Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/CPjbbySby4icdbZMk75phgeTMro.roa
File: CPjbbySby4icdbZMk75phgeTMro.roa (raw, json)
Hash identifier: hvsqjjTkG34HQKdRQ2MYENl9VVmII5TQfv3aA+8Py+M=
Subject key identifier: 08:F8:DB:6F:24:9B:CB:88:9C:75:B6:4C:93:BE:69:86:07:93:32:BA
Certificate issuer: /CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Certificate serial: 018F805DDBB8EFC11DA030C94D7DC35CFCE1
Authority key identifier: 66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/CPjbbySby4icdbZMk75phgeTMro.roa
Signing time: Thu 16 May 2024 07:46:25 +0000
ROA not before: Thu 16 May 2024 07:46:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34170
IP address blocks: 80.69.48.0/24 maxlen: 24
80.69.49.0/24 maxlen: 24
80.69.50.0/24 maxlen: 24
80.69.51.0/24 maxlen: 24
80.69.53.0/24 maxlen: 24
80.69.56.0/24 maxlen: 24
80.69.57.0/24 maxlen: 24
80.69.60.0/24 maxlen: 24
91.135.240.0/24 maxlen: 24
91.135.241.0/24 maxlen: 24
91.135.242.0/24 maxlen: 24
91.135.243.0/24 maxlen: 24
91.135.244.0/24 maxlen: 24
91.135.252.0/24 maxlen: 24
91.135.253.0/24 maxlen: 24
92.39.90.0/24 maxlen: 24
92.39.91.0/24 maxlen: 24
92.39.92.0/24 maxlen: 24
92.39.93.0/24 maxlen: 24
92.39.94.0/24 maxlen: 24
158.181.34.0/24 maxlen: 24
158.181.37.0/24 maxlen: 24
158.181.38.0/24 maxlen: 24
158.181.39.0/24 maxlen: 24
158.181.44.0/23 maxlen: 23
158.181.46.0/23 maxlen: 23
185.105.196.0/24 maxlen: 24
185.105.197.0/24 maxlen: 24
185.105.198.0/24 maxlen: 24
185.105.199.0/24 maxlen: 24
212.47.152.0/24 maxlen: 24
212.47.154.0/24 maxlen: 24
212.47.155.0/24 maxlen: 24
212.47.157.0/24 maxlen: 24
212.47.158.0/24 maxlen: 24
2a05:8200::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 09 Jun 2024 13:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:80:5d:db:b8:ef:c1:1d:a0:30:c9:4d:7d:c3:5c:fc:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Validity
Not Before: May 16 07:46:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=08f8db6f249bcb889c75b64c93be6986079332ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:17:76:e8:9f:b4:13:0a:91:b7:cb:1b:75:df:
74:37:78:7f:78:c6:f7:34:3d:5c:cb:b1:60:0b:42:
77:cd:8f:fa:08:28:ad:b2:89:84:04:55:a1:6d:20:
d2:ba:4a:b6:00:e0:df:37:8f:d0:ec:91:a6:fe:a9:
56:7d:05:68:e8:97:81:5a:f9:67:3c:b1:d3:8b:33:
c3:90:73:bf:cb:ca:85:77:b4:34:ca:18:85:5c:9f:
d1:d5:7e:a4:5f:50:ee:a2:02:97:49:c0:5d:3a:42:
09:1e:27:2e:35:52:71:62:d5:f1:3f:45:2b:e3:cd:
9a:62:49:79:dc:87:1c:0d:0a:30:cc:e5:55:e0:c8:
fb:7c:04:e8:b1:e9:c4:06:e4:ac:08:7c:c5:27:42:
52:f6:5a:54:17:ba:5c:18:6f:4c:b1:b7:d2:e1:d6:
87:71:9a:73:51:a1:d0:94:a8:13:03:5a:90:0b:11:
6d:7d:ad:26:18:b4:49:56:a5:05:3c:b7:ed:5b:80:
29:5c:ee:4f:34:a0:04:8a:40:0a:0c:4e:16:f0:78:
7a:17:7e:d0:53:f7:f8:a3:a8:26:d3:54:87:92:06:
5a:ab:ba:db:fa:07:10:d8:ae:6f:30:c7:be:cf:05:
4b:8c:2f:c7:2c:30:c8:0e:d4:26:fe:dd:23:27:fd:
f3:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:F8:DB:6F:24:9B:CB:88:9C:75:B6:4C:93:BE:69:86:07:93:32:BA
X509v3 Authority Key Identifier:
keyid:66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/CPjbbySby4icdbZMk75phgeTMro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.69.48.0/22
80.69.53.0/24
80.69.56.0/23
80.69.60.0/24
91.135.240.0-91.135.244.255
91.135.252.0/23
92.39.90.0-92.39.94.255
158.181.34.0/24
158.181.37.0-158.181.39.255
158.181.44.0/22
185.105.196.0/22
212.47.152.0/24
212.47.154.0/23
212.47.157.0-212.47.158.255
IPv6:
2a05:8200::/29
Signature Algorithm: sha256WithRSAEncryption
8a:b9:e6:37:92:d4:24:d9:8d:ff:c4:6a:20:ef:c4:cc:86:3a:
94:3b:d5:c0:47:c0:07:92:24:25:d8:71:ab:af:67:20:4b:64:
af:e3:a4:fd:50:cf:7c:19:3e:bd:79:af:72:af:45:28:a0:1e:
5e:60:bb:f3:4a:00:a8:fe:8a:fa:dd:80:3b:fd:e1:a0:78:bf:
10:e0:6c:67:72:57:98:07:a1:0d:eb:7d:32:a6:9e:1b:fe:74:
7e:8c:3e:97:bc:5a:0c:42:df:fa:3e:4b:95:32:e7:56:5c:29:
34:ac:79:db:69:64:83:a3:1e:65:76:36:f1:11:60:e6:eb:53:
c4:7f:38:a6:53:ef:76:9a:40:d0:f4:60:6d:2e:14:d0:3c:3a:
d0:b4:d4:57:6a:cf:58:bf:96:af:31:ae:78:5b:18:38:66:04:
08:70:0e:6c:68:18:5f:f1:5b:d4:67:58:4b:02:bd:25:a6:02:
38:7b:2a:12:97:1c:18:c2:28:f9:e4:7a:01:6d:ba:68:45:7d:
d0:b6:78:32:7d:37:6e:16:98:a2:63:e8:e1:5f:86:7d:76:f8:
f5:17:ed:87:3e:4f:db:a5:55:90:eb:96:fc:98:c7:94:35:81:
e5:8d:67:ee:e1:58:4d:e2:6d:db:50:7e:73:d0:70:f9:3c:ee:
a1:42:95:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 9 15:24:57 2024 by rpki-client on console-fra.rpki-client.org