Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/gXg5Uv_vKqXOVhrA6FcWhl_5N0Q.roa
File: gXg5Uv_vKqXOVhrA6FcWhl_5N0Q.roa (raw, json)
Hash identifier: 2BiUEDrXwKyV0CrBUfNlG7ZIYXuxbWl1ZkzL0Okd/NA=
Subject key identifier: 81:78:39:52:FF:EF:2A:A5:CE:56:1A:C0:E8:57:16:86:5F:F9:37:44
Certificate issuer: /CN=c6e1c8c65c86e8d26ddbeb68658a39a7a8e27866
Certificate serial: 01907CE14D8B263E1A50890C76F862B54E60
Authority key identifier: C6:E1:C8:C6:5C:86:E8:D2:6D:DB:EB:68:65:8A:39:A7:A8:E2:78:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xuHIxlyG6NJt2-toZYo5p6jieGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/gXg5Uv_vKqXOVhrA6FcWhl_5N0Q.roa
Signing time: Thu 04 Jul 2024 08:34:18 +0000
ROA not before: Thu 04 Jul 2024 08:34:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202391
IP address blocks: 46.34.160.0/22 maxlen: 24
89.42.196.0/22 maxlen: 22
89.42.196.0/24 maxlen: 24
89.42.197.0/24 maxlen: 24
89.42.198.0/24 maxlen: 24
89.42.199.0/24 maxlen: 24
89.47.196.0/22 maxlen: 24
89.47.196.0/24 maxlen: 24
89.47.200.0/22 maxlen: 22
89.47.203.0/24 maxlen: 24
92.114.48.0/23 maxlen: 24
92.114.48.0/24 maxlen: 24
92.114.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Jul 2024 08:56:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7c:e1:4d:8b:26:3e:1a:50:89:0c:76:f8:62:b5:4e:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6e1c8c65c86e8d26ddbeb68658a39a7a8e27866
Validity
Not Before: Jul 4 08:34:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81783952ffef2aa5ce561ac0e85716865ff93744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:0b:f2:51:eb:fe:65:6f:cb:a8:0f:20:69:10:
cc:1f:d9:a7:a9:bb:80:19:b6:d0:74:b0:9f:38:ff:
14:37:cb:9e:59:a4:ad:99:1c:4c:cd:b0:34:dd:d7:
76:ff:9b:2d:88:69:f5:0a:b5:60:26:38:f5:ce:5b:
ec:fe:cd:1b:46:0b:2a:70:b1:e0:ee:4b:29:2e:04:
59:ac:62:9f:35:23:00:00:99:29:1d:70:27:d2:e0:
ed:80:82:e9:e4:d6:30:99:d9:0a:f2:89:d8:4a:43:
3d:94:32:23:43:d6:13:8e:3e:ad:46:75:69:89:fb:
e1:ab:22:6e:fe:63:3b:e5:20:59:72:46:92:a5:14:
a2:52:db:80:40:8d:5c:a1:77:2a:3a:6e:5d:7f:e8:
6d:0c:4d:be:35:9b:4d:cf:37:da:cc:21:89:25:68:
50:6a:92:77:0b:62:1e:63:7c:0f:f0:45:2e:d9:3f:
17:94:f1:21:ea:5b:3e:2c:4e:5c:11:66:dc:0f:7f:
c8:3b:22:15:29:77:5d:02:3e:ff:32:fc:de:3e:6c:
b8:a5:4d:f1:d4:18:1c:ce:88:5e:40:ca:a2:e1:16:
02:77:71:9e:81:8d:6e:79:b1:e5:49:cf:a0:59:33:
56:78:f7:7a:17:0d:81:46:82:18:ce:86:51:4d:5f:
57:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:78:39:52:FF:EF:2A:A5:CE:56:1A:C0:E8:57:16:86:5F:F9:37:44
X509v3 Authority Key Identifier:
keyid:C6:E1:C8:C6:5C:86:E8:D2:6D:DB:EB:68:65:8A:39:A7:A8:E2:78:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xuHIxlyG6NJt2-toZYo5p6jieGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/gXg5Uv_vKqXOVhrA6FcWhl_5N0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/xuHIxlyG6NJt2-toZYo5p6jieGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.160.0/22
89.42.196.0/22
89.47.196.0-89.47.203.255
92.114.48.0/23
Signature Algorithm: sha256WithRSAEncryption
06:e7:71:45:05:f1:65:98:fb:b7:ed:2f:4f:de:bc:95:d2:87:
24:60:32:9e:6a:08:32:e2:ff:c5:7a:17:0f:bd:7c:2c:cb:21:
ce:0f:6e:9d:9c:2d:16:cf:a4:0b:4f:e6:98:df:3d:de:1a:d8:
2d:39:b8:88:dd:13:dc:af:73:7c:ff:64:ba:ae:fb:bd:f8:01:
78:74:65:8a:12:1f:66:64:3a:5d:c3:45:b5:c6:94:7a:a8:2c:
02:b6:64:83:6d:ce:36:23:cb:c7:ea:c3:62:2c:d4:28:40:fa:
8b:68:4c:7b:12:75:8e:a1:6f:a5:c0:7f:64:3b:18:48:a8:9c:
1e:59:6d:97:3d:2a:c5:67:8d:c2:c2:c9:34:15:50:97:73:fb:
ec:05:3e:fa:c9:76:31:a0:4b:64:a7:7e:30:24:ff:78:80:6c:
99:29:c0:f2:2d:99:c8:47:e9:bd:68:82:a8:4f:d3:52:9c:a4:
8f:1d:87:21:2e:0b:e8:70:56:e5:14:1b:70:76:0e:10:65:1c:
6c:3b:1a:c5:33:56:1b:40:99:77:ad:9a:b9:68:a8:a9:77:c9:
dc:fa:03:54:11:d7:d6:2b:01:3f:f8:d6:56:15:e1:4c:8c:8f:
76:e8:6e:e4:c0:58:06:9b:ce:11:87:c3:a1:f1:49:da:b3:2a:
6f:c4:b6:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 00:39:47 2025 by rpki-client