Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/hIJIX5aXel9L-FSCL5mSc6wYDz8.roa
File: hIJIX5aXel9L-FSCL5mSc6wYDz8.roa (raw, json)
Hash identifier: hqnHbvli8b1twyQ9rS+koHE1mjgWNWyO1k0Z7trHhZw=
Subject key identifier: 84:82:48:5F:96:97:7A:5F:4B:F8:54:82:2F:99:92:73:AC:18:0F:3F
Certificate issuer: /CN=05f08b74f5117ed380723d9e429ecb4aa538525a
Certificate serial: 018CC425269BEBC043B646C11CF9CA8DCC10
Authority key identifier: 05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/hIJIX5aXel9L-FSCL5mSc6wYDz8.roa
Signing time: Mon 01 Jan 2024 08:30:18 +0000
ROA not before: Mon 01 Jan 2024 08:30:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35197
IP address blocks: 109.110.98.0/24 maxlen: 24
109.110.101.0/24 maxlen: 24
109.110.100.0/24 maxlen: 24
109.110.99.0/24 maxlen: 24
109.110.104.0/24 maxlen: 24
109.110.103.0/24 maxlen: 24
109.110.102.0/24 maxlen: 24
80.83.16.0/20 maxlen: 20
80.83.17.0/24 maxlen: 24
80.83.16.0/24 maxlen: 24
80.83.16.0/22 maxlen: 22
80.83.20.0/22 maxlen: 22
80.83.21.0/24 maxlen: 24
80.83.20.0/24 maxlen: 24
80.83.19.0/24 maxlen: 24
80.83.18.0/24 maxlen: 24
80.83.24.0/24 maxlen: 24
80.83.23.0/24 maxlen: 24
80.83.22.0/24 maxlen: 24
80.83.31.0/24 maxlen: 24
80.83.30.0/24 maxlen: 24
80.83.29.0/24 maxlen: 24
80.83.28.0/24 maxlen: 24
80.83.27.0/24 maxlen: 24
80.83.26.0/24 maxlen: 24
80.83.25.0/24 maxlen: 24
2a0d:6340::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 08 Jun 2024 07:35:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:26:9b:eb:c0:43:b6:46:c1:1c:f9:ca:8d:cc:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f08b74f5117ed380723d9e429ecb4aa538525a
Validity
Not Before: Jan 1 08:30:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8482485f96977a5f4bf854822f999273ac180f3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7a:54:df:e9:42:7e:a5:0f:db:d6:b6:19:40:
3f:f3:b0:84:56:ec:18:b9:36:d2:50:56:b6:7d:7d:
01:27:53:e4:8e:82:a8:99:a6:03:3b:e8:4a:9c:25:
78:1c:02:0e:09:87:6c:5e:7c:52:73:1d:bf:87:82:
ca:34:92:0b:31:c2:73:79:9e:a3:2b:c6:08:1d:48:
2a:56:0a:33:ce:54:f1:82:6c:13:e2:09:0e:35:0b:
79:e5:d7:21:76:82:a7:09:f1:a5:ad:69:6c:7b:49:
a5:dc:02:eb:26:b7:fc:5a:2c:36:04:2e:34:68:c4:
32:84:d2:63:6e:52:0b:ee:41:42:99:44:43:11:b6:
c1:90:92:c8:3c:a7:c9:0a:63:4d:ef:67:19:4c:e4:
20:70:f8:60:b2:31:6a:ea:c5:1e:78:c5:63:58:5c:
b5:f0:df:71:3d:c9:34:a2:f1:be:41:d8:b5:ab:33:
3d:6d:4a:db:a0:92:3f:d7:12:03:52:87:c8:d5:c3:
4f:20:51:53:ca:ab:a8:1c:1d:c9:cf:4d:5f:ca:78:
fe:a9:44:50:09:c7:ab:5f:03:33:52:25:00:ef:7c:
e9:a4:69:7d:5f:6c:74:39:ec:ae:77:da:de:a9:7f:
cf:01:70:50:eb:71:45:3c:92:0b:30:b4:5e:b1:57:
4e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:82:48:5F:96:97:7A:5F:4B:F8:54:82:2F:99:92:73:AC:18:0F:3F
X509v3 Authority Key Identifier:
keyid:05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/hIJIX5aXel9L-FSCL5mSc6wYDz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.83.16.0/20
109.110.98.0-109.110.104.255
IPv6:
2a0d:6340::/29
Signature Algorithm: sha256WithRSAEncryption
9f:1b:a8:06:54:4c:2f:4e:b1:13:6e:34:c4:6a:06:44:83:7c:
24:cb:10:a6:f6:b1:1c:cb:74:8a:73:16:e1:53:72:54:e1:b7:
ab:d5:d2:5b:8d:9a:18:63:f0:91:3d:7c:a8:21:8d:d4:9a:b2:
b2:a0:a3:65:52:b0:9d:39:61:8b:0d:5c:66:58:e0:f1:14:bc:
1a:76:9a:5f:63:32:8e:90:c6:a0:76:91:9a:04:7b:c0:81:fe:
d2:60:02:f4:24:da:8b:69:ce:68:b1:3a:71:48:ba:9f:84:77:
3d:46:f2:d3:4b:b3:10:be:a9:54:5a:7e:ab:24:27:af:8d:a0:
3c:47:e4:c9:fe:95:89:b2:c1:2b:d3:e5:d4:8e:24:34:00:88:
86:9a:c3:de:f9:73:44:08:e8:0f:c7:e5:40:2f:dc:6c:11:33:
d1:f9:f0:08:ad:89:31:6f:34:f9:03:84:d6:f8:c0:7b:89:cf:
f0:fb:d6:17:b3:f9:5d:b7:fa:62:cb:23:46:d6:7e:f4:36:4c:
83:6a:e4:3c:32:c2:6a:08:ad:9a:25:c4:3c:d2:c5:ab:1b:8d:
ef:7f:ea:55:3d:91:e5:a8:d9:63:1c:ae:d0:dd:ea:06:d8:ee:
9d:ad:14:ec:6f:cf:87:77:27:fb:d7:e1:18:4d:b3:e9:4e:f0:
76:18:fd:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 08:38:36 2024 by rpki-client on console-fra.rpki-client.org