Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0e36fc-ba0b-4ce6-af6a-704463ebad36/1/EIueEgL3qinZyPttf3IW7dHtNvo.roa
File: EIueEgL3qinZyPttf3IW7dHtNvo.roa (raw, json)
Hash identifier: cTpTT7V//j3DaoRgVr6/Wa6xTNZ8/X73GqHcvZnCFW4=
Subject key identifier: 10:8B:9E:12:02:F7:AA:29:D9:C8:FB:6D:7F:72:16:ED:D1:ED:36:FA
Certificate issuer: /CN=28855852a4bcd1bf1ec813f3c13b0f1f372f3971
Certificate serial: 0192DCED114EBEE167DA655314619197E545
Authority key identifier: 28:85:58:52:A4:BC:D1:BF:1E:C8:13:F3:C1:3B:0F:1F:37:2F:39:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIVYUqS80b8eyBPzwTsPHzcvOXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0e36fc-ba0b-4ce6-af6a-704463ebad36/1/EIueEgL3qinZyPttf3IW7dHtNvo.roa
Signing time: Wed 30 Oct 2024 10:16:16 +0000
ROA not before: Wed 30 Oct 2024 10:16:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202958
IP address blocks: 37.140.243.0/24 maxlen: 24
46.226.123.0/24 maxlen: 24
77.246.247.0/24 maxlen: 24
86.107.198.0/24 maxlen: 24
86.107.199.0/24 maxlen: 24
91.243.71.0/24 maxlen: 24
93.115.14.0/24 maxlen: 24
185.98.4.0/24 maxlen: 24
185.100.66.0/24 maxlen: 24
185.113.133.0/24 maxlen: 24
185.116.192.0/24 maxlen: 24
185.116.193.0/24 maxlen: 24
185.116.194.0/24 maxlen: 24
185.116.195.0/24 maxlen: 24
185.121.80.0/24 maxlen: 24
185.121.81.0/24 maxlen: 24
185.121.82.0/24 maxlen: 24
185.121.83.0/24 maxlen: 24
185.125.88.0/24 maxlen: 24
185.125.89.0/24 maxlen: 24
185.125.90.0/24 maxlen: 24
185.125.91.0/24 maxlen: 24
188.244.115.0/24 maxlen: 24
194.4.56.0/24 maxlen: 24
194.4.57.0/24 maxlen: 24
194.4.58.0/24 maxlen: 24
194.4.59.0/24 maxlen: 24
194.146.40.0/24 maxlen: 24
194.146.41.0/24 maxlen: 24
194.146.42.0/24 maxlen: 24
194.146.43.0/24 maxlen: 24
213.109.146.0/24 maxlen: 24
2a06:941::/48 maxlen: 48
2a06:941:1::/48 maxlen: 48
2a06:941:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 30 Oct 2024 10:28:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:dc:ed:11:4e:be:e1:67:da:65:53:14:61:91:97:e5:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28855852a4bcd1bf1ec813f3c13b0f1f372f3971
Validity
Not Before: Oct 30 10:16:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=108b9e1202f7aa29d9c8fb6d7f7216edd1ed36fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:af:e1:1b:f2:63:8a:be:af:eb:45:d8:0a:25:
88:7d:ed:bd:09:76:19:f2:31:c8:1a:a3:0c:72:e7:
84:ad:1f:d6:c6:68:81:fe:1c:4f:bc:8f:61:6d:dd:
e3:46:b2:17:cd:27:e5:9d:26:26:d7:d6:29:1b:20:
bc:ad:e4:9f:37:22:20:ff:ca:e2:0a:ac:58:dc:b6:
88:2b:55:4f:f8:6d:1a:70:4c:a3:cc:6f:bc:a4:dd:
5f:ba:b1:6f:1c:7f:7d:8b:62:d2:57:25:28:10:1e:
77:08:29:ea:9e:fa:c0:5d:8f:46:2c:b7:43:75:65:
96:74:55:24:d2:6e:d8:b8:7e:e8:8e:4c:1d:05:30:
cd:87:32:8c:c9:05:68:b0:e8:93:02:35:e3:bc:54:
2f:f0:7b:fa:60:b8:8a:be:bd:ca:85:0f:18:ce:f4:
99:64:c2:0f:14:3d:1a:bf:4b:91:a3:2e:35:3c:c7:
9c:38:e5:17:06:6f:49:c9:cb:82:06:9a:91:f8:d6:
8c:75:e8:cf:29:47:50:35:d4:6b:f9:ec:d3:93:97:
99:b0:36:75:a3:a3:7d:0e:c0:02:9e:51:42:70:8b:
1d:83:94:8c:7b:1a:34:ab:dc:dc:bd:cb:72:85:d9:
2d:17:b4:b5:9a:76:a2:fe:97:ca:18:6d:a0:1a:5b:
8e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:8B:9E:12:02:F7:AA:29:D9:C8:FB:6D:7F:72:16:ED:D1:ED:36:FA
X509v3 Authority Key Identifier:
