Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/Rd7x_X2wo05MA5AddWMu52Y1C9I.roa
File: Rd7x_X2wo05MA5AddWMu52Y1C9I.roa (raw, json)
Hash identifier: C58S+iNDc0D5D7drXJnzPGxNU2FMNnLE4+p1iWdy/Fw=
Subject key identifier: 45:DE:F1:FD:7D:B0:A3:4E:4C:03:90:1D:75:63:2E:E7:66:35:0B:D2
Certificate issuer: /CN=bfe3971a32c0692c4e342e911790662470cf31b2
Certificate serial: 019391193B4535BE3AE0930427392316232E
Authority key identifier: BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/Rd7x_X2wo05MA5AddWMu52Y1C9I.roa
Signing time: Wed 04 Dec 2024 09:56:10 +0000
ROA not before: Wed 04 Dec 2024 09:56:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201814
IP address blocks: 5.181.188.0/22 maxlen: 22
5.181.189.0/24 maxlen: 24
91.223.3.0/24 maxlen: 24
95.214.52.0/22 maxlen: 23
95.214.52.0/23 maxlen: 23
95.214.54.0/23 maxlen: 23
146.19.24.0/24 maxlen: 24
178.211.139.0/24 maxlen: 24
185.16.36.0/22 maxlen: 24
185.225.191.0/24 maxlen: 24
185.248.24.0/24 maxlen: 24
193.34.212.0/22 maxlen: 22
193.34.212.0/23 maxlen: 23
193.34.214.0/23 maxlen: 23
193.34.215.0/24 maxlen: 24
195.3.220.0/22 maxlen: 22
195.3.220.0/23 maxlen: 23
195.3.222.0/23 maxlen: 23
195.3.222.0/24 maxlen: 24
212.23.222.0/24 maxlen: 24
2a03:cfc0::/32 maxlen: 32
2a03:cfc0::/33 maxlen: 33
2a03:cfc0:8000::/33 maxlen: 33
Validation: Failed, certificate revoked on Wed 04 Dec 2024 10:18:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:91:19:3b:45:35:be:3a:e0:93:04:27:39:23:16:23:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe3971a32c0692c4e342e911790662470cf31b2
Validity
Not Before: Dec 4 09:56:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45def1fd7db0a34e4c03901d75632ee766350bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:89:db:29:3e:a1:5c:e9:67:6f:d5:8c:9e:f4:
f9:fb:0d:87:4a:50:af:e6:6b:31:d5:49:b9:8b:ee:
4f:14:60:a3:d0:0b:16:31:e9:3b:d5:43:55:0c:db:
d9:dc:b5:ff:ce:5d:0b:9a:84:52:6a:4b:22:e4:55:
85:d9:d8:3f:8f:c9:bc:b3:6d:ad:93:86:fb:a2:1b:
5c:b6:57:ad:84:0d:99:0c:7c:c0:6f:19:44:35:f5:
59:f4:4a:4c:d0:6d:af:d4:49:9c:3a:83:4c:75:16:
6e:99:ab:60:d0:3e:c1:a1:07:31:f4:f2:fb:50:b4:
13:09:50:bb:c3:9e:e2:7a:57:a0:ac:69:01:72:1e:
1d:54:24:47:bd:5a:3b:84:3b:30:aa:14:a2:1f:35:
41:08:1b:1d:dd:13:bc:d3:ce:ab:4a:2e:f6:48:cc:
c9:62:56:af:a3:d9:2b:94:c8:85:95:18:4f:ef:2b:
8d:6c:01:ed:60:f0:57:21:66:12:ad:cd:ce:ee:35:
7b:9f:0a:0e:31:7f:d4:66:29:42:ec:cd:b4:cc:35:
34:f8:d7:49:e9:85:8d:3a:9f:c0:75:a6:bb:21:67:
bc:b8:87:c1:d9:d6:bf:a6:7e:6d:3d:0b:26:b2:2c:
cf:e5:41:6c:0d:84:70:44:1f:63:37:21:5c:a5:df:
26:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:DE:F1:FD:7D:B0:A3:4E:4C:03:90:1D:75:63:2E:E7:66:35:0B:D2
X509v3 Authority Key Identifier:
keyid:BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/Rd7x_X2wo05MA5AddWMu52Y1C9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/v-OXGjLAaSxONC6RF5BmJHDPMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.188.0/22
91.223.3.0/24
95.214.52.0/22
146.19.24.0/24
178.211.139.0/24
185.16.36.0/22
185.225.191.0/24
185.248.24.0/24
193.34.212.0/22
195.3.220.0/22
212.23.222.0/24
IPv6:
2a03:cfc0::/32
Signature Algorithm: sha256WithRSAEncryption
0e:e5:17:83:dd:d8:3c:77:c8:d8:78:b5:f6:4d:c9:c1:6f:c3:
26:d8:06:8d:bc:47:94:3c:06:1c:2e:cc:ca:14:d2:50:e4:47:
5b:1e:59:60:2d:88:17:f3:c6:6d:a3:8d:48:ae:1f:27:0e:e3:
5f:10:39:47:77:01:42:ae:2c:49:a2:ca:ed:7b:cb:71:8a:8f:
ad:89:6d:9d:5a:26:07:72:2f:09:06:51:eb:db:9e:8c:af:37:
c6:97:53:e8:0a:34:b2:49:a3:30:c0:ef:7c:8e:cf:5f:7b:1e:
bc:be:e7:85:b8:75:c1:a5:12:ec:e9:f4:48:27:d3:05:7c:a4:
1a:59:9a:db:37:b4:11:fd:1a:5a:50:63:0f:78:ff:92:c5:9d:
f1:1b:a0:74:e4:df:9b:81:64:c2:e5:c0:3f:37:2e:14:3a:97:
b7:f2:57:24:74:a5:bf:ea:f5:9c:f7:51:31:2e:14:3f:21:e2:
c7:16:3c:30:14:10:29:59:89:95:51:ac:19:00:4d:a7:af:05:
67:94:ae:1e:48:b8:66:5f:84:0c:b3:61:a9:94:a1:98:eb:0c:
2a:94:dd:40:0e:88:28:8d:58:cb:97:92:34:9b:9e:a2:f9:db:
27:1b:2c:26:59:0a:84:40:8c:5b:8a:8c:00:47:6a:23:e3:ed:
6b:0e:77:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 16:47:56 2025 by rpki-client