Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/_7jQmxBw0CnI7lW-urD7dguiqhw.roa
File: _7jQmxBw0CnI7lW-urD7dguiqhw.roa (raw, json)
Hash identifier: 58dweVG6JEVk5rKTuGY2m6FWlc93miiHKlGP0sPRpi0=
Subject key identifier: FF:B8:D0:9B:10:70:D0:29:C8:EE:55:BE:BA:B0:FB:76:0B:A2:AA:1C
Certificate issuer: /CN=4dd74fbbbae58dd0876d99e80ec82a11a4477f7e
Certificate serial: 0192A9FC4CDF2C4E55A2E9113D79E25D4C01
Authority key identifier: 4D:D7:4F:BB:BA:E5:8D:D0:87:6D:99:E8:0E:C8:2A:11:A4:47:7F:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TddPu7rljdCHbZnoDsgqEaRHf34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/_7jQmxBw0CnI7lW-urD7dguiqhw.roa
Signing time: Sun 20 Oct 2024 12:52:17 +0000
ROA not before: Sun 20 Oct 2024 12:52:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25124
IP address blocks: 81.91.128.0/20 maxlen: 20
81.91.128.0/21 maxlen: 21
81.91.128.0/22 maxlen: 22
81.91.128.0/23 maxlen: 23
81.91.130.0/23 maxlen: 23
81.91.130.0/24 maxlen: 24
81.91.132.0/22 maxlen: 22
81.91.132.0/23 maxlen: 23
81.91.134.0/23 maxlen: 23
81.91.136.0/22 maxlen: 22
81.91.136.0/23 maxlen: 23
81.91.138.0/23 maxlen: 23
81.91.138.0/24 maxlen: 24
81.91.138.40/29 maxlen: 29
81.91.138.48/28 maxlen: 28
81.91.138.80/28 maxlen: 28
81.91.138.112/28 maxlen: 28
81.91.139.0/24 maxlen: 24
81.91.140.0/22 maxlen: 22
81.91.140.0/23 maxlen: 23
81.91.142.0/23 maxlen: 23
91.184.80.0/20 maxlen: 20
109.162.128.0/20 maxlen: 20
109.162.144.0/20 maxlen: 20
109.162.144.0/21 maxlen: 21
109.162.160.0/20 maxlen: 20
109.162.176.0/20 maxlen: 20
109.162.176.0/24 maxlen: 24
109.162.192.0/20 maxlen: 20
109.162.208.0/20 maxlen: 20
109.162.224.0/20 maxlen: 20
213.207.208.0/20 maxlen: 20
213.207.224.0/20 maxlen: 20
213.207.240.0/20 maxlen: 20
Validation: Failed, certificate revoked on Sat 26 Oct 2024 09:20:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:a9:fc:4c:df:2c:4e:55:a2:e9:11:3d:79:e2:5d:4c:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd74fbbbae58dd0876d99e80ec82a11a4477f7e
Validity
Not Before: Oct 20 12:52:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ffb8d09b1070d029c8ee55bebab0fb760ba2aa1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:77:88:75:53:f8:31:81:79:a3:a3:93:28:07:
d4:8b:14:1a:64:ad:dd:13:9c:57:22:fc:8a:b4:e9:
31:6b:d4:49:62:be:5b:93:13:66:d7:7d:79:fd:56:
73:1f:d3:17:8a:6e:06:69:94:9c:53:d1:63:51:18:
53:01:0e:34:c4:24:f3:79:64:6d:5f:b6:b7:89:38:
96:52:39:6e:fe:de:e9:37:20:4e:4c:92:54:58:a8:
7c:db:54:6d:c8:75:59:e1:90:bd:dd:da:9b:18:e2:
71:22:8a:b4:bb:c1:5e:f7:2a:c6:80:c4:1d:df:07:
7a:f7:a1:2f:5d:d6:6a:f4:0f:0c:c0:aa:25:2a:71:
3e:c2:ea:78:6f:db:f6:f4:5b:c9:f9:49:2c:4a:26:
ff:27:95:4d:e5:50:d0:51:23:bd:f1:97:74:a1:4a:
7e:90:57:ec:b1:3d:2a:b6:b6:c0:ee:95:00:90:16:
16:55:83:f2:0e:9d:25:f2:90:16:a6:a2:4b:19:12:
17:1d:77:51:72:d1:b8:84:6e:d6:5c:81:b4:29:a6:
d7:2d:70:55:0c:45:d4:9f:71:8c:5d:05:0f:d0:f6:
2c:ae:9f:55:22:68:c1:9e:db:64:63:1c:32:5d:d8:
cb:78:04:cd:8e:43:6f:c9:bb:45:3e:9b:8b:a9:a2:
07:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:B8:D0:9B:10:70:D0:29:C8:EE:55:BE:BA:B0:FB:76:0B:A2:AA:1C
X509v3 Authority Key Identifier:
keyid:4D:D7:4F:BB:BA:E5:8D:D0:87:6D:99:E8:0E:C8:2A:11:A4:47:7F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TddPu7rljdCHbZnoDsgqEaRHf34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/_7jQmxBw0CnI7lW-urD7dguiqhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/TddPu7rljdCHbZnoDsgqEaRHf34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.91.128.0/20
91.184.80.0/20
109.162.128.0-109.162.239.255
213.207.208.0-213.207.255.255
Signature Algorithm: sha256WithRSAEncryption
75:d8:4a:4a:8f:d0:54:ae:77:c5:b6:b1:55:47:7f:bc:fd:69:
9d:5c:6f:5f:96:dc:3b:ac:0b:e7:69:4d:a9:d5:de:34:d7:fa:
ec:e0:f7:44:78:7b:d5:8b:85:44:56:c5:26:00:f3:c3:fd:eb:
0a:f6:2f:57:38:c0:aa:f9:67:74:dc:ff:ae:98:4a:1b:6a:f8:
a6:e5:07:ac:97:bc:2b:f0:5e:4c:fb:73:28:4e:7e:9f:18:73:
3c:e5:ce:2b:e2:26:47:ff:5c:b5:09:6b:77:87:30:fb:59:8a:
2e:d5:de:99:1d:e3:ca:f0:e0:7d:09:28:6c:25:9c:33:e6:5f:
cb:f8:c4:57:d8:69:48:08:a2:3e:55:46:2a:cb:55:ca:74:e5:
98:06:66:20:af:bc:bf:f7:a8:4e:54:59:0b:1c:6e:63:ce:2a:
b6:87:0e:aa:49:a7:51:37:c2:57:9e:b0:d1:fe:d3:42:3d:bd:
bd:23:31:d9:49:62:9b:f7:d3:71:15:6f:e5:01:75:6a:00:1c:
72:5c:63:81:1e:01:33:a8:26:70:df:73:2e:72:3e:f1:6d:30:
c9:48:ef:49:c4:6e:bc:63:7e:81:d8:1c:e2:be:99:ad:65:52:
34:b2:39:6b:24:e0:e1:bd:00:62:83:99:72:33:38:e2:d2:34:
5f:ba:65:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 21:08:01 2025 by rpki-client