Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/RLMPyGzrBUhB7q_Fq0t8AkOItfA.roa
File: RLMPyGzrBUhB7q_Fq0t8AkOItfA.roa (raw, json)
Hash identifier: HRzBKM/3WP1zCoHyUtzJrgs3CH+KGW5knBTQYIMnb8U=
Subject key identifier: 44:B3:0F:C8:6C:EB:05:48:41:EE:AF:C5:AB:4B:7C:02:43:88:B5:F0
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 01892D33E9B64063BB51F17F4E77C589F724
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/RLMPyGzrBUhB7q_Fq0t8AkOItfA.roa
Signing time: Thu 06 Jul 2023 21:55:24 +0000
ROA not before: Thu 06 Jul 2023 21:55:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29286
IP address blocks: 77.222.136.0/24 maxlen: 24
194.146.197.0/24 maxlen: 24
188.0.64.0/23 maxlen: 23
188.0.66.0/24 maxlen: 24
93.183.215.0/24 maxlen: 24
88.81.248.0/24 maxlen: 24
93.183.229.0/24 maxlen: 24
93.183.228.0/24 maxlen: 24
46.164.152.0/23 maxlen: 23
193.108.50.0/24 maxlen: 24
193.108.51.0/24 maxlen: 24
93.183.197.0/24 maxlen: 24
195.69.176.0/24 maxlen: 24
80.91.171.0/24 maxlen: 24
80.91.182.0/24 maxlen: 24
46.164.160.0/22 maxlen: 22
185.8.42.0/23 maxlen: 23
91.204.95.0/24 maxlen: 24
185.8.41.0/24 maxlen: 24
185.8.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2d:33:e9:b6:40:63:bb:51:f1:7f:4e:77:c5:89:f7:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: Jul 6 21:55:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44b30fc86ceb054841eeafc5ab4b7c024388b5f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2f:8e:e3:72:40:22:22:f8:36:ad:ee:e7:f3:
c5:a1:e4:bd:e0:f4:e2:ed:71:ba:81:4a:28:76:19:
bf:0d:8d:f6:5e:5b:df:31:5b:a3:2d:50:39:4b:85:
4b:d6:ad:02:61:f8:50:04:f0:05:da:7c:89:ff:56:
30:85:db:98:06:23:45:c9:93:95:b1:8a:4d:d0:e4:
bb:49:65:c7:1a:b8:3c:08:3c:2f:23:b7:61:55:ae:
d8:f0:e5:e0:78:ce:26:83:48:1b:8b:19:d1:1f:c5:
7c:da:96:e1:e5:16:ac:c7:55:73:dd:1a:59:1a:73:
79:78:51:b3:7c:b4:cc:55:c3:0a:dc:cc:1c:93:bf:
ed:ea:3d:79:de:28:5b:03:ee:e1:81:3f:7f:9f:9a:
b0:af:00:78:69:b4:fc:7d:c6:68:dd:dc:9a:48:a2:
16:63:00:f3:3f:5c:6c:16:d6:80:85:cb:02:e2:93:
0c:f1:37:78:54:37:f3:43:be:50:4a:26:86:b2:28:
26:51:b7:b8:c8:bf:a9:2d:7d:7c:0c:cb:ec:dd:1b:
66:f2:fd:6e:5d:5c:c9:f3:70:87:0a:7f:44:65:65:
75:8f:d4:ca:90:ca:12:1e:d1:de:ed:85:ad:f1:e4:
f9:05:5c:da:eb:0e:e1:5e:77:06:44:86:69:dc:c1:
a5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B3:0F:C8:6C:EB:05:48:41:EE:AF:C5:AB:4B:7C:02:43:88:B5:F0
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/RLMPyGzrBUhB7q_Fq0t8AkOItfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.164.152.0/23
46.164.160.0/22
77.222.136.0/24
80.91.171.0/24
80.91.182.0/24
88.81.248.0/24
91.204.95.0/24
93.183.197.0/24
93.183.215.0/24
93.183.228.0/23
185.8.40.0/22
188.0.64.0-188.0.66.255
193.108.50.0/23
194.146.197.0/24
195.69.176.0/24
Signature Algorithm: sha256WithRSAEncryption
76:22:42:cc:62:b2:c0:f5:50:ac:fb:72:80:d1:0f:b9:c1:a1:
94:bb:ee:3d:1d:fa:b7:f9:fc:c9:66:89:ce:bc:2f:57:8c:0e:
a8:a0:c2:bb:d7:b0:5d:e2:4e:55:16:c3:b6:3c:98:cf:4c:be:
29:92:da:15:7e:ad:a5:1d:04:b3:4c:71:66:be:b1:af:82:15:
42:d4:2e:41:5d:d0:d6:08:ee:fc:95:a5:a9:59:71:ce:54:1e:
53:c9:96:2d:69:68:63:89:7e:b4:db:b1:03:3c:0d:22:f6:ff:
30:b2:75:2f:fd:38:44:c2:18:71:f0:31:37:f1:37:03:bc:5e:
f7:01:a8:59:ff:ce:b3:05:99:40:57:73:a7:3c:04:6c:24:29:
bd:c6:f6:f0:33:c2:8e:ec:01:05:f6:c3:5f:c1:5f:c2:c0:d1:
ac:96:54:28:a6:40:a7:3f:78:bb:06:1a:1a:0b:9f:1a:70:aa:
d4:1b:7a:7b:ed:a9:58:0f:36:e0:ed:c9:02:4e:90:a1:03:10:
4c:d8:ee:af:43:b5:6b:c6:5a:db:1e:46:a1:f9:2a:57:ee:95:
2e:be:58:81:29:29:89:f0:25:ac:ac:de:0b:c1:f8:0a:6d:f3:
dd:f5:a6:04:a0:24:86:06:12:af:e7:4a:03:9f:d2:a5:01:76:
ed:f4:16:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:04 2024 by rpki-client on console-ams.rpki-client.org