Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/DbGj2XwfXKBtOk1AjMIYnu2yVuQ.roa
File: DbGj2XwfXKBtOk1AjMIYnu2yVuQ.roa (raw, json)
Hash identifier: Vob/35/4VgRCXmA0WTOsqRM4aNNw6WTYA0hVVYuRCMM=
Subject key identifier: 0D:B1:A3:D9:7C:1F:5C:A0:6D:3A:4D:40:8C:C2:18:9E:ED:B2:56:E4
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 01904B3D1D3BF36269EB3DB84013EF4C1140
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/DbGj2XwfXKBtOk1AjMIYnu2yVuQ.roa
Signing time: Mon 24 Jun 2024 17:13:34 +0000
ROA not before: Mon 24 Jun 2024 17:13:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 89.34.224.0/23 maxlen: 24
89.34.228.0/24 maxlen: 24
89.34.231.0/24 maxlen: 24
89.38.228.0/24 maxlen: 24
89.38.229.0/24 maxlen: 24
89.40.82.0/24 maxlen: 24
89.42.80.0/24 maxlen: 24
89.42.81.0/24 maxlen: 24
89.42.82.0/24 maxlen: 24
89.42.86.0/24 maxlen: 24
89.42.95.0/24 maxlen: 24
89.42.143.0/24 maxlen: 24
89.43.140.0/24 maxlen: 24
89.43.143.0/24 maxlen: 24
89.46.0.0/24 maxlen: 24
89.46.3.0/24 maxlen: 24
89.47.99.0/24 maxlen: 24
89.47.115.0/24 maxlen: 24
89.47.117.0/24 maxlen: 24
89.47.119.0/24 maxlen: 24
89.47.125.0/24 maxlen: 24
89.47.126.0/24 maxlen: 24
89.47.127.0/24 maxlen: 24
93.113.181.0/24 maxlen: 24
185.101.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:47:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4b:3d:1d:3b:f3:62:69:eb:3d:b8:40:13:ef:4c:11:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jun 24 17:13:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0db1a3d97c1f5ca06d3a4d408cc2189eedb256e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9e:1f:34:e1:03:f2:f5:01:e8:06:50:a3:9e:
ba:f3:9c:07:29:eb:63:77:fd:0f:8a:aa:38:45:eb:
21:3b:50:33:b8:eb:07:4b:5f:66:ba:33:01:da:64:
82:c5:b8:77:d5:4c:6e:7b:52:d7:76:57:a2:4a:a0:
7e:32:6f:02:81:34:74:e4:35:93:3d:e4:ae:f7:b5:
a6:52:a4:3f:54:21:c7:a6:c8:cb:db:a8:a0:7e:7b:
81:dd:a3:09:ff:ca:bd:c3:68:37:e8:d5:bd:67:1f:
4b:44:7e:09:b2:83:8b:74:d0:f8:84:3c:49:d0:30:
5a:78:cf:ba:a8:94:4b:bf:c5:dd:c0:90:fe:00:90:
06:a0:56:aa:b7:6c:6d:5a:b3:6a:12:1f:88:14:11:
6c:60:b6:1b:87:1b:7c:9e:b3:ba:61:4f:17:83:fe:
e4:36:01:b6:66:fa:cf:83:e6:8b:3d:82:25:c6:f3:
1f:0d:ab:54:db:32:4a:de:04:9a:e3:21:63:35:51:
33:d5:cc:13:fa:3b:d1:d6:38:0a:77:17:bd:a5:43:
d5:34:5a:e6:03:0b:73:41:4d:95:94:b7:ec:d6:ed:
56:b7:87:18:9e:8b:80:07:2e:bb:a3:7d:c5:56:d0:
f4:80:cc:12:f6:14:79:a2:b6:a5:37:62:35:fb:64:
d9:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:B1:A3:D9:7C:1F:5C:A0:6D:3A:4D:40:8C:C2:18:9E:ED:B2:56:E4
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/DbGj2XwfXKBtOk1AjMIYnu2yVuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.224.0/23
89.34.228.0/24
89.34.231.0/24
89.38.228.0/23
89.40.82.0/24
89.42.80.0-89.42.82.255
89.42.86.0/24
89.42.95.0/24
89.42.143.0/24
89.43.140.0/24
89.43.143.0/24
89.46.0.0/24
89.46.3.0/24
89.47.99.0/24
89.47.115.0/24
89.47.117.0/24
89.47.119.0/24
89.47.125.0-89.47.127.255
93.113.181.0/24
185.101.105.0/24
Signature Algorithm: sha256WithRSAEncryption
48:0f:bd:dc:b4:11:e8:30:12:08:27:7e:f9:34:d9:bb:04:e4:
90:47:0b:ec:2d:8e:11:a5:bf:35:84:fc:5a:55:10:d1:f4:64:
71:da:4c:a3:bd:88:71:8a:9b:4a:cf:24:68:20:b7:e9:f9:8f:
43:e0:0d:2e:91:ae:45:02:52:df:c0:47:7d:7e:33:ec:c0:1f:
53:9b:70:8c:74:aa:23:09:a0:04:92:57:f0:e3:b1:f0:90:85:
20:dd:1d:90:96:b5:68:73:1c:05:79:f2:e3:0e:6a:27:ff:df:
f4:78:c5:88:7f:8c:cf:93:b9:3e:bf:80:aa:1b:37:10:cd:05:
01:d1:f0:db:b4:f4:a9:f9:53:a1:46:89:27:d4:ad:d1:d9:21:
b1:9f:50:0a:8a:38:1b:bd:9f:77:f7:13:22:a1:35:3a:72:da:
50:a8:a5:31:e1:24:91:51:aa:4a:45:2b:3c:0c:67:8a:b2:a4:
fb:bb:6e:e6:cc:45:27:92:e2:ec:01:f0:02:fe:99:3c:53:5c:
26:35:dd:64:ca:c9:28:da:15:35:57:8b:df:b7:7d:58:69:98:
ca:1c:ca:61:5a:99:ca:d4:d7:d2:f4:b4:ff:71:8e:a4:54:31:
4a:73:ee:94:f8:84:07:07:ee:e3:75:70:be:ae:0f:4f:ff:b9:
0f:a6:ca:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:15:12 2025 by rpki-client