Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/8tegSI0NnkimiDND3-5B2g4AP8o.roa
File: 8tegSI0NnkimiDND3-5B2g4AP8o.roa (raw, json)
Hash identifier: fEEtfNuxi6Kwsq36BYoXtz6b4WffZ3X6Jh9xBvsNwy8=
Subject key identifier: F2:D7:A0:48:8D:0D:9E:48:A6:88:33:43:DF:EE:41:DA:0E:00:3F:CA
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 019629EADB9CAB2279C7B587D53B91947C91
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/8tegSI0NnkimiDND3-5B2g4AP8o.roa
Signing time: Sat 12 Apr 2025 12:12:59 +0000
ROA not before: Sat 12 Apr 2025 12:12:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 62.171.230.0/24 maxlen: 24
62.171.240.0/22 maxlen: 24
194.238.78.0/24 maxlen: 24
194.238.79.0/24 maxlen: 24
213.18.220.0/22 maxlen: 24
213.18.245.0/24 maxlen: 24
217.177.0.0/21 maxlen: 24
217.177.32.0/24 maxlen: 24
217.179.56.0/22 maxlen: 24
217.179.72.0/22 maxlen: 24
217.179.124.0/22 maxlen: 24
217.179.220.0/22 maxlen: 24
217.180.12.0/24 maxlen: 24
217.180.13.0/24 maxlen: 24
217.180.14.0/24 maxlen: 24
217.180.20.0/24 maxlen: 24
217.180.22.0/23 maxlen: 24
217.180.38.0/24 maxlen: 24
217.180.45.0/24 maxlen: 24
217.180.46.0/24 maxlen: 24
217.180.59.0/24 maxlen: 24
217.181.80.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Apr 2025 07:25:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:29:ea:db:9c:ab:22:79:c7:b5:87:d5:3b:91:94:7c:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Apr 12 12:12:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f2d7a0488d0d9e48a6883343dfee41da0e003fca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:26:b0:8c:3c:97:4d:21:a3:cb:b6:2b:57:35:
48:26:8e:4e:23:c4:96:fe:01:f1:84:70:0e:01:24:
8c:06:4d:c6:09:99:a8:69:5b:85:4a:22:e0:ec:5d:
ab:ab:10:93:8e:d9:be:4d:1d:8c:0f:da:af:28:d2:
ee:c1:41:1c:12:da:40:f3:fe:f0:96:96:f5:fe:e6:
99:f6:9f:44:c1:b5:a1:bc:01:00:67:f9:b0:96:cf:
c8:2e:cc:77:9d:8c:15:29:c5:12:77:94:5f:1c:18:
e1:14:4e:a9:9a:60:61:aa:41:9b:63:03:2c:77:1a:
f8:15:67:02:f6:f7:64:67:8a:59:0d:60:06:ec:ce:
a8:d5:0c:3b:04:2e:17:60:3b:8a:c2:0f:1b:a7:68:
ce:d1:e6:4c:38:ee:4d:b7:e1:4a:27:0d:49:da:05:
42:53:45:73:26:e9:f7:6d:04:61:a3:98:0d:ff:fc:
e6:f1:29:c3:4e:74:73:55:04:1f:a2:6c:0d:9e:42:
ee:53:bf:07:98:40:ac:e8:2d:fd:5a:63:5e:22:1f:
fe:06:ce:13:bf:8d:e1:dd:d8:92:f1:67:ce:2b:2f:
3f:74:e8:bf:46:ca:2e:33:41:c1:06:ea:c2:04:58:
1a:71:1b:e7:02:0c:e6:23:4e:be:57:ca:fb:f6:a0:
3d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:D7:A0:48:8D:0D:9E:48:A6:88:33:43:DF:EE:41:DA:0E:00:3F:CA
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/8tegSI0NnkimiDND3-5B2g4AP8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.171.230.0/24
62.171.240.0/22
194.238.78.0/23
213.18.220.0/22
213.18.245.0/24
217.177.0.0/21
217.177.32.0/24
217.179.56.0/22
217.179.72.0/22
217.179.124.0/22
217.179.220.0/22
217.180.12.0-217.180.14.255
217.180.20.0/24
217.180.22.0/23
217.180.38.0/24
217.180.45.0-217.180.46.255
217.180.59.0/24
217.181.80.0/22
Signature Algorithm: sha256WithRSAEncryption
36:2c:ce:9c:dc:1d:d9:91:8e:bd:af:03:ac:8a:b9:22:d0:7a:
b3:93:ea:0e:66:20:2b:25:39:65:06:e2:a6:b3:9a:29:b5:b4:
35:8b:e1:8e:db:b6:f3:be:1d:a8:62:db:84:5d:93:df:d2:15:
1c:9b:35:2c:3c:b4:c2:ca:cc:2c:a5:c1:76:11:b8:e9:5d:df:
19:0f:dd:d7:d1:6d:5e:47:0c:ad:b7:d3:ac:bf:6b:a6:a7:27:
30:85:4c:ba:db:db:4c:dc:a1:f0:7f:ed:8b:81:c2:dd:15:49:
64:95:91:09:17:13:c0:d5:6f:ce:d1:00:de:a3:38:15:9d:40:
0e:b5:a3:a7:dc:14:40:a9:af:f9:54:68:dc:ca:25:d4:ba:8a:
39:da:ef:4e:0a:f9:7a:6f:79:6b:e3:78:d4:54:de:18:8d:26:
98:11:dd:df:63:ac:39:2d:10:06:7d:5c:f1:d3:e8:d5:a3:92:
b2:5c:54:a4:8e:57:98:a2:d1:b2:1d:e6:46:85:45:7c:ed:8f:
90:c6:50:e7:cd:9c:4e:9e:1d:5c:2a:c8:41:fc:34:db:76:18:
b3:af:ca:90:38:87:63:d8:70:1a:65:96:98:28:b3:17:d6:78:
63:06:1a:60:eb:db:89:6f:06:72:4b:cc:0c:57:ed:9d:92:b0:
d0:0c:8d:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 07:19:00 2025 by rpki-client