Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/DP6lysMz5U6j0HwiC8hAdkfBpGQ.roa
File: DP6lysMz5U6j0HwiC8hAdkfBpGQ.roa (raw, json)
Hash identifier: VEjQ3IiS9mCrIBClT0IxmlcLDUDsMN2qtHT4urCmEnM=
Subject key identifier: 0C:FE:A5:CA:C3:33:E5:4E:A3:D0:7C:22:0B:C8:40:76:47:C1:A4:64
Certificate issuer: /CN=4b9331fa7be470dc179e16c306e98c6c731a575c
Certificate serial: 019444D506912D1C099F3E7EF49FF0571491
Authority key identifier: 4B:93:31:FA:7B:E4:70:DC:17:9E:16:C3:06:E9:8C:6C:73:1A:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5Mx-nvkcNwXnhbDBumMbHMaV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/DP6lysMz5U6j0HwiC8hAdkfBpGQ.roa
Signing time: Wed 08 Jan 2025 07:33:19 +0000
ROA not before: Wed 08 Jan 2025 07:33:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 54994
IP address blocks: 140.150.0.0/24 maxlen: 24
140.150.1.0/24 maxlen: 24
140.150.2.0/24 maxlen: 24
140.150.3.0/24 maxlen: 24
140.150.4.0/24 maxlen: 24
140.150.5.0/24 maxlen: 24
140.150.6.0/24 maxlen: 24
140.150.7.0/24 maxlen: 24
140.150.10.0/24 maxlen: 24
140.150.12.0/24 maxlen: 24
140.150.14.0/24 maxlen: 24
140.150.18.0/24 maxlen: 24
140.150.19.0/24 maxlen: 24
140.150.21.0/24 maxlen: 24
140.150.22.0/24 maxlen: 24
140.150.23.0/24 maxlen: 24
140.150.24.0/24 maxlen: 24
140.150.25.0/24 maxlen: 24
140.150.26.0/24 maxlen: 24
140.150.27.0/24 maxlen: 24
140.150.28.0/24 maxlen: 24
140.150.29.0/24 maxlen: 24
140.150.30.0/24 maxlen: 24
140.150.31.0/24 maxlen: 24
140.150.32.0/24 maxlen: 24
140.150.33.0/24 maxlen: 24
140.150.34.0/24 maxlen: 24
140.150.35.0/24 maxlen: 24
140.150.36.0/24 maxlen: 24
140.150.37.0/24 maxlen: 24
140.150.38.0/24 maxlen: 24
140.150.40.0/24 maxlen: 24
140.150.41.0/24 maxlen: 24
140.150.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Jan 2025 09:33:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:44:d5:06:91:2d:1c:09:9f:3e:7e:f4:9f:f0:57:14:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b9331fa7be470dc179e16c306e98c6c731a575c
Validity
Not Before: Jan 8 07:33:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0cfea5cac333e54ea3d07c220bc8407647c1a464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:15:f0:8b:3b:9d:10:fc:11:c0:4e:1b:02:e3:
c7:32:31:70:62:25:72:d5:26:06:21:b6:cd:88:5a:
6b:61:23:ad:1e:1d:35:c4:15:a3:af:ea:a4:fe:44:
7d:01:14:6a:52:c0:ad:b7:0b:cd:e4:ee:ae:d6:d7:
9b:f2:38:00:e7:63:66:b9:87:b3:a5:78:70:f3:e2:
4d:82:70:f1:f0:67:02:57:47:e0:1a:0d:bd:79:5b:
54:e2:86:36:cd:46:12:55:68:0e:59:2f:0e:20:2b:
65:08:b2:35:72:86:54:09:ae:e7:ae:6d:88:61:c6:
3b:71:01:41:66:e4:b9:b5:1c:ad:b5:31:a4:e8:cc:
c7:28:6b:f7:3d:8a:98:b5:11:90:d6:22:a5:9a:be:
da:25:d7:83:86:ff:d2:d8:9b:4b:55:9d:cb:58:4a:
02:60:c2:b6:76:19:bd:c2:67:de:d6:a8:a2:ea:73:
40:0d:8b:a9:14:1d:9d:cc:17:da:5d:a8:bc:2d:bb:
78:a4:05:bf:ee:af:32:b1:7f:93:cf:07:34:81:3b:
03:04:73:e4:7f:e4:a9:63:85:35:f7:fa:b2:f9:ed:
bd:25:69:97:d1:ab:a7:e2:41:96:2b:4b:92:86:11:
a4:6e:cd:6c:28:29:f7:19:e6:1b:64:34:5f:72:c9:
fa:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:FE:A5:CA:C3:33:E5:4E:A3:D0:7C:22:0B:C8:40:76:47:C1:A4:64
X509v3 Authority Key Identifier:
keyid:4B:93:31:FA:7B:E4:70:DC:17:9E:16:C3:06:E9:8C:6C:73:1A:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5Mx-nvkcNwXnhbDBumMbHMaV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/DP6lysMz5U6j0HwiC8hAdkfBpGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/S5Mx-nvkcNwXnhbDBumMbHMaV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.0.0/21
140.150.10.0/24
140.150.12.0/24
140.150.14.0/24
140.150.18.0/23
140.150.21.0-140.150.38.255
140.150.40.0-140.150.42.255
Signature Algorithm: sha256WithRSAEncryption
48:94:a6:fd:91:35:da:79:61:44:4f:6e:64:46:fb:ca:26:d8:
40:1e:92:70:1c:ef:85:6f:c5:da:6d:5f:7f:b3:26:4a:3e:26:
fa:d8:0e:ba:57:19:5d:09:04:89:28:99:b4:1e:ed:d6:77:17:
da:21:8c:ff:fb:27:8a:fa:f1:ea:2d:24:6f:70:86:83:45:23:
ac:bd:63:59:1d:a2:56:40:75:10:bc:71:7b:06:da:f8:84:5c:
b1:f8:7d:85:19:01:9d:db:37:05:cf:09:de:06:d3:60:10:ef:
23:4e:61:23:24:16:13:36:2c:76:6e:8a:82:a6:9f:1d:cd:74:
4e:8c:73:bf:7c:c2:4a:a0:59:00:8f:2a:29:bc:ac:da:17:18:
9a:90:e9:23:3e:ed:c7:3f:02:a7:b5:05:56:f8:f8:e5:f7:d4:
3d:c9:2a:3d:38:29:11:ae:20:eb:20:84:84:7b:39:24:65:38:
39:28:ce:16:9d:43:78:8a:77:f4:99:66:44:da:0f:e0:7b:f9:
56:6e:b5:f8:71:cf:d3:12:b7:7d:1a:27:84:11:1b:37:3a:8b:
67:14:15:d9:6f:7a:b6:22:7c:da:0e:a0:95:f8:45:5a:65:7b:
f7:60:8e:19:70:db:a6:b8:97:fd:45:af:8f:b9:1e:2d:f5:eb:
c7:27:6d:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 01:19:50 2025 by rpki-client