Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/kX34rTZQ6XEzz4nJ3VHKtch3Qkk.roa
File: kX34rTZQ6XEzz4nJ3VHKtch3Qkk.roa (raw, json)
Hash identifier: c0L+1kESEzCy6TFHY12vR9JsZ6Msp1aI5cZtDGiyp5A=
Subject key identifier: 91:7D:F8:AD:36:50:E9:71:33:CF:89:C9:DD:51:CA:B5:C8:77:42:49
Certificate issuer: /CN=c1098a1905bbd3381533828f6b7fd227170431ef
Certificate serial: 0192BE769B6017CCD4E54B65B29EC1628371
Authority key identifier: C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wQmKGQW70zgVM4KPa3_SJxcEMe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/kX34rTZQ6XEzz4nJ3VHKtch3Qkk.roa
Signing time: Thu 24 Oct 2024 12:18:16 +0000
ROA not before: Thu 24 Oct 2024 12:18:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57324
IP address blocks: 79.132.195.0/24 maxlen: 24
79.132.196.0/24 maxlen: 24
79.132.197.0/24 maxlen: 24
79.132.198.0/24 maxlen: 24
79.132.199.0/24 maxlen: 24
86.111.144.0/24 maxlen: 24
86.111.145.0/24 maxlen: 24
86.111.146.0/24 maxlen: 24
86.111.147.0/24 maxlen: 24
109.230.112.0/24 maxlen: 24
109.230.114.0/24 maxlen: 24
109.230.115.0/24 maxlen: 24
109.230.120.0/24 maxlen: 24
109.230.123.0/24 maxlen: 24
109.230.126.0/24 maxlen: 24
122.102.116.0/24 maxlen: 24
122.102.117.0/24 maxlen: 24
122.102.118.0/24 maxlen: 24
185.113.105.0/24 maxlen: 24
185.113.107.0/24 maxlen: 24
202.164.192.0/24 maxlen: 24
202.164.193.0/24 maxlen: 24
202.164.194.0/24 maxlen: 24
202.164.195.0/24 maxlen: 24
202.164.197.0/24 maxlen: 24
202.164.198.0/24 maxlen: 24
202.164.199.0/24 maxlen: 24
202.164.200.0/24 maxlen: 24
202.164.201.0/24 maxlen: 24
202.164.202.0/24 maxlen: 24
202.164.203.0/24 maxlen: 24
202.164.204.0/24 maxlen: 24
202.164.205.0/24 maxlen: 24
2a03:c340::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:be:76:9b:60:17:cc:d4:e5:4b:65:b2:9e:c1:62:83:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1098a1905bbd3381533828f6b7fd227170431ef
Validity
Not Before: Oct 24 12:18:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=917df8ad3650e97133cf89c9dd51cab5c8774249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:79:92:62:a0:c1:b4:6d:86:53:38:5b:39:c1:
8f:a9:7e:61:d2:ac:a7:25:be:95:1e:c6:b8:d3:cd:
66:bd:71:cd:58:d4:3a:70:3a:eb:8b:14:f7:23:95:
4f:f1:0b:b7:1a:65:c8:81:ba:68:cf:ec:a4:ef:b1:
ce:89:88:91:85:13:19:d7:1a:44:29:c2:85:de:be:
ed:49:60:17:fe:16:a4:14:d1:a3:92:12:9b:a7:e1:
9b:43:53:28:86:74:49:67:e9:c9:ee:20:d0:f6:9b:
64:95:30:c7:98:a3:ef:4a:f6:fa:a4:05:9d:da:ae:
cd:89:97:5a:c5:c4:38:c2:aa:11:a6:90:ce:18:66:
3f:f7:72:60:e8:8e:bb:03:40:89:73:a8:fd:bc:ba:
3a:1e:6c:8f:77:ca:0f:b6:8c:55:0c:8b:58:9b:c9:
33:c5:56:fc:2d:29:9b:79:4f:ff:d2:02:d9:69:1a:
01:b1:66:be:9f:b5:6b:bf:0c:7c:d3:40:ee:4b:98:
e4:86:9f:65:1f:8c:b0:d7:d9:f5:f6:f1:34:07:c7:
78:96:a3:40:fb:09:50:a1:77:4c:51:de:8a:b7:8e:
dc:1e:f1:51:6d:55:dd:db:de:46:04:c3:2e:36:3c:
f5:23:96:9c:80:8a:97:9d:9f:3b:c9:a7:83:f3:b2:
46:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:7D:F8:AD:36:50:E9:71:33:CF:89:C9:DD:51:CA:B5:C8:77:42:49
X509v3 Authority Key Identifier:
keyid:C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wQmKGQW70zgVM4KPa3_SJxcEMe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/kX34rTZQ6XEzz4nJ3VHKtch3Qkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/wQmKGQW70zgVM4KPa3_SJxcEMe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.195.0-79.132.199.255
86.111.144.0/22
109.230.112.0/24
109.230.114.0/23
109.230.120.0/24
109.230.123.0/24
109.230.126.0/24
122.102.116.0-122.102.118.255
185.113.105.0/24
185.113.107.0/24
202.164.192.0/22
202.164.197.0-202.164.205.255
IPv6:
2a03:c340::/32
Signature Algorithm: sha256WithRSAEncryption
4b:82:8e:56:b6:1d:38:0b:07:c7:e1:e3:48:9a:ff:5e:08:f0:
28:57:5e:3d:e0:9b:bc:1e:80:2a:16:5f:1e:1d:77:f9:45:67:
17:1b:aa:14:80:fa:49:87:c1:d3:32:4f:5c:8c:ec:e7:48:cb:
ec:4a:91:f0:42:53:86:28:e1:34:64:ea:b5:4b:3a:f6:2d:fe:
7a:1a:c5:cb:64:95:8b:70:7c:70:c8:9d:ec:65:2c:2b:83:b2:
c4:44:0a:dd:ab:4d:b6:2e:be:01:30:62:5a:44:19:af:f8:83:
8b:6c:68:f9:50:2a:aa:36:c3:8f:bf:ed:2f:8b:d6:f4:75:79:
fc:f0:10:3c:a7:6a:c1:46:97:a7:80:d1:a3:7f:66:15:e1:e5:
f6:5e:d2:d7:c7:91:b4:26:49:52:27:e3:8d:1f:7e:55:21:1e:
49:a0:cd:83:ea:a8:c7:36:04:26:e2:a1:87:2c:ff:d7:e1:64:
32:47:7d:8e:5c:13:6c:c0:af:b1:d3:be:98:22:a0:3b:07:c5:
35:57:a4:ac:2e:e8:95:13:d5:4a:d9:eb:93:c7:a8:40:a4:a0:
e6:cc:fe:f5:b0:c4:0a:c8:50:9c:b2:32:76:54:a8:0b:40:36:
66:26:05:fb:2e:f8:2d:e5:57:9b:6a:7f:96:08:ba:d6:ff:9e:
a9:3b:4c:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:27 2025 by rpki-client