Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/ejWBjzF8MH3akcvrXeUSnl6OfpA.roa
File: ejWBjzF8MH3akcvrXeUSnl6OfpA.roa (raw, json)
Hash identifier: BXXxbKlUc8GXkOT26scqblVmQSNHMot1z4wy5jInNds=
Subject key identifier: 7A:35:81:8F:31:7C:30:7D:DA:91:CB:EB:5D:E5:12:9E:5E:8E:7E:90
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0190C173DE9E31320EAEF45DF249F6AB772E
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/ejWBjzF8MH3akcvrXeUSnl6OfpA.roa
Signing time: Wed 17 Jul 2024 16:08:34 +0000
ROA not before: Wed 17 Jul 2024 16:08:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 81.168.120.0/24 maxlen: 24
82.152.8.0/24 maxlen: 24
82.152.98.0/24 maxlen: 24
82.152.248.0/24 maxlen: 24
82.152.251.0/24 maxlen: 24
82.152.254.0/24 maxlen: 24
82.153.34.0/24 maxlen: 24
82.153.37.0/24 maxlen: 24
82.153.69.0/24 maxlen: 24
82.153.72.0/24 maxlen: 24
82.153.79.0/24 maxlen: 24
82.153.132.0/24 maxlen: 24
82.153.224.0/24 maxlen: 24
82.163.23.0/24 maxlen: 24
89.213.4.0/24 maxlen: 24
89.213.6.0/24 maxlen: 24
89.213.7.0/24 maxlen: 24
89.213.130.0/24 maxlen: 24
89.213.190.0/24 maxlen: 24
89.213.196.0/24 maxlen: 24
109.176.247.0/24 maxlen: 24
109.176.251.0/24 maxlen: 24
185.49.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 04 Aug 2024 12:11:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c1:73:de:9e:31:32:0e:ae:f4:5d:f2:49:f6:ab:77:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jul 17 16:08:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a35818f317c307dda91cbeb5de5129e5e8e7e90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0b:3f:7e:8e:44:fa:63:7c:38:d5:60:76:a9:
98:a4:62:c2:56:48:ba:4a:f4:6e:fd:29:ed:df:9f:
83:8f:af:29:8c:c5:cb:34:e1:8f:43:ad:ab:9d:46:
c3:c6:03:97:03:6b:7c:52:3d:49:29:bb:cd:02:d6:
44:cb:23:ad:cb:b1:85:a0:e1:f4:2c:bb:d1:1c:82:
64:ee:55:3c:fb:6c:63:6b:05:07:67:e9:32:70:2d:
2b:22:6a:51:db:c9:6f:7d:fc:8e:97:24:2f:ca:c8:
1b:dd:2e:0c:c6:f5:b1:34:67:b5:4e:2f:31:18:de:
a2:f3:da:2b:2f:9c:7e:9e:52:53:fe:dc:77:41:08:
ed:ff:9a:c0:7c:95:0b:01:a5:64:df:72:1f:41:69:
97:34:5c:f2:67:c5:6d:44:82:7c:b4:16:25:88:7e:
d4:05:b8:6d:ae:d0:61:38:ce:86:af:17:d3:86:52:
87:14:fe:f6:5d:89:9d:8e:93:24:ca:59:5d:58:d6:
17:9a:36:0a:48:0b:b4:ca:ee:48:d8:f1:36:81:c4:
f7:5f:ee:e9:e2:68:4e:96:da:06:4e:43:e1:5d:70:
f0:3c:6b:25:91:d9:b4:e7:53:99:6c:c7:c9:e9:a1:
cd:22:67:e5:3e:96:61:6f:0b:cd:ef:17:52:9e:db:
ac:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:35:81:8F:31:7C:30:7D:DA:91:CB:EB:5D:E5:12:9E:5E:8E:7E:90
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/ejWBjzF8MH3akcvrXeUSnl6OfpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.168.120.0/24
82.152.8.0/24
82.152.98.0/24
82.152.248.0/24
82.152.251.0/24
82.152.254.0/24
82.153.34.0/24
82.153.37.0/24
