Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/c9f33b-2f1b-4a11-a21d-9a6bd011f8f6/1/fGJ0OYUvmvRaUB0AON_ZKon4MV0.roa
File: fGJ0OYUvmvRaUB0AON_ZKon4MV0.roa (raw, json)
Hash identifier: PXkueH92/c8Syr0Y66Yerbkyj8YQB6ywTemGfWu1F8E=
Subject key identifier: 7C:62:74:39:85:2F:9A:F4:5A:50:1D:00:38:DF:D9:2A:89:F8:31:5D
Certificate issuer: /CN=aef1eefaa757d38eb104fa4cba4d962b72e52b52
Certificate serial: 01939B81E92E1F39D0F9E3FBF83652DB32B7
Authority key identifier: AE:F1:EE:FA:A7:57:D3:8E:B1:04:FA:4C:BA:4D:96:2B:72:E5:2B:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rvHu-qdX046xBPpMuk2WK3LlK1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/c9f33b-2f1b-4a11-a21d-9a6bd011f8f6/1/fGJ0OYUvmvRaUB0AON_ZKon4MV0.roa
Signing time: Fri 06 Dec 2024 10:26:42 +0000
ROA not before: Fri 06 Dec 2024 10:26:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29222
IP address blocks: 37.156.40.0/21 maxlen: 24
45.157.188.0/22 maxlen: 24
83.166.128.0/19 maxlen: 24
84.16.64.0/19 maxlen: 24
84.234.16.0/20 maxlen: 24
89.47.48.0/22 maxlen: 24
91.214.188.0/22 maxlen: 24
93.88.240.0/20 maxlen: 24
128.65.192.0/21 maxlen: 24
185.74.68.0/22 maxlen: 24
185.125.24.0/22 maxlen: 24
185.143.100.0/22 maxlen: 24
185.172.100.0/22 maxlen: 24
185.176.224.0/22 maxlen: 24
185.177.60.0/22 maxlen: 24
185.181.160.0/22 maxlen: 24
188.213.128.0/22 maxlen: 24
193.108.52.0/22 maxlen: 24
193.111.233.0/24 maxlen: 24
193.128.7.0/24 maxlen: 24
193.134.93.0/24 maxlen: 24
193.134.250.0/24 maxlen: 24
195.15.192.0/18 maxlen: 24
2001:1600::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:9b:81:e9:2e:1f:39:d0:f9:e3:fb:f8:36:52:db:32:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aef1eefaa757d38eb104fa4cba4d962b72e52b52
Validity
Not Before: Dec 6 10:26:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c627439852f9af45a501d0038dfd92a89f8315d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c0:68:d5:76:a6:85:99:8f:2a:00:c4:fa:21:
ac:ed:27:af:cd:ed:f4:78:13:1b:1d:fa:74:0f:9b:
d7:f3:12:ba:25:1e:10:3b:e5:07:9b:ac:11:7f:af:
1b:b5:b3:14:56:ed:58:6b:f6:62:11:d2:a4:b4:25:
86:18:73:2b:b3:2b:a9:f6:31:23:13:d2:81:cd:86:
d5:f2:65:3e:b3:86:83:f5:ae:f5:cc:4e:13:12:8d:
af:78:c5:78:0e:41:37:6e:89:6b:a5:dd:51:f5:bc:
70:dc:24:69:db:4f:fe:2e:d4:ad:d2:76:94:d7:5a:
ce:2e:9d:77:ab:8d:3d:a6:dd:79:9b:39:c3:78:7b:
73:24:8a:6f:eb:16:41:d5:2b:2b:47:f0:30:a5:a2:
50:19:30:c4:28:1d:79:5d:0b:d6:23:f0:35:f5:67:
23:03:a0:44:6b:d5:5a:8e:a4:46:85:b6:c1:e2:3e:
ed:2a:a0:49:c2:d3:a7:81:a8:3e:b1:96:e8:53:d2:
30:18:46:ab:c3:91:81:0e:17:77:80:e3:f8:77:3f:
19:d1:c7:eb:a3:14:0d:ad:2c:d5:e9:a6:19:db:42:
f4:8f:ba:f8:dc:ed:14:ba:52:41:6f:74:fd:ff:90:
3d:e3:70:f4:c5:81:c0:30:81:98:06:66:e3:4a:91:
95:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:62:74:39:85:2F:9A:F4:5A:50:1D:00:38:DF:D9:2A:89:F8:31:5D
X509v3 Authority Key Identifier:
keyid:AE:F1:EE:FA:A7:57:D3:8E:B1:04:FA:4C:BA:4D:96:2B:72:E5:2B:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rvHu-qdX046xBPpMuk2WK3LlK1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c9f33b-2f1b-4a11-a21d-9a6bd011f8f6/1/fGJ0OYUvmvRaUB0AON_ZKon4MV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c9f33b-2f1b-4a11-a21d-9a6bd011f8f6/1/rvHu-qdX046xBPpMuk2WK3LlK1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.40.0/21
