Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/J_m2u5fNG8kgxIGkKTGyCRknou8.roa
File: J_m2u5fNG8kgxIGkKTGyCRknou8.roa (raw, json)
Hash identifier: RA2dM3ezSzLzuUM2VzZ2HrE0DKoPbVc902/0LgBQmf0=
Subject key identifier: 27:F9:B6:BB:97:CD:1B:C9:20:C4:81:A4:29:31:B2:09:19:27:A2:EF
Certificate issuer: /CN=4b9331fa7be470dc179e16c306e98c6c731a575c
Certificate serial: 01958EEBC05894E8EE6855E7CEA6167AAD1E
Authority key identifier: 4B:93:31:FA:7B:E4:70:DC:17:9E:16:C3:06:E9:8C:6C:73:1A:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5Mx-nvkcNwXnhbDBumMbHMaV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/J_m2u5fNG8kgxIGkKTGyCRknou8.roa
Signing time: Thu 13 Mar 2025 09:52:49 +0000
ROA not before: Thu 13 Mar 2025 09:52:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 54994
IP address blocks: 140.150.0.0/24 maxlen: 24
140.150.1.0/24 maxlen: 24
140.150.2.0/24 maxlen: 24
140.150.3.0/24 maxlen: 24
140.150.4.0/24 maxlen: 24
140.150.5.0/24 maxlen: 24
140.150.6.0/24 maxlen: 24
140.150.7.0/24 maxlen: 24
140.150.10.0/24 maxlen: 24
140.150.11.0/24 maxlen: 24
140.150.12.0/24 maxlen: 24
140.150.14.0/24 maxlen: 24
140.150.15.0/24 maxlen: 24
140.150.18.0/24 maxlen: 24
140.150.19.0/24 maxlen: 24
140.150.20.0/24 maxlen: 24
140.150.21.0/24 maxlen: 24
140.150.22.0/24 maxlen: 24
140.150.23.0/24 maxlen: 24
140.150.24.0/24 maxlen: 24
140.150.25.0/24 maxlen: 24
140.150.26.0/24 maxlen: 24
140.150.27.0/24 maxlen: 24
140.150.28.0/24 maxlen: 24
140.150.29.0/24 maxlen: 24
140.150.30.0/24 maxlen: 24
140.150.31.0/24 maxlen: 24
140.150.32.0/24 maxlen: 24
140.150.33.0/24 maxlen: 24
140.150.34.0/24 maxlen: 24
140.150.35.0/24 maxlen: 24
140.150.36.0/24 maxlen: 24
140.150.37.0/24 maxlen: 24
140.150.38.0/24 maxlen: 24
140.150.40.0/24 maxlen: 24
140.150.41.0/24 maxlen: 24
140.150.42.0/24 maxlen: 24
140.150.43.0/24 maxlen: 24
140.150.44.0/24 maxlen: 24
140.150.46.0/24 maxlen: 24
140.150.47.0/24 maxlen: 24
146.103.64.0/24 maxlen: 24
146.103.65.0/24 maxlen: 24
146.103.66.0/24 maxlen: 24
146.103.67.0/24 maxlen: 24
146.103.68.0/24 maxlen: 24
146.103.71.0/24 maxlen: 24
146.103.73.0/24 maxlen: 24
146.103.74.0/24 maxlen: 24
146.103.75.0/24 maxlen: 24
146.103.76.0/24 maxlen: 24
146.103.77.0/24 maxlen: 24
146.103.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Mar 2025 10:08:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:eb:c0:58:94:e8:ee:68:55:e7:ce:a6:16:7a:ad:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b9331fa7be470dc179e16c306e98c6c731a575c
Validity
