Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/Eo1KiAJulFAdOnOLhkSO_aUQrRs.roa
File: Eo1KiAJulFAdOnOLhkSO_aUQrRs.roa (raw, json)
Hash identifier: j8EOFza2BW8whJFLN1zbeIbYJGdHBsnyJe5V7PznHRg=
Subject key identifier: 12:8D:4A:88:02:6E:94:50:1D:3A:73:8B:86:44:8E:FD:A5:10:AD:1B
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 01924C6DABE418E36FCDE8DF813E85E51AA9
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/Eo1KiAJulFAdOnOLhkSO_aUQrRs.roa
Signing time: Wed 02 Oct 2024 08:51:48 +0000
ROA not before: Wed 02 Oct 2024 08:51:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8400
IP address blocks: 5.154.225.0/24 maxlen: 24
62.101.128.0/20 maxlen: 20
77.46.128.0/17 maxlen: 17
79.101.0.0/16 maxlen: 16
79.101.0.0/21 maxlen: 21
79.101.21.0/24 maxlen: 24
87.250.32.0/19 maxlen: 19
89.39.144.0/23 maxlen: 23
89.46.126.0/23 maxlen: 23
89.47.40.0/23 maxlen: 23
91.150.64.0/18 maxlen: 18
91.150.64.0/23 maxlen: 23
91.150.66.0/24 maxlen: 24
91.150.91.0/24 maxlen: 24
92.244.128.0/19 maxlen: 19
93.86.0.0/15 maxlen: 15
93.86.0.0/16 maxlen: 16
93.87.0.0/16 maxlen: 16
93.87.38.0/24 maxlen: 24
93.87.39.0/24 maxlen: 24
93.87.50.0/24 maxlen: 24
93.87.58.0/24 maxlen: 24
109.72.48.0/20 maxlen: 20
109.92.0.0/15 maxlen: 15
109.122.64.0/18 maxlen: 24
109.122.77.0/24 maxlen: 24
109.198.0.0/19 maxlen: 19
178.79.0.0/18 maxlen: 18
178.220.0.0/15 maxlen: 15
178.222.0.0/16 maxlen: 16
178.223.0.0/17 maxlen: 17
178.223.128.0/18 maxlen: 18
178.223.192.0/19 maxlen: 19
185.26.172.0/22 maxlen: 22
185.71.88.0/22 maxlen: 22
185.190.152.0/22 maxlen: 22
195.178.32.0/19 maxlen: 19
212.200.0.0/16 maxlen: 16
212.200.0.0/17 maxlen: 17
212.200.0.0/21 maxlen: 21
212.200.8.0/22 maxlen: 22
212.200.12.0/23 maxlen: 23
212.200.45.0/24 maxlen: 24
212.200.50.0/24 maxlen: 24
212.200.51.0/24 maxlen: 24
212.200.52.0/24 maxlen: 24
212.200.123.0/24 maxlen: 24
212.200.128.0/17 maxlen: 17
212.200.128.0/18 maxlen: 18
212.200.132.0/24 maxlen: 24
212.200.192.0/19 maxlen: 19
212.200.224.0/24 maxlen: 24
212.200.225.0/24 maxlen: 24
212.200.226.0/23 maxlen: 23
212.200.228.0/22 maxlen: 22
212.200.232.0/21 maxlen: 21
212.200.240.0/20 maxlen: 20
213.196.96.0/20 maxlen: 20
2a00:e90::/32 maxlen: 32
2a06:5b00::/29 maxlen: 29
2a06:63c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 16 Oct 2024 11:06:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:4c:6d:ab:e4:18:e3:6f:cd:e8:df:81:3e:85:e5:1a:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Oct 2 08:51:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=128d4a88026e94501d3a738b86448efda510ad1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:cb:b3:4b:0c:3a:b5:e8:38:5d:49:35:1c:7f:
