Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/W0B7mL47B-pgTs2kJ8QQiwpfF-s.roa
File: W0B7mL47B-pgTs2kJ8QQiwpfF-s.roa (raw, json)
Hash identifier: rni6zfOUzDW0B5MM81v5j/MIt9WDVKIzOdps4a+xN2w=
Subject key identifier: 5B:40:7B:98:BE:3B:07:EA:60:4E:CD:A4:27:C4:10:8B:0A:5F:17:EB
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 01920A77AFFA9EFF686C4BBD786100BBC426
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/W0B7mL47B-pgTs2kJ8QQiwpfF-s.roa
Signing time: Thu 19 Sep 2024 13:27:48 +0000
ROA not before: Thu 19 Sep 2024 13:27:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 82.152.176.0/23 maxlen: 23
82.152.178.0/24 maxlen: 24
82.153.136.0/22 maxlen: 22
82.153.243.0/24 maxlen: 24
89.213.44.0/23 maxlen: 24
89.213.50.0/23 maxlen: 23
89.213.56.0/22 maxlen: 22
89.213.129.0/24 maxlen: 24
89.213.139.0/24 maxlen: 24
89.213.145.0/24 maxlen: 24
89.213.148.0/22 maxlen: 24
89.213.152.0/22 maxlen: 24
89.213.154.0/24 maxlen: 24
89.213.156.0/22 maxlen: 24
89.213.167.0/24 maxlen: 24
89.213.172.0/22 maxlen: 24
89.213.196.0/22 maxlen: 24
89.213.200.0/22 maxlen: 24
89.213.204.0/22 maxlen: 24
89.213.228.0/22 maxlen: 22
89.213.228.0/23 maxlen: 24
89.213.232.0/22 maxlen: 24
89.213.236.0/22 maxlen: 24
109.176.16.0/21 maxlen: 24
109.176.20.0/24 maxlen: 24
109.176.204.0/22 maxlen: 24
109.176.242.0/23 maxlen: 24
185.49.126.0/23 maxlen: 24
194.105.80.0/20 maxlen: 20
194.105.90.0/23 maxlen: 24
212.38.88.0/23 maxlen: 24
213.218.211.0/24 maxlen: 24
217.145.65.0/24 maxlen: 24
217.145.66.0/24 maxlen: 24
217.145.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sun 22 Sep 2024 12:10:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:0a:77:af:fa:9e:ff:68:6c:4b:bd:78:61:00:bb:c4:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Sep 19 13:27:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b407b98be3b07ea604ecda427c4108b0a5f17eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:3d:b9:c9:0a:4d:16:37:8d:c3:50:17:ac:e6:
18:54:67:1a:3a:d8:d8:24:be:bb:49:5b:6f:d0:e0:
68:a8:87:dd:70:17:c8:ef:77:c1:c9:6b:09:13:82:
7a:52:2e:02:82:20:57:a9:03:e2:7c:90:d7:be:ca:
d0:90:b9:88:e0:eb:da:df:93:08:88:a7:89:ef:26:
b6:f2:17:f3:80:72:f9:81:a3:d7:82:a0:00:d3:f5:
8b:2e:70:f5:d9:31:0d:da:bd:0f:a3:68:ba:71:c2:
35:dc:39:30:b7:b3:ac:96:63:6c:f4:01:6f:e6:00:
2f:06:b2:ee:8b:44:aa:ca:53:15:d6:06:55:b9:f2:
b3:ad:39:1f:fa:20:99:0c:77:36:5d:c6:31:3a:15:
c6:e4:c1:e7:a1:74:03:d5:43:f2:02:90:75:44:a0:
02:79:36:af:c3:a8:4a:20:46:7d:ee:8c:ee:2b:dd:
e2:21:cc:a8:ae:19:60:3d:2b:6c:5e:a7:24:26:28:
66:80:04:be:56:8c:70:34:66:e7:38:e5:6f:c1:29:
b3:bf:47:60:2a:7b:c3:6a:52:0f:0b:ec:fe:94:2b:
07:18:58:77:cc:f6:99:6b:a2:30:79:94:5f:0c:eb:
1f:6c:a3:de:22:a6:08:39:b1:d7:c5:4b:54:7d:14:
80:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:40:7B:98:BE:3B:07:EA:60:4E:CD:A4:27:C4:10:8B:0A:5F:17:EB
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/W0B7mL47B-pgTs2kJ8QQiwpfF-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.176.0-82.152.178.255
82.153.136.0/22
82.153.243.0/24
89.213.44.0/23
89.213.50.0/23
89.213.56.0/22
89.213.129.0/24
89.213.139.0/24
89.213.145.0/24
89.213.148.0-89.213.159.255
89.213.167.0/24
89.213.172.0/22
89.213.196.0-89.213.207.255
89.213.228.0-89.213.239.255
109.176.16.0/21
109.176.204.0/22
109.176.242.0/23
185.49.126.0/23
194.105.80.0/20
212.38.88.0/23
213.218.211.0/24
217.145.65.0-217.145.66.255
217.145.72.0/21
Signature Algorithm: sha256WithRSAEncryption
50:1e:f2:4a:35:aa:26:76:c6:34:55:06:fe:5b:c2:16:39:45:
1e:35:e8:fa:0b:4b:67:87:e3:8b:fd:d3:8c:60:1b:01:b3:15:
9e:c9:84:d7:73:0b:8a:a3:de:d7:de:df:28:6f:a3:13:fe:88:
2a:29:f1:aa:32:a4:5d:ce:d6:c2:50:cf:57:9b:24:bd:0d:f8:
38:74:77:a1:58:b2:fe:80:f8:ff:c6:66:33:ba:44:e1:1a:6d:
85:5f:9b:ae:9a:90:68:70:18:4a:b7:05:e4:4c:90:ee:5c:9d:
d9:71:27:3c:37:73:a8:0e:af:07:b0:3c:b6:6b:81:09:47:66:
5c:4a:47:ff:f0:ec:a9:c7:6c:33:1e:76:67:98:43:0f:de:ab:
c3:e6:26:cd:05:b4:53:11:bb:73:b7:dc:0f:dc:db:a3:03:08:
e1:5c:bb:f1:fb:81:3f:80:c2:67:f1:2a:5a:fb:98:f3:96:65:
e3:75:47:8c:e3:d7:8d:b2:f1:43:8b:1c:05:62:5f:72:14:a5:
84:46:77:06:e8:86:21:38:24:e8:09:b0:e3:2e:c4:eb:d7:95:
64:80:99:8e:7c:fc:4b:cd:2a:08:1a:48:05:8b:75:78:e2:67:
24:50:6b:ba:19:d2:7b:2b:1e:1c:e2:63:54:fa:45:4e:16:21:
ed:34:21:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:18:39 2025 by rpki-client