Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/t5BT7Ls1q8RI-QwxFVifFNt7SYc.roa
File: t5BT7Ls1q8RI-QwxFVifFNt7SYc.roa (raw, json)
Hash identifier: cf4j1mjJ/+Ow1o7s31nmeAClOhqZzHGwPYzx+GpVN6s=
Subject key identifier: B7:90:53:EC:BB:35:AB:C4:48:F9:0C:31:15:58:9F:14:DB:7B:49:87
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019242FE83DA16AA94B41AF78DDFC967D34A
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/t5BT7Ls1q8RI-QwxFVifFNt7SYc.roa
Signing time: Mon 30 Sep 2024 12:53:49 +0000
ROA not before: Mon 30 Sep 2024 12:53:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 82.152.176.0/23 maxlen: 23
82.153.136.0/22 maxlen: 22
82.153.222.0/24 maxlen: 24
82.153.243.0/24 maxlen: 24
82.163.23.0/24 maxlen: 24
89.213.44.0/23 maxlen: 24
89.213.50.0/23 maxlen: 23
89.213.56.0/22 maxlen: 22
89.213.129.0/24 maxlen: 24
89.213.139.0/24 maxlen: 24
89.213.145.0/24 maxlen: 24
89.213.148.0/22 maxlen: 24
89.213.152.0/22 maxlen: 24
89.213.154.0/24 maxlen: 24
89.213.156.0/22 maxlen: 24
89.213.167.0/24 maxlen: 24
89.213.172.0/22 maxlen: 24
89.213.196.0/22 maxlen: 24
89.213.200.0/22 maxlen: 24
89.213.204.0/22 maxlen: 24
89.213.228.0/22 maxlen: 22
89.213.228.0/23 maxlen: 24
89.213.232.0/22 maxlen: 24
89.213.236.0/22 maxlen: 24
109.176.16.0/21 maxlen: 24
109.176.16.0/24 maxlen: 24
109.176.204.0/22 maxlen: 24
109.176.242.0/23 maxlen: 24
185.49.126.0/23 maxlen: 24
194.105.80.0/20 maxlen: 20
194.105.90.0/23 maxlen: 24
212.38.88.0/23 maxlen: 24
213.218.211.0/24 maxlen: 24
217.145.65.0/24 maxlen: 24
217.145.66.0/24 maxlen: 24
217.145.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Oct 2024 23:56:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:42:fe:83:da:16:aa:94:b4:1a:f7:8d:df:c9:67:d3:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Sep 30 12:53:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b79053ecbb35abc448f90c3115589f14db7b4987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c5:7e:36:41:4a:bc:b4:29:4d:e9:05:6d:1e:
65:c9:ca:fb:1b:4c:52:76:e1:84:b6:bf:9e:33:ac:
05:a5:29:1a:52:2d:00:02:c8:be:90:21:b4:7d:1a:
ee:c8:5f:25:b0:e9:10:c0:03:08:44:91:3c:5f:bc:
5a:23:5c:54:94:4c:a3:50:55:c6:c3:f1:07:3e:26:
55:13:a6:dd:63:03:27:2c:84:18:dd:87:16:a5:57:
3a:9a:8f:59:cd:74:f5:52:a4:12:27:8a:2a:fc:7e:
ff:c7:99:df:16:84:bf:16:72:4e:69:43:8f:ff:8a:
97:dc:a3:9b:58:92:4f:e4:30:ea:72:30:e3:86:5a:
cd:98:48:dc:95:45:c4:2c:8d:25:c9:ad:b0:1f:bb:
c0:3f:c8:fe:4f:fa:96:92:b4:05:43:ea:cf:7c:d4:
51:64:0c:45:e1:57:2f:e8:be:c2:1c:78:34:ac:bd:
51:38:c7:f0:bf:51:64:1d:98:2b:1f:cf:d2:58:f2:
13:85:61:b3:c8:7c:9d:18:6e:e0:8a:54:d8:51:54:
5c:27:11:d1:b2:f9:4f:4e:f6:54:12:e5:e8:37:16:
83:55:f5:ae:e7:81:d3:5a:da:b9:09:b3:ec:a9:e0:
db:bf:c4:3d:8d:32:2d:2f:ca:56:36:fe:c6:e3:eb:
d5:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:90:53:EC:BB:35:AB:C4:48:F9:0C:31:15:58:9F:14:DB:7B:49:87
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/t5BT7Ls1q8RI-QwxFVifFNt7SYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.176.0/23
82.153.136.0/22
82.153.222.0/24
82.153.243.0/24
82.163.23.0/24
89.213.44.0/23
89.213.50.0/23
89.213.56.0/22
89.213.129.0/24
89.213.139.0/24
89.213.145.0/24
89.213.148.0-89.213.159.255
89.213.167.0/24
89.213.172.0/22
89.213.196.0-89.213.207.255
89.213.228.0-89.213.239.255
109.176.16.0/21
109.176.204.0/22
109.176.242.0/23
185.49.126.0/23
194.105.80.0/20
212.38.88.0/23
213.218.211.0/24
217.145.65.0-217.145.66.255
217.145.72.0/21
Signature Algorithm: sha256WithRSAEncryption
8c:51:6a:cf:f7:73:7e:61:0a:4e:0c:24:99:8d:ac:ce:c7:7f:
9d:9d:b8:7b:fe:07:63:66:70:c2:46:cd:40:a8:de:50:82:c6:
f2:f6:63:df:04:3c:5d:cd:aa:5e:e1:e2:fb:fc:c7:ad:98:39:
61:21:e3:02:51:70:6a:7d:9d:95:b8:28:1e:1e:c4:3e:b3:ae:
34:a8:f6:ae:01:80:3c:15:fd:39:87:f1:56:0d:3a:89:9e:cc:
d9:9c:42:6b:fe:2a:b3:f3:8d:41:6b:23:fe:7b:7b:84:17:bb:
70:20:f6:dc:af:2e:0a:57:f1:84:a7:94:81:92:d2:11:5d:83:
93:32:96:f7:05:22:8c:34:fb:c9:26:23:6f:e9:6c:60:15:39:
e1:8e:dc:5f:76:cd:a1:29:73:98:54:31:db:01:17:c3:a5:c4:
ae:38:02:d4:c6:1c:41:0d:6a:92:1f:c0:85:4d:f4:5c:53:0e:
0c:48:59:30:1f:36:31:56:96:30:87:23:43:8b:ef:80:6f:64:
7b:72:c2:c7:9f:d6:df:7c:82:0b:25:7d:92:f6:8b:41:48:97:
f0:3f:21:5a:fc:d0:71:fd:5a:39:31:75:49:51:20:42:bd:d8:
66:bc:32:29:00:9e:31:b5:93:73:92:74:8d:f6:79:2c:25:00:
f2:1a:99:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 22:20:02 2025 by rpki-client