Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/oOxGvjAURbrGc_nDP1d5oc60764.roa
File: oOxGvjAURbrGc_nDP1d5oc60764.roa (raw, json)
Hash identifier: WPgzM0gW0Tqyn+p7AJRWV33cXNFNdhpTrEWWvJR9nwk=
Subject key identifier: A0:EC:46:BE:30:14:45:BA:C6:73:F9:C3:3F:57:79:A1:CE:B4:EF:AE
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019026C0E7C3FE3A2B2FAE22B63B1AAEA11F
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/oOxGvjAURbrGc_nDP1d5oc60764.roa
Signing time: Mon 17 Jun 2024 15:11:34 +0000
ROA not before: Mon 17 Jun 2024 15:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 81.168.83.0/24 maxlen: 24
81.168.120.0/24 maxlen: 24
82.152.8.0/24 maxlen: 24
82.152.248.0/24 maxlen: 24
82.152.251.0/24 maxlen: 24
82.152.254.0/24 maxlen: 24
82.153.34.0/24 maxlen: 24
82.153.37.0/24 maxlen: 24
82.153.69.0/24 maxlen: 24
82.153.72.0/24 maxlen: 24
82.153.79.0/24 maxlen: 24
82.153.132.0/24 maxlen: 24
82.153.201.0/24 maxlen: 24
82.153.224.0/24 maxlen: 24
82.163.23.0/24 maxlen: 24
89.213.4.0/24 maxlen: 24
89.213.6.0/24 maxlen: 24
89.213.7.0/24 maxlen: 24
89.213.130.0/24 maxlen: 24
89.213.190.0/24 maxlen: 24
89.213.196.0/24 maxlen: 24
109.176.247.0/24 maxlen: 24
109.176.251.0/24 maxlen: 24
185.49.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jun 2024 14:25:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:26:c0:e7:c3:fe:3a:2b:2f:ae:22:b6:3b:1a:ae:a1:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jun 17 15:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a0ec46be301445bac673f9c33f5779a1ceb4efae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a1:98:1c:82:69:d6:49:d0:82:bc:58:bd:7a:
d1:99:c2:55:29:65:ea:6c:97:bf:81:90:16:ef:b7:
9e:7e:a6:82:cf:42:88:9e:b0:97:60:e1:2b:f2:28:
fa:d7:6b:6d:a5:de:34:77:30:f1:a8:e0:06:bd:b4:
61:ec:26:26:0f:45:5a:94:a0:bd:8a:62:92:5e:16:
f5:5a:10:00:b9:f7:f6:53:7a:5b:46:b1:d2:f5:72:
fc:2d:81:1b:db:82:9c:8c:ae:e2:8a:b5:11:ca:45:
f0:8a:06:59:3c:61:ab:2f:53:1a:6d:95:28:92:ee:
c6:45:6f:7a:0f:61:73:22:9e:39:85:fd:1a:a1:26:
12:b7:64:39:1c:7a:36:79:22:76:22:ba:ce:32:4f:
9f:27:b5:02:58:b4:f2:d5:3e:f3:bc:ce:4f:a3:af:
74:fe:40:17:44:74:94:e5:53:7b:a6:2c:5e:e4:dd:
5d:5e:7c:15:b0:c3:b2:bd:ba:0b:20:b2:5f:a8:eb:
41:f7:f5:ae:64:86:fd:37:88:21:ad:45:64:30:6d:
cd:5c:d5:70:3a:c0:29:e2:91:29:c1:17:b3:53:31:
c0:13:2d:b5:57:10:34:07:1d:d4:8b:f8:52:e4:6a:
c0:2c:3c:05:b1:da:68:c1:8e:23:0a:91:01:e3:61:
0d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:EC:46:BE:30:14:45:BA:C6:73:F9:C3:3F:57:79:A1:CE:B4:EF:AE
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/oOxGvjAURbrGc_nDP1d5oc60764.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.168.83.0/24
81.168.120.0/24
82.152.8.0/24
82.152.248.0/24
82.152.251.0/24
82.152.254.0/24
82.153.34.0/24
82.153.37.0/24
82.153.69.0/24
82.153.72.0/24
82.153.79.0/24
82.153.132.0/24
82.153.201.0/24
82.153.224.0/24
82.163.23.0/24
89.213.4.0/24
89.213.6.0/23
89.213.130.0/24
89.213.190.0/24
89.213.196.0/24
109.176.247.0/24
109.176.251.0/24
185.49.124.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:2f:65:88:45:0a:a4:51:fa:23:63:5f:c1:b6:33:2b:7f:84:
7d:fa:b7:37:09:15:13:39:83:a1:a0:e0:09:51:a2:59:0e:49:
b4:a1:79:b5:cf:40:c8:7c:ff:ae:8f:e2:6f:df:7d:88:f2:a0:
ea:5c:c9:d4:75:b6:bf:05:74:d1:da:dc:ec:aa:c4:b8:37:1a:
78:ef:d7:91:92:d4:29:2c:3d:b4:a4:8e:e8:5a:fe:6e:ef:6e:
ea:06:8b:1d:8c:27:98:94:ae:ac:52:c9:0a:58:8f:dd:48:05:
9d:b7:c1:8b:0c:eb:39:04:65:3f:e7:01:73:eb:84:21:91:d6:
f6:40:cc:2f:96:a5:31:c0:81:da:76:c0:ae:91:db:90:37:c7:
27:ba:5d:1e:56:79:75:74:71:9a:d7:f9:a5:1d:12:8a:d1:7a:
4c:29:b1:9d:a1:79:a3:f8:34:44:55:d2:72:7c:66:32:8e:51:
a1:5e:cb:c9:df:68:ff:73:4f:9f:a3:2f:ad:a0:a8:92:f3:a1:
dc:9e:46:57:4f:e8:33:9f:40:df:45:37:0f:37:e1:91:6d:4a:
18:e9:d3:9e:02:b1:86:fb:57:ef:df:4d:5e:28:0b:f7:4e:43:
12:2a:60:84:60:1a:0c:4b:be:60:58:fd:16:2d:27:05:00:7e:
4a:de:51:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:27:30 2025 by rpki-client