Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/kurOaLd4V6A3e0BUU4GhWIAC9Kg.roa
File: kurOaLd4V6A3e0BUU4GhWIAC9Kg.roa (raw, json)
Hash identifier: u3pY0xZ7rgAyMSzKkpummpW5QVDLkCpfAvT2QrBmn2k=
Subject key identifier: 92:EA:CE:68:B7:78:57:A0:37:7B:40:54:53:81:A1:58:80:02:F4:A8
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018FDD55063C5CBEA5B63CA53BDC68FD8BEC
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/kurOaLd4V6A3e0BUU4GhWIAC9Kg.roa
Signing time: Mon 03 Jun 2024 09:01:27 +0000
ROA not before: Mon 03 Jun 2024 09:01:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39679
IP address blocks: 79.172.214.0/24 maxlen: 24
79.172.218.0/24 maxlen: 24
79.172.220.0/24 maxlen: 24
79.172.228.0/24 maxlen: 24
87.229.14.0/24 maxlen: 24
87.229.22.0/24 maxlen: 24
87.229.23.0/24 maxlen: 24
87.229.31.0/24 maxlen: 24
87.229.34.0/24 maxlen: 24
87.229.35.0/24 maxlen: 24
87.229.48.0/24 maxlen: 24
87.229.70.0/24 maxlen: 24
87.229.71.0/24 maxlen: 24
87.229.79.0/24 maxlen: 24
87.229.80.0/24 maxlen: 24
87.229.81.0/24 maxlen: 24
87.229.82.0/24 maxlen: 24
87.229.92.0/24 maxlen: 24
87.229.97.0/24 maxlen: 24
87.229.100.0/24 maxlen: 24
87.229.110.0/24 maxlen: 24
95.138.194.0/23 maxlen: 23
213.181.201.0/24 maxlen: 24
217.144.57.0/24 maxlen: 24
217.144.58.0/24 maxlen: 24
217.144.59.0/24 maxlen: 24
217.144.60.0/24 maxlen: 24
217.144.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jun 2024 09:40:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:dd:55:06:3c:5c:be:a5:b6:3c:a5:3b:dc:68:fd:8b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Jun 3 09:01:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=92eace68b77857a0377b40545381a1588002f4a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6c:96:06:e4:e5:d2:d5:1f:0e:60:4c:37:f7:
19:23:eb:b1:31:cd:1a:53:a6:20:7f:31:4d:e3:be:
32:72:9a:f2:ea:36:ce:08:33:76:79:2e:37:31:78:
7d:fd:39:9b:ae:1f:a6:8e:9d:0f:d1:eb:b1:3f:a2:
13:88:0f:48:fa:1f:b3:5a:a9:c2:32:b6:7a:c0:4b:
0c:c8:f6:b4:c1:34:67:c8:21:da:e2:45:f4:1c:bf:
bb:e0:96:61:8e:c5:ed:41:59:dd:55:54:51:5b:fb:
2e:44:e1:d3:4e:64:31:82:54:f2:3e:5d:7d:8f:c2:
b8:37:60:3e:c6:f5:50:53:f1:6f:db:99:9e:16:38:
46:68:59:65:67:36:bd:de:50:0b:54:3a:f3:e0:23:
c6:79:8f:bf:69:de:e1:e7:85:86:12:7a:25:b1:fa:
f4:a0:ba:c8:f2:99:eb:97:7d:17:0b:8d:6a:14:ad:
1b:af:8c:40:e7:46:91:d3:bc:c1:9d:46:ba:07:39:
f7:40:ba:35:5c:5a:a6:66:e6:ac:6b:df:42:15:66:
58:ce:90:89:ab:c2:d9:3b:7e:34:94:b3:e9:c8:6a:
85:b0:bb:6c:7b:fd:08:a3:31:9a:e5:e5:cd:d5:e3:
59:e0:de:b2:1f:c6:5c:9d:b4:d6:74:0a:1e:28:b2:
93:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:EA:CE:68:B7:78:57:A0:37:7B:40:54:53:81:A1:58:80:02:F4:A8
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/kurOaLd4V6A3e0BUU4GhWIAC9Kg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.214.0/24
79.172.218.0/24
79.172.220.0/24
79.172.228.0/24
87.229.14.0/24
87.229.22.0/23
87.229.31.0/24
87.229.34.0/23
87.229.48.0/24
87.229.70.0/23
87.229.79.0-87.229.82.255
87.229.92.0/24
87.229.97.0/24
87.229.100.0/24
87.229.110.0/24
95.138.194.0/23
213.181.201.0/24
217.144.57.0-217.144.60.255
217.144.62.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:c0:35:6d:c8:79:24:7b:0b:f9:b6:d0:b6:bc:c1:f0:4d:69:
c7:bb:91:d5:c8:de:7f:10:67:52:e7:eb:1a:4b:14:8d:c5:1b:
27:36:7e:80:bf:24:bc:a5:3f:0c:6e:6f:b7:94:6a:cf:fc:86:
31:2f:6b:b4:3e:57:27:b1:92:aa:b4:c5:ff:9a:48:16:0e:f4:
45:3d:ec:02:17:fd:36:f7:0e:e1:46:9f:af:11:ed:0c:8a:6d:
03:94:a5:ee:6d:1e:81:bc:9a:d0:39:ee:9b:7a:e3:95:06:dc:
73:73:80:7e:ab:38:a5:1e:be:2f:82:8c:57:9d:18:d7:9a:a7:
b6:88:da:db:66:e7:84:7e:f4:9c:57:0e:f0:50:3f:09:f1:2a:
0c:da:8e:74:3a:aa:eb:f9:3f:ff:34:0a:e7:5d:da:d3:ee:cf:
5b:48:f2:f4:8f:36:b1:d9:9b:50:f8:b4:21:25:0a:f4:f3:db:
7c:38:a1:77:34:af:2d:d4:3a:22:13:d2:74:d1:00:f2:db:48:
f8:17:cd:d5:d4:7d:9c:3a:c2:3d:e1:30:3c:90:a5:d2:0b:e9:
a2:10:6d:b2:d1:d3:7b:ce:72:13:63:89:e3:d1:16:31:ec:b8:
06:97:92:84:3f:3a:5d:7a:6c:7f:7d:de:17:33:71:f9:29:9d:
91:03:cb:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 08:22:04 2025 by rpki-client