Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/7v4dfWU7jbWDovASuRxXSqW9clA.roa
File: 7v4dfWU7jbWDovASuRxXSqW9clA.roa (raw, json)
Hash identifier: KQoJ9zgpLNGERv2lQ9L2gWDkn1y9Zz5Bz4HDmVebiGU=
Subject key identifier: EE:FE:1D:7D:65:3B:8D:B5:83:A2:F0:12:B9:1C:57:4A:A5:BD:72:50
Certificate issuer: /CN=ac1f721b7b7e6d049fbfe520e1ca89c1ca256813
Certificate serial: 01915A31A97ACEDA8636637A488436897A50
Authority key identifier: AC:1F:72:1B:7B:7E:6D:04:9F:BF:E5:20:E1:CA:89:C1:CA:25:68:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rB9yG3t-bQSfv-Ug4cqJwcolaBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/7v4dfWU7jbWDovASuRxXSqW9clA.roa
Signing time: Fri 16 Aug 2024 07:58:09 +0000
ROA not before: Fri 16 Aug 2024 07:58:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39251
IP address blocks: 77.76.16.0/20 maxlen: 20
85.217.252.0/22 maxlen: 24
91.92.72.0/21 maxlen: 24
91.92.80.0/20 maxlen: 24
91.92.96.0/21 maxlen: 24
91.207.190.0/23 maxlen: 23
91.207.190.0/24 maxlen: 24
91.207.191.0/24 maxlen: 24
91.223.66.0/24 maxlen: 24
91.245.192.0/24 maxlen: 24
185.163.140.0/22 maxlen: 24
185.225.84.0/22 maxlen: 24
185.229.252.0/22 maxlen: 24
193.37.238.0/24 maxlen: 24
194.169.223.0/24 maxlen: 24
194.169.230.0/24 maxlen: 24
194.169.237.0/24 maxlen: 24
194.169.242.0/24 maxlen: 24
195.238.84.0/23 maxlen: 23
195.238.84.0/24 maxlen: 24
195.238.85.0/24 maxlen: 24
212.70.140.0/24 maxlen: 24
212.70.141.0/24 maxlen: 24
213.232.88.0/22 maxlen: 24
2a0b:f800::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 10 Sep 2024 08:42:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5a:31:a9:7a:ce:da:86:36:63:7a:48:84:36:89:7a:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac1f721b7b7e6d049fbfe520e1ca89c1ca256813
Validity
Not Before: Aug 16 07:58:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eefe1d7d653b8db583a2f012b91c574aa5bd7250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2d:e0:f0:e9:ac:b8:f5:3a:66:36:35:59:56:
58:c9:20:25:4d:89:cc:c7:91:69:0a:98:0e:12:96:
2f:cd:1b:c1:38:73:27:94:18:93:35:47:4f:ff:ae:
f9:7b:1b:8a:bb:7f:ba:f5:f0:fd:ee:10:8c:3a:4e:
85:8a:aa:24:3e:04:e7:32:96:78:6c:ad:41:f5:fe:
bb:3f:02:7a:fb:76:2e:59:b4:62:6e:f9:4c:94:a7:
3e:85:b8:70:7e:90:3b:77:a9:64:bd:45:41:83:3d:
3b:c3:78:33:5d:02:d2:6f:dd:7c:8b:da:8b:0d:e8:
e6:5a:c0:4a:f9:5f:07:c4:20:cb:b9:6f:9b:e0:c2:
c5:12:31:cd:62:c8:74:49:3d:54:14:23:7e:ca:81:
d3:04:d3:5c:22:8f:fb:50:46:d4:32:c4:a7:1e:89:
c5:b1:8d:1a:86:10:64:93:76:70:96:fa:1c:69:8b:
de:af:27:47:56:17:e1:27:83:a7:f1:8e:0e:08:87:
86:7c:0d:25:1b:85:82:43:f4:ea:2e:94:12:ce:1c:
06:46:a8:6f:89:ae:74:85:5c:51:a3:25:d5:57:5a:
bc:90:01:cf:83:ab:a5:e5:42:b2:be:ac:0b:8e:27:
78:96:f5:28:f5:fa:0b:53:cb:29:95:b6:9f:6c:d6:
c0:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:FE:1D:7D:65:3B:8D:B5:83:A2:F0:12:B9:1C:57:4A:A5:BD:72:50
X509v3 Authority Key Identifier:
keyid:AC:1F:72:1B:7B:7E:6D:04:9F:BF:E5:20:E1:CA:89:C1:CA:25:68:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rB9yG3t-bQSfv-Ug4cqJwcolaBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/7v4dfWU7jbWDovASuRxXSqW9clA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/rB9yG3t-bQSfv-Ug4cqJwcolaBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.76.16.0/20
85.217.252.0/22
91.92.72.0-91.92.103.255
91.207.190.0/23
91.223.66.0/24
91.245.192.0/24
185.163.140.0/22
185.225.84.0/22
185.229.252.0/22
193.37.238.0/24
194.169.223.0/24
194.169.230.0/24
194.169.237.0/24
194.169.242.0/24
195.238.84.0/23
212.70.140.0/23
213.232.88.0/22
IPv6:
2a0b:f800::/32
Signature Algorithm: sha256WithRSAEncryption
27:10:11:35:e0:8c:31:e7:b1:58:20:ad:5e:a5:31:0f:54:8d:
e3:36:dc:e2:a5:c9:09:e9:6a:1d:29:79:42:a5:29:9c:59:64:
18:c0:e0:07:fc:3a:c4:5a:be:2a:44:b5:04:48:7d:61:d7:87:
f6:6f:40:be:2e:3a:8c:d1:48:9b:75:d4:2a:6f:cd:02:64:ed:
12:00:3f:fa:81:dc:a4:40:58:0d:44:4c:a2:98:9d:f7:fd:2f:
c4:65:a2:60:fb:a8:15:71:bc:95:0e:4d:e1:2c:74:56:b3:48:
9e:79:1c:7b:c6:9f:94:98:a9:17:b6:71:4b:51:df:cb:d3:13:
70:c9:3c:43:af:22:ee:f1:82:29:b5:47:fe:7d:e5:7e:f3:67:
eb:55:b4:2b:08:dc:bb:af:97:d5:3e:9f:bc:b2:c9:89:6d:93:
79:39:c5:4a:44:ab:8a:b3:8b:60:62:dc:5a:ff:19:cb:bb:06:
78:75:28:94:69:c2:98:30:6b:8e:11:55:f0:75:2f:fd:6f:8b:
e6:de:56:b6:f0:fb:c2:7d:d8:32:72:56:00:37:1f:1c:7a:64:
70:62:12:64:64:b0:ed:49:0f:ef:7e:7c:64:b5:0d:50:f2:95:
61:58:d2:02:09:2c:0a:ad:d1:df:a9:f9:31:12:d2:f3:01:65:
f0:09:fa:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:50:00 2025 by rpki-client