Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/0547cb-c5dc-4e2f-aff7-3eca7df2ae57/1/1-yiYw_wXi069jcjGxqSow6qeCXc.roa
File: 1-yiYw_wXi069jcjGxqSow6qeCXc.roa (raw, json)
Hash identifier: uYlCtZdtaRz2tuNy75O3Y+Xb0jevj1FLcW88Ru8mW8A=
Subject key identifier: FB:28:98:C3:FC:17:8B:4E:BD:8D:C8:C6:C6:A4:A8:C3:AA:9E:09:77
Certificate issuer: /CN=8f368feb9e553bdd131562584a3353b1d7555c50
Certificate serial: 0190A6A917A8FEEE104797FAB298B1464F7F
Authority key identifier: 8F:36:8F:EB:9E:55:3B:DD:13:15:62:58:4A:33:53:B1:D7:55:5C:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzaP655VO90TFWJYSjNTsddVXFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/0547cb-c5dc-4e2f-aff7-3eca7df2ae57/1/1-yiYw_wXi069jcjGxqSow6qeCXc.roa
Signing time: Fri 12 Jul 2024 11:16:57 +0000
ROA not before: Fri 12 Jul 2024 11:16:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201565
IP address blocks: 89.35.206.0/24 maxlen: 24
89.35.207.0/24 maxlen: 24
94.176.184.0/24 maxlen: 24
94.176.185.0/24 maxlen: 24
185.11.232.0/22 maxlen: 22
185.59.96.0/22 maxlen: 22
185.62.248.0/24 maxlen: 24
185.62.249.0/24 maxlen: 24
185.62.250.0/24 maxlen: 24
185.62.251.0/24 maxlen: 24
185.91.148.0/24 maxlen: 24
185.91.149.0/24 maxlen: 24
185.91.150.0/24 maxlen: 24
185.91.151.0/24 maxlen: 24
2a03:7e40::/36 maxlen: 36
2a03:7e40:1000::/36 maxlen: 36
2a03:7e40:2000::/36 maxlen: 36
2a03:7e40:3000::/36 maxlen: 36
2a03:7e40:4000::/36 maxlen: 36
2a03:7e40:5000::/36 maxlen: 36
2a03:7e40:6000::/36 maxlen: 36
2a03:7e40:7000::/36 maxlen: 36
Validation: Failed, certificate revoked on Thu 01 Aug 2024 13:24:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a6:a9:17:a8:fe:ee:10:47:97:fa:b2:98:b1:46:4f:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f368feb9e553bdd131562584a3353b1d7555c50
Validity
Not Before: Jul 12 11:16:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fb2898c3fc178b4ebd8dc8c6c6a4a8c3aa9e0977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9e:7f:18:8d:3f:5f:de:99:da:40:c6:83:6c:
ad:e5:e1:01:51:1e:b2:1f:5c:17:ac:e3:4f:40:5b:
1c:e9:eb:71:38:89:4a:9d:f9:fb:53:3b:da:5b:45:
ae:62:02:55:17:67:42:ce:ea:f9:c5:76:07:01:90:
c4:b6:d9:98:da:c4:60:c9:52:81:6f:93:26:d8:9a:
3c:8b:ee:c8:e8:78:7f:45:62:a8:2a:62:00:4e:41:
96:a9:99:f9:a7:1a:ba:64:ad:ac:e3:a6:ee:24:99:
30:e9:5b:3a:ba:1b:8d:aa:9c:86:1a:52:e1:2c:e5:
9d:cb:3f:01:e5:f8:bc:e5:07:0b:02:47:8f:e9:2b:
35:82:8d:9e:64:e2:3a:77:49:d7:94:68:08:fe:ac:
f6:fa:7e:47:ff:8c:d1:d6:98:8b:ea:d5:d4:d2:30:
1e:c7:69:85:41:5f:97:8b:e0:6d:9f:8f:4c:ac:95:
9b:ae:a0:dd:39:f9:01:84:99:b0:b1:f6:13:fd:e7:
85:3d:a4:7b:0a:52:43:b8:e1:49:23:f2:2b:88:74:
92:71:51:b8:d0:4f:22:f0:ef:f9:c9:d3:b9:4c:e9:
69:15:db:e9:55:f9:72:8e:0c:1e:f8:85:bc:43:45:
13:5a:ea:77:34:88:54:c8:d7:06:3d:65:2e:a5:38:
71:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:28:98:C3:FC:17:8B:4E:BD:8D:C8:C6:C6:A4:A8:C3:AA:9E:09:77
X509v3 Authority Key Identifier:
keyid:8F:36:8F:EB:9E:55:3B:DD:13:15:62:58:4A:33:53:B1:D7:55:5C:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzaP655VO90TFWJYSjNTsddVXFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/0547cb-c5dc-4e2f-aff7-3eca7df2ae57/1/1-yiYw_wXi069jcjGxqSow6qeCXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/0547cb-c5dc-4e2f-aff7-3eca7df2ae57/1/jzaP655VO90TFWJYSjNTsddVXFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.206.0/23
94.176.184.0/23
185.11.232.0/22
185.59.96.0/22
185.62.248.0/22
185.91.148.0/22
IPv6:
2a03:7e40::/33
Signature Algorithm: sha256WithRSAEncryption
b1:23:24:5d:ea:c4:58:10:81:87:ec:d6:01:42:1e:09:eb:09:
c2:40:47:96:ec:ba:27:7c:83:75:ec:90:0c:45:46:67:1f:45:
b3:91:e9:b1:ad:35:40:6a:f1:d0:f2:b9:37:ac:d1:1e:32:6f:
c9:d3:67:13:9e:51:43:3a:f2:71:a4:45:66:4b:8a:3f:6e:73:
9f:1f:9e:3b:5e:4d:ce:93:a9:3c:6d:43:a2:5a:17:a6:d9:98:
db:c6:09:9a:a7:14:16:b7:42:e2:a3:04:ee:e8:79:29:1e:5d:
eb:a0:fa:c3:78:b7:66:b1:fb:c4:64:60:07:5f:81:2c:67:57:
b3:4f:48:60:7c:e4:22:03:4d:cf:e6:c8:48:02:1c:14:42:96:
27:14:48:9a:a0:8c:d7:49:81:6f:38:c3:12:4c:0b:f3:08:90:
41:84:f1:21:5a:0e:1f:58:64:e0:ee:5f:c3:24:6f:48:21:94:
cd:72:28:f8:e3:a6:41:0c:c4:2a:1e:fb:f8:0a:90:81:df:18:
2c:74:6e:50:57:64:56:8d:e3:dd:d3:f5:2d:84:34:7d:05:bc:
0e:53:f1:69:53:6b:6c:3c:19:52:c9:3f:97:6e:32:04:21:59:
3f:76:87:90:cb:70:52:f7:ec:2e:98:a8:48:fd:89:53:e6:8a:
a2:44:0b:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 08:36:33 2025 by rpki-client