Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/uWp7lbpoaW0Wr3wz6XMlTklculM.roa
File: uWp7lbpoaW0Wr3wz6XMlTklculM.roa (raw, json)
Hash identifier: a6Q34/rNNi4XGUgKMvItn4FTp0PsirO69O6NxA1du5g=
Subject key identifier: B9:6A:7B:95:BA:68:69:6D:16:AF:7C:33:E9:73:25:4E:49:5C:BA:53
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 01939D2E5FDC594DEB18FFAEA8901754B13F
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/uWp7lbpoaW0Wr3wz6XMlTklculM.roa
Signing time: Fri 06 Dec 2024 18:14:42 +0000
ROA not before: Fri 06 Dec 2024 18:14:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13213
IP address blocks: 5.182.184.0/24 maxlen: 24
45.67.146.0/24 maxlen: 24
78.31.206.0/24 maxlen: 24
79.98.182.0/24 maxlen: 24
162.218.89.0/24 maxlen: 24
162.218.93.0/24 maxlen: 24
185.52.136.0/24 maxlen: 24
185.52.139.0/24 maxlen: 24
185.161.191.0/24 maxlen: 24
185.187.214.0/24 maxlen: 24
185.187.215.0/24 maxlen: 24
185.205.206.0/24 maxlen: 24
185.208.152.0/24 maxlen: 24
185.208.153.0/24 maxlen: 24
185.208.154.0/24 maxlen: 24
185.230.121.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:48:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:9d:2e:5f:dc:59:4d:eb:18:ff:ae:a8:90:17:54:b1:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Dec 6 18:14:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b96a7b95ba68696d16af7c33e973254e495cba53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:18:41:68:24:7a:fe:64:ea:a5:f0:c8:a4:23:
d6:11:67:2a:9a:4c:48:43:d3:fa:45:e2:c3:41:3e:
3d:60:83:9e:bd:cc:45:71:c5:b2:dd:3c:0d:18:ac:
d6:85:b1:bf:53:c1:b2:48:51:46:7d:44:fb:46:74:
61:a5:3a:1b:80:c0:d6:7b:72:26:c8:2f:4e:6e:3d:
fb:37:97:67:2c:2b:a7:12:fd:35:d0:bb:0e:fc:06:
e7:ef:d9:96:b1:06:ba:68:93:5d:2e:7c:23:92:fb:
cc:d7:8c:af:d0:f5:7d:ff:77:07:46:4a:34:74:61:
90:c4:78:a9:39:38:81:2d:78:41:38:9f:fc:60:98:
73:05:dc:18:06:29:bd:86:b3:77:d1:f0:85:ad:62:
b1:c9:bd:92:a9:4d:f1:f7:42:a6:50:34:f0:7f:dd:
e1:d5:15:21:1f:39:88:56:0d:14:cc:78:f5:23:c1:
e9:75:1e:b8:9d:9c:5b:e6:f4:f9:bc:d7:49:9b:8d:
1f:2a:57:35:c0:10:50:be:7e:c6:c9:8a:8b:19:4b:
27:0a:04:4c:1a:e1:e4:33:7f:97:06:df:20:46:9e:
e8:33:d4:bc:f8:ff:52:ee:9f:8c:01:fc:d9:b8:13:
a3:c0:e8:3b:57:83:f7:2a:da:65:b3:c4:51:6d:3a:
4e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:6A:7B:95:BA:68:69:6D:16:AF:7C:33:E9:73:25:4E:49:5C:BA:53
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/uWp7lbpoaW0Wr3wz6XMlTklculM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.184.0/24
45.67.146.0/24
78.31.206.0/24
79.98.182.0/24
162.218.89.0/24
162.218.93.0/24
185.52.136.0/24
185.52.139.0/24
185.161.191.0/24
185.187.214.0/23
185.205.206.0/24
185.208.152.0-185.208.154.255
185.230.121.0/24
Signature Algorithm: sha256WithRSAEncryption
86:03:c7:7b:b6:d8:e1:d1:43:6d:e5:76:9a:70:4a:9d:6b:f2:
cd:64:56:88:1e:55:5d:ab:72:f3:a1:b2:9f:31:b8:b6:29:58:
d9:58:eb:e4:42:09:d6:71:eb:59:12:af:a9:6c:7a:8b:ef:6f:
00:bb:ac:c9:e7:3c:99:b6:17:9e:a9:d2:5b:97:e4:d7:5e:e9:
d0:16:ee:1b:8e:3a:0e:b0:cc:c9:17:0b:c2:66:3f:e4:0a:1a:
e6:ef:53:40:50:0b:43:72:cd:ba:f8:c5:ca:1d:a5:3d:0c:12:
dc:25:71:1f:ab:ba:aa:a0:9f:a3:36:44:d5:2a:80:3e:f2:47:
51:32:bb:8d:a7:50:f4:24:1d:56:3f:dc:86:85:31:31:07:8e:
06:83:d9:76:7a:10:34:f6:6c:51:d1:aa:1f:df:96:30:e5:23:
f7:04:cf:e5:ec:0c:0b:09:aa:de:b3:ad:64:e2:60:2c:56:15:
42:e6:8d:ca:cf:e5:c0:d9:64:3d:85:3e:41:13:0a:ac:63:09:
6c:c1:08:3f:06:8a:fb:6a:2b:04:5b:fc:67:da:71:26:89:38:
24:0c:cd:76:db:b2:5d:9c:02:77:a3:f3:e4:ab:40:47:ba:40:
a3:2f:2c:96:69:32:6b:a5:c2:a8:8b:f4:de:59:f1:ca:73:ec:
c4:1d:63:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 19:59:33 2025 by rpki-client