Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/BxWpcFJV6mrWKnKut1nbMwvlgGs.roa
File: BxWpcFJV6mrWKnKut1nbMwvlgGs.roa (raw, json)
Hash identifier: PfvqAl4btFjoAaDNVfSdksYY7CC8ygq6bM0TY7hXh3U=
Subject key identifier: 07:15:A9:70:52:55:EA:6A:D6:2A:72:AE:B7:59:DB:33:0B:E5:80:6B
Certificate issuer: /CN=37ed49efac9795987771acdc77a0e228904277ad
Certificate serial: 01911D85AA7599B5F8710836B69C5F6E2CCE
Authority key identifier: 37:ED:49:EF:AC:97:95:98:77:71:AC:DC:77:A0:E2:28:90:42:77:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N-1J76yXlZh3cazcd6DiKJBCd60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/BxWpcFJV6mrWKnKut1nbMwvlgGs.roa
Signing time: Sun 04 Aug 2024 13:13:04 +0000
ROA not before: Sun 04 Aug 2024 13:13:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 81.22.193.0/24 maxlen: 24
89.221.203.0/24 maxlen: 24
89.221.204.0/24 maxlen: 24
89.221.206.0/24 maxlen: 24
92.61.64.0/24 maxlen: 24
92.61.65.0/24 maxlen: 24
92.61.70.0/24 maxlen: 24
92.61.71.0/24 maxlen: 24
109.172.8.0/24 maxlen: 24
109.172.9.0/24 maxlen: 24
109.172.16.0/24 maxlen: 24
109.172.17.0/24 maxlen: 24
109.172.18.0/24 maxlen: 24
109.172.19.0/24 maxlen: 24
109.172.20.0/24 maxlen: 24
109.172.21.0/24 maxlen: 24
109.172.22.0/24 maxlen: 24
109.172.23.0/24 maxlen: 24
109.172.30.0/24 maxlen: 24
109.172.31.0/24 maxlen: 24
109.172.36.0/24 maxlen: 24
109.172.37.0/24 maxlen: 24
109.172.38.0/24 maxlen: 24
109.172.39.0/24 maxlen: 24
109.172.54.0/24 maxlen: 24
109.172.55.0/24 maxlen: 24
109.172.78.0/24 maxlen: 24
109.172.79.0/24 maxlen: 24
109.172.96.0/24 maxlen: 24
109.172.97.0/24 maxlen: 24
109.172.98.0/24 maxlen: 24
109.172.99.0/24 maxlen: 24
109.172.100.0/24 maxlen: 24
109.172.101.0/24 maxlen: 24
109.172.116.0/24 maxlen: 24
109.172.117.0/24 maxlen: 24
109.172.120.0/24 maxlen: 24
109.172.121.0/24 maxlen: 24
109.172.122.0/24 maxlen: 24
109.172.123.0/24 maxlen: 24
109.172.124.0/24 maxlen: 24
109.172.125.0/24 maxlen: 24
109.172.126.0/24 maxlen: 24
109.172.127.0/24 maxlen: 24
178.130.16.0/24 maxlen: 24
178.130.17.0/24 maxlen: 24
178.130.18.0/24 maxlen: 24
178.130.19.0/24 maxlen: 24
178.130.20.0/24 maxlen: 24
178.130.21.0/24 maxlen: 24
178.130.22.0/24 maxlen: 24
178.130.23.0/24 maxlen: 24
178.130.46.0/24 maxlen: 24
178.130.47.0/24 maxlen: 24
178.130.48.0/24 maxlen: 24
178.130.49.0/24 maxlen: 24
178.130.50.0/24 maxlen: 24
178.130.51.0/24 maxlen: 24
178.130.52.0/24 maxlen: 24
178.130.53.0/24 maxlen: 24
178.130.54.0/24 maxlen: 24
178.130.55.0/24 maxlen: 24
178.130.56.0/24 maxlen: 24
178.130.57.0/24 maxlen: 24
178.130.58.0/24 maxlen: 24
178.130.59.0/24 maxlen: 24
178.130.60.0/24 maxlen: 24
178.130.61.0/24 maxlen: 24
178.130.62.0/24 maxlen: 24
