Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/WHevAIvclt5SgQKODyL2HbvEUvQ.roa
File: WHevAIvclt5SgQKODyL2HbvEUvQ.roa (raw, json)
Hash identifier: J27sJe1E4kW7c20zKCq/R6VK8NmYMhcvJ7+xvoLdK7s=
Subject key identifier: 58:77:AF:00:8B:DC:96:DE:52:81:02:8E:0F:22:F6:1D:BB:C4:52:F4
Certificate issuer: /CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc
Certificate serial: 01977DC11EF8F77975141516C5DB36378F9A
Authority key identifier: 8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/WHevAIvclt5SgQKODyL2HbvEUvQ.roa
Signing time: Tue 17 Jun 2025 11:58:17 +0000
ROA not before: Tue 17 Jun 2025 11:58:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44477
IP address blocks: 46.151.176.0/24 maxlen: 24
46.151.177.0/24 maxlen: 24
46.151.178.0/24 maxlen: 24
46.151.179.0/24 maxlen: 24
46.151.180.0/24 maxlen: 24
83.142.208.0/24 maxlen: 24
83.142.209.0/24 maxlen: 24
83.142.210.0/24 maxlen: 24
83.142.211.0/24 maxlen: 24
83.142.212.0/24 maxlen: 24
83.142.214.0/24 maxlen: 24
83.142.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Jun 2025 06:38:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7d:c1:1e:f8:f7:79:75:14:15:16:c5:db:36:37:8f:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc
Validity
Not Before: Jun 17 11:58:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5877af008bdc96de5281028e0f22f61dbbc452f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:64:16:9a:af:01:24:21:87:3b:68:a8:e6:03:
bb:39:4c:fe:e6:6c:30:1b:7a:fd:41:4b:e0:cf:8a:
42:aa:10:be:af:4a:ac:29:d8:6c:19:b7:96:12:6b:
f3:23:a8:5a:d6:b8:c2:c4:79:0c:f2:f3:81:93:16:
dd:27:ca:53:91:d3:f3:9b:0b:5c:36:78:81:43:b0:
be:89:34:96:ed:5d:6e:7e:61:c3:af:7a:e5:cb:57:
5d:77:f2:4a:8e:8e:3a:58:96:0d:77:9e:d2:71:4c:
90:0f:41:73:f2:ff:c1:3f:66:9a:f4:f5:2e:c3:8c:
71:c2:52:57:03:17:1f:b0:bf:71:98:e1:a1:f3:d1:
6d:f7:2a:ad:64:fc:70:de:93:61:cc:51:3f:a4:c1:
52:76:7d:ca:59:4e:8b:6e:9b:4b:5d:04:6f:fa:b6:
6a:64:b8:28:f1:87:6d:41:05:3d:8f:b8:49:ae:72:
41:b5:58:29:95:7f:2a:f9:0c:8a:1a:46:ee:13:5a:
3f:71:fd:44:7c:79:71:ff:22:c2:14:44:fe:fb:f5:
35:ac:cb:b9:c5:8d:d7:22:b9:69:03:fb:04:21:ab:
e2:08:57:ef:ce:17:38:b1:68:b8:8b:f7:8e:88:94:
bc:9f:95:cf:d8:3b:67:ec:f4:96:4e:19:f5:2d:15:
ba:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:77:AF:00:8B:DC:96:DE:52:81:02:8E:0F:22:F6:1D:BB:C4:52:F4
X509v3 Authority Key Identifier:
keyid:8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/WHevAIvclt5SgQKODyL2HbvEUvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.151.176.0-46.151.180.255
83.142.208.0-83.142.212.255
83.142.214.0/23
Signature Algorithm: sha256WithRSAEncryption
50:1e:1f:33:e2:69:e1:13:76:3b:ca:dc:16:6c:cd:68:da:48:
de:34:20:89:54:50:15:3e:bb:a1:ff:dc:05:06:b6:d6:4d:08:
43:fe:f7:01:cd:4c:ca:e1:85:0f:5b:46:bf:ec:b8:79:a8:bf:
4c:1c:ad:cb:62:fe:3a:46:17:8b:63:30:e6:3f:7e:c7:0d:64:
97:2d:b1:c2:e2:a0:b7:14:97:61:49:92:c0:89:d8:a6:73:06:
37:84:e5:75:eb:3a:8b:3e:80:b7:94:54:5e:82:86:82:0a:a6:
81:e2:85:4a:33:34:b7:87:f4:47:3c:d0:0b:b8:b7:2b:3a:36:
00:f0:83:ca:d4:fa:14:64:4b:62:b5:21:f8:cb:36:ee:24:fd:
3b:24:f5:ee:42:86:ae:d7:ef:86:09:bf:45:53:28:c4:29:f1:
94:da:2d:ec:ce:23:67:85:f9:92:7c:d5:48:07:3f:28:25:db:
24:f3:b1:a1:1d:65:bf:6f:d5:e8:f5:4f:40:f2:f9:b5:2e:19:
4d:ec:f6:f2:e2:5a:bf:c7:46:4e:1d:36:ea:a6:2d:d2:12:cb:
62:db:54:68:16:05:62:d5:f1:87:75:db:0b:62:99:a5:e0:60:
0c:b5:95:cc:82:f6:7a:b9:88:6e:e3:7c:80:f1:c5:ca:20:20:
b2:54:01:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 21 01:03:22 2025 by rpki-client