45.157.188.0/22
83.166.128.0/19
84.16.64.0/19
84.234.16.0/20
89.47.48.0/22
91.214.188.0/22
93.88.240.0/20
128.65.192.0/21
185.74.68.0/22
185.125.24.0/22
185.143.100.0/22
185.172.100.0/22
185.176.224.0/22
185.177.60.0/22
185.181.160.0/22
188.213.128.0/22
193.108.52.0/22
193.111.233.0/24
193.128.7.0/24
193.134.93.0/24
193.134.250.0/24
195.15.192.0/18
IPv6:
2001:1600::/29
Signature Algorithm: sha256WithRSAEncryption
84:77:d4:92:0a:f3:d2:4b:51:d2:f8:37:c4:e2:9d:3b:37:05:
bf:51:06:01:8b:4b:c1:7d:82:28:fa:e6:cf:a6:39:13:6f:28:
e1:61:25:ec:3d:69:3d:34:27:6a:a7:ba:1d:0d:bd:47:cd:70:
d6:e6:fa:4d:3e:4c:fa:00:82:9c:32:3d:7b:c3:ba:59:d5:0c:
b4:69:a9:0e:6c:41:18:1a:92:11:c2:07:d6:a0:29:91:71:8d:
5f:2c:6f:3f:c6:65:4b:a6:58:cb:41:68:df:91:9f:3c:f2:76:
0b:92:41:35:32:4a:c1:70:f8:4f:6e:6b:44:37:e8:7e:39:4e:
44:91:71:eb:49:95:e7:73:4b:63:e0:8a:9c:3d:6c:c8:7d:3c:
e0:ee:aa:8c:52:76:c9:06:13:a9:70:b2:2a:3b:23:a9:f7:25:
b9:16:92:41:9a:61:fc:14:1e:96:d0:9d:6f:eb:ff:22:bd:e6:
a6:72:e3:e2:49:c9:a8:de:3c:85:70:10:ac:19:91:aa:9b:27:
d1:98:dd:6b:0d:a9:8c:43:6c:24:4e:b7:47:8c:33:d8:7d:0b:
29:9e:88:4b:ef:95:1c:9f:98:ef:5c:50:37:4d:cf:c5:5e:f0:
3b:82:67:37:63:4b:60:23:e6:3e:a2:53:16:3e:a2:08:d8:bb:
e5:a6:c0:84
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgISAZObgekuHznQ+eP7+DZS2zK3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlZjFlZWZhYTc1N2QzOGViMTA0ZmE0Y2JhNGQ5NjJiNzJl
NTJiNTIwHhcNMjQxMjA2MTAyNjQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YzYyNzQzOTg1MmY5YWY0NWE1MDFkMDAzOGRmZDkyYTg5ZjgzMTVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcBo1XamhZmPKgDE+iGs7Sevze30
eBMbHfp0D5vX8xK6JR4QO+UHm6wRf68btbMUVu1Ya/ZiEdKktCWGGHMrsyup9jEj
E9KBzYbV8mU+s4aD9a71zE4TEo2veMV4DkE3bolrpd1R9bxw3CRp20/+LtSt0naU
11rOLp13q409pt15mznDeHtzJIpv6xZB1SsrR/AwpaJQGTDEKB15XQvWI/A19Wcj
A6BEa9VajqRGhbbB4j7tKqBJwtOngag+sZboU9IwGEarw5GBDhd3gOP4dz8Z0cfr
oxQNrSzV6aYZ20L0j7r43O0UulJBb3T9/5A943D0xYHAMIGYBmbjSpGVEwIDAQAB
o4ICoTCCAp0wHQYDVR0OBBYEFHxidDmFL5r0WlAdADjf2SqJ+DFdMB8GA1UdIwQY
MBaAFK7x7vqnV9OOsQT6TLpNlity5StSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnZIdS1xZFgwNDZ4QlBwTXVrMldLM0xsSzFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9jOWYzM2ItMmYxYi00YTExLWEyMWQt
OWE2YmQwMTFmOGY2LzEvZkdKME9ZVXZtdlJhVUIwQU9OX1pLb240TVYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny9jOWYzM2ItMmYxYi00YTExLWEyMWQtOWE2YmQwMTFmOGY2
LzEvcnZIdS1xZFgwNDZ4QlBwTXVrMldLM0xsSzFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG2BggrBgEFBQcBBwEB/wSBpjCBozCBkQQCAAEwgYoDBAMl
nCgDBAItnbwDBAVTpoADBAVUEEADBARU6hADBAJZLzADBAJb1rwDBARdWPADBAOA
QcADBAK5SkQDBAK5fRgDBAK5j2QDBAK5rGQDBAK5sOADBAK5sTwDBAK5taADBAK8
1YADBALBbDQDBADBb+kDBADBgAcDBADBhl0DBADBhvoDBAbDD8AwDQQCAAIwBwMF
AyABFgAwDQYJKoZIhvcNAQELBQADggEBAIR31JIK89JLUdL4N8TinTs3Bb9RBgGL
S8F9gij65s+mORNvKOFhJew9aT00J2qnuh0NvUfNcNbm+k0+TPoAgpwyPXvDulnV
DLRpqQ5sQRgakhHCB9agKZFxjV8sbz/GZUumWMtBaN+RnzzydguSQTUySsFw+E9u
a0Q36H45TkSRcetJledzS2Pgipw9bMh9PODuqoxSdskGE6lwsio7I6n3JbkWkkGa
YfwUHpbQnW/r/yK95qZy4+JJyajePIVwEKwZkaqbJ9GY3WsNqYxDbCROt0eMM9h9
CymeiEvvlRyfmO9cUDdNz8Ve8DuCZzdjS2Aj5j6iUxY+ogjYu+WmwIQ=
-----END CERTIFICATE-----
Generated at Tue Apr 8 05:00:32 2025 by rpki-client