Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/jbttl4gxLeFjAWC0V1qWHMwuxzo.roa
File: jbttl4gxLeFjAWC0V1qWHMwuxzo.roa (raw, json)
Hash identifier: jgqL057MsGWK6xiSPgcsotxKk7urjfchO0v4ZNDmyBI=
Subject key identifier: 8D:BB:6D:97:88:31:2D:E1:63:01:60:B4:57:5A:96:1C:CC:2E:C7:3A
Certificate issuer: /CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Certificate serial: 018CC2DAB628C9787025AC4A639A0858A3A8
Authority key identifier: 66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/jbttl4gxLeFjAWC0V1qWHMwuxzo.roa
Signing time: Mon 01 Jan 2024 02:29:22 +0000
ROA not before: Mon 01 Jan 2024 02:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34170
IP address blocks: 91.135.240.0/24 maxlen: 24
91.135.241.0/24 maxlen: 24
91.135.244.0/24 maxlen: 24
91.135.242.0/24 maxlen: 24
91.135.243.0/24 maxlen: 24
91.135.252.0/24 maxlen: 24
91.135.253.0/24 maxlen: 24
158.181.37.0/24 maxlen: 24
158.181.38.0/24 maxlen: 24
158.181.34.0/24 maxlen: 24
158.181.39.0/24 maxlen: 24
158.181.44.0/23 maxlen: 23
158.181.46.0/23 maxlen: 23
185.105.198.0/24 maxlen: 24
185.105.199.0/24 maxlen: 24
185.105.196.0/24 maxlen: 24
185.105.197.0/24 maxlen: 24
80.69.48.0/24 maxlen: 24
80.69.50.0/24 maxlen: 24
80.69.51.0/24 maxlen: 24
80.69.49.0/24 maxlen: 24
80.69.57.0/24 maxlen: 24
80.69.56.0/24 maxlen: 24
80.69.53.0/24 maxlen: 24
80.69.60.0/24 maxlen: 24
92.39.92.0/24 maxlen: 24
92.39.93.0/24 maxlen: 24
92.39.94.0/24 maxlen: 24
212.47.152.0/24 maxlen: 24
212.47.154.0/24 maxlen: 24
212.47.157.0/24 maxlen: 24
212.47.158.0/24 maxlen: 24
92.39.91.0/24 maxlen: 24
92.39.90.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 May 2024 14:55:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:b6:28:c9:78:70:25:ac:4a:63:9a:08:58:a3:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Validity
Not Before: Jan 1 02:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8dbb6d9788312de1630160b4575a961ccc2ec73a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:50:dd:b5:b0:49:d7:77:9d:b6:f3:7b:b5:e2:
75:ad:27:52:33:7b:06:c3:9d:0a:f0:bb:38:f8:47:
5e:76:f4:53:9b:62:ba:77:33:60:01:86:bc:d2:33:
c2:f0:ff:07:c6:49:65:86:e5:af:e9:86:d2:75:1d:
62:6e:3f:94:44:6f:8c:f3:30:33:29:dc:3c:9c:7d:
8d:27:37:e6:f1:4f:9f:0b:5d:06:92:a5:d3:5f:87:
74:8c:09:d4:db:06:90:9f:6e:a0:fc:f8:9c:6c:e1:
92:1c:ec:ce:ac:07:fb:05:7a:37:36:43:75:75:fd:
bd:96:ec:1d:f1:14:84:fa:fb:2d:9b:20:09:e1:fa:
b0:c3:6e:62:e0:7b:fd:ea:66:91:00:76:1e:9e:e0:
b5:fd:76:78:20:45:ca:7c:f2:3e:d5:39:74:48:0b:
df:58:de:29:90:d5:06:ea:4f:27:29:d0:8e:7c:16:
85:51:1f:61:82:c1:53:49:c3:20:e8:35:72:3c:59:
e1:a4:62:ae:47:4d:eb:1d:78:6a:8a:a6:87:00:1d:
4c:fc:7d:32:fa:18:17:e7:4c:cf:25:78:d9:b6:5e:
58:f7:14:ef:17:87:c2:7e:0f:7b:ee:6c:89:eb:b6:
fb:9b:35:2d:58:de:bb:1d:ab:31:19:3e:a5:e3:0a:
10:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:BB:6D:97:88:31:2D:E1:63:01:60:B4:57:5A:96:1C:CC:2E:C7:3A
X509v3 Authority Key Identifier:
keyid:66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/jbttl4gxLeFjAWC0V1qWHMwuxzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.69.48.0/22
