Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/EjBIs96A6754Xu0rzr43vlExWxk.roa
File: EjBIs96A6754Xu0rzr43vlExWxk.roa (raw, json)
Hash identifier: 5T04y9rmZE13zkuIvngQd49JMXOBKG61azQHp4Cp1ng=
Subject key identifier: 12:30:48:B3:DE:80:EB:BE:78:5E:ED:2B:CE:BE:37:BE:51:31:5B:19
Certificate issuer: /CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Certificate serial: 0194D6876B92FBFA5AFAD312D8809845B20A
Authority key identifier: 24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/EjBIs96A6754Xu0rzr43vlExWxk.roa
Signing time: Wed 05 Feb 2025 14:33:06 +0000
ROA not before: Wed 05 Feb 2025 14:33:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9141
IP address blocks: 31.178.0.0/17 maxlen: 17
31.178.128.0/17 maxlen: 17
31.179.0.0/17 maxlen: 17
83.175.176.0/20 maxlen: 20
85.222.0.0/19 maxlen: 19
85.222.32.0/19 maxlen: 19
85.222.52.0/22 maxlen: 22
85.222.64.0/19 maxlen: 19
85.222.96.0/19 maxlen: 19
89.68.0.0/14 maxlen: 14
89.70.108.0/22 maxlen: 22
89.72.228.0/22 maxlen: 22
89.77.216.0/22 maxlen: 22
195.34.210.0/23 maxlen: 23
217.119.64.0/20 maxlen: 20
2a02:a300::/29 maxlen: 29
2a02:a308::/29 maxlen: 29
2a02:a315:e500::/40 maxlen: 40
2a02:a316:e100::/40 maxlen: 40
2a02:a319:6000::/40 maxlen: 40
2a02:a31b:c400::/40 maxlen: 40
Validation: Failed, certificate revoked on Thu 06 Feb 2025 08:29:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:d6:87:6b:92:fb:fa:5a:fa:d3:12:d8:80:98:45:b2:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Validity
Not Before: Feb 5 14:33:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=123048b3de80ebbe785eed2bcebe37be51315b19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:3d:73:2c:0c:98:05:75:da:1a:ff:0b:62:d4:
2e:36:e2:25:b6:b1:42:ce:6f:22:d4:48:0f:47:7a:
f2:77:f6:31:fc:55:6b:c9:cc:01:5e:d0:a3:ba:7c:
a8:8a:af:f3:5d:d3:f4:72:96:5e:48:ca:d4:24:7a:
41:3e:15:7d:54:37:84:7d:13:dd:5b:7e:23:5d:63:
3d:5b:7f:9f:5b:35:24:7c:9b:09:6a:8f:3e:6b:05:
b1:69:db:8f:cc:70:94:34:65:a3:76:ed:f2:1f:37:
7f:d6:cd:ea:df:5a:64:43:be:72:25:86:e6:ca:a5:
eb:28:32:77:81:39:5e:dc:a3:57:c9:45:f2:2c:bf:
4e:5f:f0:df:4d:47:2e:e9:89:f6:be:a6:cf:c1:d5:
71:69:cf:75:20:28:61:20:6b:cb:31:bb:79:9b:ab:
77:3f:bd:b0:cc:f1:1e:84:c2:01:2e:90:02:7f:be:
c5:97:35:08:eb:a3:26:6d:ce:9e:80:8d:0b:f7:ed:
da:be:83:f6:f7:44:1d:b3:12:7e:00:ac:48:67:39:
fb:79:b1:a2:8e:c4:53:f2:d9:c9:fe:d4:d1:00:ee:
08:c4:8d:c6:0f:2f:62:7e:2a:c5:00:c8:12:cf:c1:
82:77:84:ce:18:58:e2:44:8d:85:4c:c2:6b:c3:e2:
bf:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:30:48:B3:DE:80:EB:BE:78:5E:ED:2B:CE:BE:37:BE:51:31:5B:19
X509v3 Authority Key Identifier:
keyid:24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/EjBIs96A6754Xu0rzr43vlExWxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/JBR8iz83hQ6fkHSZOEXE4Gn47-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.178.0.0-31.179.127.255
83.175.176.0/20
85.222.0.0/17
89.68.0.0/14
89.72.228.0/22
89.77.216.0/22
195.34.210.0/23
217.119.64.0/20
IPv6:
2a02:a300::/28
2a02:a315:e500::/40
2a02:a316:e100::/40
2a02:a319:6000::/40
2a02:a31b:c400::/40
Signature Algorithm: sha256WithRSAEncryption
a6:ba:fb:bd:60:14:76:b7:44:2f:e1:16:08:54:a8:80:ef:a5:
a7:4d:c5:ef:00:18:9e:d2:ce:c2:43:e7:36:15:32:92:2e:fc:
a7:eb:12:0e:66:de:c0:31:a8:94:79:8d:ad:70:2d:ae:7f:0c:
99:52:cb:91:6a:b0:4f:4b:4d:d5:1c:5f:a0:44:01:3c:da:41:
d8:77:14:17:91:ab:21:fd:5b:20:3b:d4:45:d3:7f:3f:67:b9:
3a:09:84:4e:c5:14:0d:c8:ee:b2:31:65:c7:c4:b1:a2:f5:c4:
cd:49:6b:fb:48:7a:da:7e:b0:d2:7f:7b:33:f8:3c:78:4d:93:
4a:1d:bb:21:de:35:45:b2:39:ad:e5:87:c9:1c:07:bf:0e:c0:
a6:60:49:d5:91:8a:dc:6a:53:26:b0:29:df:f7:2d:a1:7d:c2:
32:e7:32:68:b7:e1:d7:39:e7:c8:d1:a8:c7:05:98:0e:57:2f:
ab:65:77:02:cc:06:9c:76:b6:26:d1:bc:58:c3:a3:62:46:16:
46:c1:4f:bf:97:0a:12:ec:3e:8d:09:69:06:ad:20:61:8b:e2:
45:be:5d:f2:58:93:26:67:c8:86:8e:30:f2:66:b0:d1:82:2f:
b9:23:5d:5b:ed:dc:5d:d2:0c:46:1e:5e:30:da:b2:50:0c:ca:
ee:ad:cc:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:56:06 2025 by rpki-client