Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/6XUBEof1SEBvuq2rXOsDLoC6ADU.roa
File: 6XUBEof1SEBvuq2rXOsDLoC6ADU.roa (raw, json)
Hash identifier: sO4lFAV/oc2OqRtennpcyedhjjS6UcLl/nPDQdR/wRg=
Subject key identifier: E9:75:01:12:87:F5:48:40:6F:BA:AD:AB:5C:EB:03:2E:80:BA:00:35
Certificate issuer: /CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129
Certificate serial: 01944AD8F20B21BDA8226C217215A9572535
Authority key identifier: D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/6XUBEof1SEBvuq2rXOsDLoC6ADU.roa
Signing time: Thu 09 Jan 2025 11:35:19 +0000
ROA not before: Thu 09 Jan 2025 11:35:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1273
IP address blocks: 62.25.64.0/18 maxlen: 18
62.208.0.0/16 maxlen: 16
62.221.0.0/19 maxlen: 19
141.1.0.0/16 maxlen: 16
185.204.4.0/22 maxlen: 22
193.164.160.0/19 maxlen: 19
193.195.0.0/17 maxlen: 17
193.195.128.0/21 maxlen: 21
193.195.136.0/23 maxlen: 23
193.195.139.0/24 maxlen: 24
193.195.140.0/24 maxlen: 24
193.195.142.0/23 maxlen: 23
193.195.144.0/20 maxlen: 20
193.195.160.0/19 maxlen: 19
193.195.192.0/18 maxlen: 18
194.6.64.0/19 maxlen: 19
194.70.0.0/23 maxlen: 23
194.70.2.0/24 maxlen: 24
194.70.4.0/22 maxlen: 22
194.70.8.0/21 maxlen: 21
194.70.16.0/20 maxlen: 20
194.70.32.0/22 maxlen: 22
194.70.37.0/24 maxlen: 24
194.70.38.0/23 maxlen: 23
194.70.40.0/21 maxlen: 21
194.70.48.0/20 maxlen: 20
194.70.64.0/20 maxlen: 20
194.70.80.0/21 maxlen: 21
194.70.88.0/22 maxlen: 22
194.70.92.0/23 maxlen: 23
194.70.95.0/24 maxlen: 24
194.70.96.0/19 maxlen: 19
194.70.128.0/18 maxlen: 18
194.70.192.0/19 maxlen: 19
194.70.224.0/21 maxlen: 21
194.70.232.0/23 maxlen: 23
194.70.235.0/24 maxlen: 24
194.70.236.0/22 maxlen: 22
194.70.240.0/20 maxlen: 20
194.112.64.0/18 maxlen: 18
194.152.64.0/19 maxlen: 19
194.159.0.0/16 maxlen: 16
194.177.160.0/19 maxlen: 19
194.205.0.0/16 maxlen: 16
194.217.0.0/16 maxlen: 16
194.221.0.0/16 maxlen: 16
195.2.0.0/19 maxlen: 19
195.10.0.0/18 maxlen: 18
195.11.0.0/16 maxlen: 16
195.27.0.0/16 maxlen: 16
195.44.0.0/16 maxlen: 16
195.59.0.0/16 maxlen: 16
195.80.64.0/19 maxlen: 19
195.89.0.0/16 maxlen: 16
195.89.13.0/24 maxlen: 24
195.92.0.0/16 maxlen: 16
195.144.128.0/19 maxlen: 19
195.173.0.0/16 maxlen: 16
212.62.0.0/19 maxlen: 19
212.137.0.0/16 maxlen: 16
212.158.0.0/17 maxlen: 17
212.165.0.0/19 maxlen: 19
212.240.0.0/16 maxlen: 16
213.12.0.0/16 maxlen: 16
213.38.0.0/16 maxlen: 16
213.185.192.0/19 maxlen: 19
213.216.128.0/18 maxlen: 18
217.134.0.0/15 maxlen: 15
217.135.0.0/16 maxlen: 16
217.161.0.0/16 maxlen: 16
2001:5000::/21 maxlen: 21
Validation: Failed, certificate revoked on Thu 09 Jan 2025 14:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:4a:d8:f2:0b:21:bd:a8:22:6c:21:72:15:a9:57:25:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129
Validity
