Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/fjQegfQsNwBzeCoMxgGfMlO3EzE.roa
File: fjQegfQsNwBzeCoMxgGfMlO3EzE.roa (raw, json)
Hash identifier: zsBfHnEXUe0Xu9W8vJgcta3eq713Fjh/9u80Bvq+X3c=
Subject key identifier: 7E:34:1E:81:F4:2C:37:00:73:78:2A:0C:C6:01:9F:32:53:B7:13:31
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 019427483E6E5583F33F2EB8161A6B411B08
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/fjQegfQsNwBzeCoMxgGfMlO3EzE.roa
Signing time: Thu 02 Jan 2025 13:50:33 +0000
ROA not before: Thu 02 Jan 2025 13:50:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8434
IP address blocks: 192.36.37.0/24 maxlen: 24
192.71.97.0/24 maxlen: 24
192.71.158.0/24 maxlen: 24
192.121.172.0/24 maxlen: 24
192.121.192.0/24 maxlen: 24
193.180.61.0/24 maxlen: 24
193.181.0.0/24 maxlen: 24
193.181.187.0/24 maxlen: 24
193.183.118.0/24 maxlen: 24
193.234.68.0/23 maxlen: 23
193.234.220.0/23 maxlen: 23
193.234.237.0/24 maxlen: 24
193.235.142.0/23 maxlen: 24
194.14.129.0/24 maxlen: 24
194.14.212.0/24 maxlen: 24
194.68.56.0/23 maxlen: 23
194.68.99.0/24 maxlen: 24
194.68.126.0/24 maxlen: 24
194.68.194.0/23 maxlen: 23
194.71.27.0/24 maxlen: 24
194.71.83.0/24 maxlen: 24
194.71.140.0/23 maxlen: 23
194.71.168.0/24 maxlen: 24
194.71.248.0/21 maxlen: 21
194.103.50.0/24 maxlen: 24
194.132.108.0/23 maxlen: 24
194.132.174.0/24 maxlen: 24
194.132.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 Jan 2025 15:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:3e:6e:55:83:f3:3f:2e:b8:16:1a:6b:41:1b:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 13:50:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7e341e81f42c370073782a0cc6019f3253b71331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:19:1d:70:f7:a9:94:eb:e1:77:e5:b6:f8:b2:
01:cf:9b:9c:56:f6:2f:c6:33:89:4b:f0:7d:90:2b:
44:05:28:e7:84:1c:93:05:8f:36:de:96:c1:c9:98:
ce:2a:ed:d9:43:8c:36:d3:51:df:34:8c:78:ec:f6:
14:d1:6a:59:7e:af:d3:4d:7b:42:74:b8:11:ef:90:
a4:f7:5c:71:49:bd:00:fc:97:77:41:4b:8d:70:86:
67:72:85:ae:ec:b1:ab:5f:6f:05:26:5b:08:d5:d5:
0c:93:d7:d2:37:1d:9b:34:fa:e1:ed:90:78:56:d7:
02:1b:58:ef:d8:1a:30:55:e9:43:d0:61:82:da:b7:
7c:00:9d:70:07:74:b8:88:66:aa:0d:b9:ba:a3:f6:
4a:20:d3:dd:c8:d7:d5:50:11:55:70:fd:1f:2f:a5:
e2:67:b0:6b:87:f1:52:f6:f5:9b:3a:23:96:0d:eb:
13:92:35:87:aa:4b:f8:7e:dc:3d:75:26:c9:63:51:
a3:ec:b7:d2:6d:59:b6:f6:c9:1f:8e:f4:e4:e6:4a:
b1:3b:41:c0:f4:5c:84:d2:f3:a7:a8:06:52:ab:06:
c7:9b:2b:85:18:82:e2:bd:a5:6c:6d:c2:57:48:53:
dc:eb:43:bf:23:b4:28:ba:90:1d:f9:f7:a7:46:1b:
76:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:34:1E:81:F4:2C:37:00:73:78:2A:0C:C6:01:9F:32:53:B7:13:31
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/fjQegfQsNwBzeCoMxgGfMlO3EzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.36.37.0/24
192.71.97.0/24
192.71.158.0/24
192.121.172.0/24
192.121.192.0/24
193.180.61.0/24
193.181.0.0/24
193.181.187.0/24
193.183.118.0/24
193.234.68.0/23
193.234.220.0/23
193.234.237.0/24
193.235.142.0/23
194.14.129.0/24
194.14.212.0/24
194.68.56.0/23
194.68.99.0/24
194.68.126.0/24
194.68.194.0/23
194.71.27.0/24
194.71.83.0/24
194.71.140.0/23
194.71.168.0/24
194.71.248.0/21
194.103.50.0/24
194.132.108.0/23
194.132.174.0/23
Signature Algorithm: sha256WithRSAEncryption
42:06:35:b9:04:d9:de:8f:4d:1c:b4:95:43:b1:0c:e7:6d:f3:
c7:06:3e:c5:a3:d1:d3:8e:37:61:9f:f3:92:33:5c:f2:6a:49:
d8:d2:9d:dd:33:70:d9:69:58:4b:2f:24:5e:62:4c:0a:45:22:
a8:7e:19:72:76:5e:29:8d:3c:bf:f9:04:8e:f0:ae:f0:e4:fc:
18:f8:05:c9:f3:9e:42:64:e7:f5:7d:e0:ac:f9:97:96:87:50:
63:a9:29:8f:57:a2:4a:a7:f2:34:4f:58:9b:e9:dc:c8:b8:6b:
02:9d:9a:95:5c:cd:a5:33:ae:27:7e:4a:23:eb:c1:ba:c4:59:
2f:1c:f1:63:eb:7b:b1:f9:10:58:06:d8:e2:82:92:d3:7a:c7:
2f:d4:98:61:93:bc:b3:3a:e9:64:30:06:09:72:e7:b9:bb:b2:
4d:05:a4:55:28:44:82:e2:34:5e:88:c9:e9:21:c5:84:fe:f6:
4c:84:33:52:84:0f:80:9e:29:b7:96:d0:a9:a2:e1:3c:33:36:
09:db:02:ee:d2:cf:98:67:d8:fb:93:44:00:c3:d7:aa:46:3e:
2a:a0:f7:f5:d8:b5:dd:6b:6d:9e:23:13:a5:1d:8d:dc:fd:77:
82:88:45:25:37:09:f7:01:70:18:e1:0a:30:24:2b:d8:e3:c8:
90:36:55:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:01 2025 by rpki-client