178.130.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:48:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:1d:85:aa:75:99:b5:f8:71:08:36:b6:9c:5f:6e:2c:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37ed49efac9795987771acdc77a0e228904277ad
Validity
Not Before: Aug 4 13:13:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0715a9705255ea6ad62a72aeb759db330be5806b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:61:8d:15:cd:96:b1:69:65:a9:30:9d:7c:fe:
eb:99:d9:d9:3f:40:d4:c7:a2:4b:53:de:20:65:00:
1c:84:80:a6:4f:c1:30:7e:fa:dc:8a:05:06:49:5f:
06:da:8a:ae:a9:49:7b:c7:36:35:7a:e3:1e:cc:0a:
96:f4:35:a1:1d:12:c4:9b:b9:44:e7:4a:25:85:ea:
b4:dd:69:c2:4c:ec:1a:34:2b:cb:3b:2f:87:e2:4d:
fd:7a:81:ba:f6:92:80:35:55:10:2d:32:78:34:c1:
47:5b:68:24:17:90:b5:a2:48:8b:2c:6d:4c:a8:c0:
57:3d:01:a3:be:2c:44:75:bf:94:dd:cf:38:9c:a4:
7b:38:08:34:39:fb:5f:11:74:b5:f9:22:95:04:2a:
0e:e0:7e:e2:5a:c4:f1:f6:b2:a2:0b:e4:43:e4:2f:
76:13:1d:ad:26:ca:a4:1e:d8:e1:01:76:70:fe:aa:
c8:2c:f9:34:d9:78:2b:9f:0b:97:25:af:e1:4c:78:
a7:6b:41:d6:cf:fe:b9:a2:94:e6:d4:b6:2b:7a:70:
b2:ed:49:c6:5d:2b:61:f7:cd:c9:42:f0:9d:18:4c:
1a:f8:59:bc:ef:31:ad:d7:3e:fa:69:cd:36:23:e5:
84:5a:25:cd:22:08:a7:6c:88:d3:71:ec:00:94:3c:
81:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:15:A9:70:52:55:EA:6A:D6:2A:72:AE:B7:59:DB:33:0B:E5:80:6B
X509v3 Authority Key Identifier:
keyid:37:ED:49:EF:AC:97:95:98:77:71:AC:DC:77:A0:E2:28:90:42:77:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N-1J76yXlZh3cazcd6DiKJBCd60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/BxWpcFJV6mrWKnKut1nbMwvlgGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/N-1J76yXlZh3cazcd6DiKJBCd60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.193.0/24
89.221.203.0-89.221.204.255
89.221.206.0/24
92.61.64.0/23
92.61.70.0/23
109.172.8.0/23
109.172.16.0/21
109.172.30.0/23
109.172.36.0/22
109.172.54.0/23
109.172.78.0/23
109.172.96.0-109.172.101.255
109.172.116.0/23
109.172.120.0/21
178.130.16.0/21
178.130.46.0-178.130.63.255
Signature Algorithm: sha256WithRSAEncryption
2f:6a:9b:53:85:5e:4f:82:c0:2e:5e:f7:b9:d4:89:92:0c:4d:
1d:26:b1:17:ba:92:53:b3:a7:b7:1f:02:fd:50:53:01:b6:6a:
ba:42:ac:da:47:d2:42:08:30:a6:8f:21:ec:1a:a6:e8:1b:26:
57:4c:f6:06:0a:d1:bb:e3:da:07:c9:87:3f:37:2d:0d:1c:99:
d9:50:6f:7c:85:a3:ec:ea:6a:2d:4f:54:25:9f:a0:a4:16:63:
c0:c4:8a:a3:2e:de:17:f6:89:42:c8:e9:32:8f:06:db:ae:ed:
94:38:b7:58:2e:80:c8:e8:99:15:fc:72:e3:4e:6c:5b:7c:96:
21:d6:ce:af:c8:49:af:9b:0b:58:86:06:41:5f:3c:79:c4:63:
b7:3a:11:81:48:f7:f6:96:1a:9a:fc:11:62:aa:6b:b8:70:a2:
e1:49:14:c2:75:16:ab:13:a7:05:21:ad:9c:b9:29:54:6c:78:
b7:a7:0f:eb:31:6c:aa:6a:6a:d0:e9:23:3c:bf:4b:cf:82:78:
ac:79:03:45:9f:c4:1e:19:12:0a:10:e1:15:5a:bf:7c:85:f0:
ce:39:e0:4d:91:0d:13:e9:3b:3a:a6:2a:0a:fc:4b:a9:4c:cb:
08:0e:8c:78:92:d4:cd:29:a9:8f:74:cd:b2:13:45:58:81:61:
e8:69:ac:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:55 2025 by rpki-client