Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/e2IdE7n6Mmrfp0zl8cdVYblu-tc.roa
File: e2IdE7n6Mmrfp0zl8cdVYblu-tc.roa (raw, json)
Hash identifier: fb4myxhwCMgJUw3Sf01g+KAqxYLJAj1UohIKgUrsmPk=
Subject key identifier: 7B:62:1D:13:B9:FA:32:6A:DF:A7:4C:E5:F1:C7:55:61:B9:6E:FA:D7
Certificate issuer: /CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Certificate serial: 0191DE526B58BA6F339121BB860891B463FB
Authority key identifier: D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/e2IdE7n6Mmrfp0zl8cdVYblu-tc.roa
Signing time: Tue 10 Sep 2024 23:43:48 +0000
ROA not before: Tue 10 Sep 2024 23:43:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16589
IP address blocks: 77.223.192.0/21 maxlen: 21
77.223.200.0/23 maxlen: 24
79.139.64.0/23 maxlen: 24
83.142.200.0/21 maxlen: 24
84.247.59.0/24 maxlen: 24
94.26.110.0/23 maxlen: 24
94.101.103.0/24 maxlen: 24
176.222.48.0/22 maxlen: 24
178.216.184.0/21 maxlen: 24
198.14.16.0/20 maxlen: 24
198.145.112.0/22 maxlen: 24
205.134.244.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Sep 2024 17:16:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:de:52:6b:58:ba:6f:33:91:21:bb:86:08:91:b4:63:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Validity
Not Before: Sep 10 23:43:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b621d13b9fa326adfa74ce5f1c75561b96efad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:61:ff:76:ea:e8:b8:c2:f8:1d:d9:c1:dd:14:
9c:89:22:cd:4f:09:23:d4:3f:bf:fa:99:de:cf:66:
87:61:b3:46:c7:32:ae:42:2a:24:8c:a3:1d:bd:15:
c3:a9:04:3f:18:69:6a:56:10:bd:b1:a4:e3:dc:71:
7f:43:25:d5:c4:9c:49:f1:80:1d:a5:8a:fd:16:6d:
fa:62:8a:5c:d2:14:01:c9:3e:c3:d5:88:9d:eb:c2:
d1:d5:c3:f7:73:84:55:d1:0b:1a:07:b9:2b:64:9f:
cd:ae:ca:1c:20:60:ef:b0:3a:4d:de:b0:59:1b:85:
db:ac:50:da:86:49:43:29:e5:b5:02:56:c9:72:d2:
5f:b0:b8:ab:46:28:79:e6:5b:9f:0c:f2:67:c3:2c:
0a:16:12:3e:75:7f:5d:57:82:f5:d8:be:e2:46:0e:
e4:80:26:1b:ea:84:b6:a7:28:e6:a0:20:3b:cc:2f:
da:c2:80:63:39:31:1d:e4:d8:4d:e5:ad:2a:60:d0:
8b:2f:df:61:0a:28:73:47:ba:62:26:76:c9:17:3a:
2e:e7:4b:74:80:b4:f9:dd:18:1f:68:ac:a5:e6:04:
25:0a:21:a8:c0:66:f2:e8:1b:51:45:dd:d0:86:c2:
04:c4:b0:3f:fa:60:74:cb:dd:43:d4:e3:70:97:d9:
e4:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:62:1D:13:B9:FA:32:6A:DF:A7:4C:E5:F1:C7:55:61:B9:6E:FA:D7
X509v3 Authority Key Identifier:
keyid:D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/e2IdE7n6Mmrfp0zl8cdVYblu-tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.223.192.0-77.223.201.255
79.139.64.0/23
83.142.200.0/21
84.247.59.0/24
94.26.110.0/23
94.101.103.0/24
176.222.48.0/22
178.216.184.0/21
198.14.16.0/20
198.145.112.0/22
