Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/vvIooy_xlpQrHU5Fx1qQi5NzHOQ.roa
File: vvIooy_xlpQrHU5Fx1qQi5NzHOQ.roa (raw, json)
Hash identifier: Bnb2FRDlSZWXmB1zcPJnc03A3FukM88ll69dqPthZe8=
Subject key identifier: BE:F2:28:A3:2F:F1:96:94:2B:1D:4E:45:C7:5A:90:8B:93:73:1C:E4
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019204BED81AC1D480F746588B141592F827
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/vvIooy_xlpQrHU5Fx1qQi5NzHOQ.roa
Signing time: Wed 18 Sep 2024 10:47:48 +0000
ROA not before: Wed 18 Sep 2024 10:47:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 82.152.176.0/23 maxlen: 23
82.152.178.0/24 maxlen: 24
82.153.136.0/22 maxlen: 22
82.153.243.0/24 maxlen: 24
89.213.44.0/23 maxlen: 24
89.213.50.0/23 maxlen: 23
89.213.56.0/22 maxlen: 22
89.213.129.0/24 maxlen: 24
89.213.139.0/24 maxlen: 24
89.213.145.0/24 maxlen: 24
89.213.148.0/22 maxlen: 24
89.213.152.0/22 maxlen: 24
89.213.154.0/24 maxlen: 24
89.213.156.0/22 maxlen: 24
89.213.167.0/24 maxlen: 24
89.213.172.0/22 maxlen: 24
89.213.196.0/22 maxlen: 24
89.213.200.0/22 maxlen: 24
89.213.204.0/22 maxlen: 24
89.213.228.0/22 maxlen: 22
89.213.228.0/23 maxlen: 24
89.213.232.0/22 maxlen: 24
89.213.236.0/22 maxlen: 24
109.176.16.0/21 maxlen: 24
109.176.20.0/24 maxlen: 24
109.176.201.0/24 maxlen: 24
109.176.204.0/22 maxlen: 24
109.176.242.0/23 maxlen: 24
185.49.126.0/23 maxlen: 24
194.105.80.0/20 maxlen: 20
194.105.90.0/23 maxlen: 24
212.38.88.0/23 maxlen: 24
213.218.211.0/24 maxlen: 24
217.145.65.0/24 maxlen: 24
217.145.66.0/24 maxlen: 24
217.145.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 13:27:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:04:be:d8:1a:c1:d4:80:f7:46:58:8b:14:15:92:f8:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Sep 18 10:47:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bef228a32ff196942b1d4e45c75a908b93731ce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3a:e8:c7:00:83:55:fa:01:11:1e:2b:47:7e:
09:db:71:77:ec:4a:e8:8e:bd:1f:c8:aa:4c:b9:d9:
28:f4:48:6e:6d:c4:5c:9a:96:c0:da:9c:e0:6e:2f:
ee:3a:35:66:8b:bd:24:2d:dc:52:0a:2d:4e:30:3f:
a5:ea:06:ca:80:99:d5:18:4c:a7:52:de:04:ec:cd:
fa:80:a3:14:0d:33:88:31:6d:30:8a:d1:b9:f2:fd:
d6:e3:4b:43:32:d0:2e:7b:71:04:2f:b2:c3:ea:a5:
ee:a3:9e:5b:5e:7c:03:3a:40:29:d3:05:4e:18:f2:
87:7c:3d:4b:bd:32:cc:53:bc:fa:ff:43:af:c2:64:
56:ac:b8:b7:1f:9e:89:50:7b:c4:5b:ee:63:84:76:
ec:ca:48:24:bf:d7:95:f7:b9:dd:fb:3b:46:40:7d:
ce:82:ec:77:f2:88:fa:eb:0a:98:ce:26:84:07:e8:
cb:58:6e:64:cb:9a:f9:27:60:df:1a:40:09:80:3c:
fc:9f:1b:5b:fd:51:f4:86:6b:e6:55:25:29:33:a5:
99:a9:72:de:35:97:41:dd:7d:f5:3b:7c:41:8b:6d:
dd:88:94:82:54:50:38:ae:69:62:b6:09:e4:5d:b8:
a0:5b:5b:1a:7f:5e:f8:ed:15:c3:d4:04:65:f3:94:
b1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F2:28:A3:2F:F1:96:94:2B:1D:4E:45:C7:5A:90:8B:93:73:1C:E4
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/vvIooy_xlpQrHU5Fx1qQi5NzHOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.176.0-82.152.178.255
