Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/ee138f-5e63-4cc4-8e75-decb188a000d/1/8kpj4EbszE_1eFhRB_SNuHoS2AQ.roa
File: 8kpj4EbszE_1eFhRB_SNuHoS2AQ.roa (raw, json)
Hash identifier: vAvPnREavk6Qe+wXgPbU7izbgvlwUU4LHamtUEB2s6Y=
Subject key identifier: F2:4A:63:E0:46:EC:CC:4F:F5:78:58:51:07:F4:8D:B8:7A:12:D8:04
Certificate issuer: /CN=24b086f4824266384e078cf777375f21bd370b70
Certificate serial: 018FA4701F5E03E92F245E3CBF1694F90079
Authority key identifier: 24:B0:86:F4:82:42:66:38:4E:07:8C:F7:77:37:5F:21:BD:37:0B:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JLCG9IJCZjhOB4z3dzdfIb03C3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/ee138f-5e63-4cc4-8e75-decb188a000d/1/8kpj4EbszE_1eFhRB_SNuHoS2AQ.roa
Signing time: Thu 23 May 2024 07:52:42 +0000
ROA not before: Thu 23 May 2024 07:52:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62382
IP address blocks: 80.72.216.0/21 maxlen: 21
80.72.216.0/24 maxlen: 24
80.72.217.0/24 maxlen: 24
80.72.218.0/24 maxlen: 24
80.72.219.0/24 maxlen: 24
80.72.220.0/24 maxlen: 24
80.72.221.0/24 maxlen: 24
80.72.222.0/24 maxlen: 24
185.37.188.0/22 maxlen: 22
185.37.188.0/24 maxlen: 24
185.37.189.0/24 maxlen: 24
185.37.191.0/24 maxlen: 24
193.143.96.0/24 maxlen: 24
193.143.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jul 2024 04:26:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a4:70:1f:5e:03:e9:2f:24:5e:3c:bf:16:94:f9:00:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24b086f4824266384e078cf777375f21bd370b70
Validity
Not Before: May 23 07:52:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f24a63e046eccc4ff578585107f48db87a12d804
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3d:78:38:0c:96:a4:32:20:28:b9:b2:b1:23:
4a:75:fb:23:ca:ff:fb:d8:81:69:28:ca:02:72:95:
8d:4e:ac:5c:6b:f8:ab:6e:4c:16:9b:0d:d2:13:15:
51:69:7d:f4:76:23:83:77:41:52:9f:bd:35:78:7e:
7b:34:09:e6:0c:17:e0:f4:32:a8:9d:c1:96:70:13:
c3:8b:50:85:06:08:36:85:8a:4e:d0:4d:cc:e4:37:
88:c7:43:db:cc:b3:fb:63:5b:39:57:fe:2f:67:6e:
a6:5b:5b:a2:82:cb:f1:89:b5:1c:d2:83:59:78:14:
1c:1d:8e:96:e0:c1:fd:08:87:b0:6f:8b:ed:1f:af:
ae:b8:36:4b:c7:72:49:8e:74:e9:f1:ef:16:15:03:
9c:00:19:fc:d5:09:b2:5a:6c:26:e8:0d:f0:2e:74:
c8:3c:e4:43:92:cf:b5:26:1e:14:13:5e:a5:2f:cd:
37:71:62:d0:db:98:bd:30:46:4d:5c:75:1e:26:3c:
08:5e:21:7e:18:43:5a:57:a9:1b:05:07:29:37:e4:
25:67:4f:27:ee:97:85:83:b7:4d:27:4a:a7:76:60:
bf:11:bf:e5:a2:da:de:bc:22:d7:af:56:13:c6:97:
9f:08:a4:96:64:9c:02:f8:8e:c9:c4:a3:02:66:68:
95:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:4A:63:E0:46:EC:CC:4F:F5:78:58:51:07:F4:8D:B8:7A:12:D8:04
X509v3 Authority Key Identifier:
keyid:24:B0:86:F4:82:42:66:38:4E:07:8C:F7:77:37:5F:21:BD:37:0B:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JLCG9IJCZjhOB4z3dzdfIb03C3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ee138f-5e63-4cc4-8e75-decb188a000d/1/8kpj4EbszE_1eFhRB_SNuHoS2AQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ee138f-5e63-4cc4-8e75-decb188a000d/1/JLCG9IJCZjhOB4z3dzdfIb03C3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.72.216.0/21
185.37.188.0/22
193.143.96.0/23
Signature Algorithm: sha256WithRSAEncryption
23:73:4d:1c:c1:d9:52:87:ec:ca:49:e4:9a:94:a1:a8:ac:eb:
fb:05:a3:76:28:35:89:12:28:d8:44:4c:72:11:a9:27:a7:09:
ca:26:cc:40:96:1e:57:bf:94:5f:59:8a:74:ec:fd:ac:3a:6d:
ce:a2:b1:09:fc:c1:09:11:95:28:6b:c1:31:ce:1a:f3:45:06:
4b:61:04:f0:c5:33:47:12:d1:c5:89:ad:a5:92:d4:c6:72:5c:
58:4d:7a:0a:37:fb:40:b6:ad:72:ea:9f:fb:7d:2d:80:c2:28:
b0:d9:8c:14:20:f1:a2:f2:e8:ae:10:98:cc:b8:c1:3d:7d:f0:
4c:87:fd:f1:80:ad:be:10:07:9c:fe:8f:12:f2:ca:23:84:c4:
86:69:e7:98:67:36:68:84:bf:88:c4:41:00:dc:79:0c:17:31:
91:ff:8b:91:c0:bf:3a:94:50:56:89:90:73:85:ee:49:40:c4:
89:9b:ca:86:11:fd:06:7b:35:45:53:f0:e4:6d:49:98:3d:55:
a1:b4:b1:7c:e8:01:b7:be:f0:17:52:d3:20:11:16:f0:01:66:
d1:43:4d:2d:1c:93:5a:3d:05:a2:a2:41:ec:cb:71:03:58:08:
e5:6b:28:76:9c:89:b4:89:06:8d:ff:05:6b:ed:98:b3:f7:23:
13:ef:07:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:52:59 2025 by rpki-client