Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/IfrKS_pRigkB7QCf1zcuARThdn8.roa
File: IfrKS_pRigkB7QCf1zcuARThdn8.roa (raw, json)
Hash identifier: IcjkIUCLvIif7Ka/cmn20nevHWCbr556wzsi775UcVA=
Subject key identifier: 21:FA:CA:4B:FA:51:8A:09:01:ED:00:9F:D7:37:2E:01:14:E1:76:7F
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0191560196C4F20A9004A7F559EA2C46BCFD
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/IfrKS_pRigkB7QCf1zcuARThdn8.roa
Signing time: Thu 15 Aug 2024 12:27:10 +0000
ROA not before: Thu 15 Aug 2024 12:27:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 80.240.88.0/21 maxlen: 24
81.168.122.0/24 maxlen: 24
82.152.131.0/24 maxlen: 24
82.152.174.0/23 maxlen: 23
82.153.208.0/22 maxlen: 22
82.163.24.0/21 maxlen: 24
89.213.58.0/24 maxlen: 24
89.213.60.0/23 maxlen: 24
89.213.143.0/24 maxlen: 24
89.213.147.0/24 maxlen: 24
89.213.181.0/24 maxlen: 24
89.213.198.0/23 maxlen: 24
89.213.200.0/23 maxlen: 24
89.213.202.0/23 maxlen: 24
89.213.204.0/23 maxlen: 24
109.176.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Sep 2024 13:42:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:56:01:96:c4:f2:0a:90:04:a7:f5:59:ea:2c:46:bc:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Aug 15 12:27:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21faca4bfa518a0901ed009fd7372e0114e1767f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:71:7f:59:f0:e3:15:28:9b:7a:38:a5:58:66:
51:82:f0:0d:20:92:ea:d1:5f:72:86:75:ac:36:d5:
95:ec:4e:e2:5f:ae:79:78:5d:98:7b:eb:28:f1:26:
22:dd:f4:5b:4e:d5:be:85:8e:d2:69:bc:e0:88:b4:
53:37:6c:b0:86:09:4e:c2:b4:27:47:9a:d9:c9:dd:
ff:e2:61:41:73:43:a3:4b:52:ab:10:43:22:88:56:
e0:3e:f5:02:49:4e:ca:67:0c:41:97:f5:bd:f2:13:
a8:7b:70:ca:4d:fa:c1:41:b7:8f:d7:34:11:f5:af:
ba:12:99:8f:70:c2:be:06:7c:0e:f5:43:9a:ea:5f:
5b:58:8d:df:b3:21:75:71:21:0e:59:58:f1:99:4b:
2b:de:9b:ba:8a:b3:1f:ba:44:28:65:fa:50:a0:fb:
17:3e:03:d2:65:3c:50:2f:63:cc:ad:bb:23:bb:61:
a3:31:7f:cc:0e:2d:5d:f1:51:8e:31:05:e5:95:1c:
a3:fb:d6:f5:4e:ac:6a:87:52:03:8b:c6:0f:43:38:
b9:9d:b2:4f:38:90:03:07:cb:42:ca:e5:aa:ea:6b:
9d:d0:03:ca:cf:b4:d5:3f:55:27:25:86:df:78:6a:
24:38:39:eb:3b:4c:c2:8d:23:93:30:8d:26:70:37:
0f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:FA:CA:4B:FA:51:8A:09:01:ED:00:9F:D7:37:2E:01:14:E1:76:7F
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/IfrKS_pRigkB7QCf1zcuARThdn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.240.88.0/21
81.168.122.0/24
82.152.131.0/24
82.152.174.0/23
82.153.208.0/22
82.163.24.0/21
89.213.58.0/24
89.213.60.0/23
89.213.143.0/24
89.213.147.0/24
89.213.181.0/24
89.213.198.0-89.213.205.255
109.176.230.0/24
Signature Algorithm: sha256WithRSAEncryption
51:ba:ca:b6:c8:ce:c7:b1:66:85:f0:05:c4:fb:cb:db:e3:e6:
ae:9e:b3:3f:9c:96:d1:85:be:a1:b3:cc:a4:25:bb:9d:48:1e:
ef:db:b7:a2:76:b5:14:f1:d7:1a:55:e0:25:7b:9a:40:1f:bb:
98:c7:03:18:2e:52:e0:7e:fb:ef:5c:6b:4b:ec:79:43:c7:06:
87:a6:83:54:15:b1:1a:4b:8f:01:8d:73:29:61:21:5a:bb:1d:
93:48:1f:b2:29:72:1b:14:e4:ab:70:f6:eb:30:bd:a4:1a:59:
26:88:ac:a2:48:2b:20:7c:6d:c9:01:22:69:6a:84:df:17:02:
2b:79:51:07:41:60:87:41:0a:08:47:db:b2:f8:bb:51:a5:38:
ff:7c:fe:88:f3:7e:e7:0f:e5:3b:25:88:3b:be:95:a2:49:0a:
6a:f6:be:42:6b:e2:db:2c:e5:ad:14:7a:7e:ba:36:03:18:f8:
3f:e4:79:62:bc:93:20:db:c8:f0:14:98:a7:71:7a:2c:93:8d:
88:10:52:0e:70:32:fd:2e:f2:5f:33:3a:4d:5e:60:ce:b1:60:
52:36:f0:fb:c8:2e:c9:82:b3:f7:78:2c:8b:0f:17:00:93:55:
dd:fb:04:ac:f2:af:32:0c:2e:6e:98:2c:d1:49:94:3c:6d:5d:
45:eb:8e:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:29:35 2025 by rpki-client