Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/xmMbBW9YjfMm-AZmtqmPsWAvWCE.roa
File: xmMbBW9YjfMm-AZmtqmPsWAvWCE.roa (raw, json)
Hash identifier: p/Hb7vmdqZNBH8Wuuz91YQ4RnXIlTbIfvWWN2uoQ7AU=
Subject key identifier: C6:63:1B:05:6F:58:8D:F3:26:F8:06:66:B6:A9:8F:B1:60:2F:58:21
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 019528B2E276AFA3848CC6F07968A2DDFEA6
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/xmMbBW9YjfMm-AZmtqmPsWAvWCE.roa
Signing time: Fri 21 Feb 2025 13:29:26 +0000
ROA not before: Fri 21 Feb 2025 13:29:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15723
IP address blocks: 5.178.4.0/22 maxlen: 22
5.178.9.0/24 maxlen: 24
5.178.10.0/24 maxlen: 24
5.178.11.0/24 maxlen: 24
5.178.12.0/24 maxlen: 24
5.178.13.0/24 maxlen: 24
5.178.14.0/24 maxlen: 24
5.178.15.0/24 maxlen: 24
46.23.100.0/24 maxlen: 24
46.23.101.0/24 maxlen: 24
46.23.102.0/24 maxlen: 24
46.23.103.0/24 maxlen: 24
62.217.128.0/19 maxlen: 19
62.217.128.0/24 maxlen: 24
62.217.129.0/24 maxlen: 24
62.217.130.0/24 maxlen: 24
62.217.131.0/24 maxlen: 24
62.217.132.0/24 maxlen: 24
62.217.133.0/24 maxlen: 24
62.217.134.0/24 maxlen: 24
62.217.135.0/24 maxlen: 24
62.217.136.0/24 maxlen: 24
62.217.137.0/24 maxlen: 24
62.217.138.0/24 maxlen: 24
62.217.139.0/24 maxlen: 24
62.217.140.0/24 maxlen: 24
62.217.141.0/24 maxlen: 24
62.217.142.0/24 maxlen: 24
62.217.143.0/24 maxlen: 24
62.217.144.0/24 maxlen: 24
62.217.145.0/24 maxlen: 24
62.217.146.0/24 maxlen: 24
62.217.147.0/24 maxlen: 24
62.217.148.0/24 maxlen: 24
62.217.149.0/24 maxlen: 24
62.217.150.0/24 maxlen: 24
62.217.151.0/24 maxlen: 24
62.217.152.0/24 maxlen: 24
62.217.153.0/24 maxlen: 24
62.217.154.0/24 maxlen: 24
62.217.155.0/24 maxlen: 24
62.217.156.0/24 maxlen: 24
62.217.157.0/24 maxlen: 24
62.217.158.0/24 maxlen: 24
62.217.159.0/24 maxlen: 24
88.151.199.0/24 maxlen: 24
109.205.208.0/24 maxlen: 24
185.81.217.0/24 maxlen: 24
188.64.8.0/24 maxlen: 24
188.64.9.0/24 maxlen: 24
188.64.10.0/24 maxlen: 24
188.64.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Feb 2025 20:40:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:28:b2:e2:76:af:a3:84:8c:c6:f0:79:68:a2:dd:fe:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Feb 21 13:29:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c6631b056f588df326f80666b6a98fb1602f5821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:27:6b:c9:b7:b4:1f:31:63:32:4b:cc:2f:d9:
75:fa:c2:f2:04:5e:37:8a:b0:b8:b7:ca:1f:bc:8d:
b7:9a:69:cd:19:92:1c:85:e0:47:aa:81:72:21:dd:
01:c5:33:cd:9c:d9:b3:59:73:77:8e:2b:23:85:4d:
49:93:ad:e8:fd:18:a9:33:08:ce:24:e8:9d:7f:4a:
16:e8:8e:61:8b:3e:19:93:50:2f:38:15:5e:cd:92:
81:dc:4c:0e:c8:2a:d1:2f:d6:95:8d:7b:de:37:41:
03:77:47:3a:27:18:2e:74:05:6f:dc:be:1b:a5:be:
73:b2:23:4c:bf:ab:bf:ff:f1:1b:99:4e:75:89:1b:
59:64:eb:fb:bf:a5:2f:3d:6d:b4:e1:50:5f:28:6f:
cc:ab:56:6f:84:e8:d1:45:b1:b6:b7:35:8d:66:f0:
8b:24:0d:4a:38:b4:78:c3:49:39:a6:11:c3:d0:81:
70:51:e4:2e:7f:91:c2:24:5a:23:94:57:6a:b2:d7:
48:a7:3f:d5:df:40:31:c0:cd:d1:31:92:85:0e:16:
41:1e:3d:ce:68:c4:1f:76:60:29:06:3f:b1:dd:aa:
87:d3:2d:ba:2d:18:67:b5:d1:0d:49:62:52:80:a9:
5c:cc:ef:35:07:18:80:13:2e:ce:b7:cb:56:92:0c:
c7:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:63:1B:05:6F:58:8D:F3:26:F8:06:66:B6:A9:8F:B1:60:2F:58:21
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/xmMbBW9YjfMm-AZmtqmPsWAvWCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.4.0/22
5.178.9.0-5.178.15.255
46.23.100.0/22
62.217.128.0/19
88.151.199.0/24
109.205.208.0/24
185.81.217.0/24
188.64.8.0/22
Signature Algorithm: sha256WithRSAEncryption
dc:a9:19:cd:6f:b5:3e:59:95:1b:71:e5:19:9c:a6:56:a0:a6:
94:79:4c:90:09:07:87:21:96:8d:fe:b8:e6:7d:0a:ee:af:9c:
01:d1:78:71:44:0f:6e:35:8e:19:7d:1d:ee:80:d8:ad:2d:c1:
14:ee:fc:ca:ae:64:3d:89:c8:26:52:eb:a6:5d:78:1a:6b:5b:
87:01:13:fa:73:3c:45:9e:0f:64:60:ae:9e:90:69:49:c1:bb:
73:f7:ad:ac:15:7d:55:c4:13:ea:a8:e0:95:53:12:66:51:6b:
a5:eb:f1:c4:02:35:ad:f9:a0:58:16:99:2c:c7:cb:92:c0:8a:
a1:c2:36:57:6f:fd:b0:59:9f:13:87:df:34:7a:61:93:7b:3a:
f3:ad:4a:3a:c4:b2:dd:b0:1e:fb:42:3a:4f:39:8f:96:af:61:
0b:cb:14:e9:60:7e:ee:c7:cf:53:0d:e3:35:1c:8e:23:07:3a:
7b:ed:14:e0:07:3e:64:8b:45:39:36:10:c4:09:71:8d:c3:da:
ad:19:40:44:d0:04:94:4c:37:fe:7e:2f:55:60:ef:9a:87:a1:
75:01:9d:1b:bc:7b:f6:2a:43:6a:0c:56:2e:83:e2:e3:4d:65:
31:79:fa:52:53:c2:65:b1:31:75:d6:18:2e:1a:a7:c7:18:64:
04:8f:a8:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 02:41:23 2025 by rpki-client