Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/fic2Y46D0DrOAzEBhXD75G7sXeU.roa
File: fic2Y46D0DrOAzEBhXD75G7sXeU.roa (raw, json)
Hash identifier: 8F8xpShp2X295dZyfzCNUA7rdtKpMTo1UyOYKJGZrLA=
Subject key identifier: 7E:27:36:63:8E:83:D0:3A:CE:03:31:01:85:70:FB:E4:6E:EC:5D:E5
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019053BBBD6290BA980767EC8B69547D73DB
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/fic2Y46D0DrOAzEBhXD75G7sXeU.roa
Signing time: Wed 26 Jun 2024 08:48:50 +0000
ROA not before: Wed 26 Jun 2024 08:48:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 82.152.176.0/23 maxlen: 23
82.153.136.0/22 maxlen: 22
82.163.18.0/24 maxlen: 24
89.213.49.0/24 maxlen: 24
89.213.50.0/23 maxlen: 23
89.213.52.0/22 maxlen: 22
89.213.56.0/22 maxlen: 22
89.213.134.0/24 maxlen: 24
89.213.145.0/24 maxlen: 24
89.213.148.0/22 maxlen: 24
89.213.152.0/22 maxlen: 24
89.213.156.0/22 maxlen: 24
89.213.172.0/22 maxlen: 24
89.213.196.0/22 maxlen: 24
89.213.200.0/22 maxlen: 24
89.213.204.0/22 maxlen: 24
89.213.232.0/22 maxlen: 24
89.213.236.0/22 maxlen: 24
109.176.16.0/21 maxlen: 24
109.176.165.0/24 maxlen: 24
109.176.204.0/22 maxlen: 24
185.49.126.0/23 maxlen: 24
194.105.80.0/20 maxlen: 20
212.38.88.0/23 maxlen: 24
213.218.210.0/24 maxlen: 24
213.218.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Jun 2024 14:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:53:bb:bd:62:90:ba:98:07:67:ec:8b:69:54:7d:73:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jun 26 08:48:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e2736638e83d03ace0331018570fbe46eec5de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:85:3b:47:d5:9a:da:a9:36:31:47:89:9c:39:
41:0d:39:e2:be:8f:c2:54:ae:8d:b5:f3:fb:1e:2f:
54:68:66:ae:c4:3b:24:da:18:d0:3c:06:cd:29:30:
e1:d3:9c:54:bd:7e:ef:20:32:3f:63:bc:28:6a:d1:
70:36:0f:48:bb:73:50:ae:12:e0:11:e4:c6:6b:d6:
eb:68:e2:e1:cc:22:ae:0f:14:d6:e6:27:d7:d6:10:
b6:ab:30:28:a9:fc:c6:7c:b1:49:93:3a:d2:0d:38:
d8:a0:71:ba:7a:9b:33:b2:0a:72:71:26:4a:56:bd:
74:a6:79:92:2b:49:5d:1f:fb:23:46:bb:46:22:e2:
76:16:78:5b:e2:c3:8a:88:98:66:ac:44:bb:57:b9:
49:8d:75:b3:4d:be:24:8c:7b:99:67:19:09:dc:37:
16:2c:4e:a3:a4:ce:17:aa:cf:4e:74:90:00:1b:ee:
54:8f:7a:eb:cd:30:f2:04:86:20:c2:9a:73:d5:9e:
5d:c9:01:ab:12:37:52:9b:f6:0e:ae:58:91:4e:84:
71:ff:0e:fb:b4:55:f2:b7:ac:b7:b3:a1:cd:47:5a:
98:97:4f:d8:79:24:6a:30:bd:3d:b6:48:53:61:8e:
15:bc:2e:60:0e:25:87:ed:54:97:fe:ed:f1:52:d2:
fd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:27:36:63:8E:83:D0:3A:CE:03:31:01:85:70:FB:E4:6E:EC:5D:E5
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/fic2Y46D0DrOAzEBhXD75G7sXeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.176.0/23
82.153.136.0/22
82.163.18.0/24
89.213.49.0-89.213.59.255
