Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/c9f33b-2f1b-4a11-a21d-9a6bd011f8f6/1/m8rtLDgkNLQO7q5MzuC76AQbueY.roa
File: m8rtLDgkNLQO7q5MzuC76AQbueY.roa (raw, json)
Hash identifier: afst04IyosO4nywoK7WxzLbSXXRZmn24KPG/43xiltk=
Subject key identifier: 9B:CA:ED:2C:38:24:34:B4:0E:EE:AE:4C:CE:E0:BB:E8:04:1B:B9:E6
Certificate issuer: /CN=aef1eefaa757d38eb104fa4cba4d962b72e52b52
Certificate serial: 018CC7941590F09A1D7B8064594529CC89DD
Authority key identifier: AE:F1:EE:FA:A7:57:D3:8E:B1:04:FA:4C:BA:4D:96:2B:72:E5:2B:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rvHu-qdX046xBPpMuk2WK3LlK1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/c9f33b-2f1b-4a11-a21d-9a6bd011f8f6/1/m8rtLDgkNLQO7q5MzuC76AQbueY.roa
Signing time: Tue 02 Jan 2024 00:30:19 +0000
ROA not before: Tue 02 Jan 2024 00:30:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29222
IP address blocks: 193.134.250.0/24 maxlen: 24
84.16.64.0/19 maxlen: 24
185.143.100.0/22 maxlen: 24
45.157.188.0/22 maxlen: 24
37.156.40.0/21 maxlen: 24
185.177.60.0/22 maxlen: 24
185.176.224.0/22 maxlen: 24
193.128.7.0/24 maxlen: 24
128.65.192.0/21 maxlen: 24
185.74.68.0/22 maxlen: 24
193.111.233.0/24 maxlen: 24
185.125.24.0/22 maxlen: 24
193.134.93.0/24 maxlen: 24
93.88.240.0/20 maxlen: 24
185.181.160.0/22 maxlen: 24
185.172.100.0/22 maxlen: 24
195.15.192.0/18 maxlen: 24
83.166.128.0/19 maxlen: 24
2001:1600::/29 maxlen: 32
Validation: Failed, certificate revoked on Tue 26 Mar 2024 13:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:15:90:f0:9a:1d:7b:80:64:59:45:29:cc:89:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aef1eefaa757d38eb104fa4cba4d962b72e52b52
Validity
Not Before: Jan 2 00:30:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9bcaed2c382434b40eeeae4ccee0bbe8041bb9e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b8:fd:5c:c1:84:60:12:06:af:3f:11:49:4a:
29:73:66:f9:50:4b:f8:ab:51:06:c5:1a:cc:c6:28:
77:54:35:f4:9f:58:03:aa:66:19:d8:8d:7b:95:a1:
1c:a3:15:5e:fb:33:2f:d0:28:e7:90:ce:b7:21:b2:
b6:80:4f:a7:34:fe:53:48:1a:5a:3b:d9:dc:9f:c9:
25:50:8d:ae:dc:64:0c:3e:18:c1:ef:79:44:22:19:
e6:83:b5:7c:0f:01:ad:8f:73:9e:3f:b5:92:db:b0:
1f:fc:5b:4e:c2:a9:0b:1a:ab:ae:36:15:1b:b5:54:
b1:e7:3d:76:f9:be:16:ee:17:02:b8:67:7e:19:a0:
06:ee:0b:37:d4:c0:0f:d0:90:87:57:43:d5:04:05:
ec:6c:17:e4:df:cd:9f:02:4d:5e:0b:d4:f5:c4:37:
5c:b4:d7:fb:81:82:25:d5:93:11:be:c8:ff:26:9e:
3b:2b:41:bf:cd:f3:85:e5:d8:08:14:bc:c7:68:5f:
94:ee:36:6b:3a:08:c1:b5:48:8e:ae:ad:99:97:19:
91:c6:9a:cc:d6:72:a8:f7:f4:44:47:6a:bf:a7:2a:
87:90:ac:40:03:2b:ae:e1:d2:4f:be:cb:97:65:df:
4c:83:61:1f:ff:7a:73:b6:88:be:8f:9c:db:0f:75:
df:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:CA:ED:2C:38:24:34:B4:0E:EE:AE:4C:CE:E0:BB:E8:04:1B:B9:E6
X509v3 Authority Key Identifier:
keyid:AE:F1:EE:FA:A7:57:D3:8E:B1:04:FA:4C:BA:4D:96:2B:72:E5:2B:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rvHu-qdX046xBPpMuk2WK3LlK1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c9f33b-2f1b-4a11-a21d-9a6bd011f8f6/1/m8rtLDgkNLQO7q5MzuC76AQbueY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c9f33b-2f1b-4a11-a21d-9a6bd011f8f6/1/rvHu-qdX046xBPpMuk2WK3LlK1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.40.0/21
45.157.188.0/22
83.166.128.0/19
84.16.64.0/19
93.88.240.0/20
128.65.192.0/21
185.74.68.0/22
185.125.24.0/22
185.143.100.0/22
185.172.100.0/22
185.176.224.0/22
185.177.60.0/22
185.181.160.0/22
193.111.233.0/24
193.128.7.0/24
193.134.93.0/24
193.134.250.0/24
195.15.192.0/18
IPv6:
2001:1600::/29
Signature Algorithm: sha256WithRSAEncryption
16:25:aa:3a:41:eb:c4:4f:ce:0b:a3:95:68:9b:7d:62:75:ca:
cc:16:21:c1:b8:4f:21:a9:fc:22:fa:a4:23:51:ab:e3:15:49:
50:3e:46:b2:0b:c8:ae:7c:0b:1f:bb:6b:71:b2:e3:e6:ab:2e:
62:79:80:1a:f0:ae:43:0b:17:24:60:ad:60:04:34:c8:98:48:
65:3c:54:5a:2b:6f:e1:97:58:b7:b5:57:7b:01:0c:5a:8a:aa:
ee:a6:ef:1c:8f:d2:18:7d:35:0d:5a:46:9a:fc:f1:0c:63:80:
94:cd:82:bc:df:3f:f8:d8:79:4a:10:f4:63:e4:20:26:2a:6e:
f1:38:b7:b5:24:6f:a6:0b:ed:47:ca:96:fd:d6:6a:57:27:6a:
cd:44:84:b8:fa:5f:52:c9:70:8e:e4:e7:9e:99:59:ec:84:6b:
46:42:07:da:42:ac:d9:5f:af:0b:db:f1:fa:87:1b:0e:18:fd:
48:76:97:79:8d:2d:10:28:69:ac:da:32:45:da:b5:89:49:8f:
c9:b5:a7:f2:48:90:96:b5:d4:d0:52:f2:f6:40:c2:fa:eb:23:
50:6f:9a:9e:a6:4a:c9:55:c2:c0:73:69:b3:aa:e1:1c:8b:6a:
51:bc:64:12:b2:a3:7c:cf:b4:93:73:d4:c9:2a:73:ed:4e:1b:
10:63:c3:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:30 2024 by rpki-client on console-fra.rpki-client.org