keyid:28:85:58:52:A4:BC:D1:BF:1E:C8:13:F3:C1:3B:0F:1F:37:2F:39:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIVYUqS80b8eyBPzwTsPHzcvOXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0e36fc-ba0b-4ce6-af6a-704463ebad36/1/EIueEgL3qinZyPttf3IW7dHtNvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0e36fc-ba0b-4ce6-af6a-704463ebad36/1/KIVYUqS80b8eyBPzwTsPHzcvOXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.243.0/24
46.226.123.0/24
77.246.247.0/24
86.107.198.0/23
91.243.71.0/24
93.115.14.0/24
185.98.4.0/24
185.100.66.0/24
185.113.133.0/24
185.116.192.0/22
185.121.80.0/22
185.125.88.0/22
188.244.115.0/24
194.4.56.0/22
194.146.40.0/22
213.109.146.0/24
IPv6:
2a06:941::-2a06:941:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
59:cf:7a:c0:b3:7f:cc:8a:a3:8c:7b:cb:91:a9:a7:76:c7:1b:
f0:c6:d4:32:88:9d:f0:dc:9d:c5:e6:5c:ce:7d:b2:a5:a0:12:
62:49:89:56:62:8a:a6:ad:f6:c8:98:be:56:ff:69:98:f2:a5:
85:ea:62:42:cc:49:95:2a:65:89:d8:61:59:7a:e7:c2:be:8f:
c6:98:bb:49:20:86:f8:ca:9f:d9:31:aa:d7:04:56:1b:9c:7f:
5d:56:61:62:2b:d8:49:b2:fb:44:f1:e1:95:5e:cf:e2:0b:91:
66:c8:dc:07:c0:41:67:ed:fa:14:81:6e:4f:5f:9e:40:98:87:
4c:74:a4:5a:3f:ed:fe:92:e5:20:1e:0d:87:3d:10:d1:68:be:
85:e0:7f:8d:e0:dc:48:28:77:78:82:a6:a3:d9:92:4a:d0:bc:
eb:1e:81:4d:4e:20:0a:a4:12:50:de:e5:1c:20:b4:70:39:27:
21:e7:de:84:d3:87:39:fe:1a:4d:12:5c:de:45:63:d3:0b:0b:
52:c0:29:5f:54:41:03:20:cc:08:38:5b:14:f1:81:18:ae:d6:
4d:2f:49:b8:7d:67:72:8a:8f:c2:56:3a:b4:62:f1:11:43:ae:
fd:a0:64:fb:79:9a:09:f2:0e:34:cb:a7:0c:bf:dc:d2:ec:55:
00:a2:b6:6e
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgISAZLc7RFOvuFn2mVTFGGRl+VFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ODU1ODUyYTRiY2QxYmYxZWM4MTNmM2MxM2IwZjFmMzcy
ZjM5NzEwHhcNMjQxMDMwMTAxNjE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDhiOWUxMjAyZjdhYTI5ZDljOGZiNmQ3ZjcyMTZlZGQxZWQzNmZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5q/hG/Jjir6v60XYCiWIfe29CXYZ
8jHIGqMMcueErR/WxmiB/hxPvI9hbd3jRrIXzSflnSYm19YpGyC8reSfNyIg/8ri
CqxY3LaIK1VP+G0acEyjzG+8pN1furFvHH99i2LSVyUoEB53CCnqnvrAXY9GLLdD
dWWWdFUk0m7YuH7ojkwdBTDNhzKMyQVosOiTAjXjvFQv8Hv6YLiKvr3KhQ8YzvSZ
ZMIPFD0av0uRoy41PMecOOUXBm9JycuCBpqR+NaMdejPKUdQNdRr+ezTk5eZsDZ1
o6N9DsACnlFCcIsdg5SMexo0q9zcvctyhdktF7S1mnai/pfKGG2gGluOKQIDAQAB
o4ICgDCCAnwwHQYDVR0OBBYEFBCLnhIC96op2cj7bX9yFu3R7Tb6MB8GA1UdIwQY
MBaAFCiFWFKkvNG/HsgT88E7Dx83LzlxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0lWWVVxUzgwYjhleUJQendUc1BIemN2T1hFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8wZTM2ZmMtYmEwYi00Y2U2LWFmNmEt
NzA0NDYzZWJhZDM2LzEvRUl1ZUVnTDNxaW5aeVB0dGYzSVc3ZEh0TnZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC8wZTM2ZmMtYmEwYi00Y2U2LWFmNmEtNzA0NDYzZWJhZDM2
LzEvS0lWWVVxUzgwYjhleUJQendUc1BIemN2T1hFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGVBggrBgEFBQcBBwEB/wSBhTCBgjBmBAIAATBgAwQAJYzz
AwQALuJ7AwQATfb3AwQBVmvGAwQAW/NHAwQAXXMOAwQAuWIEAwQAuWRCAwQAuXGF
AwQCuXTAAwQCuXlQAwQCuX1YAwQAvPRzAwQCwgQ4AwQCwpIoAwQA1W2SMBgEAgAC
MBIwEAMFACoGCUEDBwAqBglBAAIwDQYJKoZIhvcNAQELBQADggEBAFnPesCzf8yK
o4x7y5Gpp3bHG/DG1DKInfDcncXmXM59sqWgEmJJiVZiiqat9siYvlb/aZjypYXq
YkLMSZUqZYnYYVl658K+j8aYu0kghvjKn9kxqtcEVhucf11WYWIr2Emy+0Tx4ZVe
z+ILkWbI3AfAQWft+hSBbk9fnkCYh0x0pFo/7f6S5SAeDYc9ENFovoXgf43g3Ego
d3iCpqPZkkrQvOsegU1OIAqkElDe5RwgtHA5JyHn3oTThzn+Gk0SXN5FY9MLC1LA
KV9UQQMgzAg4WxTxgRiu1k0vSbh9Z3KKj8JWOrRi8RFDrv2gZPt5mgnyDjTLpwy/
3NLsVQCitm4=
-----END CERTIFICATE-----
Generated at Tue Apr 8 07:19:00 2025 by rpki-client