Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/kUhldM_IxX8xv1kZHEjRnRkh2dI.roa
File: kUhldM_IxX8xv1kZHEjRnRkh2dI.roa (raw, json)
Hash identifier: UZBxuslI3L1JdpVQndRmQz1g0h5ndE8Ba/KK/m8O/cc=
Subject key identifier: 91:48:65:74:CF:C8:C5:7F:31:BF:59:19:1C:48:D1:9D:19:21:D9:D2
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 0193D651738FAB2D466A12B724A01165418B
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/kUhldM_IxX8xv1kZHEjRnRkh2dI.roa
Signing time: Tue 17 Dec 2024 20:31:22 +0000
ROA not before: Tue 17 Dec 2024 20:31:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 132892
IP address blocks: 141.101.88.0/24 maxlen: 24
141.101.89.0/24 maxlen: 24
2a06:98c0:3600::/48 maxlen: 48
2a06:98c0:3601::/48 maxlen: 48
2a06:98c0:3602::/48 maxlen: 48
2a06:98c0:3603::/48 maxlen: 48
2a06:98c0:3604::/48 maxlen: 48
2a06:98c0:3605::/48 maxlen: 48
2a06:98c0:3606::/48 maxlen: 48
2a06:98c0:3607::/48 maxlen: 48
2a06:98c0:3608::/48 maxlen: 48
2a06:98c0:3609::/48 maxlen: 48
2a06:98c0:360a::/48 maxlen: 48
2a06:98c0:360b::/48 maxlen: 48
2a06:98c0:360c::/48 maxlen: 48
2a06:98c0:360d::/48 maxlen: 48
2a06:98c0:360f::/48 maxlen: 48
2a06:98c0:3610::/48 maxlen: 48
2a06:98c0:3611::/48 maxlen: 48
2a06:98c0:3613::/48 maxlen: 48
2a06:98c0:3614::/48 maxlen: 48
2a06:98c0:3615::/48 maxlen: 48
2a06:98c0:361c::/48 maxlen: 48
2a06:98c0:361d::/48 maxlen: 48
2a06:98c0:361f::/48 maxlen: 48
2a06:98c0:3621::/48 maxlen: 48
2a06:98c0:3622::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 17 Dec 2024 21:55:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d6:51:73:8f:ab:2d:46:6a:12:b7:24:a0:11:65:41:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Dec 17 20:31:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=91486574cfc8c57f31bf59191c48d19d1921d9d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:bc:2d:57:ec:51:7b:89:b3:37:56:d5:2c:aa:
3e:b0:57:9d:f1:bb:53:5a:0a:57:ea:ea:15:34:c6:
f0:73:b8:ba:7d:7c:d6:aa:e5:73:92:db:2b:a5:7e:
4b:d9:23:49:00:d0:02:a7:64:ab:61:1a:58:70:e2:
57:80:0e:c2:42:28:54:10:6e:9e:37:31:1a:b8:39:
12:01:e7:8a:a6:76:d9:2d:ec:c2:7e:46:68:17:2c:
c7:f1:48:80:51:0b:17:d1:43:92:6d:9b:82:b0:80:
9e:d6:57:47:1b:61:88:fa:59:d5:57:ef:57:b4:a3:
a1:62:49:08:f0:64:c4:02:7c:e3:99:ce:39:ec:52:
fc:16:52:c0:62:89:92:8a:14:3a:6d:a8:fb:00:c5:
42:0d:00:bb:dc:59:78:f2:c7:de:4b:44:06:da:77:
86:4d:19:75:95:65:f5:bf:65:21:5e:d1:4a:24:3a:
88:eb:c0:12:88:8a:89:71:d9:d8:4d:2c:f1:fa:28:
17:6d:6a:00:80:bb:a2:e8:c0:4a:26:1a:c4:61:88:
f6:02:b7:40:ca:90:66:cc:96:5d:5a:e3:67:b3:40:
ca:1e:6a:99:e6:67:c6:6a:99:07:21:ed:41:2d:b1:
6f:09:7a:8f:2e:09:74:a8:84:c6:ad:48:1b:d4:d1:
fc:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:48:65:74:CF:C8:C5:7F:31:BF:59:19:1C:48:D1:9D:19:21:D9:D2
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/kUhldM_IxX8xv1kZHEjRnRkh2dI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.88.0/23
IPv6:
2a06:98c0:3600::-2a06:98c0:360d:ffff:ffff:ffff:ffff:ffff
2a06:98c0:360f::-2a06:98c0:3611:ffff:ffff:ffff:ffff:ffff
2a06:98c0:3613::-2a06:98c0:3615:ffff:ffff:ffff:ffff:ffff
2a06:98c0:361c::/47
2a06:98c0:361f::/48
2a06:98c0:3621::-2a06:98c0:3622:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
01:5e:61:d3:35:ad:44:bc:f6:b4:3b:2c:c6:02:7f:ac:a2:17:
32:c7:f8:87:d9:92:f6:71:7f:dd:e3:1a:8e:9b:32:30:f7:42:
90:27:1e:8a:d6:9e:af:1f:f0:37:b7:13:9b:2b:ba:65:34:02:
54:5f:42:04:6b:6a:6b:9b:02:60:54:05:ed:22:9f:fe:93:17:
63:2b:07:14:91:df:b0:0f:5b:ca:4a:7a:0a:69:fe:ac:0b:70:
0a:54:c6:04:d4:de:1a:fa:6e:80:9a:8a:ca:f0:23:07:7e:62:
57:f6:db:d4:da:c7:e2:f5:f9:0a:f3:21:56:ec:e4:bc:ae:eb:
51:94:66:d3:31:ad:72:b7:96:bf:65:c9:fa:6a:e9:47:53:da:
3c:ca:65:7c:08:97:0a:ef:21:1b:9d:86:2e:c5:10:bc:6b:e5:
33:2c:4b:06:73:3d:cd:2c:99:7d:e1:46:a7:39:11:4e:77:4e:
fd:67:5c:86:29:5c:65:93:9b:36:ca:80:8d:c9:90:b5:73:06:
d1:e2:d3:a7:e4:63:87:83:0a:1f:8d:c3:61:a7:c8:c0:1b:8d:
3c:08:12:ef:31:41:78:99:d4:51:9a:48:1b:d6:70:c3:a6:22:
d6:b3:ff:c4:00:0d:dd:f0:3b:c4:f5:ae:26:7f:9f:28:9f:46:
50:e9:de:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 00:43:05 2025 by rpki-client