Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/k9I5aCYpcZSNDZkFfb429jjLPzI.roa
File: k9I5aCYpcZSNDZkFfb429jjLPzI.roa (raw, json)
Hash identifier: 9UUOg9S1Ac4iFpVyxZ3/F9ZE+MNYicJ/SO2nqWYbZ1A=
Subject key identifier: 93:D2:39:68:26:29:71:94:8D:0D:99:05:7D:BE:36:F6:38:CB:3F:32
Certificate issuer: /CN=fc44297e9271c6edf064915f6180ae12690dda8b
Certificate serial: 01859BE4C4E1CA77916A6394CE75B68655BF
Authority key identifier: FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/k9I5aCYpcZSNDZkFfb429jjLPzI.roa
Signing time: Tue 10 Jan 2023 13:35:39 +0000
ROA not before: Tue 10 Jan 2023 13:35:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5504
IP address blocks: 194.30.136.0/22 maxlen: 22
194.30.135.0/24 maxlen: 24
194.30.134.0/24 maxlen: 24
213.169.128.0/21 maxlen: 24
194.30.140.0/23 maxlen: 23
194.30.144.0/23 maxlen: 23
194.30.143.0/24 maxlen: 24
194.30.146.0/23 maxlen: 23
194.30.148.0/22 maxlen: 22
194.30.152.0/23 maxlen: 23
213.169.136.0/22 maxlen: 24
213.169.140.0/22 maxlen: 22
213.169.144.0/22 maxlen: 22
194.30.154.0/23 maxlen: 23
194.30.156.0/23 maxlen: 23
213.169.152.0/23 maxlen: 23
213.169.158.0/23 maxlen: 23
194.30.132.0/23 maxlen: 23
194.30.131.0/24 maxlen: 24
194.30.130.0/24 maxlen: 24
194.30.128.0/23 maxlen: 23
82.114.32.0/19 maxlen: 22
Validation: Failed, certificate revoked on Mon 22 May 2023 11:54:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9b:e4:c4:e1:ca:77:91:6a:63:94:ce:75:b6:86:55:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc44297e9271c6edf064915f6180ae12690dda8b
Validity
Not Before: Jan 10 13:35:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93d23968262971948d0d99057dbe36f638cb3f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:99:73:fd:42:e9:c7:b8:04:78:70:b4:df:34:
fc:cc:e2:33:e5:eb:2b:ff:fa:ae:64:ee:fb:a9:ae:
fa:30:13:1c:52:1a:d1:3d:f4:18:6d:1c:b5:6a:95:
cb:10:7d:69:7c:c9:a1:1e:f5:f9:90:b1:61:f1:79:
fd:87:19:89:87:89:ee:72:a4:ef:4e:b5:b0:ae:1b:
e9:50:b2:05:22:b2:9a:ae:53:89:79:f3:8a:47:38:
81:19:c2:48:65:9a:3f:a9:91:74:f9:c6:f9:c1:c4:
e5:87:03:b4:68:91:fa:2b:68:10:a0:48:d6:5e:ee:
c3:ec:3c:58:a8:df:a3:73:1c:1f:88:5d:4a:c6:71:
9e:86:06:80:6b:8e:45:8f:a6:34:51:83:6b:90:50:
58:76:4c:f4:3b:fd:d5:90:b7:c0:d1:65:7f:29:18:
0e:7b:65:45:14:1e:10:90:dc:b0:cc:d8:db:17:09:
f9:f8:b3:2a:34:1a:44:41:f2:ec:04:bc:fc:cd:c4:
73:ae:36:41:22:6e:64:61:b4:ed:23:b0:11:c3:c8:
b6:8b:1d:2d:6a:4b:48:66:ce:10:d7:e2:28:51:a9:
dd:72:13:b2:0c:78:9c:79:cc:f4:e9:c5:cc:87:94:
02:c0:51:dd:e6:0b:41:c6:69:8d:70:c4:90:92:57:
2d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:D2:39:68:26:29:71:94:8D:0D:99:05:7D:BE:36:F6:38:CB:3F:32
X509v3 Authority Key Identifier:
keyid:FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/k9I5aCYpcZSNDZkFfb429jjLPzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.114.32.0/19
194.30.128.0-194.30.141.255
194.30.143.0-194.30.157.255
213.169.128.0-213.169.147.255
213.169.152.0/23
213.169.158.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:11:11:e3:a2:af:95:53:b7:b4:00:44:a4:c3:85:b5:39:d7:
d9:2f:ba:12:f1:c9:b6:13:5d:fe:3f:07:09:3b:11:07:5e:33:
79:e6:28:4e:25:9c:0b:76:62:19:5d:e9:11:d8:ac:4a:ab:96:
ad:e6:ff:1b:cb:3a:ad:8a:c0:6b:32:76:37:ff:d4:68:15:cc:
21:5e:11:cb:ba:5f:8a:2e:18:37:11:c9:3e:d4:50:6a:86:38:
e4:02:87:5b:d1:7f:f7:af:45:ec:d9:01:d5:f4:b4:d4:d8:12:
22:06:29:40:d9:8a:dc:95:04:e1:1c:33:a4:2f:0c:82:2e:4a:
ca:9c:b7:5c:f1:7f:7e:ca:4d:d8:95:72:5d:0f:a9:ea:b4:b6:
f3:1c:54:10:47:70:95:e4:05:26:a5:24:23:b5:0f:22:30:3d:
80:9e:2f:cd:b0:5a:2c:a6:7a:1c:c3:e9:c8:61:e9:f7:66:95:
ca:8d:78:c2:1d:1a:9e:c3:e8:38:43:42:29:28:c1:4b:fa:46:
82:5e:3b:48:18:2f:1b:d0:a9:6d:43:63:81:12:0d:1c:85:66:
21:a8:56:7e:77:5a:fc:d0:ce:e4:a8:a0:37:db:0b:2c:12:fc:
07:90:a2:23:54:ae:aa:47:19:07:fd:46:88:9f:73:4b:4e:8e:
79:1f:b0:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:10 2024 by rpki-client on console-fra.rpki-client.org