82.153.136.0/22
82.153.243.0/24
89.213.44.0/23
89.213.50.0/23
89.213.56.0/22
89.213.129.0/24
89.213.139.0/24
89.213.145.0/24
89.213.148.0-89.213.159.255
89.213.167.0/24
89.213.172.0/22
89.213.196.0-89.213.207.255
89.213.228.0-89.213.239.255
109.176.16.0/21
109.176.201.0/24
109.176.204.0/22
109.176.242.0/23
185.49.126.0/23
194.105.80.0/20
212.38.88.0/23
213.218.211.0/24
217.145.65.0-217.145.66.255
217.145.72.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:27:ed:60:97:2b:81:8a:7a:c9:9e:f5:5a:12:d2:8c:dd:ad:
6f:76:12:67:8e:9e:fe:22:91:9d:6c:66:f7:df:8a:50:6c:4d:
70:35:ab:4e:5e:03:4a:c4:75:3c:b3:d6:36:53:1f:47:c3:a4:
71:88:49:b4:25:4e:33:de:78:58:7a:8a:d9:10:67:39:d2:1e:
53:24:63:5c:a3:18:d6:6a:6a:04:d7:81:ec:81:0a:54:75:76:
04:d9:58:17:d7:e0:86:70:84:8b:ab:ac:63:39:28:45:ca:9c:
ee:85:dd:f9:fd:cf:61:e8:ce:92:9d:32:7e:68:24:54:23:d1:
52:5f:73:58:ed:b1:b0:fb:61:1c:50:12:85:6c:07:b6:19:95:
28:f1:24:bf:cc:c2:b8:5f:9e:5f:a3:64:34:ae:96:85:2e:48:
2b:bc:a8:dc:46:5a:c9:ad:87:35:4e:48:88:b1:2e:8c:6d:f8:
14:0e:fc:cf:6f:72:7d:d2:40:79:3b:d6:e8:6d:85:dc:09:29:
b0:4d:be:85:71:c4:92:01:fd:67:d4:85:68:43:fc:9c:0d:97:
76:27:68:26:d0:c7:64:32:e3:26:1c:cb:92:92:4b:4e:8f:78:
08:10:c5:d3:2d:af:9f:76:08:66:62:32:40:dc:fd:88:34:ce:
51:ca:b0:ff
-----BEGIN CERTIFICATE-----
MIIFtDCCBJygAwIBAgISAZIEvtgawdSA90ZYixQVkvgnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh
NTNiOWIwHhcNMjQwOTE4MTA0NzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZWYyMjhhMzJmZjE5Njk0MmIxZDRlNDVjNzVhOTA4YjkzNzMxY2U0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkzroxwCDVfoBER4rR34J23F37Ero
jr0fyKpMudko9EhubcRcmpbA2pzgbi/uOjVmi70kLdxSCi1OMD+l6gbKgJnVGEyn
Ut4E7M36gKMUDTOIMW0witG58v3W40tDMtAue3EEL7LD6qXuo55bXnwDOkAp0wVO
GPKHfD1LvTLMU7z6/0OvwmRWrLi3H56JUHvEW+5jhHbsykgkv9eV97nd+ztGQH3O
gux38oj66wqYziaEB+jLWG5ky5r5J2DfGkAJgDz8nxtb/VH0hmvmVSUpM6WZqXLe
NZdB3X31O3xBi23diJSCVFA4rmlitgnkXbigW1saf1747RXD1ARl85SxFwIDAQAB
o4ICwDCCArwwHQYDVR0OBBYEFL7yKKMv8ZaUKx1ORcdakIuTcxzkMB8GA1UdIwQY
MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt
NDEyMjhlMzlmZjdjLzEvdnZJb295X3hscFFySFU1RngxcVFpNU56SE9RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzktNDEyMjhlMzlmZjdj
LzEvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHVBggrBgEFBQcBBwEB/wSBxTCBwjCBvwQCAAEwgbgwDAME
BFKYsAMEAFKYsgMEAlKZiAMEAFKZ8wMEAVnVLAMEAVnVMgMEAlnVOAMEAFnVgQME
AFnViwMEAFnVkTAMAwQCWdWUAwQFWdWAAwQAWdWnAwQCWdWsMAwDBAJZ1cQDBARZ
1cAwDAMEAlnV5AMEBFnV4AMEA22wEAMEAG2wyQMEAm2wzAMEAW2w8gMEAbkxfgME
BMJpUAMEAdQmWAMEANXa0zAMAwQA2ZFBAwQA2ZFCAwQD2ZFIMA0GCSqGSIb3DQEB
CwUAA4IBAQA8J+1glyuBinrJnvVaEtKM3a1vdhJnjp7+IpGdbGb334pQbE1wNatO
XgNKxHU8s9Y2Ux9Hw6RxiEm0JU4z3nhYeorZEGc50h5TJGNcoxjWamoE14HsgQpU
dXYE2VgX1+CGcISLq6xjOShFypzuhd35/c9h6M6SnTJ+aCRUI9FSX3NY7bGw+2Ec
UBKFbAe2GZUo8SS/zMK4X55fo2Q0rpaFLkgrvKjcRlrJrYc1TkiIsS6MbfgUDvzP
b3J90kB5O9bobYXcCSmwTb6FccSSAf1n1IVoQ/ycDZd2J2gm0MdkMuMmHMuSkktO
j3gIEMXTLa+fdghmYjJA3P2INM5RyrD/
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:19:31 2025 by rpki-client