Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/w00c16Sq7ToNQul4k9XoKw3Tqxc.roa
File: w00c16Sq7ToNQul4k9XoKw3Tqxc.roa (raw, json)
Hash identifier: ztG1Jjaiyq9kLRU9uIwAyG0zd3oqt8tpt0Jt5Rij8Ak=
Subject key identifier: C3:4D:1C:D7:A4:AA:ED:3A:0D:42:E9:78:93:D5:E8:2B:0D:D3:AB:17
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019026C0E7601E98443A81617A815E50F56A
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/w00c16Sq7ToNQul4k9XoKw3Tqxc.roa
Signing time: Mon 17 Jun 2024 15:11:34 +0000
ROA not before: Mon 17 Jun 2024 15:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 82.152.57.0/24 maxlen: 24
82.152.58.0/24 maxlen: 24
82.152.73.0/24 maxlen: 24
82.152.75.0/24 maxlen: 24
82.152.76.0/23 maxlen: 24
82.152.79.0/24 maxlen: 24
82.152.86.0/23 maxlen: 24
82.152.88.0/24 maxlen: 24
82.152.109.0/24 maxlen: 24
82.152.226.0/24 maxlen: 24
82.152.240.0/24 maxlen: 24
82.152.243.0/24 maxlen: 24
82.153.38.0/24 maxlen: 24
82.153.56.0/24 maxlen: 24
82.153.61.0/24 maxlen: 24
82.153.83.0/24 maxlen: 24
82.153.84.0/24 maxlen: 24
82.153.152.0/24 maxlen: 24
82.153.186.0/24 maxlen: 24
82.153.225.0/24 maxlen: 24
82.153.239.0/24 maxlen: 24
89.213.43.0/24 maxlen: 24
89.213.98.0/24 maxlen: 24
89.213.145.0/24 maxlen: 24
89.213.161.0/24 maxlen: 24
89.213.232.0/23 maxlen: 24
89.213.234.0/23 maxlen: 24
89.213.236.0/23 maxlen: 24
109.176.32.0/21 maxlen: 24
109.176.40.0/21 maxlen: 24
109.176.48.0/21 maxlen: 24
109.176.56.0/21 maxlen: 24
109.176.235.0/24 maxlen: 24
213.130.130.0/24 maxlen: 24
213.130.149.0/24 maxlen: 24
213.210.58.0/24 maxlen: 24
213.218.214.0/24 maxlen: 24
213.218.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jun 2024 14:26:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:26:c0:e7:60:1e:98:44:3a:81:61:7a:81:5e:50:f5:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jun 17 15:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c34d1cd7a4aaed3a0d42e97893d5e82b0dd3ab17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ba:fd:14:f9:00:c2:63:86:01:c1:d9:f4:f4:
1a:a2:d4:21:11:f2:ef:8b:fc:fe:7d:d0:0b:5d:54:
4c:f1:bb:1b:8d:a0:77:af:fd:c5:c4:8a:6e:a4:81:
00:ea:17:00:cc:07:0d:f9:ef:83:50:47:75:45:c7:
00:4b:0a:28:55:3e:e3:e6:69:ea:66:85:a9:cd:93:
3a:78:19:75:3e:3a:b3:9b:c6:bc:42:bb:cb:09:8f:
66:c0:82:73:43:cc:7a:e3:06:a0:13:62:fe:cb:08:
1c:09:a7:48:f4:9c:3a:b9:b8:93:14:87:2e:bd:fa:
ec:ba:b1:59:71:dc:45:50:09:97:d3:62:12:54:91:
88:c7:66:94:fa:36:11:e5:6b:49:13:e2:89:ef:8b:
82:d2:ba:6c:20:ff:24:b8:38:58:63:53:35:90:fb:
ce:f9:22:27:d5:0e:df:b0:7e:53:d3:df:df:b4:2d:
98:e0:7c:7f:94:4b:cf:f9:95:22:f9:2c:b8:04:db:
0e:90:be:70:47:81:35:1b:97:b0:2a:d2:2d:bd:6a:
2b:f4:17:84:74:30:da:90:94:1d:f5:52:e8:eb:1b:
d5:53:22:9b:63:99:1f:f2:7c:af:da:a4:02:ec:a9:
54:cd:80:ea:3d:b8:cb:56:22:d9:04:e4:7f:83:5c:
90:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:4D:1C:D7:A4:AA:ED:3A:0D:42:E9:78:93:D5:E8:2B:0D:D3:AB:17
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/w00c16Sq7ToNQul4k9XoKw3Tqxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.57.0-82.152.58.255
82.152.73.0/24
82.152.75.0-82.152.77.255
82.152.79.0/24
82.152.86.0-82.152.88.255
82.152.109.0/24
82.152.226.0/24
82.152.240.0/24
82.152.243.0/24
82.153.38.0/24
82.153.56.0/24
82.153.61.0/24
82.153.83.0-82.153.84.255
82.153.152.0/24
82.153.186.0/24
82.153.225.0/24
82.153.239.0/24
89.213.43.0/24
89.213.98.0/24
89.213.145.0/24
89.213.161.0/24
89.213.232.0-89.213.237.255
109.176.32.0/19
109.176.235.0/24
213.130.130.0/24
213.130.149.0/24
213.210.58.0/24
213.218.214.0/24
213.218.231.0/24
Signature Algorithm: sha256WithRSAEncryption
69:82:6e:b1:80:0c:dc:c0:51:29:c0:e8:80:4d:57:b0:7a:fd:
cc:e4:21:aa:65:e0:80:cf:d2:d6:4a:c1:48:c9:6c:ee:6b:b4:
38:2b:48:9a:6d:f9:7b:ee:9b:08:90:b1:9b:08:6d:c4:0e:11:
16:c3:ad:ea:af:ce:73:95:a1:a5:31:5a:96:f5:17:03:b4:d2:
3f:2e:8b:f1:1e:d8:eb:f4:2f:4e:c9:94:71:5b:7a:a6:ed:5d:
4e:ac:4b:5e:10:b5:4d:68:b8:be:f0:22:56:0d:a6:00:5c:fd:
ca:a6:75:2d:07:e6:d5:06:8d:59:9f:62:9b:58:62:f3:2a:96:
09:42:19:04:59:ad:2e:55:fc:a5:e1:81:90:be:4d:51:1e:f4:
3f:2e:e0:a4:96:23:5d:fc:86:08:a0:30:76:89:bf:33:9b:73:
c9:66:78:ed:97:14:00:c7:fb:66:b4:a2:96:e6:a9:0d:7d:7b:
17:5f:6e:cb:29:88:8e:e7:90:af:0f:64:eb:0a:9c:ab:1d:2b:
54:72:fe:8d:c1:9f:fb:25:52:e9:f9:fa:75:fa:30:70:9e:8f:
1c:ef:a3:2c:0e:df:e0:a2:3f:bd:4f:03:69:62:b9:3a:d9:97:
46:7a:90:29:e1:d1:b0:b6:96:95:4c:76:08:f5:ff:c1:77:0f:
c7:99:b8:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:21:55 2025 by rpki-client