Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/cbNWj2Xm-gxiSM2AUUs7E5HDEhU.roa
File: cbNWj2Xm-gxiSM2AUUs7E5HDEhU.roa (raw, json)
Hash identifier: Sl3tSVUUniKtNDfuvjBPWtuq10bbXOIyl0/38JWdeEk=
Subject key identifier: 71:B3:56:8F:65:E6:FA:0C:62:48:CD:80:51:4B:3B:13:91:C3:12:15
Certificate issuer: /CN=1003cd25315330350d73f2a3579aa95e052b718d
Certificate serial: 0192FB76856211A8EF786849ACDFBC82DFBC
Authority key identifier: 10:03:CD:25:31:53:30:35:0D:73:F2:A3:57:9A:A9:5E:05:2B:71:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EAPNJTFTMDUNc_KjV5qpXgUrcY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/cbNWj2Xm-gxiSM2AUUs7E5HDEhU.roa
Signing time: Tue 05 Nov 2024 08:35:01 +0000
ROA not before: Tue 05 Nov 2024 08:35:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16116
IP address blocks: 85.159.161.0/24 maxlen: 24
85.159.162.0/24 maxlen: 24
85.159.163.0/24 maxlen: 24
85.159.164.0/24 maxlen: 24
85.159.165.0/24 maxlen: 24
85.159.166.0/24 maxlen: 24
91.135.96.0/20 maxlen: 24
130.185.96.0/21 maxlen: 24
141.226.88.0/21 maxlen: 24
141.226.90.0/24 maxlen: 24
147.189.144.0/22 maxlen: 24
147.189.148.0/23 maxlen: 24
185.80.108.0/22 maxlen: 24
185.196.126.0/23 maxlen: 24
185.246.252.0/23 maxlen: 24
185.246.254.0/24 maxlen: 24
185.246.255.0/24 maxlen: 24
188.64.202.0/24 maxlen: 24
188.64.203.0/24 maxlen: 24
188.64.205.0/24 maxlen: 24
212.90.108.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Nov 2024 09:27:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:fb:76:85:62:11:a8:ef:78:68:49:ac:df:bc:82:df:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1003cd25315330350d73f2a3579aa95e052b718d
Validity
Not Before: Nov 5 08:35:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=71b3568f65e6fa0c6248cd80514b3b1391c31215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:28:91:1c:e2:ef:52:57:74:d4:56:32:da:b3:
49:93:24:d6:8e:0a:56:6e:07:88:93:28:63:1d:38:
c5:3e:d7:f6:44:3c:59:e0:72:86:78:be:af:ff:74:
3b:04:46:04:42:38:55:20:26:bc:b6:33:e3:c8:54:
3f:53:33:c9:c5:22:0f:9f:dc:49:aa:72:82:8e:4c:
70:7d:1a:cd:d9:48:0a:80:ae:36:f7:f1:70:83:cc:
b0:7b:66:fc:67:d1:bf:7f:37:e8:c6:d7:4f:51:c1:
ab:52:b7:89:5a:9a:46:de:26:4b:8a:0e:01:75:6d:
78:cb:ee:76:f0:37:e3:c7:4a:2f:94:05:dd:fe:2d:
e7:85:54:24:b7:1b:fb:57:6f:51:b1:f1:9e:55:33:
b9:7b:df:e0:b2:f6:f1:f7:05:af:fd:04:87:41:e3:
86:38:e8:76:ab:67:ec:0d:6b:29:c8:bf:d9:3d:a4:
b9:35:4b:b9:f9:f9:e4:a8:2f:4c:ff:a1:89:08:9a:
0d:a5:14:7d:9a:49:9d:fb:bd:18:cd:e2:8f:be:fd:
2a:51:d1:a5:50:18:70:75:33:eb:48:63:e8:87:79:
08:f7:a9:13:bf:ce:57:bc:eb:8a:47:8e:68:eb:84:
1e:15:6d:1d:c7:53:39:32:f4:59:a0:9a:ac:82:c2:
3d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B3:56:8F:65:E6:FA:0C:62:48:CD:80:51:4B:3B:13:91:C3:12:15
X509v3 Authority Key Identifier:
keyid:10:03:CD:25:31:53:30:35:0D:73:F2:A3:57:9A:A9:5E:05:2B:71:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EAPNJTFTMDUNc_KjV5qpXgUrcY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/cbNWj2Xm-gxiSM2AUUs7E5HDEhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/EAPNJTFTMDUNc_KjV5qpXgUrcY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.159.161.0-85.159.166.255
91.135.96.0/20
130.185.96.0/21
141.226.88.0/21
147.189.144.0-147.189.149.255
185.80.108.0/22
185.196.126.0/23
185.246.252.0/22
188.64.202.0/23
188.64.205.0/24
212.90.108.0/22
Signature Algorithm: sha256WithRSAEncryption
c0:8a:79:60:e7:c5:d3:8b:25:bb:5e:92:9c:f6:08:7f:87:da:
24:b1:3c:a3:06:fd:b6:1d:41:8e:5a:f4:d4:be:7c:a2:2a:d6:
0e:ec:d3:86:79:3b:97:31:a6:ea:4b:f7:f3:8d:39:00:b1:bf:
7f:ef:78:79:31:76:f8:b4:08:f4:f6:71:0c:0f:8e:b7:e1:b9:
cd:fe:21:04:ef:74:13:47:aa:cd:43:93:fe:fd:47:eb:ef:c8:
2a:6d:85:4b:eb:a4:57:30:c3:7f:b1:c7:f4:32:86:66:ac:dd:
e0:f8:0b:d7:09:c6:27:4d:f8:4e:62:fb:21:15:7f:79:92:64:
42:0e:44:44:36:5e:38:16:39:ea:14:f2:47:5f:c0:1f:92:d0:
d8:54:d5:56:57:d7:49:b6:16:ad:30:22:3e:51:c8:c0:64:d1:
fe:b5:d8:93:0c:84:f6:43:d4:a3:db:81:b5:bc:8c:5b:06:aa:
f3:d6:a5:bb:e5:19:07:e1:b8:98:f8:94:93:63:90:15:65:62:
cc:ce:48:07:ca:23:59:df:db:08:28:40:93:77:6b:80:1d:b1:
45:47:3b:ce:1a:25:19:30:12:c1:1c:52:1f:7e:cf:78:3d:4b:
28:ec:05:46:a7:74:14:1c:7d:91:8b:9e:52:2c:2e:55:04:c0:
f3:05:ca:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 19:16:16 2025 by rpki-client