Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/lM5T1Wqq7sFfo6FWnh9cc43Ms1k.roa
File: lM5T1Wqq7sFfo6FWnh9cc43Ms1k.roa (raw, json)
Hash identifier: hamArjdWvlwQkHSMXWPj+OQlWlVZOW6ALhZGtJwMfJA=
Subject key identifier: 94:CE:53:D5:6A:AA:EE:C1:5F:A3:A1:56:9E:1F:5C:73:8D:CC:B3:59
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019219A447D196C971AB2FE627DDAFEF7C2D
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/lM5T1Wqq7sFfo6FWnh9cc43Ms1k.roa
Signing time: Sun 22 Sep 2024 12:10:49 +0000
ROA not before: Sun 22 Sep 2024 12:10:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 82.152.176.0/23 maxlen: 23
82.152.178.0/24 maxlen: 24
82.153.136.0/22 maxlen: 22
82.153.243.0/24 maxlen: 24
89.213.44.0/23 maxlen: 24
89.213.50.0/23 maxlen: 23
89.213.56.0/22 maxlen: 22
89.213.129.0/24 maxlen: 24
89.213.139.0/24 maxlen: 24
89.213.145.0/24 maxlen: 24
89.213.148.0/22 maxlen: 24
89.213.152.0/22 maxlen: 24
89.213.154.0/24 maxlen: 24
89.213.156.0/22 maxlen: 24
89.213.167.0/24 maxlen: 24
89.213.172.0/22 maxlen: 24
89.213.196.0/22 maxlen: 24
89.213.200.0/22 maxlen: 24
89.213.204.0/22 maxlen: 24
89.213.228.0/22 maxlen: 22
89.213.228.0/23 maxlen: 24
89.213.232.0/22 maxlen: 24
89.213.236.0/22 maxlen: 24
109.176.16.0/21 maxlen: 24
109.176.204.0/22 maxlen: 24
109.176.242.0/23 maxlen: 24
185.49.126.0/23 maxlen: 24
194.105.80.0/20 maxlen: 20
194.105.90.0/23 maxlen: 24
212.38.88.0/23 maxlen: 24
213.218.211.0/24 maxlen: 24
217.145.65.0/24 maxlen: 24
217.145.66.0/24 maxlen: 24
217.145.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Sep 2024 14:11:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:19:a4:47:d1:96:c9:71:ab:2f:e6:27:dd:af:ef:7c:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Sep 22 12:10:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=94ce53d56aaaeec15fa3a1569e1f5c738dccb359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3f:17:fe:8f:61:62:35:4f:19:41:2d:2d:7d:
86:b3:3b:62:38:69:4e:ec:41:39:8a:16:cc:fe:6d:
24:4f:16:e7:dd:a8:b0:1f:05:29:2f:9a:88:ba:dd:
69:18:32:38:ed:86:d6:31:3c:60:d0:3b:86:78:8b:
2c:db:c7:2f:8e:31:01:b6:4f:7b:94:99:8f:c0:d9:
80:d0:6b:cb:55:6d:dc:ac:64:dc:6c:f6:00:ba:b2:
20:b4:39:4d:43:9f:33:f2:2c:f9:0b:63:8d:99:06:
5e:b4:b2:70:62:1b:22:47:f6:4f:f7:9b:1d:5f:c4:
6d:74:67:1e:6d:89:93:f7:31:82:37:42:01:a1:9f:
e3:44:96:e0:92:ad:1a:77:1a:60:2f:13:f5:59:22:
ac:f7:49:d1:0e:69:04:7a:98:47:5d:b5:ff:b0:3f:
2f:3a:b0:c8:87:6e:c5:69:d2:e5:af:3a:74:9b:e8:
92:84:89:1c:cc:53:54:db:23:d7:e7:83:6d:84:9d:
7a:d2:b8:0e:8b:69:86:48:3b:31:c6:9b:ab:c2:0a:
5a:8d:81:38:7c:e1:01:24:77:a2:2f:62:bc:4d:fa:
a1:8c:e8:37:db:1f:4b:d4:68:6a:ba:2e:40:f2:93:
ed:40:3f:d1:bb:1e:16:d7:29:10:95:ca:2e:2a:9d:
dc:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:CE:53:D5:6A:AA:EE:C1:5F:A3:A1:56:9E:1F:5C:73:8D:CC:B3:59
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/lM5T1Wqq7sFfo6FWnh9cc43Ms1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.176.0-82.152.178.255
82.153.136.0/22
82.153.243.0/24
89.213.44.0/23
89.213.50.0/23
89.213.56.0/22
89.213.129.0/24
89.213.139.0/24
89.213.145.0/24
89.213.148.0-89.213.159.255
89.213.167.0/24
89.213.172.0/22
89.213.196.0-89.213.207.255
89.213.228.0-89.213.239.255
109.176.16.0/21
109.176.204.0/22
109.176.242.0/23
185.49.126.0/23
194.105.80.0/20
212.38.88.0/23
213.218.211.0/24
217.145.65.0-217.145.66.255
217.145.72.0/21
Signature Algorithm: sha256WithRSAEncryption
42:70:7c:12:86:16:42:3a:40:99:d0:85:73:53:eb:07:43:21:
b4:11:86:81:39:bc:48:f2:c2:c0:fc:2f:06:3b:3e:d2:bc:94:
f6:59:fd:69:8b:9d:99:5d:3a:84:c7:2d:6f:62:ff:11:be:b3:
b5:85:6a:3e:79:7b:a3:de:02:e5:1b:9f:56:21:40:12:a4:0c:
fc:8a:b2:9d:f3:00:05:20:86:cc:04:a3:92:10:70:81:34:a7:
69:1a:53:e6:15:18:70:48:94:0d:03:45:1a:95:ad:91:36:d8:
22:22:4e:2d:d9:58:01:1c:c0:df:a1:dd:a5:4d:27:0b:00:d3:
fe:46:8b:7a:53:55:9c:89:98:1f:20:e4:09:d1:f2:58:4c:18:
3b:16:78:e9:ba:00:9d:69:02:fa:9d:fb:74:9c:e8:13:9d:9b:
f4:2c:41:8c:bc:fc:ba:d5:5f:21:82:98:a6:ef:eb:74:a9:a8:
b0:0c:51:e3:32:85:72:ae:76:3e:ba:27:b4:5e:ff:08:01:58:
01:05:2f:7a:5f:eb:35:d4:71:a9:de:1c:df:f5:8a:ae:21:6a:
0b:61:cf:1f:d4:3d:f2:a4:ce:63:e3:bc:63:ab:22:ba:2d:8d:
77:88:dd:85:d7:13:71:d0:e9:8d:05:66:ce:d5:b6:c7:80:3b:
d1:33:ac:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:28:28 2025 by rpki-client