Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/c2Trw_6rA1tXo3t3NaZvs--W108.roa
File: c2Trw_6rA1tXo3t3NaZvs--W108.roa (raw, json)
Hash identifier: Y8GEJHp75PoWQMC5UuD/oVnH/pu86Rc6Tgmbc2Hk2g8=
Subject key identifier: 73:64:EB:C3:FE:AB:03:5B:57:A3:7B:77:35:A6:6F:B3:EF:96:D7:4F
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019598A33F74783D171B736D1091F967A0A0
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/c2Trw_6rA1tXo3t3NaZvs--W108.roa
Signing time: Sat 15 Mar 2025 07:09:50 +0000
ROA not before: Sat 15 Mar 2025 07:09:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 81.5.189.0/24 maxlen: 24
82.152.8.0/24 maxlen: 24
82.152.176.0/23 maxlen: 23
82.153.136.0/22 maxlen: 22
82.153.243.0/24 maxlen: 24
89.213.44.0/23 maxlen: 24
89.213.50.0/23 maxlen: 23
89.213.56.0/22 maxlen: 22
89.213.129.0/24 maxlen: 24
89.213.132.0/24 maxlen: 24
89.213.139.0/24 maxlen: 24
89.213.143.0/24 maxlen: 24
89.213.145.0/24 maxlen: 24
89.213.146.0/24 maxlen: 24
89.213.148.0/22 maxlen: 24
89.213.152.0/22 maxlen: 24
89.213.152.0/24 maxlen: 24
89.213.154.0/24 maxlen: 24
89.213.155.0/24 maxlen: 24
89.213.156.0/22 maxlen: 24
89.213.159.0/24 maxlen: 24
89.213.162.0/24 maxlen: 24
89.213.164.0/24 maxlen: 24
89.213.167.0/24 maxlen: 24
89.213.169.0/24 maxlen: 24
89.213.171.0/24 maxlen: 24
89.213.172.0/22 maxlen: 24
89.213.176.0/24 maxlen: 24
89.213.181.0/24 maxlen: 24
89.213.183.0/24 maxlen: 24
89.213.191.0/24 maxlen: 24
89.213.196.0/22 maxlen: 24
89.213.200.0/22 maxlen: 24
89.213.204.0/22 maxlen: 24
89.213.228.0/22 maxlen: 22
89.213.228.0/23 maxlen: 24
89.213.232.0/22 maxlen: 24
89.213.236.0/22 maxlen: 24
109.176.16.0/21 maxlen: 24
109.176.193.0/24 maxlen: 24
109.176.204.0/22 maxlen: 24
109.176.242.0/23 maxlen: 24
109.176.252.0/24 maxlen: 24
185.49.126.0/23 maxlen: 24
185.101.47.0/24 maxlen: 24
194.105.80.0/20 maxlen: 20
194.105.90.0/23 maxlen: 24
212.38.79.0/24 maxlen: 24
212.38.88.0/23 maxlen: 24
213.130.132.0/22 maxlen: 22
213.152.43.0/24 maxlen: 24
213.210.52.0/22 maxlen: 22
213.210.54.0/24 maxlen: 24
213.218.211.0/24 maxlen: 24
213.218.226.0/24 maxlen: 24
213.218.244.0/22 maxlen: 22
213.218.244.0/24 maxlen: 24
217.145.65.0/24 maxlen: 24
217.145.66.0/24 maxlen: 24
217.145.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Mar 2025 13:25:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:98:a3:3f:74:78:3d:17:1b:73:6d:10:91:f9:67:a0:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Mar 15 07:09:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7364ebc3feab035b57a37b7735a66fb3ef96d74f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:4c:8a:75:4f:04:a8:65:89:b2:12:89:2d:7d:
