Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/U7JCEZmaeWJvdSyroOHtTUSs-Zc.roa
File: U7JCEZmaeWJvdSyroOHtTUSs-Zc.roa (raw, json)
Hash identifier: KRDsR7ss8nelIR1UBXJ6HnM+xgxeO8gMilz0/5Awuk8=
Subject key identifier: 53:B2:42:11:99:9A:79:62:6F:75:2C:AB:A0:E1:ED:4D:44:AC:F9:97
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 01909BD0DBF7B9592792820EA1FE1C5386AC
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/U7JCEZmaeWJvdSyroOHtTUSs-Zc.roa
Signing time: Wed 10 Jul 2024 08:44:34 +0000
ROA not before: Wed 10 Jul 2024 08:44:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29278
IP address blocks: 79.172.192.0/18 maxlen: 18
84.21.0.0/19 maxlen: 19
84.21.7.0/24 maxlen: 24
84.21.8.0/24 maxlen: 24
84.21.11.0/24 maxlen: 24
84.21.15.0/24 maxlen: 24
84.21.16.0/24 maxlen: 24
84.21.18.0/24 maxlen: 24
84.21.19.0/24 maxlen: 24
87.229.0.0/17 maxlen: 17
87.229.26.0/24 maxlen: 24
87.229.32.0/24 maxlen: 24
87.229.33.0/24 maxlen: 24
87.229.45.0/24 maxlen: 24
87.229.53.0/24 maxlen: 24
87.229.54.0/24 maxlen: 24
87.229.55.0/24 maxlen: 24
87.229.58.0/24 maxlen: 24
87.229.64.0/19 maxlen: 24
87.229.96.0/24 maxlen: 24
87.229.105.0/24 maxlen: 24
87.229.112.0/20 maxlen: 24
95.138.192.0/21 maxlen: 21
178.238.208.0/20 maxlen: 20
178.238.208.0/21 maxlen: 21
178.238.216.0/21 maxlen: 21
213.181.200.0/24 maxlen: 24
213.181.204.0/24 maxlen: 24
213.181.205.0/24 maxlen: 24
213.181.207.0/24 maxlen: 24
213.181.210.0/24 maxlen: 24
213.181.211.0/24 maxlen: 24
213.181.219.0/24 maxlen: 24
213.181.221.0/24 maxlen: 24
217.113.50.0/24 maxlen: 24
217.113.51.0/24 maxlen: 24
217.113.53.0/24 maxlen: 24
217.113.61.0/24 maxlen: 24
217.113.63.0/24 maxlen: 24
217.144.48.0/23 maxlen: 23
217.144.50.0/24 maxlen: 24
217.144.56.0/21 maxlen: 21
2a02:730::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 15 Aug 2024 13:37:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9b:d0:db:f7:b9:59:27:92:82:0e:a1:fe:1c:53:86:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Jul 10 08:44:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53b24211999a79626f752caba0e1ed4d44acf997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a2:bb:28:26:8f:18:1e:be:a5:ec:bc:2e:94:
54:ba:ff:4f:e4:7c:93:fc:c1:f7:c6:f2:f9:ce:0d:
36:8d:f1:2d:ad:a3:a4:8a:c9:0f:8e:69:f0:1d:9f:
e3:0b:1e:a7:e1:25:1d:d6:c1:01:81:12:32:52:a4:
6e:c2:63:7d:e9:8a:74:94:59:1f:e5:1c:2a:a2:bf:
4e:56:a5:07:45:52:66:f1:32:b1:e3:f4:f5:08:70:
ed:39:82:94:e5:a1:db:e5:19:1d:55:f0:46:4d:b0:
4b:7e:46:b8:97:0f:03:2d:2e:ad:56:be:a1:26:42:
6c:c5:98:e1:07:53:64:43:1e:c8:ef:24:bb:1c:cc:
57:3a:62:81:02:fd:26:f2:eb:b7:c4:4c:b8:02:b5:
ee:a1:66:50:d6:6a:fd:4e:7a:50:83:85:6d:44:ed:
17:7e:0d:0d:4f:6b:dc:fa:37:63:9c:ab:f4:82:38:
c2:76:de:2e:0b:24:2a:18:f8:21:e2:41:57:7d:3d:
41:b8:08:61:ad:b9:9a:ad:51:52:b9:ff:f9:e0:47:
1b:cc:aa:78:8c:92:a9:17:62:f8:da:f9:79:9f:55:
27:b3:c5:27:39:9c:8a:f5:41:25:70:9e:13:a9:eb:
f9:9b:2e:c2:79:fe:6b:ef:eb:32:53:32:f0:23:5c:
8f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B2:42:11:99:9A:79:62:6F:75:2C:AB:A0:E1:ED:4D:44:AC:F9:97
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/U7JCEZmaeWJvdSyroOHtTUSs-Zc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.192.0/18
84.21.0.0/19
87.229.0.0/17
95.138.192.0/21
178.238.208.0/20
213.181.200.0/24
213.181.204.0/23
213.181.207.0/24
213.181.210.0/23
213.181.219.0/24
213.181.221.0/24
217.113.50.0/23
217.113.53.0/24
217.113.61.0/24
217.113.63.0/24
217.144.48.0-217.144.50.255
217.144.56.0/21
IPv6:
2a02:730::/32
Signature Algorithm: sha256WithRSAEncryption
8f:21:04:51:17:36:bb:db:60:a2:0f:25:06:b9:03:b9:ae:9b:
ee:45:94:ee:95:c6:b3:e8:99:1c:29:48:7b:49:b4:25:55:11:
70:d0:4c:6e:8f:e1:2a:54:0d:64:cb:2d:a1:05:f9:23:c7:85:
03:ad:3e:1a:b1:83:8c:58:9f:82:13:c9:26:74:38:78:49:c3:
23:b7:eb:e9:f6:58:58:35:61:73:33:05:a5:db:55:03:11:b4:
14:f5:46:a5:a9:f4:59:43:85:eb:a8:d3:79:9d:51:24:3f:90:
ab:61:ef:c0:ab:d4:3c:33:ed:35:3a:fd:2c:cc:28:0c:9d:44:
61:71:11:19:6b:04:85:e8:57:e4:6e:f0:b2:e4:4e:2a:6f:01:
80:e4:4e:b5:87:38:63:94:b6:1d:55:0e:01:63:4e:7d:cb:e7:
d9:ce:89:7b:48:e0:0d:e1:95:d9:5f:c5:7c:33:3e:47:db:7c:
f9:8f:a6:eb:4b:71:8b:a1:ae:d1:62:04:ba:cb:1d:42:26:9a:
27:5d:01:4e:10:a8:27:f5:05:06:18:04:56:1f:c9:1a:ec:ef:
a2:df:c6:0f:3e:07:39:94:16:8b:71:e5:f3:25:c2:d6:d1:dc:
d3:f2:2f:e8:d5:79:f2:fb:c6:27:16:5a:34:cb:79:22:c5:51:
34:64:00:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:55:59 2025 by rpki-client