82.153.69.0/24
82.153.72.0/24
82.153.79.0/24
82.153.132.0/24
82.153.224.0/24
82.163.23.0/24
89.213.4.0/24
89.213.6.0/23
89.213.130.0/24
89.213.190.0/24
89.213.196.0/24
109.176.247.0/24
109.176.251.0/24
185.49.124.0/24
Signature Algorithm: sha256WithRSAEncryption
59:b5:43:33:7e:2b:05:94:39:78:ac:fe:ce:78:9a:84:62:fe:
2b:85:8b:79:5c:94:b6:5f:74:80:1a:12:bc:05:ab:70:c9:d8:
7c:e6:da:78:cc:8a:e5:bd:2a:65:52:e6:38:0d:b0:b6:43:d1:
f9:7a:c0:22:5d:1d:e3:5b:18:83:a2:f2:27:6f:ab:c8:85:7e:
20:9c:1f:ef:e0:49:3f:ff:b0:13:7c:25:44:31:e0:ad:f5:60:
0d:d8:27:63:34:b5:11:13:38:89:aa:d1:21:17:2e:62:a9:c9:
78:44:2b:5b:b3:78:a2:e0:e8:40:71:c5:2c:47:70:56:ad:09:
fe:99:45:e4:d6:3e:f5:0e:b8:ad:61:ea:e0:6c:6f:af:8f:b0:
de:6d:5c:fe:91:fa:d0:67:7c:03:f4:2c:2f:22:63:34:dd:bb:
80:1c:e2:04:e0:ef:87:d5:ce:4a:62:65:d1:1b:a4:ed:3d:df:
d5:09:ba:e9:73:9a:0c:75:3b:24:5b:26:2b:29:38:4a:1a:71:
7b:d0:e7:c9:37:67:06:a4:a6:14:10:46:0e:f5:57:cd:f6:0e:
b6:88:e9:c3:a6:af:34:98:53:e1:13:24:a3:64:da:ce:11:94:
43:f6:6d:31:aa:62:8d:ec:19:64:ba:d4:76:05:c1:63:2d:ef:
95:e3:94:cf
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgISAZDBc96eMTIOrvRd8kn2q3cuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh
NTNiOWIwHhcNMjQwNzE3MTYwODM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YTM1ODE4ZjMxN2MzMDdkZGE5MWNiZWI1ZGU1MTI5ZTVlOGU3ZTkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtws/fo5E+mN8ONVgdqmYpGLCVki6
SvRu/Snt35+Dj68pjMXLNOGPQ62rnUbDxgOXA2t8Uj1JKbvNAtZEyyOty7GFoOH0
LLvRHIJk7lU8+2xjawUHZ+kycC0rImpR28lvffyOlyQvysgb3S4MxvWxNGe1Ti8x
GN6i89orL5x+nlJT/tx3QQjt/5rAfJULAaVk33IfQWmXNFzyZ8VtRIJ8tBYliH7U
BbhtrtBhOM6GrxfThlKHFP72XYmdjpMkylldWNYXmjYKSAu0yu5I2PE2gcT3X+7p
4mhOltoGTkPhXXDwPGslkdm051OZbMfJ6aHNImflPpZhbwvN7xdSntusjQIDAQAB
o4ICjDCCAogwHQYDVR0OBBYEFHo1gY8xfDB92pHL613lEp5ejn6QMB8GA1UdIwQY
MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt
NDEyMjhlMzlmZjdjLzEvZWpXQmp6RjhNSDNha2N2clhlVVNubDZPZnBBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzktNDEyMjhlMzlmZjdj
LzEvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGhBggrBgEFBQcBBwEB/wSBkTCBjjCBiwQCAAEwgYQDBABR
qHgDBABSmAgDBABSmGIDBABSmPgDBABSmPsDBABSmP4DBABSmSIDBABSmSUDBABS
mUUDBABSmUgDBABSmU8DBABSmYQDBABSmeADBABSoxcDBABZ1QQDBAFZ1QYDBABZ
1YIDBABZ1b4DBABZ1cQDBABtsPcDBABtsPsDBAC5MXwwDQYJKoZIhvcNAQELBQAD
ggEBAFm1QzN+KwWUOXis/s54moRi/iuFi3lclLZfdIAaErwFq3DJ2Hzm2njMiuW9
KmVS5jgNsLZD0fl6wCJdHeNbGIOi8idvq8iFfiCcH+/gST//sBN8JUQx4K31YA3Y
J2M0tRETOImq0SEXLmKpyXhEK1uzeKLg6EBxxSxHcFatCf6ZReTWPvUOuK1h6uBs
b6+PsN5tXP6R+tBnfAP0LC8iYzTdu4Ac4gTg74fVzkpiZdEbpO0939UJuulzmgx1
OyRbJispOEoacXvQ58k3ZwakphQQRg71V832DraI6cOmrzSYU+ETJKNk2s4RlEP2
bTGqYo3sGWS61HYFwWMt75XjlM8=
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:24:59 2025 by rpki-client