Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/anj1D78ZaJ7oajxfo8Rzo4E3eD8.roa
File: anj1D78ZaJ7oajxfo8Rzo4E3eD8.roa (raw, json)
Hash identifier: swbG+jaedCeXLSwNZCsrxrg9Hpcm0YcLSucuYdHHeJI=
Subject key identifier: 6A:78:F5:0F:BF:19:68:9E:E8:6A:3C:5F:A3:C4:73:A3:81:37:78:3F
Certificate issuer: /CN=8b82433ffe94bf3536fec327543d396158202072
Certificate serial: 0193B0E81E535D130F4AD0DD4310929E596B
Authority key identifier: 8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/anj1D78ZaJ7oajxfo8Rzo4E3eD8.roa
Signing time: Tue 10 Dec 2024 14:10:22 +0000
ROA not before: Tue 10 Dec 2024 14:10:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50265
IP address blocks: 83.217.220.0/22 maxlen: 22
85.198.80.0/22 maxlen: 22
89.169.0.0/22 maxlen: 22
89.169.44.0/22 maxlen: 22
91.233.88.0/24 maxlen: 24
193.106.68.0/22 maxlen: 24
2a00:46e0::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 19 Dec 2024 12:59:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b0:e8:1e:53:5d:13:0f:4a:d0:dd:43:10:92:9e:59:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b82433ffe94bf3536fec327543d396158202072
Validity
Not Before: Dec 10 14:10:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a78f50fbf19689ee86a3c5fa3c473a38137783f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:32:b0:5b:fb:22:65:e0:ad:1d:e1:a1:f9:4b:
8f:ff:f4:72:c2:fd:60:eb:49:2f:06:01:95:5c:f2:
00:56:b7:af:31:f3:10:1a:ba:e4:33:99:20:fc:41:
39:cf:35:50:e0:69:da:14:83:12:f3:53:f1:f5:95:
de:a1:0c:96:e8:2c:18:05:e4:95:3f:c4:87:ee:a4:
6b:38:e7:8f:40:fb:17:98:75:c8:72:f4:87:76:60:
13:fa:fd:bd:25:69:d0:a8:c1:a3:51:57:9a:f2:17:
65:64:0e:2f:7b:25:77:e1:9f:19:4b:10:a6:26:a4:
78:98:49:dc:b7:07:06:7b:b9:f9:4b:34:55:39:b0:
5d:e3:0f:84:d5:79:0c:7b:ab:bc:94:cf:ee:6b:91:
7c:3e:e1:b5:5c:4d:c5:63:f5:74:07:29:83:99:a7:
b9:2a:cd:aa:41:20:04:81:99:1b:bf:11:43:4d:e7:
19:7b:26:50:16:c8:0c:c1:53:9e:09:f4:df:af:13:
05:37:07:23:8e:28:61:e8:e5:5c:24:78:b9:d6:a3:
85:92:8f:f4:8a:f8:21:e7:f0:87:60:1c:9c:fa:41:
9b:38:be:f7:bd:ff:9d:5e:6c:c4:3d:65:05:36:49:
2b:b8:4e:7f:27:94:b4:e2:58:36:85:bb:cf:03:ea:
e0:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:78:F5:0F:BF:19:68:9E:E8:6A:3C:5F:A3:C4:73:A3:81:37:78:3F
X509v3 Authority Key Identifier:
keyid:8B:82:43:3F:FE:94:BF:35:36:FE:C3:27:54:3D:39:61:58:20:20:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4JDP_6UvzU2_sMnVD05YVggIHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/anj1D78ZaJ7oajxfo8Rzo4E3eD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f5593d-689c-4dfe-8d96-2dd7890dc689/1/i4JDP_6UvzU2_sMnVD05YVggIHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.220.0/22
85.198.80.0/22
89.169.0.0/22
89.169.44.0/22
91.233.88.0/24
193.106.68.0/22
IPv6:
2a00:46e0::/32
Signature Algorithm: sha256WithRSAEncryption
d6:2b:f4:be:f4:e6:05:06:40:dd:36:4c:10:af:19:05:56:00:
41:e5:80:c6:48:f8:96:72:93:a9:a9:21:ec:fe:17:c7:ca:02:
ab:78:e2:05:38:f7:50:d3:61:c7:b8:88:0c:91:cc:02:8a:7e:
fe:13:bc:9f:dd:04:9a:cc:c8:32:6d:f7:64:18:9e:31:c4:57:
4b:b1:11:91:9d:75:c1:b1:4f:eb:8f:85:07:67:20:0b:cf:3c:
94:0b:1a:84:c7:45:38:40:98:d5:30:0c:71:05:ab:5b:0d:6b:
ee:72:ee:ea:c9:b1:81:8d:8a:50:ae:10:4b:7f:61:e6:58:72:
21:43:28:40:91:fa:37:91:3f:58:68:92:ff:41:de:5f:cf:a0:
a6:ba:32:de:df:a4:64:de:a6:ae:04:50:ab:51:d0:b9:26:c7:
6f:7f:8d:24:ba:d1:6b:15:61:85:8a:5d:51:96:15:63:4c:46:
f0:35:33:c6:bf:2c:bf:6f:2f:be:f2:b7:03:23:3a:89:ab:9a:
b1:f7:80:88:8b:78:41:4e:cf:b6:cc:dd:28:fd:99:4a:65:77:
84:93:a2:a3:6c:33:a6:bb:20:a0:5d:9f:58:41:04:b3:f6:9d:
38:af:ab:c7:d9:1e:bf:a6:1c:12:8f:19:b6:1c:0f:8e:2f:8f:
62:0f:03:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 02:33:04 2025 by rpki-client