Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/RCGC4ohj3ybZJGCUptlOgOWewZo.roa
File: RCGC4ohj3ybZJGCUptlOgOWewZo.roa (raw, json)
Hash identifier: 93y87nVq/pLF8xLSs2SwH+CgchjHGX4kdpidiUCOPgU=
Subject key identifier: 44:21:82:E2:88:63:DF:26:D9:24:60:94:A6:D9:4E:80:E5:9E:C1:9A
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 0196855D0F92C952913CEF03B7DBC382D357
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/RCGC4ohj3ybZJGCUptlOgOWewZo.roa
Signing time: Wed 30 Apr 2025 06:23:10 +0000
ROA not before: Wed 30 Apr 2025 06:23:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24852
IP address blocks: 79.132.160.0/20 maxlen: 20
84.55.32.0/24 maxlen: 24
84.55.33.0/24 maxlen: 24
84.55.34.0/23 maxlen: 23
84.55.36.0/23 maxlen: 23
84.55.48.0/21 maxlen: 21
84.55.56.0/23 maxlen: 23
84.55.58.0/23 maxlen: 23
84.55.60.0/23 maxlen: 23
84.55.62.0/23 maxlen: 23
88.223.0.0/18 maxlen: 18
88.223.0.0/20 maxlen: 20
88.223.24.0/21 maxlen: 21
88.223.32.0/19 maxlen: 19
88.223.96.0/22 maxlen: 22
88.223.104.0/21 maxlen: 21
88.223.112.0/20 maxlen: 20
88.223.128.0/22 maxlen: 22
88.223.144.0/21 maxlen: 21
88.223.152.0/24 maxlen: 24
88.223.153.0/24 maxlen: 24
88.223.160.0/22 maxlen: 22
88.223.192.0/20 maxlen: 20
95.173.32.0/23 maxlen: 23
185.104.176.0/22 maxlen: 22
213.164.112.0/22 maxlen: 22
213.164.116.0/23 maxlen: 23
213.164.118.0/24 maxlen: 24
217.147.34.0/24 maxlen: 24
217.147.35.0/24 maxlen: 24
217.147.36.0/23 maxlen: 23
217.147.38.0/24 maxlen: 24
217.147.40.0/24 maxlen: 24
217.147.41.0/24 maxlen: 24
217.147.44.0/23 maxlen: 23
217.147.46.0/24 maxlen: 24
217.147.47.0/24 maxlen: 24
2a01:7c80::/33 maxlen: 33
Validation: Failed, certificate revoked on Mon 05 May 2025 11:49:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:5d:0f:92:c9:52:91:3c:ef:03:b7:db:c3:82:d3:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Apr 30 06:23:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=442182e28863df26d9246094a6d94e80e59ec19a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a8:41:c3:c7:5a:e4:c4:1d:34:38:af:62:ee:
be:1f:f4:e5:bf:59:cc:ad:38:97:08:e7:7e:13:be:
6f:d7:0e:99:c4:a5:e5:b8:35:1b:be:9d:91:5c:0d:
32:03:19:f4:82:f8:60:3d:f3:54:1c:d1:61:80:54:
48:b8:2e:67:fc:ff:ab:80:f4:94:c3:60:65:bd:fa:
33:ec:ed:c8:e7:d3:d8:2d:d2:1a:56:3d:3d:98:8d:
83:91:6e:b6:90:c5:b5:50:1c:98:f1:2e:1e:bb:e1:
ab:2c:fc:30:76:20:5f:6e:44:31:f3:2f:69:81:2e:
47:09:f9:ef:ad:d3:83:34:84:7b:a0:9c:63:be:fb:
4b:be:53:cc:73:18:ef:34:13:ee:0a:bc:f3:2e:81:
27:37:43:fa:02:d4:94:66:7d:fd:18:69:2d:1f:bf:
97:ff:91:2e:ba:3d:ba:44:e8:3a:f2:c8:dd:48:54:
ad:3b:c0:9e:75:97:3b:d9:77:c6:cb:32:5f:0c:a1:
c7:c6:3a:72:51:45:46:30:d2:5f:f1:b2:34:7e:ac:
c4:d3:8c:cf:f5:cb:53:89:b4:36:47:85:2e:bb:04:
b3:41:5b:36:26:6c:40:7d:ea:42:97:c4:9a:a8:9e:
14:38:f6:c8:ad:b3:dd:06:fb:51:dc:40:9d:66:e6:
4e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:21:82:E2:88:63:DF:26:D9:24:60:94:A6:D9:4E:80:E5:9E:C1:9A
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/RCGC4ohj3ybZJGCUptlOgOWewZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.160.0/20
84.55.32.0-84.55.37.255
84.55.48.0/20
88.223.0.0/18
88.223.96.0/22
88.223.104.0-88.223.131.255
88.223.144.0-88.223.153.255
88.223.160.0/22
88.223.192.0/20
95.173.32.0/23
185.104.176.0/22
213.164.112.0-213.164.118.255
217.147.34.0-217.147.38.255
217.147.40.0/23
217.147.44.0/22
IPv6:
2a01:7c80::/33
Signature Algorithm: sha256WithRSAEncryption
72:7b:62:8e:fc:12:d0:4e:b1:a0:80:4a:1f:0e:77:46:a5:2a:
3b:50:65:ee:81:36:e4:a9:b1:c8:3e:07:b8:ec:f1:ce:01:52:
c9:20:31:1c:53:0c:cc:14:11:14:7f:40:57:62:cf:36:5d:87:
81:9b:56:38:d4:97:f1:99:93:90:72:5f:b1:13:2a:74:2d:74:
2b:d0:a3:b3:f4:b7:6b:ed:7f:d7:0a:0a:57:bc:b8:00:2d:b3:
0a:66:1d:0b:6e:15:de:92:5d:11:89:f5:e7:38:25:f9:cd:73:
18:a1:fc:68:70:ce:88:90:78:dc:dc:4a:d4:9b:95:1c:d3:b9:
c7:ad:10:e6:a6:7c:9a:cf:81:c9:49:06:6e:8e:a6:75:93:ad:
4e:16:04:e8:24:18:5b:76:36:6b:c3:f0:35:a7:04:a4:7a:45:
d9:b8:b7:5e:a3:2c:ed:fb:fd:ce:e3:97:c5:27:28:6e:85:6b:
c2:c1:2e:ba:7d:c8:eb:b0:30:aa:d5:b8:88:f7:a8:18:a2:db:
c5:eb:19:44:46:9a:4a:42:7c:61:d7:94:22:32:cf:db:b9:ff:
5c:bb:b5:03:e0:5a:ac:02:a6:10:07:11:80:a5:e2:e5:24:70:
13:72:e2:4f:c1:de:9c:08:1f:0c:41:13:da:e3:19:bc:f4:73:
ff:39:72:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 05:46:35 2025 by rpki-client