Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/SNYTxSx44nwsbM_FmWlYTuKZNW8.roa
File: SNYTxSx44nwsbM_FmWlYTuKZNW8.roa (raw, json)
Hash identifier: uzkvCcQyhDqC9Q4ggYw9ECxbSORu5YkVCXjdQ8AuiKA=
Subject key identifier: 48:D6:13:C5:2C:78:E2:7C:2C:6C:CF:C5:99:69:58:4E:E2:99:35:6F
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0190E41AE13C44B0E1E0C34A813AD3E71C58
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/SNYTxSx44nwsbM_FmWlYTuKZNW8.roa
Signing time: Wed 24 Jul 2024 09:38:05 +0000
ROA not before: Wed 24 Jul 2024 09:38:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 82.152.176.0/23 maxlen: 23
82.153.136.0/22 maxlen: 22
82.153.243.0/24 maxlen: 24
89.213.50.0/23 maxlen: 23
89.213.56.0/22 maxlen: 22
89.213.120.0/24 maxlen: 24
89.213.148.0/22 maxlen: 24
89.213.152.0/22 maxlen: 24
89.213.156.0/22 maxlen: 24
89.213.167.0/24 maxlen: 24
89.213.172.0/22 maxlen: 24
89.213.196.0/22 maxlen: 24
89.213.200.0/22 maxlen: 24
89.213.204.0/22 maxlen: 24
89.213.228.0/22 maxlen: 22
89.213.232.0/22 maxlen: 24
89.213.236.0/22 maxlen: 24
109.176.16.0/21 maxlen: 24
109.176.27.0/24 maxlen: 24
109.176.204.0/22 maxlen: 24
185.49.126.0/23 maxlen: 24
194.105.80.0/20 maxlen: 20
212.38.88.0/23 maxlen: 24
213.218.211.0/24 maxlen: 24
217.145.66.0/24 maxlen: 24
217.145.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jul 2024 16:31:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e4:1a:e1:3c:44:b0:e1:e0:c3:4a:81:3a:d3:e7:1c:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jul 24 09:38:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48d613c52c78e27c2c6ccfc59969584ee299356f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7d:5a:2a:1d:a6:9d:a5:80:3f:72:59:30:de:
f6:78:ef:a3:f7:02:fb:73:b2:0c:0a:97:e1:7a:8c:
6a:82:62:04:8f:74:bd:7f:e8:31:bc:4f:da:34:2d:
61:d0:88:70:da:2e:6b:9c:f8:05:75:a1:cc:ca:e3:
35:6d:92:c1:84:0c:bf:20:a1:29:9d:9e:c0:cb:5f:
f0:bc:0c:d2:ce:68:b7:ae:1a:8f:50:f1:8c:c0:de:
e2:dc:09:f8:f9:61:01:45:68:1d:f4:22:4a:56:54:
a9:da:c0:14:75:93:96:4e:bd:7b:d2:09:21:43:47:
98:5c:04:74:47:3d:fb:9e:85:10:c8:97:29:3b:d4:
13:ea:17:fd:c6:2f:16:ac:2e:61:bb:30:50:70:62:
e3:dc:9d:bb:15:c8:4c:79:2a:a9:02:cf:d1:33:bd:
5c:30:bd:84:8e:16:41:4f:1c:93:87:5e:3e:e1:9e:
0d:51:a0:7b:a9:bf:fb:71:6c:19:b2:d5:a2:ec:93:
85:36:75:14:15:25:d6:94:d9:7e:76:45:51:ee:23:
b0:8c:e5:f0:c1:2b:44:4b:93:3b:bc:44:f0:3c:76:
58:3a:e5:50:62:ac:91:61:2c:8c:86:03:1f:46:db:
34:a3:11:47:7e:e9:34:f6:b6:42:a4:60:eb:30:09:
58:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:D6:13:C5:2C:78:E2:7C:2C:6C:CF:C5:99:69:58:4E:E2:99:35:6F
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/SNYTxSx44nwsbM_FmWlYTuKZNW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.176.0/23
82.153.136.0/22
82.153.243.0/24
89.213.50.0/23
89.213.56.0/22
89.213.120.0/24
89.213.148.0-89.213.159.255
89.213.167.0/24
89.213.172.0/22
89.213.196.0-89.213.207.255
89.213.228.0-89.213.239.255
109.176.16.0/21
109.176.27.0/24
109.176.204.0/22
185.49.126.0/23
194.105.80.0/20
212.38.88.0/23
213.218.211.0/24
217.145.66.0/24
217.145.72.0/21
Signature Algorithm: sha256WithRSAEncryption
51:72:1b:69:83:f6:d0:57:ba:de:a8:57:ab:0b:7f:58:99:be:
f3:af:99:4d:7e:91:9e:d1:26:ab:8d:9b:66:9b:94:8e:7e:25:
86:00:a1:98:28:dc:6b:4c:02:43:e7:d5:b0:f3:af:76:f6:e7:
87:66:31:3e:d3:c2:11:f7:46:f1:69:51:63:25:2c:b8:dd:c6:
6a:03:e5:a9:cd:07:fa:98:2e:83:89:b0:27:d3:7f:31:0d:29:
bd:f1:7d:d1:0c:82:21:fe:23:da:8c:12:80:1a:fc:48:4b:9f:
d4:68:dd:ed:d9:12:0a:65:88:f0:19:fe:ee:d9:d0:12:1d:80:
75:b2:e0:90:dc:a8:69:91:51:67:a5:4e:cb:cf:a7:b0:4d:fb:
45:e9:94:90:3d:5d:b1:72:90:61:ed:5b:d7:2b:0b:6d:99:bd:
6f:89:2f:1f:d7:f1:75:10:63:d5:40:4b:f0:c2:88:12:b9:c5:
ce:1d:b5:ee:83:e6:25:4f:53:76:e6:36:77:0a:24:c9:e1:36:
a6:d2:78:bf:7f:14:a5:6d:82:79:f4:46:8c:49:1b:e8:dc:df:
35:fb:90:45:b3:d1:c7:74:bd:d5:30:17:d5:1a:9e:15:0e:81:
da:0f:ca:c0:95:de:19:7f:72:04:3c:94:b8:b8:a7:73:28:62:
23:61:fe:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:14:43 2025 by rpki-client