Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e51583-f55c-493b-b950-736ab83494ac/1/e3mbhZ1suP-s79YA4YoFyOa1CxI.roa
File: e3mbhZ1suP-s79YA4YoFyOa1CxI.roa (raw, json)
Hash identifier: 5mDnMkvUtCfvr1P41TGabZrbPPP34HO+G0LOe3F6L7U=
Subject key identifier: 7B:79:9B:85:9D:6C:B8:FF:AC:EF:D6:00:E1:8A:05:C8:E6:B5:0B:12
Certificate issuer: /CN=71051b0e2ce9a4c9e6121e983d165feab87ec354
Certificate serial: 019425FDCC4C96640AEDF3A93D43F3B147BA
Authority key identifier: 71:05:1B:0E:2C:E9:A4:C9:E6:12:1E:98:3D:16:5F:EA:B8:7E:C3:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cQUbDizppMnmEh6YPRZf6rh-w1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e51583-f55c-493b-b950-736ab83494ac/1/e3mbhZ1suP-s79YA4YoFyOa1CxI.roa
Signing time: Thu 02 Jan 2025 07:49:37 +0000
ROA not before: Thu 02 Jan 2025 07:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19905
IP address blocks: 81.92.80.0/24 maxlen: 24
81.92.81.0/24 maxlen: 24
81.92.84.0/24 maxlen: 24
81.92.85.0/24 maxlen: 24
81.92.86.0/24 maxlen: 24
81.92.87.0/24 maxlen: 24
81.92.88.0/24 maxlen: 24
81.92.89.0/24 maxlen: 24
81.92.90.0/24 maxlen: 24
81.92.91.0/24 maxlen: 24
81.92.94.0/24 maxlen: 24
81.92.95.0/24 maxlen: 24
152.89.172.0/24 maxlen: 24
185.65.56.0/24 maxlen: 24
185.65.58.0/24 maxlen: 24
2a01:c8::/48 maxlen: 48
2a01:c8:1::/48 maxlen: 48
2a01:c8:2::/48 maxlen: 48
2a01:c8:100::/48 maxlen: 48
2a01:c8:101::/48 maxlen: 48
2a01:c8:200::/48 maxlen: 48
2a01:c8:300::/48 maxlen: 48
2a01:c8:ff00::/48 maxlen: 48
2a09:35c0:102::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Jan 2025 11:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:cc:4c:96:64:0a:ed:f3:a9:3d:43:f3:b1:47:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71051b0e2ce9a4c9e6121e983d165feab87ec354
Validity
Not Before: Jan 2 07:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7b799b859d6cb8ffacefd600e18a05c8e6b50b12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:84:cd:5e:f8:1c:4e:97:8a:6d:63:96:d7:b3:
2e:95:b6:b8:ae:c3:c9:6a:03:3a:5a:ec:27:43:e1:
41:da:70:67:a7:49:8b:2e:0f:2d:83:ce:14:22:36:
82:b7:83:e6:cf:c5:20:68:9e:12:e0:98:41:ed:40:
a8:e3:68:ba:4e:01:2c:cb:f2:26:37:6e:ef:94:12:
bb:47:c6:9b:bf:df:9e:1f:88:58:d4:51:2c:fc:31:
e6:43:f8:0c:e6:93:af:d2:1d:15:95:10:f8:6b:03:
e4:60:e3:b1:97:04:8f:0a:e2:ae:f8:14:b6:e1:6b:
0e:2c:de:52:75:04:47:2c:c5:2c:dc:bb:d7:c9:73:
3f:6b:20:38:18:53:d9:42:4f:f3:48:7a:8b:7c:98:
34:c7:b7:35:dd:ac:04:9e:08:eb:cf:01:c6:cc:e1:
3f:f3:3d:b5:e7:fa:20:af:0f:1b:04:9b:53:6c:0c:
ba:dc:bf:0f:24:49:56:a7:d7:04:a5:77:b0:92:5d:
b2:12:2e:6a:5f:2d:a8:ca:87:38:ca:e6:cf:11:89:
ec:46:3c:92:eb:f5:7c:9d:88:73:14:f9:d0:37:cd:
fb:5e:74:00:70:50:1b:72:3e:df:75:24:2f:91:dc:
c0:3a:41:64:cb:46:76:9f:b7:3b:80:2e:8f:29:13:
75:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:79:9B:85:9D:6C:B8:FF:AC:EF:D6:00:E1:8A:05:C8:E6:B5:0B:12
X509v3 Authority Key Identifier:
keyid:71:05:1B:0E:2C:E9:A4:C9:E6:12:1E:98:3D:16:5F:EA:B8:7E:C3:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cQUbDizppMnmEh6YPRZf6rh-w1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e51583-f55c-493b-b950-736ab83494ac/1/e3mbhZ1suP-s79YA4YoFyOa1CxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e51583-f55c-493b-b950-736ab83494ac/1/cQUbDizppMnmEh6YPRZf6rh-w1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.92.80.0/23
