Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/qhIHm1rU9WJZ_RX6qm0m7xiK2ko.roa
File: qhIHm1rU9WJZ_RX6qm0m7xiK2ko.roa (raw, json)
Hash identifier: u8UIgzt909pJNCN0sxSfrhfNiAH6F4+WdBAAemo8E40=
Subject key identifier: AA:12:07:9B:5A:D4:F5:62:59:FD:15:FA:AA:6D:26:EF:18:8A:DA:4A
Certificate issuer: /CN=b8c8aa18730f4a83e2852c5692551abb5b1ee7ea
Certificate serial: 018ADAE666B0EA31D25476DE4395D984828E
Authority key identifier: B8:C8:AA:18:73:0F:4A:83:E2:85:2C:56:92:55:1A:BB:5B:1E:E7:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMiqGHMPSoPihSxWklUau1se5-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/qhIHm1rU9WJZ_RX6qm0m7xiK2ko.roa
Signing time: Thu 28 Sep 2023 08:27:27 +0000
ROA not before: Thu 28 Sep 2023 08:27:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62055
IP address blocks: 89.38.44.0/24 maxlen: 24
89.38.44.0/23 maxlen: 24
89.38.40.0/21 maxlen: 24
89.38.40.0/22 maxlen: 22
89.38.46.0/23 maxlen: 23
185.48.192.0/22 maxlen: 22
188.215.85.0/24 maxlen: 24
188.215.84.0/22 maxlen: 22
188.215.81.0/24 maxlen: 24
188.215.82.0/23 maxlen: 23
188.215.86.0/23 maxlen: 23
2a01:98e0::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 15 Oct 2023 18:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:da:e6:66:b0:ea:31:d2:54:76:de:43:95:d9:84:82:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8c8aa18730f4a83e2852c5692551abb5b1ee7ea
Validity
Not Before: Sep 28 08:27:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa12079b5ad4f56259fd15faaa6d26ef188ada4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:21:ac:24:19:50:83:7a:94:77:5c:cd:e5:a3:
1f:1f:91:a8:6a:80:4f:88:b5:73:cf:d4:64:b5:34:
e8:81:61:0f:df:89:b7:45:45:9f:83:d9:45:af:47:
55:bd:cc:51:60:87:78:47:21:39:a4:79:5e:cd:86:
5c:33:c7:a0:45:ef:6b:4f:91:27:1d:9d:c1:a8:d4:
f5:a5:32:78:0e:ad:9a:f5:f5:b6:75:a4:ff:89:1d:
27:8a:d2:41:91:8b:56:54:b8:74:95:1c:04:c7:d7:
1d:03:bc:db:4c:45:1a:e0:69:37:32:d3:15:b6:a2:
71:f5:8e:36:f2:a9:91:5c:d5:81:93:cb:c1:c3:20:
f7:df:81:7d:86:9f:dd:c8:66:ca:1b:0d:a8:a9:0d:
2b:d3:00:19:1c:93:98:f2:3a:46:6c:12:1b:f6:56:
29:83:fe:c6:b6:78:8a:53:43:0a:24:d9:63:84:02:
29:74:af:4d:a5:1b:ec:61:f2:92:21:e0:b6:7c:3f:
5d:14:2d:a6:d1:21:69:8e:e6:4e:a6:8a:db:27:42:
a0:0c:28:c9:b0:1e:cc:ad:00:66:3c:ba:80:23:66:
85:5f:39:7c:34:50:6b:ec:a1:c6:d1:a3:9b:df:f3:
f1:d4:79:07:a7:94:e5:a1:c1:fe:19:95:76:42:d5:
71:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:12:07:9B:5A:D4:F5:62:59:FD:15:FA:AA:6D:26:EF:18:8A:DA:4A
X509v3 Authority Key Identifier:
keyid:B8:C8:AA:18:73:0F:4A:83:E2:85:2C:56:92:55:1A:BB:5B:1E:E7:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMiqGHMPSoPihSxWklUau1se5-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/qhIHm1rU9WJZ_RX6qm0m7xiK2ko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/uMiqGHMPSoPihSxWklUau1se5-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.38.40.0/21
185.48.192.0/22
188.215.81.0-188.215.87.255
IPv6:
2a01:98e0::/32
Signature Algorithm: sha256WithRSAEncryption
4e:52:ab:9b:e2:95:36:07:ef:fd:7c:61:41:92:e7:48:91:d9:
57:a1:fb:79:4e:c1:c4:3d:8f:a3:bf:81:5f:26:5a:67:17:32:
26:f9:ac:fc:0c:00:ca:24:c7:74:b9:8e:cf:77:c3:1b:6b:87:
ac:24:31:e0:b6:e3:54:63:33:0a:c9:42:8a:4c:ee:fa:44:eb:
fe:5f:7f:f5:1d:9c:b8:81:05:88:0e:2a:2a:66:b7:02:e8:ee:
be:c5:33:80:65:3f:c5:0b:9b:9c:70:9a:ba:0d:f5:06:9a:27:
af:aa:c8:71:1d:1a:4e:8b:35:13:09:1a:52:6b:e2:4e:1f:56:
42:c1:cf:4b:ce:0c:75:d1:89:f9:a2:c8:ac:58:6f:3d:38:f6:
e7:c8:8c:3e:af:e4:44:19:34:a9:d2:10:44:a4:87:44:0a:75:
86:a4:49:25:c0:a9:be:6a:b1:6c:f9:42:9f:26:d3:af:78:c8:
09:99:b1:11:e2:97:e6:63:90:fa:62:b6:70:6b:c6:1e:c6:bb:
2a:a4:b6:31:be:ef:68:4b:f5:f7:6c:0e:08:f5:f7:76:dc:9b:
45:dc:0c:7e:50:ca:70:b4:4d:20:59:b3:82:32:41:d3:dd:93:
fb:50:2f:6f:d8:1d:dc:6a:14:50:4a:57:5b:8a:52:c8:bf:a2:
69:1f:60:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:04 2024 by rpki-client on console-fra.rpki-client.org