Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/kgQ6AaXBjQeWYXO5hzQMIisF_u4.roa
File: kgQ6AaXBjQeWYXO5hzQMIisF_u4.roa (raw, json)
Hash identifier: Et8zKELU6ay5aii0Q3/LBIEbwtUKQEQFI0PVr1N/6UQ=
Subject key identifier: 92:04:3A:01:A5:C1:8D:07:96:61:73:B9:87:34:0C:22:2B:05:FE:EE
Certificate issuer: /CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Certificate serial: 01941F8C19A231A521CC23128AE2B7584BFA
Authority key identifier: 1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/kgQ6AaXBjQeWYXO5hzQMIisF_u4.roa
Signing time: Wed 01 Jan 2025 01:47:42 +0000
ROA not before: Wed 01 Jan 2025 01:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210421
IP address blocks: 91.193.167.0/24 maxlen: 24
94.45.129.0/24 maxlen: 24
94.45.136.0/24 maxlen: 24
94.45.139.0/24 maxlen: 24
94.45.146.0/23 maxlen: 24
94.45.148.0/23 maxlen: 24
94.45.152.0/22 maxlen: 24
94.45.156.0/23 maxlen: 24
94.45.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Jan 2025 21:52:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:19:a2:31:a5:21:cc:23:12:8a:e2:b7:58:4b:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Validity
Not Before: Jan 1 01:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=92043a01a5c18d07966173b987340c222b05feee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2d:8a:31:9f:fe:ac:94:0b:a4:d6:22:41:c8:
2c:d2:81:12:c4:f6:19:06:3e:b7:a0:ac:07:2f:90:
0f:04:e3:1b:e9:68:30:8f:70:50:09:69:f3:52:fd:
8d:e2:af:95:4b:21:1f:b1:f4:9e:41:e2:46:df:8b:
01:75:9c:7e:44:6a:2f:d1:c2:0d:e8:6f:9d:b3:20:
ca:50:ce:a2:4f:9c:39:d4:2b:88:e8:98:9c:a6:ba:
a9:af:e1:b0:3b:51:b1:dc:a5:2b:19:8f:59:83:04:
44:52:92:48:6a:af:c5:76:3a:de:db:d0:bf:77:f1:
ef:e0:0f:ef:70:f6:81:8d:f5:71:77:65:1d:d5:c1:
81:fc:2a:53:03:82:37:23:7a:8f:e2:ae:d7:c4:db:
5a:18:b9:62:8d:70:ac:cb:93:6d:00:bb:da:ff:d0:
b2:eb:3a:a9:8d:c8:b1:69:e6:56:e1:02:93:29:1d:
64:c0:a2:f5:7e:cf:ac:53:be:ee:78:10:57:9b:b4:
ba:93:3e:49:f7:cf:69:c9:f2:b0:d3:86:2a:f6:79:
53:bd:08:19:43:d7:0e:21:05:78:01:d5:80:4f:0e:
d1:1b:8e:05:fe:09:47:4c:af:46:f3:b3:36:7a:3e:
57:02:8f:17:a9:8d:a9:07:97:ad:29:05:5d:3a:37:
ec:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:04:3A:01:A5:C1:8D:07:96:61:73:B9:87:34:0C:22:2B:05:FE:EE
X509v3 Authority Key Identifier:
keyid:1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/kgQ6AaXBjQeWYXO5hzQMIisF_u4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.167.0/24
94.45.129.0/24
94.45.136.0/24
94.45.139.0/24
94.45.146.0-94.45.149.255
94.45.152.0-94.45.157.255
Signature Algorithm: sha256WithRSAEncryption