Not Before: Mar 13 09:52:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27f9b6bb97cd1bc920c481a42931b2091927a2ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:b9:36:dc:c5:0d:05:a5:b5:d9:de:d9:37:dd:
ca:27:5f:55:d9:9a:66:44:ae:7e:29:9e:f5:ea:b7:
54:53:45:57:77:e0:5b:20:45:31:89:bd:9b:f9:75:
f7:c8:fd:28:ac:c9:3f:1f:2e:ee:c3:ef:08:00:84:
af:f1:8c:63:ba:d2:83:67:23:26:23:16:c7:b1:ca:
68:8d:75:d1:34:bd:8c:63:52:e4:b0:fc:19:8e:fa:
ab:b3:b5:d7:5a:fb:e0:b2:b5:45:66:db:e1:5e:f0:
07:ef:f8:c0:29:35:11:dc:ff:ac:3e:49:30:2f:ff:
5b:e1:f1:c8:66:7e:41:3d:f2:97:23:74:d8:cb:a6:
48:ee:6d:0f:d2:cc:f9:9d:9a:85:2b:31:eb:63:a0:
0c:54:11:74:ce:ba:09:fb:5c:e5:45:77:27:06:54:
8b:07:95:b7:d3:db:78:47:6b:02:57:88:4e:0a:9b:
7b:ab:1e:ef:42:54:2d:da:fc:a4:34:91:94:56:e1:
22:eb:28:56:d1:a4:d1:9a:22:bd:55:fa:17:ff:0f:
60:52:81:c5:ec:a8:89:a7:d0:bb:7d:47:c2:58:13:
5e:82:09:2e:cd:2f:e2:b2:0f:df:26:df:47:81:cb:
47:ba:df:b1:2f:4b:c7:9b:8f:d3:92:dd:e0:38:76:
52:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F9:B6:BB:97:CD:1B:C9:20:C4:81:A4:29:31:B2:09:19:27:A2:EF
X509v3 Authority Key Identifier:
keyid:4B:93:31:FA:7B:E4:70:DC:17:9E:16:C3:06:E9:8C:6C:73:1A:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5Mx-nvkcNwXnhbDBumMbHMaV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/J_m2u5fNG8kgxIGkKTGyCRknou8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/S5Mx-nvkcNwXnhbDBumMbHMaV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.0.0/21
140.150.10.0-140.150.12.255
140.150.14.0/23
140.150.18.0-140.150.38.255
140.150.40.0-140.150.44.255
140.150.46.0/23
146.103.64.0-146.103.68.255
146.103.71.0/24
146.103.73.0-146.103.78.255
Signature Algorithm: sha256WithRSAEncryption
51:26:fd:3f:be:65:1a:10:52:a4:f5:ef:e7:a0:d1:79:63:80:
8d:bb:a1:74:0b:b1:5e:f1:f2:14:8c:25:25:eb:e7:42:f3:73:
a3:4e:38:b6:3c:ba:e1:f8:83:36:94:dd:e8:a9:85:0b:4e:0b:
f4:94:94:de:7d:1f:b8:f6:60:da:40:ed:f6:3d:1c:60:7c:d1:
32:b7:2b:12:4f:d8:dd:6b:60:00:ce:05:0d:a5:76:b7:6b:c2:
cc:c9:4d:c1:b7:82:1c:fb:9b:6b:47:77:37:f0:b9:c7:e1:a7:
12:de:04:0b:f3:d6:b5:f5:31:db:25:4b:e4:8e:ba:44:84:f6:
bf:59:bb:32:46:6e:28:bd:d0:e2:01:05:3f:64:da:09:cf:05:
07:c7:49:dc:06:b4:3d:84:7d:23:c0:7e:ad:23:07:45:f1:fb:
c4:84:bd:bb:7a:04:34:46:5c:f7:78:b2:78:69:29:db:4a:3c:
9d:37:a9:cd:5f:a3:6a:04:7d:7d:79:f2:26:b9:c5:f6:5f:93:
be:33:1d:db:20:01:07:31:09:48:8d:21:8e:58:06:91:89:b5:
02:1d:44:a2:6b:2a:d3:f2:d5:2d:e9:52:32:b8:7b:77:94:bc:
e9:6f:9b:41:98:86:41:6a:6f:ad:5b:92:db:c8:03:0b:a7:59:
96:6c:a2:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 12:09:14 2025 by rpki-client