Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/o5V_VPSi8DIXyhEBPj5qmCx7GaU.roa
File: o5V_VPSi8DIXyhEBPj5qmCx7GaU.roa (raw, json)
Hash identifier: e+xiB0gP6pFHM3NCCwTjPislP1vPGSaRkMtjsJspdqc=
Subject key identifier: A3:95:7F:54:F4:A2:F0:32:17:CA:11:01:3E:3E:6A:98:2C:7B:19:A5
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 018D1659B499767FCEB126CE69F8AEE9BF01
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/o5V_VPSi8DIXyhEBPj5qmCx7GaU.roa
Signing time: Wed 17 Jan 2024 07:36:34 +0000
ROA not before: Wed 17 Jan 2024 07:36:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6813
IP address blocks: 80.58.201.0/24 maxlen: 24
81.45.26.0/23 maxlen: 23
194.179.98.0/23 maxlen: 23
194.224.158.0/24 maxlen: 24
195.55.74.0/24 maxlen: 24
195.235.59.0/24 maxlen: 24
195.235.232.0/24 maxlen: 24
195.235.234.0/23 maxlen: 23
212.170.30.0/23 maxlen: 23
212.170.34.0/23 maxlen: 23
212.170.227.0/24 maxlen: 24
212.170.232.0/24 maxlen: 24
213.4.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jan 2024 07:44:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:16:59:b4:99:76:7f:ce:b1:26:ce:69:f8:ae:e9:bf:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Jan 17 07:36:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3957f54f4a2f03217ca11013e3e6a982c7b19a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:56:27:d1:33:4f:28:1d:91:f0:00:fd:46:53:
d6:b4:aa:68:f3:90:e4:aa:d9:40:b5:da:57:6d:e4:
8d:3b:d0:32:c9:ea:b6:b5:8b:0d:2e:77:15:a0:fa:
29:2a:da:f3:08:b9:f8:08:63:5f:34:95:a1:db:6f:
b7:de:a5:50:5c:a8:7b:7a:ca:3f:29:3e:14:e7:37:
08:e8:91:5b:4e:86:a4:96:64:61:8a:45:c2:d2:bd:
39:1f:c4:05:93:de:28:7c:7c:66:5e:a5:d3:4b:e1:
71:f3:e8:69:9e:08:81:18:dc:8f:a0:89:5f:43:e6:
c9:0c:e5:7a:7c:a8:79:40:d4:19:cb:02:98:8c:fc:
88:31:68:e7:38:c3:5b:bf:58:79:ba:23:9b:53:10:
7f:96:43:e6:88:42:8b:44:f8:4d:29:33:4d:5c:2e:
63:7a:9d:42:eb:8f:e5:6d:ab:92:5c:39:65:2e:f0:
0a:19:0e:0b:58:b6:88:c8:33:a7:a0:67:a1:60:6f:
0d:75:23:15:a2:d8:bb:51:90:d5:ae:dc:07:b5:7f:
a6:a3:6d:10:8d:5f:64:5c:a8:4e:5c:e5:97:4a:a2:
83:ad:4f:93:25:72:b5:a2:bf:17:bc:e5:61:03:6b:
96:c1:66:05:02:a7:7b:1e:ba:ff:04:16:a6:03:e7:
1b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:95:7F:54:F4:A2:F0:32:17:CA:11:01:3E:3E:6A:98:2C:7B:19:A5
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/o5V_VPSi8DIXyhEBPj5qmCx7GaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.58.201.0/24
81.45.26.0/23
194.179.98.0/23
194.224.158.0/24
195.55.74.0/24
195.235.59.0/24
195.235.232.0/24
195.235.234.0/23
212.170.30.0/23
212.170.34.0/23
212.170.227.0/24
212.170.232.0/24
213.4.28.0/24
Signature Algorithm: sha256WithRSAEncryption
00:20:cc:cd:32:40:9b:74:57:2f:cb:13:1b:6f:09:39:2a:42:
5b:19:54:4e:2a:8f:1c:43:cb:a4:55:92:93:5d:5a:13:f7:60:
9f:a6:18:75:46:f6:66:ad:22:6c:eb:5a:81:a2:2f:5a:3b:38:
9d:7d:19:30:8c:be:4e:20:56:21:5b:f2:a0:46:89:62:27:96:
6a:83:9d:7e:c0:3a:42:14:4c:52:06:66:dd:1c:49:40:21:e1:
41:96:84:ee:e0:61:63:9c:a9:25:c1:af:74:ec:08:95:0d:b2:
94:13:21:04:47:aa:69:ec:3f:2a:94:b6:07:a5:7d:27:bf:d0:
cb:36:07:0c:f1:db:a4:79:b9:cc:0f:ae:44:48:21:10:9d:5b:
b5:3d:b9:31:86:78:dc:85:af:63:75:bf:68:75:1d:a0:ac:45:
ea:64:04:91:c6:af:40:85:55:e4:7c:d5:5d:9a:32:47:42:e5:
8f:9c:a6:ed:2b:da:20:9d:fc:09:a7:39:30:a6:cc:ab:1d:2b:
12:e0:f0:2c:0e:b4:1b:58:b9:2f:f0:a9:bb:62:11:e6:ab:2a:
ef:6d:ec:5d:47:30:86:af:8a:ad:51:ca:1c:f0:74:ed:65:af:
15:0e:e6:a2:8d:fb:28:03:ff:a9:32:bb:b9:b9:ca:c1:0f:6f:
b4:f7:ee:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:49 2025 by rpki-client