ee:6a:a5:1c:ac:4c:0a:41:56:c9:dc:2f:cd:5a:34:
8a:66:83:3d:07:42:17:60:9b:79:79:36:1b:83:af:
2b:4b:87:09:69:27:3b:24:f1:62:2a:fa:fd:de:62:
de:fa:c1:b4:35:a8:ae:b5:c2:78:47:00:c9:20:63:
15:de:e9:46:48:0f:05:e0:1f:7e:26:f4:08:82:7b:
5f:ed:bc:91:01:e5:2c:a5:78:d7:c8:cd:b0:2c:61:
59:4a:92:4c:9d:cb:61:a4:92:78:f3:5f:27:c9:e7:
ef:8a:4e:c9:13:38:37:e2:08:30:e4:1e:9c:44:f1:
92:02:7f:22:c2:a1:97:64:8c:3e:e8:53:f1:0d:b2:
0d:bc:bd:2d:cc:6c:c3:ff:a3:d5:dd:a1:63:68:e4:
74:f4:6d:eb:85:2a:8a:1b:be:31:12:bc:fb:be:73:
13:5f:ca:c5:14:fc:37:ad:14:e1:0d:8d:60:05:5d:
91:2e:2f:40:2a:af:e6:6b:d9:bf:3a:07:79:ff:7f:
f0:2e:b0:0c:88:37:07:1f:c1:86:16:a2:9d:6d:c1:
ee:03:a1:fd:45:4b:68:84:f9:05:b1:c1:4b:a2:3b:
9a:85:d1:50:c2:4b:ec:c9:0e:ad:9b:21:3e:f0:4a:
a7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:8D:4A:88:02:6E:94:50:1D:3A:73:8B:86:44:8E:FD:A5:10:AD:1B
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/Eo1KiAJulFAdOnOLhkSO_aUQrRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.225.0/24
62.101.128.0/20
77.46.128.0/17
79.101.0.0/16
87.250.32.0/19
89.39.144.0/23
89.46.126.0/23
89.47.40.0/23
91.150.64.0/18
92.244.128.0/19
93.86.0.0/15
109.72.48.0/20
109.92.0.0/15
109.122.64.0/18
109.198.0.0/19
178.79.0.0/18
178.220.0.0-178.223.223.255
185.26.172.0/22
185.71.88.0/22
185.190.152.0/22
195.178.32.0/19
212.200.0.0/16
213.196.96.0/20
IPv6:
2a00:e90::/32
2a06:5b00::/29
2a06:63c0::/29
Signature Algorithm: sha256WithRSAEncryption
03:da:f6:b7:9e:33:a7:72:e3:87:84:4d:62:36:8f:fe:ff:7f:
ca:c6:b3:2d:5d:28:01:98:5f:f8:ba:b7:18:4d:80:68:7d:d9:
a1:3e:12:1a:36:fd:08:77:ff:63:f5:c6:04:1e:44:4f:72:65:
3a:89:76:dd:3e:eb:48:78:04:70:e6:e0:2a:ce:91:42:13:50:
af:e3:dd:76:86:b5:a0:30:d7:8e:b6:fc:7b:e7:a6:cc:10:41:
d0:14:f4:40:19:59:cb:00:26:69:1c:6f:d2:dc:11:e0:5c:c9:
98:54:c5:75:31:ad:3b:69:fb:a3:eb:86:41:6e:1e:84:b0:b0:
1e:68:96:6e:df:b6:b3:f8:0f:a8:28:51:d4:f6:32:f8:18:d8:
1f:d2:39:79:02:6a:3b:91:30:ca:db:16:24:96:41:21:e6:95:
ee:68:26:f4:c5:e7:f2:5f:ed:eb:59:66:c2:f3:fa:50:32:b9:
dc:65:c2:22:19:4a:7d:d9:49:3e:ee:35:34:30:d2:db:67:a0:
ed:43:b0:f2:8e:1c:3e:da:08:85:84:a9:14:ec:11:1c:f5:76:
d8:be:e8:7f:14:ce:f5:a1:31:db:d1:40:69:81:0d:85:17:dd:
c7:ca:ce:d6:ec:1e:62:ac:0d:12:5a:ff:45:36:42:70:70:b4:
d6:5c:ea:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 16 13:44:39 2024 by rpki-client on console-fra.rpki-client.org