205.134.244.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:a7:5a:27:8a:d8:76:a0:65:9a:f0:1e:dc:52:81:6c:a2:e5:
92:a2:2c:b7:a6:44:e7:40:d6:a1:c6:3d:68:ac:b3:e7:58:22:
be:97:d4:67:ce:25:4b:dd:2e:7b:6c:8f:d3:30:c8:d3:bb:84:
84:2d:d3:9a:3e:12:0b:3e:a5:0c:3b:82:cd:45:4a:6b:5d:15:
13:09:20:c3:e5:a8:91:78:91:9f:5c:19:83:db:7e:df:c2:7f:
df:ed:3c:a0:0c:75:05:d5:97:fe:6f:30:d4:78:9c:26:90:24:
2e:39:1d:e1:02:54:24:89:fd:ff:20:55:3e:52:4b:2c:53:22:
5c:a1:48:c8:0a:f2:17:f8:68:01:1e:39:f3:65:aa:03:f9:32:
6c:07:08:6f:48:35:6f:64:88:b9:94:f7:c9:9e:e2:1a:90:82:
f2:d0:bb:70:17:a3:08:8b:dd:97:f8:d8:f2:8e:1d:5b:5b:1f:
24:f7:d5:40:06:62:5d:93:5a:37:9f:61:9d:92:66:a3:a3:10:
95:cf:88:5b:d9:2b:d6:0d:d7:ca:05:41:ea:13:64:44:47:fe:
c8:40:87:9e:e7:b9:5e:56:00:3d:d8:dc:ef:ec:12:48:fe:de:
aa:e1:e7:39:01:2e:c9:1c:cc:5e:87:81:ce:b2:08:3d:42:f4:
83:99:15:f7
-----BEGIN CERTIFICATE-----
MIIFQTCCBCmgAwIBAgISAZHeUmtYum8zkSG7hgiRtGP7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0OGEyN2Y0NGIxMDQwNGM1MmY2ZmZjNGUwOGRjODJiZjhi
NWRlZTQwHhcNMjQwOTEwMjM0MzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YjYyMWQxM2I5ZmEzMjZhZGZhNzRjZTVmMWM3NTU2MWI5NmVmYWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoGH/durouML4HdnB3RSciSLNTwkj
1D+/+pnez2aHYbNGxzKuQiokjKMdvRXDqQQ/GGlqVhC9saTj3HF/QyXVxJxJ8YAd
pYr9Fm36Yopc0hQByT7D1Yid68LR1cP3c4RV0QsaB7krZJ/NrsocIGDvsDpN3rBZ
G4XbrFDahklDKeW1AlbJctJfsLirRih55lufDPJnwywKFhI+dX9dV4L12L7iRg7k
gCYb6oS2pyjmoCA7zC/awoBjOTEd5NhN5a0qYNCLL99hCihzR7piJnbJFzou50t0
gLT53RgfaKyl5gQlCiGowGby6BtRRd3QhsIExLA/+mB0y91D1ONwl9nkFwIDAQAB
o4ICTTCCAkkwHQYDVR0OBBYEFHtiHRO5+jJq36dM5fHHVWG5bvrXMB8GA1UdIwQY
MBaAFNSKJ/RLEEBMUvb/xOCNyCv4td7kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUlvbjlFc1FRRXhTOXZfRTRJM0lLX2kxM3VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS80YmI1YTctMzQ2Yy00MTk1LTlkMGYt
NTlmNTk4NGI2NGVhLzEvZTJJZEU3bjZNbXJmcDB6bDhjZFZZYmx1LXRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS80YmI1YTctMzQ2Yy00MTk1LTlkMGYtNTlmNTk4NGI2NGVh
LzEvMUlvbjlFc1FRRXhTOXZfRTRJM0lLX2kxM3VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGMGCCsGAQUFBwEHAQH/BFQwUjBQBAIAATBKMAwDBAZN38AD
BAFN38gDBAFPi0ADBANTjsgDBABU9zsDBAFeGm4DBABeZWcDBAKw3jADBAOy2LgD
BATGDhADBALGkXADBALNhvQwDQYJKoZIhvcNAQELBQADggEBAF2nWieK2HagZZrw
HtxSgWyi5ZKiLLemROdA1qHGPWiss+dYIr6X1GfOJUvdLntsj9MwyNO7hIQt05o+
Egs+pQw7gs1FSmtdFRMJIMPlqJF4kZ9cGYPbft/Cf9/tPKAMdQXVl/5vMNR4nCaQ
JC45HeECVCSJ/f8gVT5SSyxTIlyhSMgK8hf4aAEeOfNlqgP5MmwHCG9INW9kiLmU
98me4hqQgvLQu3AXowiL3Zf42PKOHVtbHyT31UAGYl2TWjefYZ2SZqOjEJXPiFvZ
K9YN18oFQeoTZERH/shAh57nuV5WAD3Y3O/sEkj+3qrh5zkBLskczF6Hgc6yCD1C
9IOZFfc=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:00 2025 by rpki-client