b3:92:fd:89:ab:bf:da:44:45:b4:6e:50:7c:54:11:
14:19:c1:e5:42:c1:eb:af:5e:25:03:13:f3:8c:77:
b3:e0:26:80:63:9a:02:5e:2d:aa:35:db:24:24:f0:
4f:12:24:41:29:49:19:5c:41:3c:65:c8:c4:d8:8f:
91:2b:6f:3c:3d:e8:a6:b5:2c:23:e1:2d:52:4d:93:
d0:84:77:a2:01:03:03:31:a1:3d:f0:f5:09:21:1c:
28:94:67:c0:cf:38:b7:d1:be:68:f7:3a:e8:40:ea:
06:c1:2d:40:7d:64:14:03:15:b1:40:af:6e:4a:5a:
30:27:9a:8d:59:90:a4:9e:ff:a3:60:ac:2e:b3:e2:
e7:b0:1a:67:7d:72:4b:1b:b2:21:77:32:dc:4b:78:
f5:91:47:f9:ac:48:20:31:65:fa:d3:a7:5f:f4:7a:
ef:10:c0:fb:dc:b8:fb:b4:58:37:2a:51:8c:c3:5d:
a5:ce:b8:08:52:86:56:37:ea:d9:c4:0e:61:fe:5f:
ca:b7:49:30:64:d0:da:a4:4f:7c:23:b5:2a:da:55:
d3:28:9a:ea:9d:36:2c:0e:ae:05:28:31:e9:66:2e:
f4:1c:2f:e2:13:f6:e0:fe:19:3a:92:61:9a:aa:f0:
a7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:64:EB:C3:FE:AB:03:5B:57:A3:7B:77:35:A6:6F:B3:EF:96:D7:4F
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/c2Trw_6rA1tXo3t3NaZvs--W108.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.5.189.0/24
82.152.8.0/24
82.152.176.0/23
82.153.136.0/22
82.153.243.0/24
89.213.44.0/23
89.213.50.0/23
89.213.56.0/22
89.213.129.0/24
89.213.132.0/24
89.213.139.0/24
89.213.143.0/24
89.213.145.0-89.213.146.255
89.213.148.0-89.213.159.255
89.213.162.0/24
89.213.164.0/24
89.213.167.0/24
89.213.169.0/24
89.213.171.0-89.213.176.255
89.213.181.0/24
89.213.183.0/24
89.213.191.0/24
89.213.196.0-89.213.207.255
89.213.228.0-89.213.239.255
109.176.16.0/21
109.176.193.0/24
109.176.204.0/22
109.176.242.0/23
109.176.252.0/24
185.49.126.0/23
185.101.47.0/24
194.105.80.0/20
212.38.79.0/24
212.38.88.0/23
213.130.132.0/22
213.152.43.0/24
213.210.52.0/22
213.218.211.0/24
213.218.226.0/24
213.218.244.0/22
217.145.65.0-217.145.66.255
217.145.72.0/21
Signature Algorithm: sha256WithRSAEncryption
65:c7:4e:e1:89:ee:0b:66:76:cd:ce:c0:fe:a5:18:2f:b0:40:
be:f9:bc:fb:fc:38:48:23:00:f0:13:63:03:5c:73:94:8a:09:
fd:f0:e2:37:e2:ca:ac:5c:dd:33:23:3f:9a:2c:9c:06:f9:c9:
72:db:2a:6e:ae:e7:52:83:46:a5:42:3b:b4:70:c0:07:e2:77:
43:a7:26:45:26:92:d8:8f:56:2e:c0:8f:60:65:4d:0c:20:cb:
22:8c:b4:38:a2:7e:5f:33:0f:0c:63:68:a0:c6:88:21:e5:5a:
d6:91:45:e0:8d:ed:95:68:40:3c:eb:b4:38:43:5d:a1:e7:93:
b5:a8:2a:d6:3a:69:e2:72:3e:30:6b:d2:e2:8d:cc:a1:43:25:
f4:fd:dd:95:51:dd:78:e0:4f:75:97:40:f3:22:7d:a9:0f:6f:
a3:ea:f0:56:50:93:45:cf:03:60:23:a9:b4:75:cb:fd:7f:4c:
26:df:76:40:3a:8d:2a:54:d6:a3:29:f4:7b:f3:3a:12:77:c6:
5e:f3:52:ee:05:43:7b:80:5e:be:35:ee:fa:bd:3d:e5:30:12:
b1:4a:a9:51:9f:82:57:aa:0f:69:3a:8e:93:84:10:c5:c7:8f:
ae:ae:18:ac:8a:a0:45:6d:83:7e:36:85:ea:dc:1f:46:ac:15:
f4:e6:f1:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 11:11:03 2025 by rpki-client