81.92.84.0-81.92.91.255
81.92.94.0/23
152.89.172.0/24
185.65.56.0/24
185.65.58.0/24
IPv6:
2a01:c8::-2a01:c8:2:ffff:ffff:ffff:ffff:ffff
2a01:c8:100::/47
2a01:c8:200::/48
2a01:c8:300::/48
2a01:c8:ff00::/48
2a09:35c0:102::/48
Signature Algorithm: sha256WithRSAEncryption
04:76:bb:8d:8d:98:1e:9c:cc:e2:4c:c2:56:bb:49:06:7c:82:
a4:2a:be:a3:5c:07:61:b2:06:44:ce:fe:58:f1:d4:e9:2b:6c:
62:61:77:04:c0:37:d8:04:97:d2:da:97:2c:ba:b8:5a:8c:fb:
6f:84:5a:13:53:16:fb:41:c5:06:9c:13:f8:4d:43:15:d2:f7:
a4:8e:07:bf:4f:00:5c:d5:bb:36:f7:02:54:8e:53:4c:c7:89:
20:50:a5:25:c2:5a:4e:a5:d5:7c:cb:4d:cb:95:2d:63:74:da:
10:6b:88:76:e9:0c:7c:cf:b0:ae:37:e3:0a:1e:fa:44:7f:92:
9d:c6:ef:ca:53:1b:0c:c7:03:80:c8:42:ff:3b:e6:2a:be:17:
96:09:b8:35:66:2c:86:4f:7a:a8:1a:f7:89:8b:bb:c4:7a:5c:
4d:6b:4d:78:43:fb:19:7b:2e:88:69:89:d2:a6:b2:d1:54:d6:
5d:03:15:97:67:09:ff:cb:1f:ca:cd:98:08:d9:b3:cd:76:00:
02:27:63:74:f0:02:87:14:d1:30:9b:51:e8:d5:25:1e:a4:6e:
19:25:62:ca:d4:69:40:be:3e:a2:99:fc:ac:f3:87:4d:63:03:
ad:2f:10:5c:58:71:81:6c:ce:90:cc:72:f9:ad:8a:7d:d9:d0:
ff:36:62:1d
-----BEGIN CERTIFICATE-----
MIIFazCCBFOgAwIBAgISAZQl/cxMlmQK7fOpPUPzsUe6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxMDUxYjBlMmNlOWE0YzllNjEyMWU5ODNkMTY1ZmVhYjg3
ZWMzNTQwHhcNMjUwMTAyMDc0OTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Yjc5OWI4NTlkNmNiOGZmYWNlZmQ2MDBlMThhMDVjOGU2YjUwYjEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyoTNXvgcTpeKbWOW17Mulba4rsPJ
agM6WuwnQ+FB2nBnp0mLLg8tg84UIjaCt4Pmz8UgaJ4S4JhB7UCo42i6TgEsy/Im
N27vlBK7R8abv9+eH4hY1FEs/DHmQ/gM5pOv0h0VlRD4awPkYOOxlwSPCuKu+BS2
4WsOLN5SdQRHLMUs3LvXyXM/ayA4GFPZQk/zSHqLfJg0x7c13awEngjrzwHGzOE/
8z215/ogrw8bBJtTbAy63L8PJElWp9cEpXewkl2yEi5qXy2oyoc4yubPEYnsRjyS
6/V8nYhzFPnQN837XnQAcFAbcj7fdSQvkdzAOkFky0Z2n7c7gC6PKRN10wIDAQAB
o4ICdzCCAnMwHQYDVR0OBBYEFHt5m4WdbLj/rO/WAOGKBcjmtQsSMB8GA1UdIwQY
MBaAFHEFGw4s6aTJ5hIemD0WX+q4fsNUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1FVYkRpenBwTW5tRWg2WVBSWmY2cmgtdzFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9lNTE1ODMtZjU1Yy00OTNiLWI5NTAt
NzM2YWI4MzQ5NGFjLzEvZTNtYmhaMXN1UC1zNzlZQTRZb0Z5T2ExQ3hJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS9lNTE1ODMtZjU1Yy00OTNiLWI5NTAtNzM2YWI4MzQ5NGFj
LzEvY1FVYkRpenBwTW5tRWg2WVBSWmY2cmgtdzFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGMBggrBgEFBQcBBwEB/wR9MHswMgQCAAEwLAMEAVFcUDAM
AwQCUVxUAwQCUVxYAwQBUVxeAwQAmFmsAwQAuUE4AwQAuUE6MEUEAgACMD8wEAMF
AyoBAMgDBwAqAQDIAAIDBwEqAQDIAQADBwAqAQDIAgADBwAqAQDIAwADBwAqAQDI
/wADBwAqCTXAAQIwDQYJKoZIhvcNAQELBQADggEBAAR2u42NmB6czOJMwla7SQZ8
gqQqvqNcB2GyBkTO/ljx1OkrbGJhdwTAN9gEl9Lalyy6uFqM+2+EWhNTFvtBxQac
E/hNQxXS96SOB79PAFzVuzb3AlSOU0zHiSBQpSXCWk6l1XzLTcuVLWN02hBriHbp
DHzPsK434woe+kR/kp3G78pTGwzHA4DIQv875iq+F5YJuDVmLIZPeqga94mLu8R6
XE1rTXhD+xl7LohpidKmstFU1l0DFZdnCf/LH8rNmAjZs812AAInY3TwAocU0TCb
UejVJR6kbhklYsrUaUC+PqKZ/Kzzh01jA60vEFxYcYFszpDMcvmtin3Z0P82Yh0=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:50:17 2025 by rpki-client