Not Before: Jan 9 11:35:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e975011287f548406fbaadab5ceb032e80ba0035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:98:0c:2a:71:16:9a:63:b9:32:83:e4:43:42:
c2:e9:51:ce:06:09:e4:7f:75:61:4f:ff:f5:4b:02:
3e:aa:eb:60:9a:ed:6a:21:09:31:0e:e4:72:58:cc:
be:49:81:fc:51:11:26:bd:15:1a:27:52:02:a1:7d:
ce:cc:7b:b2:0c:02:6a:87:24:e3:08:43:b8:a2:6c:
28:91:76:9b:40:55:d9:e5:6f:54:dd:f0:40:ba:32:
9b:9e:08:6b:8e:b0:d7:24:00:2f:34:57:8e:7d:e2:
0b:2e:5e:1a:82:70:00:d6:e1:f9:ac:81:b7:75:be:
54:07:ad:c2:ac:62:a3:ee:00:06:35:73:ac:07:b6:
14:88:63:5a:7e:26:a0:2a:fd:f7:7c:ef:65:d3:a3:
27:4f:7d:32:83:92:6e:d7:88:33:e0:18:4b:be:2b:
f1:58:61:20:a5:f4:f3:f7:8e:9d:03:64:04:c4:df:
36:70:e4:14:92:32:d5:5a:51:66:a3:a6:63:58:16:
42:8a:23:a1:1c:57:55:29:a7:62:34:c1:ff:41:4c:
65:20:13:8a:ea:a7:84:8b:1a:de:36:2f:d0:44:e0:
08:ae:88:f7:7e:ac:1d:51:8b:c7:82:5c:30:5f:06:
0d:2a:82:4a:09:71:c8:7f:ca:bd:64:56:19:d8:f0:
73:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:75:01:12:87:F5:48:40:6F:BA:AD:AB:5C:EB:03:2E:80:BA:00:35
X509v3 Authority Key Identifier:
keyid:D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/6XUBEof1SEBvuq2rXOsDLoC6ADU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.25.64.0/18
62.208.0.0/16
62.221.0.0/19
141.1.0.0/16
185.204.4.0/22
193.164.160.0/19
193.195.0.0-193.195.137.255
193.195.139.0-193.195.140.255
193.195.142.0-193.195.255.255
194.6.64.0/19
194.70.0.0-194.70.2.255
194.70.4.0-194.70.35.255
194.70.37.0-194.70.93.255
194.70.95.0-194.70.233.255
194.70.235.0-194.70.255.255
194.112.64.0/18
194.152.64.0/19
194.159.0.0/16
194.177.160.0/19
194.205.0.0/16
194.217.0.0/16
194.221.0.0/16
195.2.0.0/19
195.10.0.0/18
195.11.0.0/16
195.27.0.0/16
195.44.0.0/16
195.59.0.0/16
195.80.64.0/19
195.89.0.0/16
195.92.0.0/16
195.144.128.0/19
195.173.0.0/16
212.62.0.0/19
212.137.0.0/16
212.158.0.0/17
212.165.0.0/19
212.240.0.0/16
213.12.0.0/16
213.38.0.0/16
213.185.192.0/19
213.216.128.0/18
217.134.0.0/15
217.161.0.0/16
IPv6:
2001:5000::/21
Signature Algorithm: sha256WithRSAEncryption
77:18:9d:cd:cd:01:44:c2:15:2c:7d:c0:c4:36:d1:e1:16:fd:
cc:8c:51:a4:7d:94:b4:00:e8:ad:8e:f5:6a:e2:e4:5d:66:de:
a5:ff:e0:a9:63:06:69:65:24:37:8e:31:07:95:16:13:57:c7:
09:ab:8a:5c:81:b1:eb:e0:08:99:46:8e:db:f0:ae:9c:65:47:
a8:77:a5:94:59:af:02:6b:1c:96:1d:26:3c:14:56:cb:c9:f0:
52:1a:a8:cd:d6:5e:00:ab:dc:19:9e:36:7c:eb:8a:c9:d3:5b:
31:66:73:74:1d:b8:c0:0b:a6:8d:ab:db:6b:8b:17:c7:33:f9:
a0:fa:52:73:b5:88:7e:53:c1:7d:24:76:d4:5a:c5:65:4a:c0:
46:36:ca:53:0f:f6:b4:de:38:54:8f:fb:72:3a:e3:2c:66:a8:
c3:18:ba:45:93:5e:55:f3:77:90:3e:76:4d:2f:5e:d0:8b:0b:
ab:c7:33:14:71:10:18:fc:d8:7c:3e:c1:ff:89:36:aa:14:8f:
dc:85:5b:cc:6a:a7:59:5d:86:18:8a:96:9b:ac:e0:ca:91:c3:
d7:61:60:a6:c6:ea:22:94:b5:e7:36:25:9e:68:c5:7a:39:16:
67:de:39:49:b6:78:6d:28:02:f0:b8:0d:72:53:e4:f9:37:35:
df:ca:a3:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 02:17:50 2025 by rpki-client