Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/ZwMwOVtHw0J7kMDc3oochCtuRlo.roa
File: ZwMwOVtHw0J7kMDc3oochCtuRlo.roa (raw, json)
Hash identifier: tQlMpHpxTaaTNHblzLGAnzRLmMAlkIDrgvSr97J11L0=
Subject key identifier: 67:03:30:39:5B:47:C3:42:7B:90:C0:DC:DE:8A:1C:84:2B:6E:46:5A
Certificate issuer: /CN=57c670c8db32dd748df797c5c93013d8c91fa839
Certificate serial: 01974F72E04ADE93FC813122D00BA42B4E39
Authority key identifier: 57:C6:70:C8:DB:32:DD:74:8D:F7:97:C5:C9:30:13:D8:C9:1F:A8:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V8ZwyNsy3XSN95fFyTAT2MkfqDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/ZwMwOVtHw0J7kMDc3oochCtuRlo.roa
Signing time: Sun 08 Jun 2025 12:10:17 +0000
ROA not before: Sun 08 Jun 2025 12:10:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207569
IP address blocks: 46.243.1.0/24 maxlen: 24
46.243.4.0/24 maxlen: 24
46.243.6.0/24 maxlen: 24
185.37.194.0/24 maxlen: 24
185.37.195.0/24 maxlen: 24
194.79.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Jun 2025 06:47:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:72:e0:4a:de:93:fc:81:31:22:d0:0b:a4:2b:4e:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57c670c8db32dd748df797c5c93013d8c91fa839
Validity
Not Before: Jun 8 12:10:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=670330395b47c3427b90c0dcde8a1c842b6e465a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7e:47:b6:97:f8:d4:46:f3:88:52:27:79:26:
85:9f:bf:d5:3e:ba:83:6a:02:a1:1d:98:dc:f8:e5:
19:02:76:ec:a5:e6:99:88:9e:ff:78:91:78:fb:d4:
4f:91:52:28:a0:09:63:60:68:38:d0:8c:06:8f:a0:
c0:15:68:ac:5b:7d:0a:31:ba:8d:b3:9c:d5:46:83:
f3:18:5a:01:e9:f7:c1:bf:d6:eb:4b:39:40:61:9e:
12:b8:d3:a6:58:5e:74:eb:2f:66:18:43:43:b4:6e:
ff:4b:06:c1:39:32:8f:d5:53:05:a7:a3:82:fc:5e:
61:bd:27:48:04:b1:b3:0f:33:c1:8e:aa:1c:6e:6a:
0f:63:9e:6e:c0:72:4a:12:33:4d:2e:ea:4d:49:ba:
00:b3:04:dc:c6:ca:8e:44:eb:ea:59:2e:07:a1:a1:
b6:8c:3c:3d:82:0d:3d:17:7e:03:39:ba:9c:0e:17:
20:a3:08:f4:54:7a:02:37:69:a4:97:3d:ca:b3:3d:
61:f3:50:80:fd:e3:0f:a1:8b:a0:cd:26:fe:da:3b:
4e:b4:1f:82:34:1b:c5:30:15:95:24:87:40:ff:43:
87:be:37:dc:cd:28:f6:77:92:65:7c:61:a7:d4:e8:
14:5f:a8:20:b3:42:59:1c:ab:cc:e6:ea:4b:b0:ba:
ec:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:03:30:39:5B:47:C3:42:7B:90:C0:DC:DE:8A:1C:84:2B:6E:46:5A
X509v3 Authority Key Identifier:
keyid:57:C6:70:C8:DB:32:DD:74:8D:F7:97:C5:C9:30:13:D8:C9:1F:A8:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V8ZwyNsy3XSN95fFyTAT2MkfqDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/ZwMwOVtHw0J7kMDc3oochCtuRlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5a6fda-7896-4c50-affd-30495f403784/1/V8ZwyNsy3XSN95fFyTAT2MkfqDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.243.1.0/24
46.243.4.0/24
46.243.6.0/24
185.37.194.0/23
194.79.60.0/24
Signature Algorithm: sha256WithRSAEncryption
84:5c:80:a2:6e:05:69:25:22:1f:11:a6:05:01:b2:c2:22:ca:
2c:e2:0c:32:68:b8:7b:cd:9f:01:3c:20:80:98:61:8e:8f:65:
60:3d:3e:cf:e2:65:4e:e6:56:84:49:95:45:33:5d:91:59:77:
4b:d4:f6:84:72:fb:16:1e:63:a1:e6:84:8b:60:23:fa:bb:31:
71:72:08:64:e4:f9:c5:ef:3a:58:3b:91:63:34:29:5d:f4:c9:
19:a8:1a:54:05:bf:45:ee:89:94:c4:25:e6:b2:2e:2a:22:5f:
88:cc:c0:03:f2:de:39:fb:ee:d4:f7:7e:fb:db:33:cf:4c:c6:
af:12:54:fd:60:82:d1:68:0d:1b:38:c9:2e:bf:6a:02:8a:56:
fc:f3:96:04:41:d5:97:01:90:90:c3:e9:57:7e:aa:6c:d4:f1:
18:34:06:a0:da:1a:2a:2d:ff:19:42:15:7c:d5:09:c8:a9:b2:
53:4e:c8:86:4b:49:a5:66:be:e0:24:c3:dd:21:b2:e8:2a:87:
6c:a5:bd:d0:ce:ab:cb:8a:15:57:95:8b:2f:59:8c:2f:ff:ba:
a0:41:15:d5:5c:a8:0a:19:a3:52:6e:76:72:b5:56:02:00:8e:
31:7c:4f:9e:0e:97:22:6e:a8:d9:73:f2:81:f0:6e:7d:57:d7:
3d:06:7f:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 20 07:22:43 2025 by rpki-client