18:6e:e7:cd:d7:21:5a:9c:99:88:ab:65:79:1a:47:e8:9a:cf:
b4:b0:5e:69:80:6c:72:a6:e8:d5:04:0d:07:80:52:d8:8e:46:
e4:00:a1:d8:47:b4:38:7d:b9:e4:12:d0:24:e4:d8:ae:7a:55:
cc:eb:87:b2:0e:81:18:7e:72:89:5f:73:28:e9:55:97:5f:e6:
f9:c4:ed:ab:9a:fc:ee:85:23:70:92:70:ac:19:04:07:b6:cd:
4b:7f:b6:70:e4:37:10:ec:72:15:81:5c:b5:fa:a2:04:31:64:
b8:a8:8e:23:2b:f8:cf:68:cc:b7:0c:4d:d5:2e:7b:35:24:4f:
14:db:5d:62:03:30:11:4a:c0:5d:17:d6:ec:b2:0c:61:89:06:
d1:8f:f1:d0:2a:b2:9d:ec:8d:32:ab:c9:9e:5b:a9:8b:4a:fc:
53:45:4d:37:4a:5c:ab:17:f3:b5:a1:6f:be:04:bb:c4:12:47:
b9:d0:ce:02:7a:1c:8c:8b:5e:a2:cd:db:c4:a7:a3:8a:ea:f3:
a0:e9:9a:a1:dc:cb:c9:68:d2:38:28:1f:e9:65:b9:01:81:e5:
7d:c5:ab:2f:f2:3a:5d:46:1c:2b:e2:16:f7:75:13:36:b0:38:
4b:70:67:13:8d:c9:d1:ae:6c:a6:8e:9a:b2:a7:90:78:8e:db:
c8:ad:6d:37
-----BEGIN CERTIFICATE-----
MIIFKzCCBBOgAwIBAgISAZQfjBmiMaUhzCMSiuK3WEv6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlMTRlYjFlZWY2NmMyZDM0OWYzZjdkN2JhZmE2OGU0OWZi
ZmVjOWMwHhcNMjUwMTAxMDE0NzQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MjA0M2EwMWE1YzE4ZDA3OTY2MTczYjk4NzM0MGMyMjJiMDVmZWVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2C2KMZ/+rJQLpNYiQcgs0oESxPYZ
Bj63oKwHL5APBOMb6Wgwj3BQCWnzUv2N4q+VSyEfsfSeQeJG34sBdZx+RGov0cIN
6G+dsyDKUM6iT5w51CuI6Jicprqpr+GwO1Gx3KUrGY9ZgwREUpJIaq/Fdjre29C/
d/Hv4A/vcPaBjfVxd2Ud1cGB/CpTA4I3I3qP4q7XxNtaGLlijXCsy5NtALva/9Cy
6zqpjcixaeZW4QKTKR1kwKL1fs+sU77ueBBXm7S6kz5J989pyfKw04Yq9nlTvQgZ
Q9cOIQV4AdWATw7RG44F/glHTK9G87M2ej5XAo8XqY2pB5etKQVdOjfsswIDAQAB
o4ICNzCCAjMwHQYDVR0OBBYEFJIEOgGlwY0HlmFzuYc0DCIrBf7uMB8GA1UdIwQY
MBaAFB4U6x7vZsLTSfP317r6aOSfv+ycMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGhUckh1OW13dE5KOF9mWHV2cG81Si1fN0p3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8zMzNhYjEtYWY5Yi00MzRjLThkMTMt
OWNhOThmNDk1MGNmLzEva2dRNkFhWEJqUWVXWVhPNWh6UU1JaXNGX3U0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy8zMzNhYjEtYWY5Yi00MzRjLThkMTMtOWNhOThmNDk1MGNm
LzEvSGhUckh1OW13dE5KOF9mWHV2cG81Si1fN0p3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDA6BAIAATA0AwQAW8GnAwQA
Xi2BAwQAXi2IAwQAXi2LMAwDBAFeLZIDBAFeLZQwDAMEA14tmAMEAV4tnDANBgkq
hkiG9w0BAQsFAAOCAQEAGG7nzdchWpyZiKtleRpH6JrPtLBeaYBscqbo1QQNB4BS
2I5G5ACh2Ee0OH255BLQJOTYrnpVzOuHsg6BGH5yiV9zKOlVl1/m+cTtq5r87oUj
cJJwrBkEB7bNS3+2cOQ3EOxyFYFctfqiBDFkuKiOIyv4z2jMtwxN1S57NSRPFNtd
YgMwEUrAXRfW7LIMYYkG0Y/x0CqyneyNMqvJnlupi0r8U0VNN0pcqxfztaFvvgS7
xBJHudDOAnocjIteos3bxKejiurzoOmaodzLyWjSOCgf6WW5AYHlfcWrL/I6XUYc
K+IW93UTNrA4S3BnE43J0a5spo6asqeQeI7byK1tNw==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:02 2025 by rpki-client