Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/Gs17cU1OoAiEFK2jCmxiGvS9Tb0.roa
File: Gs17cU1OoAiEFK2jCmxiGvS9Tb0.roa (raw, json)
Hash identifier: zhYPgpxqHSFOZViPXotUDAQRV2cACgA9XR4e6t8gprs=
Subject key identifier: 1A:CD:7B:71:4D:4E:A0:08:84:14:AD:A3:0A:6C:62:1A:F4:BD:4D:BD
Certificate issuer: /CN=18e2aed9af3a4be560aa19b92846c5fbe11c9b19
Certificate serial: 01942823256C3C05EE71C70E0EAD4880B600
Authority key identifier: 18:E2:AE:D9:AF:3A:4B:E5:60:AA:19:B9:28:46:C5:FB:E1:1C:9B:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GOKu2a86S-Vgqhm5KEbF--Ecmxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/Gs17cU1OoAiEFK2jCmxiGvS9Tb0.roa
Signing time: Thu 02 Jan 2025 17:49:39 +0000
ROA not before: Thu 02 Jan 2025 17:49:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41230
IP address blocks: 31.205.0.0/16 maxlen: 16
31.205.0.0/18 maxlen: 18
31.205.64.0/18 maxlen: 18
31.205.128.0/18 maxlen: 18
31.205.192.0/18 maxlen: 18
45.81.120.0/22 maxlen: 22
45.154.248.0/22 maxlen: 22
78.109.176.0/20 maxlen: 20
81.23.48.0/20 maxlen: 20
176.119.145.0/24 maxlen: 24
185.134.128.0/22 maxlen: 22
185.134.136.0/22 maxlen: 23
185.134.138.0/24 maxlen: 24
185.134.139.0/24 maxlen: 24
185.134.144.0/22 maxlen: 22
185.198.228.0/22 maxlen: 23
213.143.0.0/19 maxlen: 19
2a00:1a10::/29 maxlen: 29
2a07:c300::/29 maxlen: 29
2a0e:2a40::/29 maxlen: 29
2a0e:2ac0::/29 maxlen: 29
2a0e:5680::/29 maxlen: 29
2a0f:dd00::/29 maxlen: 29
2a10:d00::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 15 Jan 2025 11:52:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:25:6c:3c:05:ee:71:c7:0e:0e:ad:48:80:b6:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18e2aed9af3a4be560aa19b92846c5fbe11c9b19
Validity
Not Before: Jan 2 17:49:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1acd7b714d4ea0088414ada30a6c621af4bd4dbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:d2:e9:03:0d:c0:a3:0c:fb:0f:43:a2:18:9e:
06:80:d3:25:79:88:f2:6a:8e:77:8e:78:c5:61:5c:
08:e2:43:f4:87:69:bb:34:90:a1:92:a3:10:65:af:
b9:fb:51:e1:bb:15:8d:60:27:3a:bc:9b:45:79:67:
93:c5:92:5e:97:e7:e7:d3:da:55:a2:a9:e7:12:43:
77:81:6c:c4:40:cf:d9:30:f8:67:70:40:3f:85:5e:
55:25:23:e3:5d:38:b0:a6:dd:84:7d:b3:59:04:c2:
ff:b7:13:5a:a9:78:4a:8d:da:6e:86:50:2b:29:89:
3b:4f:2c:cf:dc:51:a6:7b:23:78:ad:ce:76:7c:5a:
7e:ba:d0:6b:4d:bc:c4:86:c9:08:5f:92:79:25:25:
80:cd:5e:15:d8:65:19:e8:f4:53:1b:ab:fd:e5:41:
cf:ca:bf:77:ea:45:b1:4b:f9:c4:5e:37:c2:e5:d5:
19:b4:d6:f7:59:70:b7:af:94:72:4c:63:46:f0:7b:
7e:1b:5a:b4:0b:79:d3:82:7e:fe:ad:15:26:08:56:
ef:7f:91:dc:dd:6a:3c:7c:44:63:a0:15:01:29:60:
31:d4:d8:e8:24:1c:c2:d4:7c:8d:c2:bc:47:8d:11:
36:fd:69:f4:45:dd:0b:9e:6e:7c:06:6b:62:3e:5f:
76:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:CD:7B:71:4D:4E:A0:08:84:14:AD:A3:0A:6C:62:1A:F4:BD:4D:BD
X509v3 Authority Key Identifier:
keyid:18:E2:AE:D9:AF:3A:4B:E5:60:AA:19:B9:28:46:C5:FB:E1:1C:9B:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GOKu2a86S-Vgqhm5KEbF--Ecmxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/Gs17cU1OoAiEFK2jCmxiGvS9Tb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2391ed-f285-4286-af2f-d2551cdde4af/1/GOKu2a86S-Vgqhm5KEbF--Ecmxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.205.0.0/16
45.81.120.0/22
45.154.248.0/22
78.109.176.0/20
81.23.48.0/20
176.119.145.0/24
185.134.128.0/22
185.134.136.0/22
185.134.144.0/22
185.198.228.0/22
213.143.0.0/19
IPv6:
2a00:1a10::/29
2a07:c300::/29
2a0e:2a40::/29
2a0e:2ac0::/29
2a0e:5680::/29
2a0f:dd00::/29
2a10:d00::/29
Signature Algorithm: sha256WithRSAEncryption
38:70:db:46:b0:0d:25:48:6d:55:ff:be:7a:5f:c6:16:e2:76:
68:81:86:a0:ae:73:00:90:3f:04:27:7b:d3:51:0d:20:d1:b5:
a5:eb:b2:33:4c:b3:a5:3a:2f:8c:3f:69:0c:51:8c:aa:4d:c8:
e1:4a:45:3f:8c:0e:e5:21:7d:20:09:36:0c:1c:aa:ac:e6:9a:
0b:50:62:e2:23:84:79:eb:2b:69:21:e4:f3:4e:22:4e:f9:c1:
f9:6b:2a:2a:37:96:be:65:92:94:5a:59:d3:99:ff:fc:c0:bc:
7b:f0:78:36:0d:f5:9e:09:70:5d:02:7e:c3:12:6d:38:79:37:
cc:d8:f8:44:f6:3d:6e:97:bf:a1:b6:e3:6e:ca:7a:9b:0f:55:
53:0b:64:7d:68:af:d0:0d:d8:39:4a:02:ba:38:a0:fc:32:7a:
82:06:34:17:f9:8d:f1:f1:9d:98:4c:60:23:c5:03:c6:76:74:
6b:fb:bb:e2:de:92:6b:c0:ea:bb:54:17:fc:b4:5a:53:2c:1e:
6c:bb:b7:8f:a1:10:02:b8:41:e0:6b:f7:d2:6a:a6:86:5c:94:
88:db:77:24:f3:c2:0e:16:d1:ec:7e:c3:c0:95:59:84:43:09:
d4:db:42:79:7d:23:ed:78:e8:48:b8:9e:c5:74:01:a7:f5:8a:
eb:7c:34:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 14:46:42 2025 by rpki-client