Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/l44AB2gj5QZaxgK9J2aiwVA-3Uo.roa
File: l44AB2gj5QZaxgK9J2aiwVA-3Uo.roa (raw, json)
Hash identifier: w9hee1tFGt/ZDtGCoqqCnbwdfeSg6iciZt9wn/KT3Ds=
Subject key identifier: 97:8E:00:07:68:23:E5:06:5A:C6:02:BD:27:66:A2:C1:50:3E:DD:4A
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0190FEC6E0E721F29A5DE3B0C2FBEFC22F44
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/l44AB2gj5QZaxgK9J2aiwVA-3Uo.roa
Signing time: Mon 29 Jul 2024 13:56:04 +0000
ROA not before: Mon 29 Jul 2024 13:56:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 82.152.176.0/23 maxlen: 23
82.153.136.0/22 maxlen: 22
82.153.243.0/24 maxlen: 24
89.213.50.0/23 maxlen: 23
89.213.56.0/22 maxlen: 22
89.213.145.0/24 maxlen: 24
89.213.148.0/22 maxlen: 24
89.213.152.0/22 maxlen: 24
89.213.156.0/22 maxlen: 24
89.213.167.0/24 maxlen: 24
89.213.172.0/22 maxlen: 24
89.213.196.0/22 maxlen: 24
89.213.200.0/22 maxlen: 24
89.213.204.0/22 maxlen: 24
89.213.228.0/22 maxlen: 22
89.213.232.0/22 maxlen: 24
89.213.236.0/22 maxlen: 24
109.176.16.0/21 maxlen: 24
109.176.204.0/22 maxlen: 24
185.49.126.0/23 maxlen: 24
194.105.76.0/22 maxlen: 24
194.105.80.0/20 maxlen: 20
212.38.88.0/23 maxlen: 24
213.218.211.0/24 maxlen: 24
217.145.66.0/24 maxlen: 24
217.145.72.0/21 maxlen: 24
217.145.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jul 2024 07:59:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fe:c6:e0:e7:21:f2:9a:5d:e3:b0:c2:fb:ef:c2:2f:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jul 29 13:56:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=978e00076823e5065ac602bd2766a2c1503edd4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:59:3b:1a:4a:83:80:17:2a:59:19:a1:ed:d7:
9d:51:4c:45:bf:0c:0c:78:18:1a:89:16:20:77:f3:
3a:56:22:9e:9c:49:f6:f2:12:8d:2b:3b:92:b7:fc:
d7:ba:de:45:4f:2b:da:73:35:a1:a0:cd:ff:84:cf:
83:ec:c7:c0:80:8b:d6:ff:60:3b:bd:91:36:15:54:
f9:35:ba:60:c8:ee:c8:b4:78:8b:55:23:5c:d4:f1:
ca:42:e9:d3:34:7e:b2:cb:43:2d:19:7e:9c:e7:4e:
e2:b4:34:d5:fb:3a:ea:bf:f5:02:90:4d:4a:ef:aa:
1c:9d:0e:27:66:b3:5c:3d:a7:13:35:1b:a5:37:56:
1c:48:c7:62:06:f8:39:51:6c:de:a4:dd:b8:30:5c:
c3:cb:bc:93:0e:b1:27:7c:9b:ff:87:db:3f:72:6e:
af:78:24:fa:f0:cd:9a:0e:49:bb:2b:e7:ec:17:ce:
34:19:5a:e2:b8:ac:50:66:f0:75:95:15:a0:d6:68:
28:70:0c:26:b6:59:43:61:4f:97:d4:c4:3f:b9:1d:
1c:aa:ee:8d:97:89:6b:07:c9:7b:51:fa:11:24:3b:
ca:24:7e:13:5a:7e:02:95:8e:e3:62:e4:dc:cd:3d:
41:49:f0:1e:f8:f8:46:38:9b:c0:41:53:18:04:b0:
13:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:8E:00:07:68:23:E5:06:5A:C6:02:BD:27:66:A2:C1:50:3E:DD:4A
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/l44AB2gj5QZaxgK9J2aiwVA-3Uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.176.0/23
82.153.136.0/22
82.153.243.0/24
89.213.50.0/23
89.213.56.0/22
89.213.145.0/24
89.213.148.0-89.213.159.255
89.213.167.0/24
89.213.172.0/22
89.213.196.0-89.213.207.255
89.213.228.0-89.213.239.255
109.176.16.0/21
109.176.204.0/22
185.49.126.0/23
194.105.76.0-194.105.95.255
212.38.88.0/23
213.218.211.0/24
217.145.66.0/24
217.145.72.0/21
Signature Algorithm: sha256WithRSAEncryption
a8:7b:04:15:fb:d2:81:76:98:f5:2e:8e:bf:15:dc:21:b9:a0:
0e:05:bc:78:a1:cd:7f:5c:79:5a:97:89:20:2a:f6:46:ac:7a:
42:0e:5a:a4:30:12:fa:ba:e9:14:f4:36:4f:5d:e4:b4:e6:a2:
2f:b7:53:48:69:b9:a3:77:15:3e:04:b5:61:34:4e:b0:ac:c7:
e7:41:5b:11:0d:a3:f2:21:86:37:9a:b6:f1:05:ef:66:b5:a0:
e5:88:bf:4e:2a:b5:46:d1:1f:d8:34:9a:26:8c:f0:11:13:c3:
c0:23:fa:79:e1:29:4c:26:ef:f5:14:6b:50:1b:7e:cd:c4:96:
59:b2:54:ab:59:fe:4d:2e:4b:ee:d9:ca:cc:fa:9a:e3:75:96:
d1:94:26:92:4a:c6:aa:8e:8c:ba:eb:fe:9e:ec:fd:81:d0:c6:
db:36:6d:af:5c:5c:b9:cd:32:b0:92:b1:5a:84:ac:d5:18:5d:
17:1a:fa:c8:c0:ea:d7:24:ed:a8:5b:f1:56:7d:24:c7:a8:b3:
41:3e:4b:06:02:e2:02:45:a1:45:63:35:eb:c8:36:b7:d0:5a:
f3:50:a8:93:6b:69:0e:58:4b:14:23:65:00:92:cf:8d:59:1e:
0b:7d:ba:72:8b:34:42:56:d7:32:c2:fc:b5:18:89:a3:1a:12:
ed:bb:39:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:04:26 2025 by rpki-client