Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/ed655d-5102-4932-b1db-ba2889afaadd/1/SQ8WAO7iCsxsSQEZW4YnpyYtCUc.roa
File: SQ8WAO7iCsxsSQEZW4YnpyYtCUc.roa (raw, json)
Hash identifier: 3/V3VZt3fL3Gpb2cBtK1cAaG3uK9dm+qPkvdOf93RGY=
Subject key identifier: 49:0F:16:00:EE:E2:0A:CC:6C:49:01:19:5B:86:27:A7:26:2D:09:47
Certificate issuer: /CN=fef918c5a9330dbbe6eee17cb9a1d62fbc855bde
Certificate serial: 01944AEEEB0940AAF2375EDEBD38936B2DD9
Authority key identifier: FE:F9:18:C5:A9:33:0D:BB:E6:EE:E1:7C:B9:A1:D6:2F:BC:85:5B:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_vkYxakzDbvm7uF8uaHWL7yFW94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/ed655d-5102-4932-b1db-ba2889afaadd/1/SQ8WAO7iCsxsSQEZW4YnpyYtCUc.roa
Signing time: Thu 09 Jan 2025 11:59:19 +0000
ROA not before: Thu 09 Jan 2025 11:59:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59395
IP address blocks: 5.133.16.0/21 maxlen: 21
46.31.80.0/21 maxlen: 21
46.31.168.0/21 maxlen: 21
46.231.64.0/21 maxlen: 21
82.144.224.0/19 maxlen: 19
87.238.216.0/21 maxlen: 21
89.105.0.0/19 maxlen: 19
109.235.120.0/21 maxlen: 21
185.36.248.0/22 maxlen: 22
185.45.24.0/22 maxlen: 22
185.63.80.0/22 maxlen: 22
185.65.24.0/22 maxlen: 22
185.74.232.0/21 maxlen: 21
185.74.232.0/22 maxlen: 22
185.74.236.0/22 maxlen: 22
185.159.216.0/22 maxlen: 22
185.175.112.0/22 maxlen: 22
217.119.128.0/24 maxlen: 24
217.119.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Jan 2025 12:36:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:4a:ee:eb:09:40:aa:f2:37:5e:de:bd:38:93:6b:2d:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fef918c5a9330dbbe6eee17cb9a1d62fbc855bde
Validity
Not Before: Jan 9 11:59:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=490f1600eee20acc6c4901195b8627a7262d0947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:99:b9:83:80:bb:e9:e8:2f:dc:8a:db:2a:e6:
7a:0b:14:2f:db:75:65:d4:e8:fe:1f:72:14:f3:01:
2c:57:5d:83:11:b7:f3:6e:a8:14:ae:30:08:66:c4:
46:78:3a:3a:c8:5c:b6:22:dc:87:af:b5:fa:20:58:
70:39:f6:0b:7c:01:03:ca:75:89:6c:13:98:8d:8d:
81:0a:ef:85:12:71:9a:b5:64:7c:f5:68:a4:68:04:
a9:82:88:92:92:58:5e:9d:3b:c4:41:39:7d:5c:1a:
3a:fc:c3:c8:72:42:c5:89:26:fe:78:6f:ef:2f:4d:
93:26:9c:b0:aa:d9:b8:35:6b:64:4c:98:f4:38:fb:
ac:be:e0:2c:ce:08:f4:2e:09:e5:8b:08:18:5a:f9:
07:bb:66:aa:95:4f:ec:8a:5e:0c:dd:68:9c:29:92:
4d:ac:68:c5:c5:95:1a:7a:ce:f7:4b:dd:e5:9c:0c:
ea:9b:54:eb:14:1a:78:8d:71:92:94:5c:d8:cc:c6:
6b:ca:73:ba:f8:5c:23:ad:9d:48:f0:ef:b1:f1:c6:
ef:34:b0:08:99:c3:7a:67:0c:7e:9a:5b:61:9d:bc:
a2:3e:92:8a:1b:af:20:26:c3:6d:4f:13:8c:a7:b5:
8c:3f:6f:ab:f1:f0:a1:b4:22:7c:db:7d:c4:7f:c4:
b8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:0F:16:00:EE:E2:0A:CC:6C:49:01:19:5B:86:27:A7:26:2D:09:47
X509v3 Authority Key Identifier:
keyid:FE:F9:18:C5:A9:33:0D:BB:E6:EE:E1:7C:B9:A1:D6:2F:BC:85:5B:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_vkYxakzDbvm7uF8uaHWL7yFW94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/ed655d-5102-4932-b1db-ba2889afaadd/1/SQ8WAO7iCsxsSQEZW4YnpyYtCUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/ed655d-5102-4932-b1db-ba2889afaadd/1/_vkYxakzDbvm7uF8uaHWL7yFW94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.16.0/21
46.31.80.0/21
46.31.168.0/21
46.231.64.0/21
82.144.224.0/19
87.238.216.0/21
89.105.0.0/19
109.235.120.0/21
185.36.248.0/22
185.45.24.0/22
185.63.80.0/22
185.65.24.0/22
185.74.232.0/21
185.159.216.0/22
185.175.112.0/22
217.119.128.0/24
217.119.137.0/24
Signature Algorithm: sha256WithRSAEncryption
09:5b:99:4f:87:7b:4d:ed:68:e3:eb:8e:01:ac:2b:54:44:02:
52:02:32:f7:a6:c8:80:96:be:1c:34:66:60:ec:b6:bc:86:1e:
a5:23:5c:e7:50:7f:34:44:df:8a:78:7c:a9:59:53:4f:d6:97:
f7:a4:69:e8:38:73:2d:b2:4e:f5:2e:d7:79:78:e2:5c:44:07:
79:ba:89:d8:71:d2:cd:e9:37:5b:53:35:ba:59:b2:44:fa:2a:
09:1d:96:2a:44:1a:88:65:ac:ea:5d:3e:7d:66:69:01:75:25:
b6:4c:b8:be:62:43:e2:5c:d3:06:6d:5d:c7:c1:c6:47:4b:96:
9e:8c:94:fe:6b:ac:f7:67:d2:de:5a:61:df:7e:01:50:12:34:
71:94:b5:7d:74:bc:e2:38:f9:b1:a2:68:1c:fb:61:9c:93:00:
22:ca:18:72:7e:0b:80:5b:31:0a:59:aa:88:3a:84:c2:53:f2:
f8:8b:74:4c:2e:5d:de:60:da:e9:19:05:bb:f4:4c:25:fe:44:
b4:4e:48:8f:2a:2f:6f:af:11:07:5d:8d:ee:4c:b4:c8:dc:8e:
9e:1e:1c:3f:9a:77:37:d0:58:9c:30:4c:0d:a1:8a:8f:7e:d5:
b2:93:d4:58:eb:df:29:31:ba:cf:2f:17:0e:16:61:62:2e:d7:
75:d1:8f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 10:16:20 2025 by rpki-client