Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/224351-3a47-4014-b395-a63479610968/1/eLQqVT18o7q2yHXXAz2naiEz28Q.roa
File: eLQqVT18o7q2yHXXAz2naiEz28Q.roa (raw, json)
Hash identifier: crIqG5fnrZPo3guKN5uJD87b2bdbCjuL/ifVaVpC4nM=
Subject key identifier: 78:B4:2A:55:3D:7C:A3:BA:B6:C8:75:D7:03:3D:A7:6A:21:33:DB:C4
Certificate issuer: /CN=c1d369e66cdbe30d7b3aff6081f20c17a98fdc5b
Certificate serial: 0193BA66D88C0399A56D240D128BC686CA4F
Authority key identifier: C1:D3:69:E6:6C:DB:E3:0D:7B:3A:FF:60:81:F2:0C:17:A9:8F:DC:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wdNp5mzb4w17Ov9ggfIMF6mP3Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/224351-3a47-4014-b395-a63479610968/1/eLQqVT18o7q2yHXXAz2naiEz28Q.roa
Signing time: Thu 12 Dec 2024 10:25:22 +0000
ROA not before: Thu 12 Dec 2024 10:25:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211381
IP address blocks: 45.88.76.0/24 maxlen: 24
45.88.105.0/24 maxlen: 24
45.91.200.0/24 maxlen: 24
45.91.201.0/24 maxlen: 24
45.91.202.0/24 maxlen: 24
45.132.107.0/24 maxlen: 24
45.147.196.0/24 maxlen: 24
77.83.175.0/24 maxlen: 24
91.211.248.0/24 maxlen: 24
91.211.249.0/24 maxlen: 24
91.211.250.0/24 maxlen: 24
92.119.114.0/24 maxlen: 24
95.215.204.0/24 maxlen: 24
95.215.207.0/24 maxlen: 24
185.203.240.0/24 maxlen: 24
185.203.241.0/24 maxlen: 24
185.209.20.0/24 maxlen: 24
185.209.21.0/24 maxlen: 24
185.219.81.0/24 maxlen: 24
185.219.83.0/24 maxlen: 24
185.224.132.0/24 maxlen: 24
185.231.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Dec 2024 11:47:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ba:66:d8:8c:03:99:a5:6d:24:0d:12:8b:c6:86:ca:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1d369e66cdbe30d7b3aff6081f20c17a98fdc5b
Validity
Not Before: Dec 12 10:25:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78b42a553d7ca3bab6c875d7033da76a2133dbc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:16:36:60:49:94:9d:78:95:73:16:74:28:c7:
95:ab:cd:d1:2e:cf:e6:90:bf:b8:fc:ce:ad:dd:6d:
97:08:4e:7d:84:0b:21:29:a2:aa:d2:2b:37:ef:64:
df:b6:e8:3e:42:a1:c8:0a:37:d7:c7:94:14:cf:a4:
58:b1:b9:46:5a:87:49:87:c2:db:76:b9:68:29:6e:
de:87:82:30:8a:e6:df:8a:ed:c8:61:49:cf:04:f3:
79:64:13:d6:08:d7:76:01:31:e2:5c:8e:76:fa:39:
af:bb:7d:ca:50:d7:a7:11:4d:80:7f:71:2e:67:55:
7c:74:0b:8e:e3:c4:88:53:47:bb:a0:91:a0:78:b9:
c3:cc:b8:3a:ff:90:30:95:89:1d:73:b9:e9:14:2c:
6f:f6:ec:20:b2:de:78:8e:b0:dc:ce:be:34:b6:0e:
56:e1:8b:bb:1a:42:a8:74:43:38:d5:d3:a4:bc:76:
42:39:67:df:66:c9:38:f8:ca:8b:29:c2:93:18:ea:
ab:2e:94:4e:d6:34:ac:16:0f:a3:2f:2b:c1:31:74:
01:e8:b0:99:d7:2c:9e:03:1d:ab:68:a3:7b:81:82:
df:26:27:9d:aa:f8:87:ac:05:5d:01:c0:2e:5f:c7:
a4:95:3c:7b:50:90:83:65:81:e5:4d:c2:a1:84:90:
78:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:B4:2A:55:3D:7C:A3:BA:B6:C8:75:D7:03:3D:A7:6A:21:33:DB:C4
X509v3 Authority Key Identifier:
keyid:C1:D3:69:E6:6C:DB:E3:0D:7B:3A:FF:60:81:F2:0C:17:A9:8F:DC:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wdNp5mzb4w17Ov9ggfIMF6mP3Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/224351-3a47-4014-b395-a63479610968/1/eLQqVT18o7q2yHXXAz2naiEz28Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/224351-3a47-4014-b395-a63479610968/1/wdNp5mzb4w17Ov9ggfIMF6mP3Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.76.0/24
45.88.105.0/24
45.91.200.0-45.91.202.255
45.132.107.0/24
45.147.196.0/24
77.83.175.0/24
91.211.248.0-91.211.250.255
92.119.114.0/24
95.215.204.0/24
95.215.207.0/24
185.203.240.0/23
185.209.20.0/23
185.219.81.0/24
185.219.83.0/24
185.224.132.0/24
185.231.69.0/24
Signature Algorithm: sha256WithRSAEncryption
32:28:3c:9d:fe:33:99:cd:2d:de:32:be:87:99:4a:20:52:e5:
c1:bd:6f:e2:95:16:dd:3d:2f:0c:14:14:75:70:f6:e3:6f:ac:
ee:31:dc:10:f3:1d:30:9a:3d:a4:1f:a5:b4:bc:05:ad:00:b1:
05:4f:75:45:95:bc:df:02:e1:c7:aa:5a:a2:ff:7f:34:9f:69:
38:4d:f8:69:1b:13:9d:ce:22:f9:ce:5e:27:d9:de:00:31:54:
69:7e:a3:e4:5f:90:0d:26:dc:7c:be:ad:fc:3a:73:e1:08:29:
2e:f5:f6:af:7d:43:00:04:2a:91:42:c4:10:04:b3:73:6a:95:
7b:cf:01:72:1f:c8:4a:70:81:14:ef:cc:07:ef:91:83:6d:b1:
29:d8:b5:8e:bb:29:e7:aa:f2:09:29:ac:1c:99:99:86:05:a2:
52:19:fb:d4:8e:44:8f:48:ee:c8:27:98:96:38:12:6b:f0:8d:
f8:c0:f5:89:1e:1b:5a:12:e6:bc:46:ee:bf:aa:d6:3f:a0:66:
fe:bf:dc:b0:76:78:f7:23:ef:75:8c:80:72:5f:05:7e:72:cc:
69:0b:23:de:9d:f0:db:68:ad:9d:8d:f0:04:f2:85:31:da:74:
64:0f:87:31:7f:cd:dd:93:06:fd:aa:52:69:66:b7:5c:a6:96:
57:fa:26:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 10:31:28 2025 by rpki-client