Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/of01VTLuMWMUBX85uOpLJxGzhqc.roa
File: of01VTLuMWMUBX85uOpLJxGzhqc.roa (raw, json)
Hash identifier: MPW0BZ6yiMcSwDLvjhMmjfyDYlwg7EVgygpzMwYSp1Q=
Subject key identifier: A1:FD:35:55:32:EE:31:63:14:05:7F:39:B8:EA:4B:27:11:B3:86:A7
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0190123F44B02A8B9A44643FDC9F996A0BF1
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/of01VTLuMWMUBX85uOpLJxGzhqc.roa
Signing time: Thu 13 Jun 2024 15:37:34 +0000
ROA not before: Thu 13 Jun 2024 15:37:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 37.252.27.0/24 maxlen: 24
81.168.50.0/24 maxlen: 24
82.152.12.0/24 maxlen: 24
82.152.142.0/24 maxlen: 24
82.152.176.0/23 maxlen: 23
82.153.34.0/24 maxlen: 24
82.153.35.0/24 maxlen: 24
82.153.136.0/22 maxlen: 22
82.153.201.0/24 maxlen: 24
89.213.148.0/22 maxlen: 24
89.213.152.0/22 maxlen: 24
89.213.156.0/22 maxlen: 24
89.213.172.0/22 maxlen: 24
89.213.196.0/22 maxlen: 24
89.213.200.0/22 maxlen: 24
89.213.204.0/22 maxlen: 24
89.213.232.0/22 maxlen: 24
89.213.236.0/22 maxlen: 24
109.176.16.0/21 maxlen: 24
109.176.202.0/24 maxlen: 24
109.176.204.0/22 maxlen: 24
185.49.126.0/23 maxlen: 24
194.105.80.0/20 maxlen: 20
212.38.88.0/23 maxlen: 24
213.218.210.0/24 maxlen: 24
213.218.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jun 2024 15:28:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:12:3f:44:b0:2a:8b:9a:44:64:3f:dc:9f:99:6a:0b:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jun 13 15:37:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a1fd355532ee316314057f39b8ea4b2711b386a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0b:92:a9:4d:68:9c:f1:dd:89:0b:91:c4:b5:
13:f3:6b:1a:cd:2e:c8:b0:01:56:22:dd:9d:d6:fa:
74:77:4f:45:74:60:e4:53:32:33:91:03:dc:ca:d2:
0f:7b:85:60:09:79:a5:fb:7f:7b:96:f7:e3:13:3d:
f7:3f:19:14:88:aa:f8:61:64:37:87:64:c7:04:a8:
74:41:0c:70:51:73:1a:1a:ab:9f:ce:9c:2f:02:ab:
50:76:c3:78:74:2c:09:41:37:d7:1d:bf:77:6c:af:
50:e9:e3:87:2b:27:14:a4:a2:d9:78:a6:c8:e3:98:
f9:84:55:83:dd:72:85:e1:15:5c:53:7f:a6:3a:d6:
28:02:a9:23:96:79:30:b1:0a:e8:d6:d6:78:e5:2f:
69:f9:df:a9:8f:14:1c:5a:4e:c1:5e:e0:1a:ef:aa:
cc:fc:15:77:db:5d:0b:30:24:a6:c0:69:6e:4a:34:
3e:ca:96:6c:bd:ca:ce:6c:69:15:7e:34:43:94:70:
b6:e9:9e:42:08:a7:f8:06:93:c5:92:77:fb:86:02:
a6:3b:f5:f0:63:df:77:28:d2:b6:23:18:9e:97:fe:
4d:a6:90:43:d0:2d:95:5d:9d:85:21:d9:ba:9c:2e:
c5:33:a5:94:2c:84:2a:79:93:62:cf:02:77:1e:5b:
4d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:FD:35:55:32:EE:31:63:14:05:7F:39:B8:EA:4B:27:11:B3:86:A7
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/of01VTLuMWMUBX85uOpLJxGzhqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.252.27.0/24
81.168.50.0/24
82.152.12.0/24
82.152.142.0/24
82.152.176.0/23
82.153.34.0/23
82.153.136.0/22
82.153.201.0/24
89.213.148.0-89.213.159.255
89.213.172.0/22
89.213.196.0-89.213.207.255
89.213.232.0/21
109.176.16.0/21
109.176.202.0/24
109.176.204.0/22
185.49.126.0/23
194.105.80.0/20
212.38.88.0/23
213.218.210.0/23
Signature Algorithm: sha256WithRSAEncryption
56:d6:aa:91:4e:79:7a:83:c5:9a:08:e7:68:73:80:87:7a:e2:
00:bf:b4:9f:79:db:88:63:3c:6b:ab:07:50:85:ef:2f:ca:6b:
0d:1b:73:97:05:9e:8f:e8:25:a3:7c:0b:00:1b:00:c2:3c:ce:
85:7d:dd:88:36:48:4c:28:95:91:88:7a:dc:4c:35:8a:87:cb:
fe:d1:ce:36:f3:31:83:ea:89:d4:b0:cc:bb:d2:62:7c:d4:f3:
ed:54:e3:51:df:e4:50:eb:e5:c5:95:d1:9e:f3:f9:43:fc:80:
a1:50:d2:8d:b5:dd:6b:ae:36:3b:5a:ae:03:7e:e0:f3:ed:a9:
90:c9:4b:f6:9d:72:92:5c:8a:9e:ec:c6:05:b7:89:8c:de:c3:
02:26:91:b0:09:a8:39:1f:a9:cc:d8:a5:08:70:de:93:cf:ef:
3b:21:71:8e:57:f0:5f:83:40:46:42:a1:8a:01:c9:5d:ac:0b:
1f:3c:0d:c4:f9:ff:01:fb:06:ef:60:43:c0:08:60:46:2f:49:
87:ca:54:f9:e3:60:5b:27:05:eb:50:3c:d9:e2:1f:55:f8:74:
32:f6:e7:69:5c:53:64:2b:de:1c:70:77:99:d4:88:da:bf:51:
66:c4:82:0b:48:57:ff:b9:7e:96:ab:da:cf:06:fd:4d:e2:81:
f1:c4:e0:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:04:39 2025 by rpki-client