Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/Cx8GEhbyUpQyzECMDqgEtwmrPZI.roa
File: Cx8GEhbyUpQyzECMDqgEtwmrPZI.roa (raw, json)
Hash identifier: f9qZzbFisFmSf9qnYxtmqmKRJPRsl359FiwSgpW9Ezc=
Subject key identifier: 0B:1F:06:12:16:F2:52:94:32:CC:40:8C:0E:A8:04:B7:09:AB:3D:92
Certificate issuer: /CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Certificate serial: 019054D27B3666AD8AB81020CA6574642C7F
Authority key identifier: 7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/Cx8GEhbyUpQyzECMDqgEtwmrPZI.roa
Signing time: Wed 26 Jun 2024 13:53:18 +0000
ROA not before: Wed 26 Jun 2024 13:53:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211381
IP address blocks: 5.8.248.0/24 maxlen: 24
62.233.53.0/24 maxlen: 24
77.220.212.0/24 maxlen: 24
77.220.213.0/24 maxlen: 24
109.107.157.0/24 maxlen: 24
185.93.6.0/24 maxlen: 24
185.201.252.0/24 maxlen: 24
185.229.251.0/24 maxlen: 24
185.237.165.0/24 maxlen: 24
185.241.61.0/24 maxlen: 24
185.244.218.0/24 maxlen: 24
185.244.219.0/24 maxlen: 24
185.251.25.0/24 maxlen: 24
193.3.168.0/24 maxlen: 24
193.169.105.0/24 maxlen: 24
194.15.46.0/24 maxlen: 24
194.26.232.0/24 maxlen: 24
194.62.105.0/24 maxlen: 24
212.86.114.0/24 maxlen: 24
212.86.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jul 2024 09:48:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:54:d2:7b:36:66:ad:8a:b8:10:20:ca:65:74:64:2c:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Validity
Not Before: Jun 26 13:53:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0b1f061216f2529432cc408c0ea804b709ab3d92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6b:80:c8:b1:43:da:05:ae:49:2c:8b:9c:71:
ae:cc:64:ad:29:b7:04:3c:4d:20:2c:53:c4:2c:69:
7a:8a:50:15:90:15:49:9c:71:0e:9f:4f:e1:e6:65:
76:b6:31:02:f4:b7:e7:58:22:f4:22:13:c9:82:4e:
ba:1d:8a:3e:d5:d4:b1:b1:14:00:e4:58:3f:b9:20:
7d:7e:33:bf:aa:47:88:c4:21:a1:ac:a0:f6:f5:5c:
15:1e:00:5d:1a:a3:6b:02:07:44:86:2d:f2:06:e0:
e9:95:72:59:10:88:2e:6e:9d:de:f0:5f:fd:bf:35:
b3:59:8f:c8:2c:02:85:47:61:0d:0a:8d:50:1c:6f:
8f:20:6b:66:60:0f:83:89:ca:08:4a:f5:1b:3a:ed:
c3:20:09:de:9c:53:e3:33:db:25:c0:ef:d5:28:d8:
1c:3c:bd:07:14:a6:e1:72:19:52:a5:0c:e4:ca:89:
92:f7:75:8a:04:bb:1b:02:db:b5:ff:fb:4b:fd:aa:
ef:e9:ae:c6:9b:7c:f3:e5:b7:6f:76:ff:22:5e:df:
e4:11:1a:f0:3b:88:11:4c:2e:53:ce:b6:f0:28:27:
7e:08:30:de:39:5e:a5:da:9f:1f:9b:7b:08:73:b3:
43:6e:b4:26:c1:c7:50:d6:77:1e:35:ba:4b:92:d9:
1e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:1F:06:12:16:F2:52:94:32:CC:40:8C:0E:A8:04:B7:09:AB:3D:92
X509v3 Authority Key Identifier:
keyid:7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/Cx8GEhbyUpQyzECMDqgEtwmrPZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/f8rYnfG_maNvKQzD7w8ee00CdTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.248.0/24
62.233.53.0/24
77.220.212.0/23
109.107.157.0/24
185.93.6.0/24
185.201.252.0/24
185.229.251.0/24
185.237.165.0/24
185.241.61.0/24
185.244.218.0/23
185.251.25.0/24
193.3.168.0/24
193.169.105.0/24
194.15.46.0/24
194.26.232.0/24
194.62.105.0/24
212.86.114.0/23
Signature Algorithm: sha256WithRSAEncryption
52:ab:90:5b:a2:44:ef:7c:8b:94:88:fa:8f:06:22:f8:04:0e:
31:4c:e7:3b:1a:40:b3:2b:51:fc:54:72:f1:d4:90:3b:03:d4:
16:41:fd:f7:d1:b9:75:a3:60:f6:93:ce:ad:13:d9:17:b9:cc:
f6:16:c7:a4:fc:b2:64:55:6f:4e:11:10:c1:b4:1e:df:33:fe:
ca:da:ff:15:0a:f4:1b:f4:71:95:f7:b4:6d:cd:7f:ed:fc:01:
2c:2d:45:e3:eb:a1:4e:e3:fd:08:81:72:cb:c4:33:dc:d7:20:
5a:6c:0e:22:5d:a7:b5:79:b2:99:36:98:1a:df:4b:89:12:ba:
5b:59:09:2c:f4:a3:a8:a6:85:ce:17:4b:48:2a:e9:f1:d5:25:
ea:a1:0e:3e:b3:f6:3b:1a:c8:4a:7b:e3:25:52:7f:72:f5:d7:
d8:c6:04:a9:3c:0e:d7:d4:03:ef:c0:5a:c7:75:48:a8:9c:2a:
90:90:15:af:02:8d:53:9b:89:59:91:99:8d:8c:84:e4:32:1d:
60:40:99:90:89:78:8e:33:fb:25:a7:02:8b:1a:04:41:36:8f:
1b:fc:db:c2:ab:84:fb:04:ea:92:56:b7:7a:92:7f:f5:0b:9a:
30:a5:a4:6d:fe:a7:9b:35:5b:9e:f8:96:5a:26:93:b9:3e:a7:
2b:b7:0f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:45 2025 by rpki-client