Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/7VA2mFBu3-zVBu3g1gwyMCjffs0.roa
File: 7VA2mFBu3-zVBu3g1gwyMCjffs0.roa (raw, json)
Hash identifier: /9uokFFgTzO22kseL/Ff//RaIqAgnjqrebvM6AhM/u0=
Subject key identifier: ED:50:36:98:50:6E:DF:EC:D5:06:ED:E0:D6:0C:32:30:28:DF:7E:CD
Certificate issuer: /CN=29c2103fd2417c8869145617de94fcc913b085ef
Certificate serial: 0189FE5B9FA7668493EC131135D998F66E0F
Authority key identifier: 29:C2:10:3F:D2:41:7C:88:69:14:56:17:DE:94:FC:C9:13:B0:85:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KcIQP9JBfIhpFFYX3pT8yROwhe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/7VA2mFBu3-zVBu3g1gwyMCjffs0.roa
Signing time: Wed 16 Aug 2023 12:39:24 +0000
ROA not before: Wed 16 Aug 2023 12:39:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48504
IP address blocks: 193.243.150.0/23 maxlen: 24
80.253.192.0/20 maxlen: 24
45.134.192.0/22 maxlen: 24
46.247.160.0/19 maxlen: 24
94.247.160.0/21 maxlen: 24
185.117.36.0/22 maxlen: 24
94.143.80.0/21 maxlen: 24
185.48.48.0/22 maxlen: 24
194.105.58.0/23 maxlen: 24
194.105.62.0/23 maxlen: 24
176.53.128.0/22 maxlen: 24
185.8.240.0/22 maxlen: 24
185.12.96.0/22 maxlen: 24
193.239.190.0/23 maxlen: 24
37.26.176.0/21 maxlen: 24
185.50.76.0/22 maxlen: 24
2a04:b440::/29 maxlen: 29
2a03:bd00::/32 maxlen: 48
2a01:aa60::/32 maxlen: 48
2a01:9720::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fe:5b:9f:a7:66:84:93:ec:13:11:35:d9:98:f6:6e:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29c2103fd2417c8869145617de94fcc913b085ef
Validity
Not Before: Aug 16 12:39:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed503698506edfecd506ede0d60c323028df7ecd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:eb:f2:ed:37:69:41:e1:66:2a:e6:e4:b4:0a:
5c:2a:87:97:d0:d2:7b:2e:e7:bd:51:c0:81:1a:61:
79:3c:fc:99:c0:c8:ab:51:23:ed:78:16:82:2b:10:
7a:15:91:07:d4:16:05:94:ae:db:cc:92:bf:b1:75:
2c:64:ed:e6:e9:2a:09:bb:b6:df:92:88:71:d4:51:
a2:1e:71:4d:33:17:84:33:83:8a:d7:58:5e:f9:51:
8e:6b:42:3e:2b:f3:24:8e:76:ae:17:69:ff:d6:41:
78:2e:55:20:6f:d8:dc:bd:41:1c:a4:2c:bc:f0:02:
ad:22:41:b2:ed:12:10:2a:25:10:00:d3:c5:6e:9b:
a3:6c:24:7f:e1:47:20:57:aa:d3:74:16:4f:51:04:
36:f9:ae:aa:70:ca:0f:96:90:7d:0a:2c:df:d4:a8:
3b:6a:47:c5:c3:61:33:84:c4:58:d5:88:76:d1:3d:
ea:f7:3d:90:8c:5c:2a:9f:84:36:32:20:c7:3f:92:
3a:c8:de:5a:f9:7b:d8:d3:34:1e:0d:3b:4a:67:a5:
05:fc:8a:21:ce:66:99:f8:6b:50:f3:ba:28:72:31:
fe:66:b8:39:f5:8f:a7:a4:b3:e2:9d:da:c0:88:27:
0a:b9:6a:bc:cd:77:f5:bb:9f:ae:2f:6f:15:a7:4c:
1c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:50:36:98:50:6E:DF:EC:D5:06:ED:E0:D6:0C:32:30:28:DF:7E:CD
X509v3 Authority Key Identifier:
keyid:29:C2:10:3F:D2:41:7C:88:69:14:56:17:DE:94:FC:C9:13:B0:85:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KcIQP9JBfIhpFFYX3pT8yROwhe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/7VA2mFBu3-zVBu3g1gwyMCjffs0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/KcIQP9JBfIhpFFYX3pT8yROwhe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.176.0/21
45.134.192.0/22
46.247.160.0/19
80.253.192.0/20
94.143.80.0/21
94.247.160.0/21
176.53.128.0/22
185.8.240.0/22
185.12.96.0/22
185.48.48.0/22
185.50.76.0/22
185.117.36.0/22
193.239.190.0/23
193.243.150.0/23
194.105.58.0/23
194.105.62.0/23
IPv6:
2a01:9720::/32
2a01:aa60::/32
2a03:bd00::/32
2a04:b440::/29
Signature Algorithm: sha256WithRSAEncryption
71:31:ff:81:bf:4d:27:70:60:c4:22:ca:9c:8c:84:38:fd:79:
10:6c:21:b6:cf:61:80:b3:0f:c7:32:1e:38:a9:66:c6:e9:88:
d1:82:17:16:67:a2:d4:60:92:65:3c:f5:07:1c:70:ea:24:1a:
b0:30:6d:92:7e:1a:f0:d7:d6:2e:b9:f4:51:4f:2a:d0:48:16:
5a:09:59:1c:29:8a:da:3a:2e:49:1e:0c:30:c6:f5:ae:d3:15:
f3:e1:25:eb:4a:ba:f4:f3:01:cb:5d:74:03:d0:a6:49:16:ae:
21:da:6a:e1:d1:9b:90:e4:61:5e:f4:a4:d2:3d:7a:f5:2a:9f:
a1:a7:a0:87:7e:a6:88:45:15:e3:48:ed:89:91:67:ff:09:4d:
df:15:f8:40:73:8f:12:41:ab:6b:e9:7c:63:56:49:61:23:ac:
af:48:f6:38:e9:4f:d3:fd:34:bf:83:98:44:26:8c:30:f5:88:
33:62:2d:9b:83:62:d3:46:02:b7:c3:d5:4c:1d:75:db:88:4e:
84:a8:11:13:8e:66:d9:0e:6e:21:57:50:fa:e6:2b:59:fe:67:
a9:e5:47:f3:55:08:30:36:6b:d5:e5:9b:c8:c5:39:e2:c9:f9:
e4:4e:ab:ff:32:c9:55:91:97:66:2a:65:4b:01:db:77:b7:12:
e8:64:49:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:09 2024 by rpki-client on console-ams.rpki-client.org