89.213.134.0/24
89.213.145.0/24
89.213.148.0-89.213.159.255
89.213.172.0/22
89.213.196.0-89.213.207.255
89.213.232.0/21
109.176.16.0/21
109.176.165.0/24
109.176.204.0/22
185.49.126.0/23
194.105.80.0/20
212.38.88.0/23
213.218.210.0/23
Signature Algorithm: sha256WithRSAEncryption
73:c5:00:e2:6a:e4:d7:42:5d:a7:9e:e5:f6:68:18:a3:40:c7:
79:13:87:a1:4a:0a:b1:d9:09:71:f9:5b:6a:b0:57:cc:ce:59:
d1:48:88:15:74:7c:16:f6:44:87:7d:1e:62:a1:74:e0:07:82:
6a:13:a2:08:22:da:cb:2c:53:a6:c3:f5:e2:47:cf:5c:56:35:
90:c3:3e:6c:32:01:71:25:87:25:91:8d:0b:e8:e3:f8:ef:50:
4d:24:ca:eb:60:e1:48:7a:60:88:17:d6:6c:41:0a:97:62:c7:
39:c2:96:a9:2a:27:34:61:ff:0f:d2:42:0d:81:ab:44:1f:ce:
44:a3:3b:c2:bc:d3:bb:7b:0f:3f:6e:1b:c7:be:13:d6:d4:45:
fd:04:1d:e7:3a:83:eb:f4:54:4e:8b:f1:1a:f6:91:e1:82:f4:
24:96:1a:12:eb:10:f7:7c:d1:f7:33:cb:d6:11:92:f5:ef:53:
b6:d5:9b:87:49:c3:11:8c:85:99:00:be:c9:b7:46:d3:27:fa:
5a:08:dc:1f:0a:7b:96:17:1b:d1:33:4f:e9:c9:a1:d9:b4:d1:
21:6a:93:c9:8e:5f:81:3e:a9:3c:6d:2a:9b:13:09:8b:68:68:
38:39:4f:62:53:b6:59:e8:95:23:73:8f:de:8a:0a:c5:12:1a:
c3:e5:2d:f1
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAZBTu71ikLqYB2fsi2lUfXPbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh
NTNiOWIwHhcNMjQwNjI2MDg0ODUwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTI3MzY2MzhlODNkMDNhY2UwMzMxMDE4NTcwZmJlNDZlZWM1ZGU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4U7R9Wa2qk2MUeJnDlBDTnivo/C
VK6NtfP7Hi9UaGauxDsk2hjQPAbNKTDh05xUvX7vIDI/Y7woatFwNg9Iu3NQrhLg
EeTGa9braOLhzCKuDxTW5ifX1hC2qzAoqfzGfLFJkzrSDTjYoHG6epszsgpycSZK
Vr10pnmSK0ldH/sjRrtGIuJ2Fnhb4sOKiJhmrES7V7lJjXWzTb4kjHuZZxkJ3DcW
LE6jpM4Xqs9OdJAAG+5Uj3rrzTDyBIYgwppz1Z5dyQGrEjdSm/YOrliRToRx/w77
tFXyt6y3s6HNR1qYl0/YeSRqML09tkhTYY4VvC5gDiWH7VSX/u3xUtL9GwIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFH4nNmOOg9A6zgMxAYVw++Ru7F3lMB8GA1UdIwQY
MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt
NDEyMjhlMzlmZjdjLzEvZmljMlk0NkQwRHJPQXpFQmhYRDc1RzdzWGVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzktNDEyMjhlMzlmZjdj
LzEvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGaBggrBgEFBQcBBwEB/wSBijCBhzCBhAQCAAEwfgMEAVKY
sAMEAlKZiAMEAFKjEjAMAwQAWdUxAwQCWdU4AwQAWdWGAwQAWdWRMAwDBAJZ1ZQD
BAVZ1YADBAJZ1awwDAMEAlnVxAMEBFnVwAMEA1nV6AMEA22wEAMEAG2wpQMEAm2w
zAMEAbkxfgMEBMJpUAMEAdQmWAMEAdXa0jANBgkqhkiG9w0BAQsFAAOCAQEAc8UA
4mrk10Jdp57l9mgYo0DHeROHoUoKsdkJcflbarBXzM5Z0UiIFXR8FvZEh30eYqF0
4AeCahOiCCLayyxTpsP14kfPXFY1kMM+bDIBcSWHJZGNC+jj+O9QTSTK62DhSHpg
iBfWbEEKl2LHOcKWqSonNGH/D9JCDYGrRB/ORKM7wrzTu3sPP24bx74T1tRF/QQd
5zqD6/RUTovxGvaR4YL0JJYaEusQ93zR9zPL1hGS9e9TttWbh0nDEYyFmQC+ybdG
0yf6WgjcHwp7lhcb0TNP6cmh2bTRIWqTyY5fgT6pPG0qmxMJi2hoODlPYlO2WeiV
I3OP3ooKxRIaw+Ut8Q==
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:15:57 2025 by rpki-client