Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/8UPPKzcSLqdrQbkTljJqw0NUnts.roa
File: 8UPPKzcSLqdrQbkTljJqw0NUnts.roa (raw, json)
Hash identifier: Od311PiwO0VQGELLcrrVdougDZOQLDcN7knXAPchhLQ=
Subject key identifier: F1:43:CF:2B:37:12:2E:A7:6B:41:B9:13:96:32:6A:C3:43:54:9E:DB
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 01932B1A63DFD54E1868DDFCF7822BC7CE65
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/8UPPKzcSLqdrQbkTljJqw0NUnts.roa
Signing time: Thu 14 Nov 2024 14:36:09 +0000
ROA not before: Thu 14 Nov 2024 14:36:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44252
IP address blocks: 94.228.230.0/24 maxlen: 24
94.228.233.0/24 maxlen: 24
94.228.238.0/24 maxlen: 24
176.67.193.0/24 maxlen: 24
176.67.194.0/24 maxlen: 24
176.67.196.0/24 maxlen: 24
176.67.198.0/24 maxlen: 24
176.67.200.0/23 maxlen: 24
176.67.205.0/24 maxlen: 24
176.67.208.0/24 maxlen: 24
176.67.211.0/24 maxlen: 24
176.67.212.0/24 maxlen: 24
176.67.219.0/24 maxlen: 24
176.67.220.0/24 maxlen: 24
176.67.223.0/24 maxlen: 24
178.17.19.0/24 maxlen: 24
178.17.22.0/24 maxlen: 24
178.17.23.0/24 maxlen: 24
178.17.24.0/24 maxlen: 24
178.17.26.0/24 maxlen: 24
178.17.27.0/24 maxlen: 24
178.17.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Nov 2024 11:23:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:2b:1a:63:df:d5:4e:18:68:dd:fc:f7:82:2b:c7:ce:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Nov 14 14:36:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f143cf2b37122ea76b41b91396326ac343549edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:5b:b5:21:b8:a0:98:78:b5:f6:e5:b2:6f:08:
dc:13:a8:88:a2:f1:95:44:c3:71:61:e4:0b:f3:40:
22:34:12:02:d0:29:a3:4a:19:f1:da:94:6b:36:08:
69:f9:b3:b4:93:88:17:eb:e8:f6:d7:d9:ac:e1:13:
bd:b6:4e:11:f1:39:18:e9:2d:34:01:a0:d1:2e:c4:
06:8d:f8:c4:00:a7:86:cc:9b:f1:de:7a:65:1d:d8:
de:63:09:dd:ec:51:21:0a:f0:4f:87:94:99:7a:49:
06:c3:1e:40:21:2b:06:b4:c9:f1:20:2a:1e:92:43:
c9:41:ef:a7:67:a6:18:da:4c:35:85:b5:c7:5d:d8:
a5:7e:5a:2a:9c:71:46:ad:db:3c:7e:25:68:9d:90:
e8:72:d5:c5:be:75:9d:72:8d:74:2a:ac:83:5c:9c:
9f:09:1d:3a:ed:71:65:ee:2a:2f:6a:b6:32:ab:96:
0e:64:f3:59:70:92:f5:e6:76:19:fc:56:5e:ba:11:
d2:f8:2e:19:58:65:67:8a:5b:47:22:e2:de:03:b9:
f2:78:2f:e6:17:e3:c0:87:f7:a4:5c:a0:14:5c:83:
ce:03:29:33:26:a3:19:49:75:d1:1d:56:48:0f:a5:
b5:4c:0b:f0:61:e9:c5:8c:70:6f:1e:43:d0:a8:14:
2d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:43:CF:2B:37:12:2E:A7:6B:41:B9:13:96:32:6A:C3:43:54:9E:DB
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/8UPPKzcSLqdrQbkTljJqw0NUnts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.228.230.0/24
94.228.233.0/24
94.228.238.0/24
176.67.193.0-176.67.194.255
176.67.196.0/24
176.67.198.0/24
176.67.200.0/23
176.67.205.0/24
176.67.208.0/24
176.67.211.0-176.67.212.255
176.67.219.0-176.67.220.255
176.67.223.0/24
178.17.19.0/24
178.17.22.0-178.17.24.255
178.17.26.0-178.17.28.255
Signature Algorithm: sha256WithRSAEncryption
77:e3:fa:eb:fd:28:c0:b8:61:22:88:73:d1:e8:1c:1a:42:c1:
05:1b:2c:d5:7a:5c:f1:1c:82:06:ed:5f:46:9b:56:83:d5:13:
54:f6:e7:35:c1:c4:ed:48:e0:10:46:6e:63:4a:1c:41:80:95:
71:69:34:e7:f0:85:cf:71:24:f1:1c:3d:16:6c:5e:a6:d1:0c:
c8:3a:81:d4:ed:00:92:a3:d9:63:d1:97:e7:78:14:36:ed:51:
1d:a1:6e:d6:af:86:87:fe:8b:61:ee:50:83:2d:a5:ca:00:97:
35:0a:b5:7a:d6:bd:22:ad:91:e4:2b:47:65:22:57:d0:6b:48:
d0:03:22:3b:8f:ee:e4:8e:27:a6:44:72:16:65:7e:69:e3:34:
1f:49:60:2c:e5:84:cf:9e:9a:93:86:89:57:d4:92:f6:c5:3b:
ce:69:78:ac:14:d3:12:f1:23:67:50:98:88:64:e9:d1:7b:07:
fb:81:94:21:c7:79:6b:b2:a8:91:17:1e:6a:7c:3d:49:17:78:
7a:59:d5:5f:8c:81:6c:4e:dd:99:66:ee:3d:dd:a0:83:e3:13:
2b:fb:72:4e:70:ae:d1:db:84:ac:fa:55:b8:70:79:21:d3:b9:
d6:15:e0:c0:e7:cb:f3:05:60:8b:04:3f:8b:89:e8:65:65:28:
c3:7f:66:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:16:39 2025 by rpki-client