Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/EViRBZRh0Jh3jAGScPjrihQBX90.roa
File: EViRBZRh0Jh3jAGScPjrihQBX90.roa (raw, json)
Hash identifier: HHTni5W5kxzwXHJl7Pmh0A+5oIyf7gPvsmqzgk8Gfdc=
Subject key identifier: 11:58:91:05:94:61:D0:98:77:8C:01:92:70:F8:EB:8A:14:01:5F:DD
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0191D7369CA3C13FE5B01B7D5E670D9C1F2A
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/EViRBZRh0Jh3jAGScPjrihQBX90.roa
Signing time: Mon 09 Sep 2024 14:36:06 +0000
ROA not before: Mon 09 Sep 2024 14:36:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 82.152.57.0/24 maxlen: 24
82.152.58.0/24 maxlen: 24
82.152.73.0/24 maxlen: 24
82.152.75.0/24 maxlen: 24
82.152.76.0/23 maxlen: 24
82.152.79.0/24 maxlen: 24
82.152.86.0/23 maxlen: 24
82.152.88.0/24 maxlen: 24
82.152.109.0/24 maxlen: 24
82.152.226.0/24 maxlen: 24
82.152.240.0/24 maxlen: 24
82.152.243.0/24 maxlen: 24
82.153.38.0/24 maxlen: 24
82.153.56.0/24 maxlen: 24
82.153.61.0/24 maxlen: 24
82.153.83.0/24 maxlen: 24
82.153.84.0/24 maxlen: 24
82.153.152.0/24 maxlen: 24
82.153.186.0/24 maxlen: 24
82.153.201.0/24 maxlen: 24
82.153.239.0/24 maxlen: 24
82.163.0.0/24 maxlen: 24
89.213.43.0/24 maxlen: 24
89.213.98.0/24 maxlen: 24
89.213.161.0/24 maxlen: 24
89.213.232.0/23 maxlen: 24
89.213.234.0/23 maxlen: 24
89.213.236.0/23 maxlen: 24
109.176.32.0/21 maxlen: 24
109.176.40.0/21 maxlen: 24
109.176.48.0/21 maxlen: 24
109.176.56.0/21 maxlen: 24
109.176.235.0/24 maxlen: 24
213.130.130.0/24 maxlen: 24
213.130.149.0/24 maxlen: 24
213.218.214.0/24 maxlen: 24
213.218.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 13:27:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d7:36:9c:a3:c1:3f:e5:b0:1b:7d:5e:67:0d:9c:1f:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Sep 9 14:36:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=115891059461d098778c019270f8eb8a14015fdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:92:5c:61:10:4c:4b:f5:3e:8d:b0:78:39:dc:
91:e6:14:d1:1e:e4:6e:0a:98:e5:35:c0:30:28:eb:
43:99:8f:95:32:18:f3:4e:32:1e:8e:aa:c8:54:70:
53:d6:e0:e9:73:b4:c4:aa:b3:27:39:56:dc:0c:78:
65:fa:2b:4d:d2:6d:04:b2:50:09:a5:1a:31:83:4f:
b0:54:72:f2:aa:e7:03:0b:d3:7c:d9:f1:63:c4:dc:
a0:8e:c1:75:7a:7a:ae:77:73:dd:22:ac:c2:e7:61:
b2:17:80:95:7f:7e:9b:12:c2:51:35:82:48:05:5c:
49:d2:6d:41:b2:e0:b3:5a:af:2e:fa:75:97:67:5d:
71:61:d1:69:a7:01:96:07:ac:58:af:a9:26:e7:b1:
2c:2c:3d:5f:fa:b0:ba:bf:0a:80:fe:11:a6:b8:0b:
37:80:08:74:bf:b7:8f:b5:16:e4:0d:56:4d:5b:b5:
58:76:7c:5d:f0:76:26:79:2e:a5:24:c5:23:6b:98:
9f:a5:be:89:fa:8b:23:e3:34:bd:a2:e1:5d:46:fc:
5e:ee:92:90:3a:30:c6:69:3b:17:2e:43:f6:61:ed:
ae:d2:9b:8e:2e:ed:37:ab:85:04:e4:56:79:e5:fe:
4a:1e:13:81:17:4b:81:c1:7a:b6:6b:4e:b4:5c:ba:
e8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:58:91:05:94:61:D0:98:77:8C:01:92:70:F8:EB:8A:14:01:5F:DD
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/EViRBZRh0Jh3jAGScPjrihQBX90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.57.0-82.152.58.255
82.152.73.0/24
82.152.75.0-82.152.77.255
