Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/5wTlgC4pyWJhe4NaSQhR5AxaShk.roa
File: 5wTlgC4pyWJhe4NaSQhR5AxaShk.roa (raw, json)
Hash identifier: IQO1cyJzyMomhO0kuldTGtz+sX6FNUbQKTyx6lAfJKw=
Subject key identifier: E7:04:E5:80:2E:29:C9:62:61:7B:83:5A:49:08:51:E4:0C:5A:4A:19
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 01903609DDD481C5E89A1988A1784A904913
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/5wTlgC4pyWJhe4NaSQhR5AxaShk.roa
Signing time: Thu 20 Jun 2024 14:25:34 +0000
ROA not before: Thu 20 Jun 2024 14:25:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 81.168.83.0/24 maxlen: 24
81.168.120.0/24 maxlen: 24
82.152.8.0/24 maxlen: 24
82.152.248.0/24 maxlen: 24
82.152.251.0/24 maxlen: 24
82.152.254.0/24 maxlen: 24
82.153.34.0/24 maxlen: 24
82.153.37.0/24 maxlen: 24
82.153.69.0/24 maxlen: 24
82.153.72.0/24 maxlen: 24
82.153.79.0/24 maxlen: 24
82.153.132.0/24 maxlen: 24
82.153.224.0/24 maxlen: 24
82.163.23.0/24 maxlen: 24
89.213.4.0/24 maxlen: 24
89.213.6.0/24 maxlen: 24
89.213.7.0/24 maxlen: 24
89.213.130.0/24 maxlen: 24
89.213.190.0/24 maxlen: 24
89.213.196.0/24 maxlen: 24
109.176.247.0/24 maxlen: 24
109.176.251.0/24 maxlen: 24
185.49.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jul 2024 16:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:36:09:dd:d4:81:c5:e8:9a:19:88:a1:78:4a:90:49:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jun 20 14:25:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e704e5802e29c962617b835a490851e40c5a4a19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2a:b4:c1:5d:19:5b:36:b6:a0:94:2a:e1:fc:
a4:6a:60:a4:fe:3d:3e:37:00:d5:c6:4a:09:0f:55:
ba:4c:68:f2:95:e4:b1:b1:b2:70:a7:d6:67:ff:80:
36:3d:79:e8:e3:90:e2:7b:53:db:49:54:0f:3c:c2:
ed:9f:6c:47:8d:bb:a0:c7:ca:08:4d:63:b4:4b:a8:
76:5f:86:90:42:f6:48:cf:70:7c:36:8c:eb:b4:33:
03:7e:bb:52:7c:f8:bd:29:df:8d:eb:e4:29:70:01:
fd:5f:4a:e4:9e:60:c0:02:59:30:ca:ac:d0:7f:9b:
80:a7:7c:c8:05:65:7a:c2:30:1b:50:26:7a:5c:9d:
f4:4a:b4:4a:40:50:b0:9b:87:72:7d:1b:0f:b2:50:
a6:e4:58:bc:0f:36:18:a3:63:b5:73:75:3d:de:cf:
6f:f4:ee:db:8e:2b:13:7f:ab:4d:3b:f7:a8:45:4e:
9a:bb:fc:61:61:f1:25:45:a8:10:45:2d:55:07:76:
54:78:30:95:ae:96:65:1d:e6:9c:b6:f2:5c:bc:27:
01:55:80:32:f8:7d:e5:4f:52:56:ce:21:82:03:f5:
9d:00:f4:e0:f6:81:a2:f0:7a:b0:10:93:82:34:32:
98:80:0d:38:37:89:ed:90:54:06:a7:c6:c6:53:c9:
86:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:04:E5:80:2E:29:C9:62:61:7B:83:5A:49:08:51:E4:0C:5A:4A:19
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/5wTlgC4pyWJhe4NaSQhR5AxaShk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.168.83.0/24
81.168.120.0/24
82.152.8.0/24
82.152.248.0/24
82.152.251.0/24
82.152.254.0/24
82.153.34.0/24
82.153.37.0/24
82.153.69.0/24
82.153.72.0/24
82.153.79.0/24
82.153.132.0/24
82.153.224.0/24
82.163.23.0/24
89.213.4.0/24
89.213.6.0/23
89.213.130.0/24
89.213.190.0/24
89.213.196.0/24
109.176.247.0/24
109.176.251.0/24
185.49.124.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:be:dd:fe:52:35:f6:ff:4d:b1:d0:cc:dc:64:d6:94:da:d4:
d3:70:bf:32:4d:99:95:25:cd:1a:f7:b8:7b:24:ed:d4:ec:b9:
37:8f:3e:31:fc:6b:44:9e:ab:00:d4:0c:c5:6f:fc:83:a0:c4:
b8:e8:64:b2:80:04:f7:dc:a5:65:1b:04:53:33:db:94:f1:ae:
18:43:9c:e3:e4:f1:4e:ff:eb:d3:5f:92:09:3c:d5:e2:76:07:
70:1f:a2:e7:a0:0f:ed:fa:5f:fa:e9:80:b7:49:0c:4a:44:33:
8a:a1:e5:14:ad:47:cc:e2:d1:95:5b:43:44:2f:1f:9c:12:44:
a2:ee:69:04:8d:d0:8e:76:68:94:0f:34:15:7b:5d:c1:6e:e7:
86:9c:82:84:38:c0:8d:d3:f9:54:c2:ab:29:2a:a9:c0:a8:56:
01:aa:1a:99:b7:8f:be:52:ec:89:d8:4a:19:97:9a:09:41:88:
6a:17:6b:84:cb:32:f9:37:43:8a:e4:b1:e6:8e:05:c6:a6:23:
3d:89:df:73:cc:79:48:96:0f:f1:d0:71:4e:8d:ec:83:80:f2:
3c:c4:5b:09:a5:4c:41:5a:e4:65:f4:bb:e3:ec:01:75:4a:fb:
ad:b4:18:7c:2f:cf:97:6b:d0:00:c3:1a:d3:27:c0:49:2e:7e:
00:0c:40:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:06:10 2025 by rpki-client