Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/ffP5_VIcDrzcQ0kaELazjsqJ3ew.roa
File: ffP5_VIcDrzcQ0kaELazjsqJ3ew.roa (raw, json)
Hash identifier: /xhIaDkJuZxLvgB3k1Iiv2++mX+iRzX0iz4z6dwHUKM=
Subject key identifier: 7D:F3:F9:FD:52:1C:0E:BC:DC:43:49:1A:10:B6:B3:8E:CA:89:DD:EC
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0194D6FF5CDA201D0CD6543FE31ECF019AD6
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/ffP5_VIcDrzcQ0kaELazjsqJ3ew.roa
Signing time: Wed 05 Feb 2025 16:44:07 +0000
ROA not before: Wed 05 Feb 2025 16:44:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215184
IP address blocks: 82.152.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Feb 2025 12:43:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:d6:ff:5c:da:20:1d:0c:d6:54:3f:e3:1e:cf:01:9a:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Feb 5 16:44:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7df3f9fd521c0ebcdc43491a10b6b38eca89ddec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:50:44:4c:0c:aa:79:08:0e:b6:25:e6:b6:a6:
3e:b1:17:c1:6f:42:6e:59:4f:52:74:1d:5e:d7:09:
d5:5f:34:0d:62:2e:e2:54:d8:ec:61:dd:a7:c9:79:
cd:2f:5c:e8:df:7b:6a:f0:fd:6a:2d:9a:0b:fd:6b:
d0:21:a2:1c:6e:2f:49:71:62:8b:c5:c7:e2:ab:d7:
9c:7c:7e:33:63:e2:fe:18:fa:fb:28:a6:bd:bb:4e:
40:67:6a:4c:59:2b:2a:e5:e0:0a:60:66:a5:da:d0:
57:a8:41:11:96:c9:4e:64:25:e1:ac:39:cb:18:ce:
5d:d6:a2:9c:45:e9:2d:18:2a:a5:a9:a2:d8:9e:17:
98:a6:d2:b5:0c:f9:fa:0e:a7:6a:da:71:6c:b9:31:
a1:c2:b1:5c:32:c7:a9:3b:77:f5:61:31:51:ba:1d:
44:00:a5:87:ad:36:ea:75:32:f1:43:1e:34:0c:71:
9a:14:68:fc:c1:3c:7d:5b:bc:e9:20:9c:7d:e0:b3:
62:f3:ed:67:1d:6e:90:17:a0:63:9e:43:c2:ac:c1:
6a:64:08:02:64:8f:9c:8e:cc:b3:e7:45:e6:2d:ee:
c9:c7:ac:1c:20:d0:2d:36:88:35:98:66:79:0c:a8:
64:fb:85:8d:6a:91:9d:84:ea:7e:77:14:cb:69:de:
4b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:F3:F9:FD:52:1C:0E:BC:DC:43:49:1A:10:B6:B3:8E:CA:89:DD:EC
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/ffP5_VIcDrzcQ0kaELazjsqJ3ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.105.0/24
Signature Algorithm: sha256WithRSAEncryption
85:05:e7:95:06:3d:aa:eb:fc:44:34:2d:61:c0:77:95:ea:ca:
7b:5c:2b:e7:b9:30:21:27:37:1c:7b:dd:41:6b:08:a0:3a:33:
35:b2:40:4d:b9:03:5f:36:96:4c:d4:d1:87:97:68:64:1c:90:
96:68:bf:a8:56:f4:4e:be:f3:92:62:90:1e:d2:a1:5b:fa:f2:
81:b7:8e:96:52:5e:21:fa:af:40:65:d7:fe:e5:c9:e2:b8:ae:
50:25:34:ce:e5:59:8e:80:96:95:46:31:9d:40:66:b6:28:3d:
dd:50:83:ad:bb:cf:82:65:d0:08:38:16:88:b0:92:17:e0:e2:
77:2f:1f:f1:45:b3:a9:fc:9a:0c:90:6d:c3:02:98:49:79:72:
2c:f9:89:dd:d1:a2:3f:7e:03:43:dd:94:74:24:81:51:b1:b9:
e5:9b:7b:8b:b2:3d:7b:26:25:d3:93:45:6b:e1:4b:a3:7e:57:
2d:17:fe:86:30:dc:65:27:a7:90:0b:51:03:24:5c:37:c9:1c:
eb:fe:12:a6:0a:c1:ab:53:6d:de:d8:63:5a:6b:30:af:78:f2:
e1:b2:c8:37:f7:ca:ef:a2:70:e1:08:fb:0e:c9:31:6c:35:33:
14:de:e1:18:2b:6b:e8:85:01:9b:89:47:66:bc:7a:48:82:a1:
06:e2:93:b6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZTW/1zaIB0M1lQ/4x7PAZrWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh
NTNiOWIwHhcNMjUwMjA1MTY0NDA3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZGYzZjlmZDUyMWMwZWJjZGM0MzQ5MWExMGI2YjM4ZWNhODlkZGVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA91BETAyqeQgOtiXmtqY+sRfBb0Ju
WU9SdB1e1wnVXzQNYi7iVNjsYd2nyXnNL1zo33tq8P1qLZoL/WvQIaIcbi9JcWKL
xcfiq9ecfH4zY+L+GPr7KKa9u05AZ2pMWSsq5eAKYGal2tBXqEERlslOZCXhrDnL
GM5d1qKcRektGCqlqaLYnheYptK1DPn6Dqdq2nFsuTGhwrFcMsepO3f1YTFRuh1E
AKWHrTbqdTLxQx40DHGaFGj8wTx9W7zpIJx94LNi8+1nHW6QF6BjnkPCrMFqZAgC
ZI+cjsyz50XmLe7Jx6wcINAtNog1mGZ5DKhk+4WNapGdhOp+dxTLad5LYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH3z+f1SHA683ENJGhC2s47Kid3sMB8GA1UdIwQY
MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt
NDEyMjhlMzlmZjdjLzEvZmZQNV9WSWNEcnpjUTBrYUVMYXpqc3FKM2V3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzktNDEyMjhlMzlmZjdj
LzEvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUphpMA0G
CSqGSIb3DQEBCwUAA4IBAQCFBeeVBj2q6/xENC1hwHeV6sp7XCvnuTAhJzcce91B
awigOjM1skBNuQNfNpZM1NGHl2hkHJCWaL+oVvROvvOSYpAe0qFb+vKBt46WUl4h
+q9AZdf+5cniuK5QJTTO5VmOgJaVRjGdQGa2KD3dUIOtu8+CZdAIOBaIsJIX4OJ3
Lx/xRbOp/JoMkG3DAphJeXIs+Ynd0aI/fgND3ZR0JIFRsbnlm3uLsj17JiXTk0Vr
4UujflctF/6GMNxlJ6eQC1EDJFw3yRzr/hKmCsGrU23e2GNaazCvePLhssg398rv
onDhCPsOyTFsNTMU3uEYK2vohQGbiUdmvHpIgqEG4pO2
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:19:54 2025 by rpki-client