Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/9a4833-6da4-4dda-b7ab-28c343ce9d5d/1/jBDgDn9D6V003H2Dl81Z_MeuNc8.roa
File: jBDgDn9D6V003H2Dl81Z_MeuNc8.roa (raw, json)
Hash identifier: ZkEy1L7KzNnx6X+v75r/mTay3h5KyHIklNxQd4UwdBI=
Subject key identifier: 8C:10:E0:0E:7F:43:E9:5D:34:DC:7D:83:97:CD:59:FC:C7:AE:35:CF
Certificate issuer: /CN=a4327c56e941171ea3beba26ebb9e23f4df5bcf3
Certificate serial: 0194B1C2E3220E034BB6B4ACC91B8E2AE547
Authority key identifier: A4:32:7C:56:E9:41:17:1E:A3:BE:BA:26:EB:B9:E2:3F:4D:F5:BC:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pDJ8VulBFx6jvrom67niP031vPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/9a4833-6da4-4dda-b7ab-28c343ce9d5d/1/jBDgDn9D6V003H2Dl81Z_MeuNc8.roa
Signing time: Wed 29 Jan 2025 11:12:06 +0000
ROA not before: Wed 29 Jan 2025 11:12:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216134
IP address blocks: 140.171.0.0/16 maxlen: 16
149.223.0.0/16 maxlen: 24
149.223.0.0/17 maxlen: 17
149.223.128.0/17 maxlen: 17
149.238.0.0/16 maxlen: 24
149.238.0.0/19 maxlen: 24
149.238.32.0/19 maxlen: 24
149.238.64.0/19 maxlen: 24
149.238.96.0/19 maxlen: 24
149.238.128.0/19 maxlen: 24
149.238.159.0/24 maxlen: 24
149.238.160.0/19 maxlen: 24
149.238.192.0/19 maxlen: 24
149.238.224.0/19 maxlen: 24
170.205.192.0/18 maxlen: 24
192.77.114.0/23 maxlen: 24
192.112.208.0/24 maxlen: 24
193.33.52.0/23 maxlen: 24
193.39.210.0/24 maxlen: 24
193.39.211.0/24 maxlen: 24
193.39.214.0/24 maxlen: 24
193.202.20.0/24 maxlen: 24
2a13:cb40::/29 maxlen: 48
Validation: Failed, certificate revoked on Thu 27 Mar 2025 15:32:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:b1:c2:e3:22:0e:03:4b:b6:b4:ac:c9:1b:8e:2a:e5:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4327c56e941171ea3beba26ebb9e23f4df5bcf3
Validity
Not Before: Jan 29 11:12:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8c10e00e7f43e95d34dc7d8397cd59fcc7ae35cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:34:3c:cc:d5:02:4b:e2:d2:44:f6:25:f8:9a:
6b:8c:dc:3e:4a:b4:11:9f:ed:ac:a9:e5:d6:1b:66:
b1:04:bf:5c:0c:4d:4e:6e:43:2a:33:b7:11:3b:c3:
12:ce:61:f0:b2:d5:a6:8f:06:b8:5f:91:e2:05:ea:
00:07:1f:b6:79:87:8f:46:fd:ea:eb:cc:69:90:f9:
4e:95:f3:95:de:4f:a9:49:ae:62:86:3a:b1:94:cc:
ac:06:a5:c8:9f:24:87:90:0c:d1:17:98:ea:e1:52:
04:bd:15:32:e1:10:97:4e:fe:fd:0b:11:90:30:98:
ca:a8:63:3a:4d:cc:8b:8c:8f:bc:ce:73:d2:18:49:
1f:c6:7e:b4:b7:a2:89:1f:65:12:14:5b:4a:67:d7:
32:c2:dd:38:be:7e:e3:b7:5f:1d:b5:12:11:81:6a:
b6:81:98:d3:17:59:ba:dc:65:e4:d6:92:23:db:cb:
a2:51:f0:fc:c6:74:d0:78:43:80:95:81:a3:a3:2d:
fa:bb:d1:94:2f:9a:d1:12:45:6e:22:f2:7a:84:06:
4d:61:c3:d0:bc:fd:55:ef:ca:02:be:73:fe:b1:d2:
23:fe:bb:41:3d:e4:63:e3:36:ee:b8:3f:bd:11:30:
40:a6:e4:78:01:bf:6f:55:3f:df:8f:81:6e:3a:41:
96:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:10:E0:0E:7F:43:E9:5D:34:DC:7D:83:97:CD:59:FC:C7:AE:35:CF
X509v3 Authority Key Identifier:
keyid:A4:32:7C:56:E9:41:17:1E:A3:BE:BA:26:EB:B9:E2:3F:4D:F5:BC:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pDJ8VulBFx6jvrom67niP031vPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/9a4833-6da4-4dda-b7ab-28c343ce9d5d/1/jBDgDn9D6V003H2Dl81Z_MeuNc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/9a4833-6da4-4dda-b7ab-28c343ce9d5d/1/pDJ8VulBFx6jvrom67niP031vPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.171.0.0/16
149.223.0.0/16
149.238.0.0/16
170.205.192.0/18
192.77.114.0/23
192.112.208.0/24
193.33.52.0/23
193.39.210.0/23
193.39.214.0/24
193.202.20.0/24
IPv6:
2a13:cb40::/29
Signature Algorithm: sha256WithRSAEncryption
4f:5b:2a:62:60:58:2c:4a:af:d4:49:d2:42:23:4a:9f:37:6b:
4d:82:dc:fb:b2:87:d5:5e:ea:6b:c7:61:fc:92:fd:e9:ad:ea:
20:ed:f5:f9:98:05:25:12:d1:d0:cc:ee:07:74:60:df:9c:e5:
40:f4:fd:4c:fb:93:19:f6:e1:8a:6b:38:c2:06:a3:c0:f5:2b:
a2:69:2d:91:dc:bc:ae:2e:07:bc:78:f6:dc:a3:7e:f1:ca:60:
bb:a5:bd:03:e4:9d:14:63:dc:ec:62:e3:7a:45:6e:e5:12:73:
99:9d:bc:9d:fb:a5:6d:2b:da:c4:d4:0b:b6:56:0c:70:49:e4:
37:71:60:80:d8:34:0c:3f:77:87:cd:3a:7c:2d:96:f8:bd:72:
4e:9b:5d:f3:80:15:fd:2e:26:2f:5c:b2:98:f7:82:8c:ff:27:
f4:a6:d0:10:a3:ae:cb:88:75:b5:b4:41:ed:7e:9f:22:9f:45:
f0:a8:3b:4a:f0:a7:1f:94:48:e8:a2:2b:28:d2:07:3d:fb:a9:
5d:bd:2d:d9:0a:d7:60:5c:ef:4d:de:0a:4d:55:5d:d5:48:86:
70:99:f0:e8:aa:91:4c:74:97:ea:b0:86:59:8c:47:ab:03:31:
4d:e5:4c:41:c5:ae:6b:5c:4e:12:4a:1a:5c:8b:47:52:0a:e9:
39:1f:19:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 08:00:08 2025 by rpki-client