82:63:12:e3:fa:
52:68:9c:b0:87:4e:06:82:1a:44:62:a9:e5:ed:04:fe:f4:14:
ff:13:5d:e0:d5:cc:e7:e1:ae:da:62:42:18:55:95:43:01:f5:
1c:de:56:a4:7e:45:a3:2f:f4:1b:61:9d:ef:85:48:f6:90:50:
b8:14:d3:23:31:b6:d0:a0:47:a6:9e:db:32:8f:42:bd:2b:d0:
a1:72:fe:ce:1a:2a:4d:9c:a8:47:ca:c0:a4:bd:ea:8c:f8:b8:
66:91:d6:5e:4d:e4:3d:17:0e:5d:0f:d2:8e:d0:c3:85:3d:1e:
74:a7:ab:b5:08:49:0b:28:7d:b1:8c:38:9a:e0:aa:e7:c2:b9:
fd:fb:19:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 03:34:09 2025 by rpki-client