Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/27svB8ILwxunLGE_19b_R4M08zM.roa
File: 27svB8ILwxunLGE_19b_R4M08zM.roa (raw, json)
Hash identifier: GQi/D0+iMWTV2ew8drY9d9+sE94hQVvtQAYUvd0H/Io=
Subject key identifier: DB:BB:2F:07:C2:0B:C3:1B:A7:2C:61:3F:D7:D6:FF:47:83:34:F3:33
Certificate issuer: /CN=217b491dccb5632216d80b48f8d6286b1effd8d7
Certificate serial: 0188B0EA469AAFCC4C0C3FC663010D5E59A3
Authority key identifier: 21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/27svB8ILwxunLGE_19b_R4M08zM.roa
Signing time: Mon 12 Jun 2023 18:42:03 +0000
ROA not before: Mon 12 Jun 2023 18:42:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59625
IP address blocks: 185.240.17.0/24 maxlen: 24
185.240.16.0/24 maxlen: 24
185.240.18.0/24 maxlen: 24
185.240.19.0/24 maxlen: 24
204.154.202.0/24 maxlen: 24
204.154.200.0/24 maxlen: 24
204.154.201.0/24 maxlen: 24
204.154.205.0/24 maxlen: 24
204.154.206.0/24 maxlen: 24
204.154.203.0/24 maxlen: 24
204.154.204.0/24 maxlen: 24
204.154.207.0/24 maxlen: 24
185.84.69.0/24 maxlen: 24
185.84.68.0/24 maxlen: 24
185.84.70.0/24 maxlen: 24
185.84.71.0/24 maxlen: 24
185.244.178.0/24 maxlen: 24
185.244.179.0/24 maxlen: 24
185.244.176.0/24 maxlen: 24
2a03:7020:1::/48 maxlen: 48
2a03:7020:10::/48 maxlen: 48
2a03:7020:8::/48 maxlen: 48
2a03:7020:1200::/40 maxlen: 40
2a03:7020::/40 maxlen: 40
2a03:7020:800::/40 maxlen: 40
2a03:7020:1300::/40 maxlen: 40
2a03:7020::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b0:ea:46:9a:af:cc:4c:0c:3f:c6:63:01:0d:5e:59:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=217b491dccb5632216d80b48f8d6286b1effd8d7
Validity
Not Before: Jun 12 18:42:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbbb2f07c20bc31ba72c613fd7d6ff478334f333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:4f:26:44:08:e9:8e:18:80:b6:7d:a1:b2:09:
7c:34:52:8a:89:c0:ed:be:c0:a7:b8:f9:a1:39:c5:
43:cd:46:65:4a:28:85:ba:1f:be:43:df:63:23:fe:
77:7f:aa:9f:a9:61:b6:fb:4a:35:65:6a:4b:c7:e6:
19:63:ae:09:9a:bf:04:35:8f:ac:4f:13:76:f5:1e:
ef:bd:ca:cc:4a:69:cc:a9:e6:0d:b4:ef:fb:ed:22:
1a:9d:0a:31:ab:c9:cd:c2:d1:49:8e:41:c2:d9:f6:
ff:07:39:fb:4b:b8:0d:29:97:2d:b9:6f:98:b0:ce:
3a:24:2f:e8:56:8f:df:f8:f9:7c:23:a2:b3:54:14:
78:0e:58:e6:16:4b:a9:43:87:aa:8e:08:77:f1:56:
ea:bf:68:6f:c6:5a:e2:85:63:92:44:be:b2:38:05:
0b:73:89:84:b0:db:5a:69:f2:52:05:1a:86:05:8d:
41:0c:48:a3:a3:df:03:78:1d:e4:ea:35:00:7d:26:
56:71:6d:bc:a7:30:1f:d6:fd:5f:3d:cd:ac:96:11:
72:3b:34:54:ee:9a:02:6c:a5:84:bf:0d:6a:5a:90:
1a:ce:de:1d:c3:e1:3e:99:99:5c:94:a9:41:ce:77:
d4:80:75:ec:29:c4:6f:5c:cf:41:56:b5:5d:cc:af:
0d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:BB:2F:07:C2:0B:C3:1B:A7:2C:61:3F:D7:D6:FF:47:83:34:F3:33
X509v3 Authority Key Identifier:
keyid:21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/27svB8ILwxunLGE_19b_R4M08zM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.68.0/22
185.240.16.0/22
185.244.176.0/24
185.244.178.0/23
204.154.200.0/21
IPv6:
2a03:7020::/40
2a03:7020:800::/40
2a03:7020:1200::/39
Signature Algorithm: sha256WithRSAEncryption
60:68:2f:0c:cd:b8:de:68:34:3d:dc:a0:03:04:2c:98:a2:57:
38:a1:f4:bc:5f:c4:7f:0f:af:15:76:b5:ad:76:6e:62:45:72:
54:e9:9d:61:1c:91:31:0c:14:9e:cc:ca:31:c1:55:df:58:80:
b3:4a:d7:c6:b7:d5:37:1e:65:c8:40:a2:c8:37:f2:3e:b8:13:
68:f7:7d:ee:80:f2:68:78:97:76:b5:ec:3e:43:1a:df:05:b7:
af:29:58:7e:4c:51:62:e1:43:59:c0:42:34:77:35:5c:e4:1b:
04:20:54:1c:99:d9:b5:f6:56:4b:0c:2c:8c:7b:d4:16:a7:46:
ad:9e:33:90:17:8d:08:1b:f3:9e:97:c7:56:c7:12:65:8e:50:
8c:be:c1:86:ee:90:2b:23:3b:8e:f6:30:47:97:f7:3d:82:52:
17:63:41:d8:cb:51:45:b5:59:ed:7e:a4:ea:23:7b:68:2b:9d:
c9:3f:4d:ac:c1:29:7d:e0:71:ac:88:a3:04:bb:72:8c:b3:47:
d9:0b:be:cb:9c:85:f8:18:2b:c0:9a:48:b5:f4:bf:63:e7:1b:
d0:f2:9d:5b:2d:9b:4c:8f:c2:20:02:ea:fb:4e:29:24:58:0e:
e0:86:07:d5:f8:d0:a3:58:ea:67:34:ee:48:3a:1f:88:69:67:
25:e0:fc:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:48 2024 by rpki-client on console-fra.rpki-client.org