82.152.79.0/24
82.152.86.0-82.152.88.255
82.152.109.0/24
82.152.226.0/24
82.152.240.0/24
82.152.243.0/24
82.153.38.0/24
82.153.56.0/24
82.153.61.0/24
82.153.83.0-82.153.84.255
82.153.152.0/24
82.153.186.0/24
82.153.201.0/24
82.153.239.0/24
82.163.0.0/24
89.213.43.0/24
89.213.98.0/24
89.213.161.0/24
89.213.232.0-89.213.237.255
109.176.32.0/19
109.176.235.0/24
213.130.130.0/24
213.130.149.0/24
213.218.214.0/24
213.218.231.0/24
Signature Algorithm: sha256WithRSAEncryption
62:83:b7:82:3e:b8:52:43:13:9a:fe:42:f5:7f:af:fa:09:fa:
b8:29:36:d1:56:17:2e:44:a9:cc:9b:b2:35:44:a1:e0:76:c3:
fa:44:ce:9b:b1:a6:76:b7:e4:86:6c:99:ba:8f:10:1a:10:a8:
30:d6:1f:6c:26:c0:bd:06:5c:f3:86:f6:aa:f3:d5:13:87:d5:
62:2f:dd:43:3b:26:39:f7:db:ac:19:75:98:f7:c5:0c:83:4f:
c5:1f:67:35:8d:36:d9:60:9d:77:d2:b3:cc:2a:60:10:bb:f0:
ed:3e:a5:02:59:62:2d:04:7a:fa:c4:1f:6d:fc:44:17:cd:8e:
00:8f:54:53:d8:23:ef:ca:8f:84:25:00:e8:b8:6c:6c:ae:11:
30:8f:4f:1f:e7:24:a3:9e:b6:42:db:7b:5d:08:de:e1:1b:5c:
44:0b:7b:bb:4c:d1:e8:2e:cf:d4:cd:4f:dc:b2:5b:63:07:47:
41:0c:1a:76:57:ca:24:ae:58:8e:12:3a:15:ae:f1:ba:eb:cc:
3c:61:ef:ed:7d:e3:72:98:f7:43:3d:74:28:49:af:d0:80:21:
6d:41:2a:0e:2c:f1:22:d2:b9:7b:3c:5e:d7:5e:a2:a5:79:ca:
d9:a4:98:fe:60:ec:06:5e:68:d7:62:86:3a:cf:85:94:95:ec:
62:e9:af:79
-----BEGIN CERTIFICATE-----
MIIFzDCCBLSgAwIBAgISAZHXNpyjwT/lsBt9XmcNnB8qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh
NTNiOWIwHhcNMjQwOTA5MTQzNjA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTU4OTEwNTk0NjFkMDk4Nzc4YzAxOTI3MGY4ZWI4YTE0MDE1ZmRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArpJcYRBMS/U+jbB4OdyR5hTRHuRu
CpjlNcAwKOtDmY+VMhjzTjIejqrIVHBT1uDpc7TEqrMnOVbcDHhl+itN0m0EslAJ
pRoxg0+wVHLyqucDC9N82fFjxNygjsF1enqud3PdIqzC52GyF4CVf36bEsJRNYJI
BVxJ0m1BsuCzWq8u+nWXZ11xYdFppwGWB6xYr6km57EsLD1f+rC6vwqA/hGmuAs3
gAh0v7ePtRbkDVZNW7VYdnxd8HYmeS6lJMUja5ifpb6J+osj4zS9ouFdRvxe7pKQ
OjDGaTsXLkP2Ye2u0puOLu03q4UE5FZ55f5KHhOBF0uBwXq2a060XLroLQIDAQAB
o4IC2DCCAtQwHQYDVR0OBBYEFBFYkQWUYdCYd4wBknD464oUAV/dMB8GA1UdIwQY
MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt
NDEyMjhlMzlmZjdjLzEvRVZpUkJaUmgwSmgzakFHU2NQanJpaFFCWDkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzktNDEyMjhlMzlmZjdj
LzEvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHtBggrBgEFBQcBBwEB/wSB3TCB2jCB1wQCAAEwgdAwDAME
AFKYOQMEAFKYOgMEAFKYSTAMAwQAUphLAwQBUphMAwQAUphPMAwDBAFSmFYDBABS
mFgDBABSmG0DBABSmOIDBABSmPADBABSmPMDBABSmSYDBABSmTgDBABSmT0wDAME
AFKZUwMEAFKZVAMEAFKZmAMEAFKZugMEAFKZyQMEAFKZ7wMEAFKjAAMEAFnVKwME
AFnVYgMEAFnVoTAMAwQDWdXoAwQBWdXsAwQFbbAgAwQAbbDrAwQA1YKCAwQA1YKV
AwQA1drWAwQA1drnMA0GCSqGSIb3DQEBCwUAA4IBAQBig7eCPrhSQxOa/kL1f6/6
Cfq4KTbRVhcuRKnMm7I1RKHgdsP6RM6bsaZ2t+SGbJm6jxAaEKgw1h9sJsC9Blzz
hvaq89UTh9ViL91DOyY599usGXWY98UMg0/FH2c1jTbZYJ130rPMKmAQu/DtPqUC
WWItBHr6xB9t/EQXzY4Aj1RT2CPvyo+EJQDouGxsrhEwj08f5ySjnrZC23tdCN7h
G1xEC3u7TNHoLs/UzU/csltjB0dBDBp2V8okrliOEjoVrvG668w8Ye/tfeNymPdD
PXQoSa/QgCFtQSoOLPEi0rl7PF7XXqKlecrZpJj+YOwGXmjXYoY6z4WUlexi6a95
-----END CERTIFICATE-----
Generated at Fri Mar 28 11:48:40 2025 by rpki-client