Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/p8UCvVdjHRlbA0koP38OQ4jj88I.roa
File: p8UCvVdjHRlbA0koP38OQ4jj88I.roa (raw, json)
Hash identifier: hY3rNH2pBjO8zBTTqKfK5rWsCmkZ/Hry6jSOfiBWxqw=
Subject key identifier: A7:C5:02:BD:57:63:1D:19:5B:03:49:28:3F:7F:0E:43:88:E3:F3:C2
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 01906DB777CC692438C073970C0D83AF62C0
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/p8UCvVdjHRlbA0koP38OQ4jj88I.roa
Signing time: Mon 01 Jul 2024 09:54:18 +0000
ROA not before: Mon 01 Jul 2024 09:54:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 82.152.176.0/23 maxlen: 23
82.153.136.0/22 maxlen: 22
89.213.50.0/23 maxlen: 23
89.213.56.0/22 maxlen: 22
89.213.134.0/24 maxlen: 24
89.213.148.0/22 maxlen: 24
89.213.152.0/22 maxlen: 24
89.213.156.0/22 maxlen: 24
89.213.172.0/22 maxlen: 24
89.213.192.0/24 maxlen: 24
89.213.196.0/22 maxlen: 24
89.213.200.0/22 maxlen: 24
89.213.204.0/22 maxlen: 24
89.213.232.0/22 maxlen: 24
89.213.236.0/22 maxlen: 24
109.176.16.0/21 maxlen: 24
109.176.27.0/24 maxlen: 24
109.176.204.0/22 maxlen: 24
185.49.126.0/23 maxlen: 24
194.105.80.0/20 maxlen: 20
212.38.88.0/23 maxlen: 24
213.218.211.0/24 maxlen: 24
217.145.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jul 2024 16:39:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6d:b7:77:cc:69:24:38:c0:73:97:0c:0d:83:af:62:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jul 1 09:54:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a7c502bd57631d195b0349283f7f0e4388e3f3c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:58:9b:17:96:4c:38:d6:6a:81:9d:cd:64:06:
ff:a6:cc:80:98:a1:fe:30:44:88:09:e5:14:9b:e5:
85:9d:fd:46:11:5a:7d:bd:7a:98:ea:69:df:19:5d:
ee:16:05:63:75:cf:14:04:b6:6f:8e:2d:7b:6c:4d:
d1:ed:47:e7:4d:a9:af:d9:2d:4f:9b:cc:cd:ae:68:
cf:04:cc:f4:c9:ec:7a:a3:6f:bb:9b:fc:6e:44:f5:
63:9a:2a:3d:76:eb:9f:59:87:73:08:75:54:c1:15:
18:93:cf:7b:a9:eb:dd:a6:b5:7b:a3:d8:23:f9:b0:
f0:68:a8:d3:a2:6a:c2:0f:b2:0b:71:13:7d:0a:ed:
88:44:90:e6:c0:0f:9a:ed:e1:9d:bf:19:4f:89:bb:
64:65:40:39:6e:3c:03:a5:95:95:07:f5:6b:11:91:
f9:9d:a3:9f:96:3f:ab:4d:b0:f8:84:2e:6f:f0:c7:
c0:1a:b5:c6:fa:83:8a:78:05:4e:5c:32:51:c9:73:
7a:04:fa:b3:a7:8b:f4:01:08:b6:69:10:7b:42:09:
cc:38:65:17:e2:48:42:41:83:5d:1d:de:be:39:2b:
60:33:f5:ba:1d:49:56:61:eb:1a:a6:97:48:5d:cf:
b1:94:f2:c4:b6:98:09:27:3c:a1:a9:65:01:33:cf:
6e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:C5:02:BD:57:63:1D:19:5B:03:49:28:3F:7F:0E:43:88:E3:F3:C2
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/p8UCvVdjHRlbA0koP38OQ4jj88I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.176.0/23
82.153.136.0/22
89.213.50.0/23
89.213.56.0/22
89.213.134.0/24
89.213.148.0-89.213.159.255
89.213.172.0/22
89.213.192.0/24
89.213.196.0-89.213.207.255
89.213.232.0/21
109.176.16.0/21
109.176.27.0/24
109.176.204.0/22
185.49.126.0/23
194.105.80.0/20
212.38.88.0/23
213.218.211.0/24
217.145.72.0/21
Signature Algorithm: sha256WithRSAEncryption
45:02:9f:00:f7:59:9b:f6:9e:12:9b:9e:45:db:e4:b4:ae:73:
93:a2:a2:8e:9a:0a:7d:eb:02:0d:d3:e8:c1:4d:b1:0a:50:5a:
3d:5d:7c:0b:6c:c1:31:3d:a3:ad:d0:f3:73:36:3d:4f:ec:ef:
b1:bc:31:be:2e:21:58:2d:fd:21:23:45:88:4d:ff:6a:5e:bf:
eb:66:bc:dc:11:23:b2:7c:52:ed:b9:89:c3:33:9a:0a:df:e3:
05:80:c8:a2:1e:aa:e9:03:10:1f:40:57:cf:01:3d:60:7c:25:
b8:ed:58:eb:f6:ca:cc:e9:09:39:58:3d:11:ea:c8:f5:7d:05:
86:c6:68:c0:ea:d2:0a:cb:1e:76:6e:35:1c:26:80:ba:ef:39:
86:cd:ef:2b:fa:1b:df:f9:dc:eb:4e:6b:33:11:61:29:e0:29:
20:8f:25:75:ec:8b:96:64:90:84:ae:c9:68:f1:4c:ba:05:0d:
f8:bf:24:5a:35:06:8d:47:0f:f3:05:40:f1:7f:88:9b:ff:3d:
a0:c2:cf:c2:93:fd:b6:7c:a6:8d:19:2c:a6:3f:97:c1:ff:c7:
92:24:1b:34:21:68:a4:4b:a8:23:ef:4d:22:e3:ee:5e:a9:8c:
42:e3:05:e3:8c:4c:f1:5b:e5:23:d9:2f:58:3e:26:c3:0c:64:
de:33:68:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 12:57:49 2025 by rpki-client