Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/Hr4XK3q7_xG7cXWhJi9A74EueXU.roa
File: Hr4XK3q7_xG7cXWhJi9A74EueXU.roa (raw, json)
Hash identifier: bbyhNPLd6Mk+7DIYLsIm5znoqR+nPohY24UhjiQcLgg=
Subject key identifier: 1E:BE:17:2B:7A:BB:FF:11:BB:71:75:A1:26:2F:40:EF:81:2E:79:75
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 01856CB8479948742EBF8F50FEF92F64609C
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/Hr4XK3q7_xG7cXWhJi9A74EueXU.roa
Signing time: Sun 01 Jan 2023 09:44:54 +0000
ROA not before: Sun 01 Jan 2023 09:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28708
IP address blocks: 194.250.131.0/24 maxlen: 24
193.253.141.0/24 maxlen: 24
193.253.142.0/23 maxlen: 24
80.12.209.0/24 maxlen: 24
193.253.170.0/24 maxlen: 24
80.12.210.0/24 maxlen: 24
193.253.169.0/24 maxlen: 24
193.253.168.0/24 maxlen: 24
80.10.4.0/23 maxlen: 24
90.84.144.0/23 maxlen: 23
81.253.0.0/18 maxlen: 24
90.84.146.0/24 maxlen: 24
193.253.10.0/24 maxlen: 24
90.96.0.0/16 maxlen: 24
80.10.43.0/24 maxlen: 24
80.10.46.0/24 maxlen: 24
193.253.78.0/23 maxlen: 24
80.12.68.0/23 maxlen: 24
80.12.70.0/24 maxlen: 24
80.12.66.0/23 maxlen: 24
193.251.116.0/24 maxlen: 24
80.10.161.0/24 maxlen: 24
80.12.100.0/23 maxlen: 24
80.12.102.0/24 maxlen: 24
81.253.64.0/19 maxlen: 24
2a01:cd00::/31 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:47:99:48:74:2e:bf:8f:50:fe:f9:2f:64:60:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 09:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ebe172b7abbff11bb7175a1262f40ef812e7975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:50:ab:72:ee:ac:47:44:56:c1:db:d0:82:8b:
82:1b:79:a9:a0:2b:6c:1d:2a:03:45:1e:5d:47:5b:
4d:2d:9b:79:ee:57:3c:1f:ba:7a:17:84:97:5c:07:
2a:3f:f2:cc:92:74:89:66:2b:c5:64:55:35:1d:89:
ce:a6:0d:17:43:47:a7:fd:b3:c1:b3:e2:f7:a5:17:
5e:b2:3b:59:c5:32:8b:dd:d3:8c:d7:63:0f:8e:87:
95:3d:ce:85:e6:27:43:1d:23:bf:6c:28:d4:67:6d:
04:57:29:15:63:fe:08:b6:1e:b3:24:b5:39:2e:36:
50:fc:76:c4:16:9c:0d:0c:bb:11:18:fa:dd:98:ff:
5f:2c:ca:65:82:1e:a2:a3:c3:a1:1b:7f:22:d9:2f:
78:ea:cb:4c:3e:f7:66:16:f2:7e:a3:a0:0d:ba:8d:
c6:1c:e1:8b:8b:0a:8a:bb:15:3e:ba:50:cd:2e:99:
25:8a:e2:9d:7f:c4:4e:b0:78:44:16:7f:2c:de:49:
3b:80:35:d9:f0:d4:30:56:62:21:ab:2b:ff:ea:e7:
a6:56:76:59:07:ca:db:23:07:a1:0f:bd:fe:47:a9:
9c:f5:4d:6e:c1:5c:09:f7:f1:36:7c:43:06:ef:c2:
16:a3:43:a5:f9:06:13:e5:c4:3e:2e:cb:04:53:84:
4d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BE:17:2B:7A:BB:FF:11:BB:71:75:A1:26:2F:40:EF:81:2E:79:75
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/Hr4XK3q7_xG7cXWhJi9A74EueXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.10.4.0/23
80.10.43.0/24
80.10.46.0/24
80.10.161.0/24
80.12.66.0-80.12.70.255
80.12.100.0-80.12.102.255
80.12.209.0-80.12.210.255
81.253.0.0-81.253.95.255
90.84.144.0-90.84.146.255
90.96.0.0/16
193.251.116.0/24
193.253.10.0/24
193.253.78.0/23
193.253.141.0-193.253.143.255
193.253.168.0-193.253.170.255
194.250.131.0/24
IPv6:
2a01:cd00::/31
Signature Algorithm: sha256WithRSAEncryption
a3:26:76:8d:0e:22:c8:c6:7d:e0:0f:ca:39:41:7e:57:91:09:
a3:f5:7b:d2:7d:9a:7e:0d:d4:15:1d:e5:2b:58:bb:3a:a7:d8:
21:8d:63:77:bc:00:cb:9a:c9:e9:a8:47:0b:f9:c3:ca:d5:85:
76:21:3a:8b:4b:e7:21:c6:d0:4b:51:40:71:02:ee:08:c6:ad:
3c:fe:ea:68:95:97:e9:89:60:58:ba:19:b7:5f:82:9f:b5:08:
16:08:47:e0:38:51:b2:2d:5b:e4:12:da:cc:63:d7:20:ae:65:
89:56:5d:d9:e0:fb:5d:de:9f:98:9c:5d:64:b2:d7:15:93:ba:
8c:eb:29:f3:63:5f:da:1b:3c:3d:43:ab:7a:73:d4:64:30:96:
11:87:89:eb:3d:8d:43:01:32:c2:32:d6:10:1f:01:47:ed:12:
03:48:e1:2d:1e:4a:43:06:42:60:56:5f:0b:33:71:d4:e6:83:
57:3b:30:56:21:55:ae:8b:98:09:1b:0c:a8:88:cc:96:1a:62:
9f:1d:f4:ac:af:ba:90:13:84:d4:77:16:05:ca:0f:b3:93:ba:
36:2c:36:06:76:5f:bb:35:c8:d8:60:53:7c:03:03:95:fe:22:
2e:65:06:47:f0:1f:fb:13:04:62:f2:ff:21:2b:b4:4a:ea:65:
15:0c:d4:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org