Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/8797de-3ae9-4e05-80ff-c2534096c60d/1/8zPtPTOtNQDNP6dR8KViWx9Rke4.roa
File: 8zPtPTOtNQDNP6dR8KViWx9Rke4.roa (raw, json)
Hash identifier: l8x7bK4hFi5dDYFbqOTgLZdFcRLuO6H8R9eikTV6BwI=
Subject key identifier: F3:33:ED:3D:33:AD:35:00:CD:3F:A7:51:F0:A5:62:5B:1F:51:91:EE
Certificate issuer: /CN=7af57dd52c75fce39ffe2915469d9e656dbcb873
Certificate serial: 0194CB4556B4D194FED5A88E5F6D942ABCF2
Authority key identifier: 7A:F5:7D:D5:2C:75:FC:E3:9F:FE:29:15:46:9D:9E:65:6D:BC:B8:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evV91Sx1_OOf_ikVRp2eZW28uHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/8797de-3ae9-4e05-80ff-c2534096c60d/1/8zPtPTOtNQDNP6dR8KViWx9Rke4.roa
Signing time: Mon 03 Feb 2025 10:05:06 +0000
ROA not before: Mon 03 Feb 2025 10:05:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29119
IP address blocks: 92.246.82.0/24 maxlen: 24
92.246.83.0/24 maxlen: 24
103.226.192.0/24 maxlen: 24
103.229.170.0/24 maxlen: 24
185.145.68.0/24 maxlen: 24
185.145.69.0/24 maxlen: 24
185.167.181.0/24 maxlen: 24
185.201.4.0/24 maxlen: 24
185.204.203.0/24 maxlen: 24
185.223.177.0/24 maxlen: 24
185.223.179.0/24 maxlen: 24
185.237.212.0/24 maxlen: 24
185.237.213.0/24 maxlen: 24
185.237.214.0/24 maxlen: 24
2a07:4640::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 19 Feb 2025 10:03:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:cb:45:56:b4:d1:94:fe:d5:a8:8e:5f:6d:94:2a:bc:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7af57dd52c75fce39ffe2915469d9e656dbcb873
Validity
Not Before: Feb 3 10:05:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f333ed3d33ad3500cd3fa751f0a5625b1f5191ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:25:54:6a:4c:44:5b:b9:ca:c7:0e:5a:83:a6:
e6:fc:0c:3b:6a:b6:a6:47:17:02:01:21:4c:d9:aa:
88:85:9c:18:a7:7a:d3:da:ec:c4:f8:4e:07:05:5d:
0b:dc:a7:43:37:98:5d:69:b6:f2:ec:5f:c1:cd:9c:
e3:6f:4f:9d:c3:b8:6a:e1:c0:7f:36:ca:93:8b:5b:
70:43:45:01:10:81:ed:c4:de:4c:a6:23:d8:8d:a6:
ea:0d:20:93:3f:f9:ab:46:c1:ae:85:18:bb:3b:7b:
39:f7:8c:08:31:6d:8a:02:a1:3e:2a:0d:e6:20:75:
1a:89:5d:5f:61:62:47:d1:f5:73:54:89:d3:a3:1d:
f0:d7:e6:f1:70:2c:ab:cb:85:1e:41:4d:35:10:f4:
79:f1:6e:23:81:11:f2:9a:1a:75:26:40:bc:e0:bc:
5f:f3:bc:32:48:a3:3f:71:a8:74:cd:55:78:be:b2:
81:12:62:c8:cd:00:9f:97:02:e1:e9:5b:f1:ef:5d:
dc:35:bf:0d:82:6d:40:2b:90:3e:16:42:90:83:b5:
19:76:c4:5d:c7:43:9a:3d:02:fe:f9:b0:57:b0:f5:
43:46:45:eb:4a:79:f6:f6:a4:79:6f:d8:23:88:a2:
89:a4:4d:61:10:f4:72:a4:78:c1:55:eb:05:f0:e2:
e6:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:33:ED:3D:33:AD:35:00:CD:3F:A7:51:F0:A5:62:5B:1F:51:91:EE
X509v3 Authority Key Identifier:
keyid:7A:F5:7D:D5:2C:75:FC:E3:9F:FE:29:15:46:9D:9E:65:6D:BC:B8:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evV91Sx1_OOf_ikVRp2eZW28uHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/8797de-3ae9-4e05-80ff-c2534096c60d/1/8zPtPTOtNQDNP6dR8KViWx9Rke4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/8797de-3ae9-4e05-80ff-c2534096c60d/1/evV91Sx1_OOf_ikVRp2eZW28uHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.246.82.0/23
103.226.192.0/24
103.229.170.0/24
185.145.68.0/23
185.167.181.0/24
185.201.4.0/24
185.204.203.0/24
185.223.177.0/24
185.223.179.0/24
185.237.212.0-185.237.214.255
IPv6:
2a07:4640::/29
Signature Algorithm: sha256WithRSAEncryption
b2:60:04:cd:8f:94:e0:30:f5:ac:1b:89:50:85:6f:73:2a:83:
54:ba:d5:2d:81:30:33:3a:52:bc:3b:3f:be:6d:3e:fe:4d:98:
76:d7:26:9f:a2:53:8f:4b:cc:a0:b7:03:2d:2b:69:6f:61:22:
2e:5f:75:4f:45:2e:19:2b:ce:5c:bf:24:38:66:f9:a0:58:41:
03:f8:a5:79:8f:db:2f:4b:5f:08:9b:fb:e2:cd:cd:47:11:67:
f7:ba:f2:3d:b5:c9:e0:1e:61:43:85:5d:60:4a:f2:55:3c:10:
da:5c:84:94:02:57:94:11:64:d0:f4:24:d0:45:9a:a2:83:42:
f6:db:99:0e:1f:0b:fd:1e:d2:7e:2e:b2:bc:fa:28:40:40:66:
90:16:13:9c:e9:58:6f:c2:ab:b5:1f:04:e6:e8:e3:16:8a:45:
c3:0a:c1:2c:b5:b4:b6:df:80:f3:54:50:d2:f1:23:24:f6:b3:
76:8e:7f:af:35:d8:fa:be:96:41:b7:e4:28:84:5f:27:21:7a:
cf:a0:a0:e7:2f:09:19:59:d4:9c:45:a7:99:d7:32:96:b9:3d:
9c:f6:dc:9f:b5:2c:7f:ae:8c:13:b4:18:c6:8b:fc:ac:a0:40:
c4:ff:67:8f:b1:14:c1:24:40:d8:aa:ba:b4:05:96:d1:41:db:
18:17:82:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:47:58 2025 by rpki-client