Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/abioh82KEamNrnumBYtxknW0_Vw.roa
File: abioh82KEamNrnumBYtxknW0_Vw.roa (raw, json)
Hash identifier: 8u928v9myP5WFthFtlYed24QyYmj7g+vV7o4oZjbga0=
Subject key identifier: 69:B8:A8:87:CD:8A:11:A9:8D:AE:7B:A6:05:8B:71:92:75:B4:FD:5C
Certificate issuer: /CN=8f78963b3c4f2dd187c20437df1d7d9c168cab81
Certificate serial: 0196348CB89EBD7D18E24AF2A494D5B1F6B5
Authority key identifier: 8F:78:96:3B:3C:4F:2D:D1:87:C2:04:37:DF:1D:7D:9C:16:8C:AB:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j3iWOzxPLdGHwgQ33x19nBaMq4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/abioh82KEamNrnumBYtxknW0_Vw.roa
Signing time: Mon 14 Apr 2025 13:45:59 +0000
ROA not before: Mon 14 Apr 2025 13:45:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8468
IP address blocks: 46.254.0.0/21 maxlen: 24
62.249.192.0/18 maxlen: 24
78.32.0.0/15 maxlen: 24
79.143.144.0/20 maxlen: 20
81.31.96.0/19 maxlen: 24
84.45.128.0/17 maxlen: 24
87.127.0.0/16 maxlen: 24
109.224.160.0/19 maxlen: 24
156.67.240.0/20 maxlen: 24
185.81.192.0/22 maxlen: 24
185.101.148.0/22 maxlen: 24
185.129.72.0/22 maxlen: 24
185.220.12.0/22 maxlen: 24
188.39.0.0/16 maxlen: 16
195.74.96.0/19 maxlen: 19
2001:4d48::/29 maxlen: 48
2001:4d48::/32 maxlen: 32
2a05:8940::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 14 Apr 2025 14:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:34:8c:b8:9e:bd:7d:18:e2:4a:f2:a4:94:d5:b1:f6:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f78963b3c4f2dd187c20437df1d7d9c168cab81
Validity
Not Before: Apr 14 13:45:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69b8a887cd8a11a98dae7ba6058b719275b4fd5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1f:73:ac:ee:50:31:0e:12:2f:39:cb:c7:e7:
56:81:2e:36:bb:7a:f1:20:0c:f0:2f:4f:09:49:20:
a2:09:39:6d:0b:c8:67:87:c8:0a:47:c8:ae:9d:6a:
24:e9:96:73:5a:5c:33:97:c4:01:94:b1:42:78:13:
98:69:b5:f8:6e:0d:8d:b9:f4:01:11:04:5f:aa:20:
98:78:77:ea:eb:a0:07:df:4a:c2:cb:9c:f6:d1:e7:
9d:99:bd:25:43:ce:df:52:74:c6:e0:6a:92:c8:f4:
ff:45:80:98:d8:45:d2:49:17:8c:00:bf:5a:88:cc:
4b:57:c3:72:1d:30:4a:80:c8:95:18:09:3a:1e:55:
80:b4:de:13:25:0c:e6:5a:1a:df:a8:86:b9:d8:31:
2e:e1:d6:32:81:d0:d4:2f:e6:7d:78:59:3c:1e:5f:
a7:9c:46:6b:34:5d:81:c5:b5:39:2b:5b:1e:a9:76:
b0:34:45:bd:d4:4c:17:dd:f0:0a:ae:bc:7b:61:0c:
2a:64:47:ae:7e:e5:b1:ef:fd:13:1b:60:be:64:bf:
58:04:0d:96:81:75:7d:87:1d:45:b9:05:19:74:e3:
8b:e6:bc:79:af:b4:82:ee:00:cc:0f:3e:2c:36:f4:
2c:0a:16:83:3a:36:a6:86:67:33:4b:c3:43:e6:ee:
e1:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:B8:A8:87:CD:8A:11:A9:8D:AE:7B:A6:05:8B:71:92:75:B4:FD:5C
X509v3 Authority Key Identifier:
keyid:8F:78:96:3B:3C:4F:2D:D1:87:C2:04:37:DF:1D:7D:9C:16:8C:AB:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j3iWOzxPLdGHwgQ33x19nBaMq4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/abioh82KEamNrnumBYtxknW0_Vw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/j3iWOzxPLdGHwgQ33x19nBaMq4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.254.0.0/21
62.249.192.0/18
78.32.0.0/15
79.143.144.0/20
81.31.96.0/19
84.45.128.0/17
87.127.0.0/16
109.224.160.0/19
156.67.240.0/20
185.81.192.0/22
185.101.148.0/22
185.129.72.0/22
185.220.12.0/22
188.39.0.0/16
195.74.96.0/19
IPv6:
2001:4d48::/29
2a05:8940::/29
Signature Algorithm: sha256WithRSAEncryption
0a:f8:6a:4a:b2:97:43:ae:b0:07:cd:d3:4f:91:ae:f1:f4:47:
a7:ab:ce:be:f7:b4:ad:34:67:9c:fd:7b:5d:a5:30:fc:57:64:
69:65:22:c4:a7:d6:35:3e:ef:e0:a6:d0:38:ef:fd:46:83:1f:
f2:a3:18:24:28:22:05:3f:1e:d6:0e:d1:2f:36:23:68:15:12:
38:ed:c2:d7:2b:7c:6e:4e:89:4a:0f:b6:64:f6:ad:59:59:f6:
9a:0a:2f:44:28:f7:00:55:71:bd:b9:90:e6:0c:32:32:da:9a:
ad:1c:50:6a:f9:aa:8b:19:c7:bf:e8:9e:fb:95:86:0d:1e:02:
a5:24:ee:1c:2b:94:27:43:d2:74:c9:08:51:64:46:db:56:a7:
ec:35:9a:d9:be:f4:79:b2:25:e4:06:11:e6:7b:84:1d:be:c8:
48:cb:32:6a:23:ad:31:ab:ec:9e:a2:9d:fb:db:e4:9a:ad:28:
16:ce:b4:16:72:3e:d1:7b:2e:98:38:13:f8:cd:c0:ae:3e:ed:
78:2e:e4:dd:ac:73:ea:ac:16:1d:7d:61:27:9f:22:eb:fd:74:
d6:48:27:af:ff:97:65:6d:86:c4:1e:7f:3e:2b:b2:ba:f4:82:
64:09:a1:32:70:de:bb:b6:6e:67:dd:93:62:f2:71:08:4f:e3:
ff:bb:09:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 18:17:35 2025 by rpki-client