Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/eJnh9upFE-XSF0cm-Edo0VtfrpA.roa
File: eJnh9upFE-XSF0cm-Edo0VtfrpA.roa (raw, json)
Hash identifier: 92j8tylmDsYXQWJXABf+fdXBG2imVu65boIe9PXpRhc=
Subject key identifier: 78:99:E1:F6:EA:45:13:E5:D2:17:47:26:F8:47:68:D1:5B:5F:AE:90
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 01970DBE750B090D34A9C453627A74578970
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/eJnh9upFE-XSF0cm-Edo0VtfrpA.roa
Signing time: Mon 26 May 2025 17:57:55 +0000
ROA not before: Mon 26 May 2025 17:57:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61317
IP address blocks: 81.168.120.0/24 maxlen: 24
82.152.248.0/24 maxlen: 24
82.152.251.0/24 maxlen: 24
82.152.254.0/24 maxlen: 24
82.153.34.0/24 maxlen: 24
82.153.37.0/24 maxlen: 24
82.153.72.0/24 maxlen: 24
82.153.132.0/24 maxlen: 24
89.213.4.0/24 maxlen: 24
89.213.7.0/24 maxlen: 24
89.213.130.0/24 maxlen: 24
89.213.190.0/24 maxlen: 24
89.213.215.0/24 maxlen: 24
109.176.247.0/24 maxlen: 24
109.176.251.0/24 maxlen: 24
213.210.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Jun 2025 08:02:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:0d:be:75:0b:09:0d:34:a9:c4:53:62:7a:74:57:89:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: May 26 17:57:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7899e1f6ea4513e5d2174726f84768d15b5fae90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:09:48:f7:e6:a7:28:4f:da:93:96:ef:09:c7:
2d:cc:17:1f:0a:44:09:61:9a:42:88:e4:ac:99:6d:
82:bc:81:9e:48:cc:55:b3:a9:ce:9a:69:98:90:a7:
b7:c9:96:7d:99:25:3e:69:7b:9f:6f:b7:68:96:0f:
80:6e:c0:6a:cf:eb:b2:ae:fc:1f:26:56:52:e0:55:
0f:d0:4f:5a:53:47:21:8a:1f:99:bb:a4:ce:30:5c:
98:b8:89:93:7d:4e:50:c5:60:56:f9:be:7b:20:35:
ed:5e:80:8b:59:84:f7:6e:4f:92:af:72:00:f0:89:
f5:95:0b:e7:d2:ff:5e:07:eb:c8:e2:5c:84:ca:b9:
9d:a8:ce:52:8f:99:1e:8a:c6:a8:af:1f:3a:3a:3a:
f0:6b:a9:b3:75:35:2c:22:d9:c9:7b:29:41:23:d6:
1b:99:ad:87:38:85:09:a4:a1:35:51:69:36:d2:77:
58:1b:8c:bb:df:5c:36:d3:aa:7a:c1:5a:07:7a:6d:
72:e6:d5:bd:13:d6:99:b0:89:b8:e0:1a:cf:33:9e:
c9:fb:e0:e2:0b:ab:56:0e:6a:26:2c:d8:3e:83:b0:
61:82:2b:a8:cc:b2:12:ab:49:fd:38:4a:20:08:f6:
ac:87:f1:5b:ec:f1:24:ff:92:bf:37:9f:47:d8:c5:
69:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:99:E1:F6:EA:45:13:E5:D2:17:47:26:F8:47:68:D1:5B:5F:AE:90
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/eJnh9upFE-XSF0cm-Edo0VtfrpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.168.120.0/24
82.152.248.0/24
82.152.251.0/24
82.152.254.0/24
82.153.34.0/24
82.153.37.0/24
82.153.72.0/24
82.153.132.0/24
89.213.4.0/24
89.213.7.0/24
89.213.130.0/24
89.213.190.0/24
89.213.215.0/24
109.176.247.0/24
109.176.251.0/24
213.210.62.0/24
Signature Algorithm: sha256WithRSAEncryption
35:41:55:4e:93:5e:19:59:68:cb:67:2b:32:d8:21:db:f1:4e:
2c:30:ad:37:84:0b:3d:ab:02:7f:63:45:fb:9c:f4:f2:5d:37:
50:e6:b0:70:32:e0:7e:47:b4:67:0e:53:44:9c:03:02:41:19:
4b:b2:1e:7e:41:86:3a:82:a3:96:12:72:27:70:09:8a:ce:c1:
d5:e5:29:ba:a4:ec:63:5f:90:cc:d2:b4:94:10:5e:f6:d9:51:
64:fb:66:fd:7e:bc:91:51:54:5a:50:87:37:7a:49:47:c9:bf:
91:62:4c:53:93:1b:0d:8e:a1:74:a7:ca:d3:a4:e3:7d:aa:cf:
69:ca:3c:df:50:c1:b7:dd:38:37:f5:0c:03:08:21:e8:1c:a1:
b5:de:fc:c5:df:91:94:6f:0e:45:fd:6a:1c:4f:a6:0f:62:6d:
69:6a:9a:83:36:46:60:e6:c1:35:60:45:af:cc:09:35:4b:e2:
b7:92:bd:65:49:9b:cb:93:61:d3:ef:72:e3:3d:d1:fd:02:d9:
84:c8:a6:ef:46:20:0d:e2:d3:6e:4d:4d:be:8a:b2:4f:d2:05:
fa:fb:e5:0e:d4:d1:26:27:06:02:0f:e3:4a:2b:50:91:1e:b3:
e7:54:84:a5:0d:95:b8:fc:f9:7c:cf:60:cc:17:e9:8c:f2:3d:
45:4d:e7:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 03:14:58 2025 by rpki-client