Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/8-TMrIITyNL9oUGTqx-jPhTDopM.roa
File: 8-TMrIITyNL9oUGTqx-jPhTDopM.roa (raw, json)
Hash identifier: fI9b8TGO7iYeew+Gn2wcK8TZqDe6naBNENULKtTyCD0=
Subject key identifier: F3:E4:CC:AC:82:13:C8:D2:FD:A1:41:93:AB:1F:A3:3E:14:C3:A2:93
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 01918E63FB6C92AD51191F1B341C867F94EF
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/8-TMrIITyNL9oUGTqx-jPhTDopM.roa
Signing time: Mon 26 Aug 2024 11:13:22 +0000
ROA not before: Mon 26 Aug 2024 11:13:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13118
IP address blocks: 46.237.0.0/18 maxlen: 18
46.237.0.0/19 maxlen: 19
46.237.48.0/20 maxlen: 20
77.234.0.0/19 maxlen: 19
85.113.192.0/20 maxlen: 20
85.113.204.0/24 maxlen: 24
87.253.0.0/19 maxlen: 19
87.253.0.0/20 maxlen: 20
87.253.13.0/24 maxlen: 24
87.253.16.0/21 maxlen: 21
87.253.24.0/21 maxlen: 21
93.181.208.0/20 maxlen: 20
93.181.224.0/24 maxlen: 24
93.181.225.0/24 maxlen: 24
93.181.240.0/20 maxlen: 20
95.86.192.0/19 maxlen: 19
95.86.206.0/24 maxlen: 24
95.86.207.0/24 maxlen: 24
95.86.208.0/24 maxlen: 24
95.86.209.0/24 maxlen: 24
95.86.224.0/19 maxlen: 19
95.106.160.0/19 maxlen: 19
109.161.0.0/17 maxlen: 17
109.161.0.0/19 maxlen: 19
109.161.0.0/21 maxlen: 21
109.161.32.0/19 maxlen: 19
109.161.52.0/24 maxlen: 24
109.161.57.0/24 maxlen: 24
109.161.60.0/22 maxlen: 22
109.161.64.0/19 maxlen: 19
109.161.64.0/20 maxlen: 20
217.15.128.0/19 maxlen: 24
217.15.134.0/24 maxlen: 24
217.15.144.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 26 Aug 2024 11:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8e:63:fb:6c:92:ad:51:19:1f:1b:34:1c:86:7f:94:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Aug 26 11:13:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f3e4ccac8213c8d2fda14193ab1fa33e14c3a293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4c:9b:0d:80:ff:0a:3f:c2:85:d5:eb:14:0d:
a5:99:d2:79:ea:80:63:c0:57:1d:29:60:7b:e0:c6:
93:16:f3:fe:e5:ce:70:75:88:a2:9b:55:6f:9a:88:
d8:70:43:4f:e6:f0:50:05:b5:d5:45:bc:ca:c2:98:
e8:5c:5a:1c:08:8b:73:eb:dd:78:01:ca:c6:b9:68:
3b:88:d2:37:6f:cc:46:18:f4:98:2b:88:b0:87:f1:
cf:4b:75:c7:51:34:f8:5e:79:4c:34:a8:4e:52:28:
73:74:cc:96:4f:57:69:fb:4a:d6:bd:93:6b:f3:42:
5b:8c:68:6a:81:19:d5:79:f5:27:c5:3a:21:41:3f:
d4:42:ad:5e:dd:5c:06:ea:f8:6f:55:3d:6f:26:9e:
ff:df:0d:54:70:e7:20:b0:e3:0c:b0:2f:fd:28:cb:
86:ef:03:e3:f0:f5:96:37:9b:7e:17:3d:a4:2c:e9:
af:fb:09:ad:50:e9:d0:96:f3:c4:26:86:13:82:e1:
4c:e5:66:08:e5:68:2c:72:32:25:88:ff:81:c1:3e:
6d:d3:c6:b5:fb:69:6b:e5:fd:08:de:42:a3:23:41:
61:75:e5:b6:c8:b4:82:83:02:a0:e5:9b:df:2d:d2:
75:23:9b:a6:9e:90:ae:25:4c:37:c0:2f:17:8a:87:
19:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:E4:CC:AC:82:13:C8:D2:FD:A1:41:93:AB:1F:A3:3E:14:C3:A2:93
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/8-TMrIITyNL9oUGTqx-jPhTDopM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.237.0.0/18
77.234.0.0/19
85.113.192.0/20
87.253.0.0/19
93.181.208.0-93.181.225.255
93.181.240.0/20
95.86.192.0/18
95.106.160.0/19
109.161.0.0/17
217.15.128.0/19
Signature Algorithm: sha256WithRSAEncryption
5a:b7:5e:e0:76:fc:38:30:c3:3b:4a:1a:97:5b:f4:e9:f4:7a:
23:e3:b6:b4:ae:0d:8a:35:24:1a:07:05:8d:e6:9f:5c:1d:c1:
de:b2:02:3a:70:f6:97:2e:24:01:e2:1f:83:d7:77:11:a4:b6:
cb:8f:98:5e:7d:70:d4:b5:aa:8c:b3:50:f9:af:35:63:2b:69:
90:26:35:2c:61:d1:22:cd:07:e8:fa:af:15:5a:2c:7f:ee:3f:
46:0b:11:e7:8c:43:30:f7:de:d6:f1:40:01:52:c2:39:34:a6:
e1:1b:ac:aa:18:a3:6c:57:9d:b3:ab:9a:63:66:e3:0d:84:4a:
2b:3c:2b:31:10:8d:a7:cd:aa:96:45:da:6c:30:83:ab:aa:03:
05:94:69:ed:f1:75:f7:37:c9:cd:f9:c0:2d:a1:18:46:df:b8:
56:e5:96:49:00:82:b6:e7:a9:f0:b3:01:10:77:f1:61:79:d7:
4e:37:e6:c0:f0:78:2f:8b:37:48:b1:07:7f:4f:0d:b7:9e:e8:
7a:9c:ec:3e:67:76:ee:ab:40:cc:77:a1:f1:70:a2:45:26:22:
2d:9f:43:f3:ac:6d:ce:03:25:5c:ea:fb:72:9b:d2:25:d4:2f:
3b:6b:6e:88:2c:f5:fb:fd:3a:34:57:d0:a3:db:a6:ed:77:d3:
7b:cf:ed:34
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue May 13 05:49:55 2025 by rpki-client