Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/8oJA9PFBqFRGXapkF3cPPUeVzSg.roa
File: 8oJA9PFBqFRGXapkF3cPPUeVzSg.roa (raw, json)
Hash identifier: d8wW2TCtWVoBudQfetPj3alDFESC7QCuhO58w70IwFo=
Subject key identifier: F2:82:40:F4:F1:41:A8:54:46:5D:AA:64:17:77:0F:3D:47:95:CD:28
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 0191552D0683D7AFEFB4217D93BD53373644
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/8oJA9PFBqFRGXapkF3cPPUeVzSg.roa
Signing time: Thu 15 Aug 2024 08:34:59 +0000
ROA not before: Thu 15 Aug 2024 08:34:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50261
IP address blocks: 37.220.128.0/20 maxlen: 20
77.111.112.0/22 maxlen: 22
77.111.124.0/22 maxlen: 22
77.111.124.0/24 maxlen: 24
77.111.127.0/24 maxlen: 24
80.64.64.0/21 maxlen: 21
80.64.72.0/21 maxlen: 21
109.74.48.0/20 maxlen: 20
194.152.130.0/24 maxlen: 24
194.152.131.0/24 maxlen: 24
194.152.133.0/24 maxlen: 24
194.152.134.0/24 maxlen: 24
194.152.135.0/24 maxlen: 24
194.152.136.0/24 maxlen: 24
194.152.137.0/24 maxlen: 24
194.152.138.0/24 maxlen: 24
194.152.139.0/24 maxlen: 24
194.152.143.0/24 maxlen: 24
194.152.144.0/24 maxlen: 24
194.152.145.0/24 maxlen: 24
194.152.146.0/24 maxlen: 24
194.152.149.0/24 maxlen: 24
194.152.152.0/24 maxlen: 24
2a02:d400::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 30 Oct 2024 08:20:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:55:2d:06:83:d7:af:ef:b4:21:7d:93:bd:53:37:36:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Aug 15 08:34:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f28240f4f141a854465daa6417770f3d4795cd28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d5:e6:8d:43:35:85:96:0e:62:f4:90:7d:fe:
c9:90:1c:43:de:aa:7a:61:02:9e:de:2b:da:7f:97:
c7:41:23:65:dc:ef:79:1c:00:16:a4:bd:b4:48:ea:
18:60:b3:e7:1b:77:04:2e:7f:88:dd:3c:97:1f:13:
21:f4:0c:93:fa:e4:5c:ca:63:64:e8:79:18:04:af:
4d:ac:07:55:28:99:fb:13:9f:b1:ed:3f:31:28:39:
31:69:84:77:c2:78:ef:ad:47:39:84:a6:df:2f:25:
f4:df:14:2a:72:eb:4d:bb:47:d7:33:7b:3d:05:75:
8b:6a:59:05:9a:f5:33:7c:c7:8d:a5:9c:f9:48:64:
14:55:26:cb:91:59:c0:fc:0a:47:f6:1d:98:0d:e1:
66:da:9f:c9:4b:2d:77:0d:92:18:8c:0e:32:23:a5:
28:f8:6c:92:8b:b1:31:57:38:af:7e:43:08:5c:58:
11:d9:e8:8b:c3:1f:eb:34:b5:0f:ce:88:00:9e:53:
b7:a1:d9:8b:12:2c:34:63:b4:06:45:4d:40:10:b8:
5e:7e:db:4a:e7:06:1d:70:05:99:6c:c9:da:93:c5:
73:6e:0a:b0:b1:68:ca:2d:be:7a:b5:4a:c1:f5:4d:
fb:e9:a7:ff:a9:af:d1:e1:85:03:ca:4b:f7:78:fe:
c6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:82:40:F4:F1:41:A8:54:46:5D:AA:64:17:77:0F:3D:47:95:CD:28
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/8oJA9PFBqFRGXapkF3cPPUeVzSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.220.128.0/20
77.111.112.0/22
77.111.124.0/22
80.64.64.0/20
109.74.48.0/20
194.152.130.0/23
194.152.133.0-194.152.139.255
194.152.143.0-194.152.146.255
194.152.149.0/24
194.152.152.0/24
IPv6:
2a02:d400::/29
Signature Algorithm: sha256WithRSAEncryption
91:99:c7:99:b2:65:76:34:c0:ba:8d:31:df:d3:42:cb:bd:c9:
65:55:1c:51:c7:b5:12:d0:3f:c0:3e:10:8b:cd:1e:c8:50:c6:
38:84:61:cc:47:57:1d:e4:cf:83:fc:2f:d3:62:04:33:f5:70:
a8:59:3b:ca:2b:48:c2:31:43:81:13:ed:77:fd:22:9f:f3:b1:
a6:ff:fe:54:16:f3:09:d3:8d:03:df:f7:56:e2:9b:86:a1:0f:
5a:b1:f2:4e:83:2d:f0:34:ba:79:3b:be:a8:6a:1c:cb:38:e4:
e2:df:ac:cf:bb:f8:93:be:93:7f:02:36:e4:41:12:2a:d0:88:
8e:c9:6c:f2:de:d5:ba:ce:90:e2:3c:ae:b1:e6:f2:74:78:e2:
3a:79:1e:08:5d:50:af:3e:d4:c0:27:ce:38:69:c7:33:56:4f:
db:c5:18:d2:8f:03:12:a9:34:e8:73:f3:68:38:59:1a:64:58:
82:41:c5:24:7c:fa:7a:19:3b:7d:35:f0:f8:3c:ab:12:89:a8:
4b:72:10:2b:24:be:ce:c6:ba:da:94:23:20:f3:f8:fd:7d:fe:
d4:a2:58:a5:26:f2:53:91:d0:2f:ee:3e:63:8a:bd:94:60:4b:
eb:6b:5f:65:9d:b6:af:73:78:3c:e2:79:37:6d:7b:6a:c2:2c:
0a:4a:df:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 30 09:57:45 2024 by rpki-client on console-fra.rpki-client.org