80.69.53.0/24
80.69.56.0/23
80.69.60.0/24
91.135.240.0-91.135.244.255
91.135.252.0/23
92.39.90.0-92.39.94.255
158.181.34.0/24
158.181.37.0-158.181.39.255
158.181.44.0/22
185.105.196.0/22
212.47.152.0/24
212.47.154.0/24
212.47.157.0-212.47.158.255
Signature Algorithm: sha256WithRSAEncryption
3f:d5:c3:ec:e2:be:02:50:d6:c8:91:cf:64:2e:b4:6a:ae:85:
5b:13:90:cd:81:44:f9:6a:1e:31:0f:87:02:93:22:9e:22:a9:
46:c4:3c:81:0f:14:f2:d9:89:c1:ad:f1:8a:0d:95:8f:96:6a:
8d:2a:4f:ce:2c:cc:8d:e7:d2:3c:e2:c9:7c:6b:cc:88:78:5c:
49:ef:65:1a:9b:39:81:92:fa:5b:e7:e8:b8:dd:9a:5f:c6:00:
3c:52:74:d7:8e:d0:44:e2:a3:2e:f5:7a:a6:0f:d4:67:30:cf:
b8:46:17:8f:2d:5e:56:30:ab:55:a7:a9:62:f9:2b:c9:ac:e6:
c1:dd:07:78:86:21:3a:1b:03:0c:9a:94:0f:1e:61:74:70:8c:
b8:c1:35:5d:ac:c5:85:58:fc:5e:51:bf:25:f1:2d:d6:c9:4b:
70:66:a2:b7:f8:ae:ac:e9:67:30:88:45:a1:0d:8d:3a:a1:40:
65:3b:20:54:f8:7c:0b:2a:5d:6b:ee:0d:27:51:25:dd:32:7f:
0f:99:5e:14:38:b2:68:6b:e9:e8:3d:6b:6c:02:d9:94:9e:44:
68:6e:30:c6:76:8c:5c:c8:2e:16:9f:67:e6:bf:38:42:1d:7b:
75:78:12:26:d9:03:8c:65:a5:07:44:f3:8c:68:70:cb:48:39:
47:d4:95:78
-----BEGIN CERTIFICATE-----
MIIFbDCCBFSgAwIBAgISAYzC2rYoyXhwJaxKY5oIWKOoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2NjAzNGNhNmExNmJiZDAxNDRhYmRmNWNmMjQ1OGY5Njhi
MTU4OWMwHhcNMjQwMTAxMDIyOTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZGJiNmQ5Nzg4MzEyZGUxNjMwMTYwYjQ1NzVhOTYxY2NjMmVjNzNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1FDdtbBJ13edtvN7teJ1rSdSM3sG
w50K8Ls4+EdedvRTm2K6dzNgAYa80jPC8P8HxkllhuWv6YbSdR1ibj+URG+M8zAz
Kdw8nH2NJzfm8U+fC10GkqXTX4d0jAnU2waQn26g/PicbOGSHOzOrAf7BXo3NkN1
df29luwd8RSE+vstmyAJ4fqww25i4Hv96maRAHYenuC1/XZ4IEXKfPI+1Tl0SAvf
WN4pkNUG6k8nKdCOfBaFUR9hgsFTScMg6DVyPFnhpGKuR03rHXhqiqaHAB1M/H0y
+hgX50zPJXjZtl5Y9xTvF4fCfg977myJ67b7mzUtWN67HasxGT6l4woQ8QIDAQAB
o4ICeDCCAnQwHQYDVR0OBBYEFI27bZeIMS3hYwFgtFdalhzMLsc6MB8GA1UdIwQY
MBaAFGZgNMpqFrvQFEq99c8kWPlosVicMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWm1BMHltb1d1OUFVU3IzMXp5UlktV2l4V0p3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9mNGI3MzMtMjlhZC00ZDU2LWI5ZDIt
NWQ0OGJjZDdjMWRjLzEvamJ0dGw0Z3hMZUZqQVdDMFYxcVdITXd1eHpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9mNGI3MzMtMjlhZC00ZDU2LWI5ZDItNWQ0OGJjZDdjMWRj
LzEvWm1BMHltb1d1OUFVU3IzMXp5UlktV2l4V0p3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGNBggrBgEFBQcBBwEB/wR+MHwwegQCAAEwdAMEAlBFMAME
AFBFNQMEAVBFOAMEAFBFPDAMAwQEW4fwAwQAW4f0AwQBW4f8MAwDBAFcJ1oDBABc
J14DBACetSIwDAMEAJ61JQMEA561IAMEAp61LAMEArlpxAMEANQvmAMEANQvmjAM
AwQA1C+dAwQA1C+eMA0GCSqGSIb3DQEBCwUAA4IBAQA/1cPs4r4CUNbIkc9kLrRq
roVbE5DNgUT5ah4xD4cCkyKeIqlGxDyBDxTy2YnBrfGKDZWPlmqNKk/OLMyN59I8
4sl8a8yIeFxJ72UamzmBkvpb5+i43ZpfxgA8UnTXjtBE4qMu9XqmD9RnMM+4RheP
LV5WMKtVp6li+SvJrObB3Qd4hiE6GwMMmpQPHmF0cIy4wTVdrMWFWPxeUb8l8S3W
yUtwZqK3+K6s6WcwiEWhDY06oUBlOyBU+HwLKl1r7g0nUSXdMn8PmV4UOLJoa+no
PWtsAtmUnkRobjDGdoxcyC4Wn2fmvzhCHXt1eBIm2QOMZaUHRPOMaHDLSDlH1JV4
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:41:43 2025 by rpki-client