Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/grzK8XVxjvrdFrKa4oBJV7oqFBs.roa
File: grzK8XVxjvrdFrKa4oBJV7oqFBs.roa (raw, json)
Hash identifier: ycQ3qeC5DmIQJPfnS5oYGyyqHW92We1O3qxWZlH2YzY=
Subject key identifier: 82:BC:CA:F1:75:71:8E:FA:DD:16:B2:9A:E2:80:49:57:BA:2A:14:1B
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0190227BC430C8B599B0AA39C181697B9D72
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/grzK8XVxjvrdFrKa4oBJV7oqFBs.roa
Signing time: Sun 16 Jun 2024 19:17:34 +0000
ROA not before: Sun 16 Jun 2024 19:17:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 37.252.27.0/24 maxlen: 24
81.168.50.0/24 maxlen: 24
82.152.176.0/23 maxlen: 23
82.153.35.0/24 maxlen: 24
82.153.136.0/22 maxlen: 22
89.213.148.0/22 maxlen: 24
89.213.152.0/22 maxlen: 24
89.213.156.0/22 maxlen: 24
89.213.172.0/22 maxlen: 24
89.213.196.0/22 maxlen: 24
89.213.200.0/22 maxlen: 24
89.213.204.0/22 maxlen: 24
89.213.232.0/22 maxlen: 24
89.213.236.0/22 maxlen: 24
109.176.16.0/21 maxlen: 24
109.176.201.0/24 maxlen: 24
109.176.202.0/24 maxlen: 24
109.176.204.0/22 maxlen: 24
185.49.126.0/23 maxlen: 24
194.105.80.0/20 maxlen: 20
212.38.88.0/23 maxlen: 24
213.218.210.0/24 maxlen: 24
213.218.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jun 2024 15:10:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:22:7b:c4:30:c8:b5:99:b0:aa:39:c1:81:69:7b:9d:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jun 16 19:17:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82bccaf175718efadd16b29ae2804957ba2a141b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:22:b8:de:75:0c:f0:7d:94:9b:c3:d0:e1:fc:
82:27:88:2e:82:fe:d2:d0:63:f0:4e:bb:3d:73:f0:
a8:73:37:72:5c:46:bd:25:87:22:96:8e:cd:ad:7c:
b9:d4:ce:ca:03:18:24:e3:44:75:24:ce:a2:9a:b0:
24:ab:2a:02:9b:48:87:ca:7b:63:f6:fc:f8:09:fe:
21:70:13:3c:fa:6a:27:c4:c4:dc:ff:f4:7b:bd:a3:
5f:44:f9:19:6b:24:6f:66:fc:48:36:89:49:41:0b:
1a:b0:3e:e2:29:f1:cf:56:c9:05:f8:9a:56:a3:8c:
29:d2:9f:24:01:dc:93:59:df:3d:65:cc:4f:68:b5:
3a:19:be:54:ec:25:a3:5f:a2:06:20:64:f0:92:0e:
96:ec:a0:45:6b:36:51:b0:ee:e3:51:7f:44:87:f5:
20:a9:c2:1f:06:ea:89:7d:f3:ff:b9:8f:e8:85:67:
49:4a:61:75:53:38:0d:38:88:f1:a3:c7:a0:52:7f:
b9:6b:b5:96:17:16:64:64:b2:58:8b:a2:57:e3:92:
24:e6:a2:8c:f5:76:82:75:a9:b5:50:17:e6:44:7f:
e1:78:c6:5e:28:14:f0:84:e4:e1:13:c7:01:b6:33:
fb:ff:a4:83:fa:f4:62:55:32:9d:54:27:14:1a:c4:
3c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:BC:CA:F1:75:71:8E:FA:DD:16:B2:9A:E2:80:49:57:BA:2A:14:1B
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/grzK8XVxjvrdFrKa4oBJV7oqFBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.252.27.0/24
81.168.50.0/24
82.152.176.0/23
82.153.35.0/24
82.153.136.0/22
89.213.148.0-89.213.159.255
89.213.172.0/22
89.213.196.0-89.213.207.255
89.213.232.0/21
109.176.16.0/21
109.176.201.0-109.176.202.255
109.176.204.0/22
185.49.126.0/23
194.105.80.0/20
212.38.88.0/23
213.218.210.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:df:59:8b:f1:1d:8b:f2:93:02:ab:69:68:a9:05:4d:30:90:
48:71:69:53:c0:c8:94:09:bb:23:f5:55:fc:15:79:4f:34:58:
f1:4f:b0:c3:fd:c1:ec:3e:83:40:93:62:77:1b:a2:07:7e:78:
e2:86:2b:92:13:51:03:98:64:f8:37:dc:02:6a:89:2b:ba:6f:
25:d1:4d:4c:65:81:f0:c9:b2:fd:b9:1a:91:0a:ed:c4:22:ad:
78:2e:ab:f1:c5:8b:75:6e:bb:dc:2e:a3:f1:d3:d0:1c:e6:b1:
70:d2:6c:c7:a4:99:6c:8e:83:22:40:39:e0:71:29:12:79:ce:
57:52:63:3e:a6:ba:24:3c:56:6e:73:0c:54:b5:53:ec:a6:ba:
65:98:31:dd:c9:02:79:18:00:d1:39:92:95:f7:e1:0a:b0:63:
4a:1a:f2:bb:50:12:40:1e:3f:c7:e5:e4:60:00:53:e4:37:10:
73:ef:f6:91:31:6b:29:cb:ab:31:d1:99:3d:19:6c:40:40:5d:
1e:d4:b9:9f:36:df:4d:ea:07:d8:d0:f5:2b:69:24:0c:bc:a6:
6c:22:d2:87:cc:62:30:f7:6d:4c:8c:ff:a6:87:1c:ed:8f:61:
8e:dd:37:0a:0c:56:28:ad:be:c4:91:53:7f:a2:75:52:c2:b6:
73:ba:e5:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:12:58 2025 by rpki-client