Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/235d26-7094-4feb-9ca9-378499398f18/1/C__egi0d9C6NlERdmeX-ExcMuMM.roa
File: C__egi0d9C6NlERdmeX-ExcMuMM.roa (raw, json)
Hash identifier: zxN/VWTkgC2m2iKB/1bVW1YeMTM/JMtEgDyzWpJ/ZKA=
Subject key identifier: 0B:FF:DE:82:2D:1D:F4:2E:8D:94:44:5D:99:E5:FE:13:17:0C:B8:C3
Certificate issuer: /CN=29ad8bfe07ad5d2ccb43b0d1dba6b192cb51dbea
Certificate serial: 0188FDC79D211C093B82F534DC5823F60A9A
Authority key identifier: 29:AD:8B:FE:07:AD:5D:2C:CB:43:B0:D1:DB:A6:B1:92:CB:51:DB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ka2L_getXSzLQ7DR26axkstR2-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/235d26-7094-4feb-9ca9-378499398f18/1/C__egi0d9C6NlERdmeX-ExcMuMM.roa
Signing time: Tue 27 Jun 2023 16:54:57 +0000
ROA not before: Tue 27 Jun 2023 16:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63949
IP address blocks: 151.236.216.0/21 maxlen: 24
80.85.84.0/22 maxlen: 24
176.58.96.0/19 maxlen: 24
212.71.232.0/21 maxlen: 24
212.71.244.0/22 maxlen: 24
194.233.160.0/21 maxlen: 24
192.53.112.0/21 maxlen: 24
194.233.168.0/21 maxlen: 24
212.71.248.0/21 maxlen: 24
85.159.208.0/21 maxlen: 24
88.80.184.0/21 maxlen: 24
194.233.176.0/21 maxlen: 24
192.53.120.0/22 maxlen: 24
192.53.124.0/22 maxlen: 24
109.237.24.0/22 maxlen: 24
194.233.184.0/21 maxlen: 24
192.46.208.0/21 maxlen: 24
192.46.216.0/22 maxlen: 24
192.46.222.0/23 maxlen: 24
192.46.220.0/23 maxlen: 24
192.46.224.0/21 maxlen: 24
192.46.232.0/21 maxlen: 24
192.53.160.0/21 maxlen: 24
192.53.168.0/23 maxlen: 24
192.53.172.0/22 maxlen: 24
192.53.170.0/23 maxlen: 24
213.52.128.0/22 maxlen: 24
178.79.128.0/18 maxlen: 24
85.90.244.0/22 maxlen: 24
212.111.40.0/22 maxlen: 24
185.3.92.0/22 maxlen: 24
194.195.112.0/21 maxlen: 24
194.195.120.0/21 maxlen: 24
213.219.36.0/22 maxlen: 24
109.74.192.0/20 maxlen: 24
194.195.208.0/21 maxlen: 24
194.195.216.0/21 maxlen: 24
213.168.248.0/22 maxlen: 24
194.195.240.0/21 maxlen: 24
194.195.248.0/21 maxlen: 24
2a01:7e02::/32 maxlen: 48
2a01:7e01::/32 maxlen: 48
2a01:7e04::/32 maxlen: 48
2a01:7e00::/32 maxlen: 48
2a01:7e03::/32 maxlen: 48
2a01:7e06::/32 maxlen: 48
2a01:7e07::/32 maxlen: 48
2a01:7e05::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fd:c7:9d:21:1c:09:3b:82:f5:34:dc:58:23:f6:0a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29ad8bfe07ad5d2ccb43b0d1dba6b192cb51dbea
Validity
Not Before: Jun 27 16:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bffde822d1df42e8d94445d99e5fe13170cb8c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b8:ce:82:c1:f3:4f:ed:60:cc:74:85:fe:eb:
c9:75:74:ae:1b:25:2c:db:c2:dc:96:58:c7:6b:fa:
90:18:6c:f4:ab:72:26:8d:00:be:36:d3:61:0b:3d:
0b:ea:99:4f:f0:b6:d2:7b:af:a4:3d:0b:bb:b4:38:
6c:b6:c5:85:ca:0a:28:92:0b:39:d2:09:52:a3:4d:
02:c6:75:2e:73:13:1c:57:3e:f4:99:b5:35:f2:64:
07:2d:f6:7e:ac:4a:35:79:a5:75:01:7c:2e:54:ed:
04:dd:b5:bb:14:d8:f3:74:87:47:12:3c:c5:4d:15:
dc:1d:8a:e0:22:9e:93:cc:a0:cb:e9:9d:d0:69:05:
e0:1d:16:be:53:5a:4b:20:b9:d2:37:53:6e:76:53:
03:30:07:a9:59:e0:ca:57:20:c2:2c:21:b5:15:94:
19:f2:c3:74:26:35:d9:0b:b0:ee:9d:23:89:18:4c:
87:5a:55:be:11:fa:32:9e:e3:6b:dc:00:38:e2:cc:
7a:83:f4:ed:23:32:80:a9:92:90:0b:2a:d5:8d:58:
1c:da:1c:a8:4c:53:cd:5f:17:4d:c5:c2:0c:96:d8:
e1:e2:cd:4e:8c:3f:95:be:73:7a:80:df:77:2c:fb:
36:ba:3c:ba:ce:02:94:f7:ae:64:38:a0:e8:44:2e:
07:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:FF:DE:82:2D:1D:F4:2E:8D:94:44:5D:99:E5:FE:13:17:0C:B8:C3
X509v3 Authority Key Identifier:
keyid:29:AD:8B:FE:07:AD:5D:2C:CB:43:B0:D1:DB:A6:B1:92:CB:51:DB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ka2L_getXSzLQ7DR26axkstR2-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/235d26-7094-4feb-9ca9-378499398f18/1/C__egi0d9C6NlERdmeX-ExcMuMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/235d26-7094-4feb-9ca9-378499398f18/1/Ka2L_getXSzLQ7DR26axkstR2-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.85.84.0/22
85.90.244.0/22
85.159.208.0/21
88.80.184.0/21
109.74.192.0/20
109.237.24.0/22
151.236.216.0/21
176.58.96.0/19
178.79.128.0/18
185.3.92.0/22
192.46.208.0-192.46.239.255
192.53.112.0/20
192.53.160.0/20
194.195.112.0/20
194.195.208.0/20
194.195.240.0/20
194.233.160.0/19
212.71.232.0/21
212.71.244.0-212.71.255.255
212.111.40.0/22
213.52.128.0/22
213.168.248.0/22
213.219.36.0/22
IPv6:
2a01:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
10:ec:f4:c6:9c:33:24:78:c5:3b:3a:ed:00:be:10:b0:e5:b7:
9a:ca:56:2b:cc:4e:ed:80:40:8e:61:9c:4e:6e:45:76:6e:1c:
7c:83:cf:ad:c2:a7:33:73:62:8a:24:b2:eb:93:99:b2:65:73:
2d:b4:e8:9b:7e:89:71:1a:52:a4:55:db:03:7e:ae:2a:ab:dc:
2c:fb:5d:f5:a1:f5:ed:ae:23:ec:83:84:10:ff:50:07:b1:5c:
bb:17:6b:f5:8b:78:cc:c0:8a:d2:02:16:a5:b2:fa:d6:b2:f4:
85:bd:e8:9f:fc:cf:f9:71:df:53:38:97:6f:35:8a:93:9b:d2:
5a:28:42:e8:ec:73:fe:69:43:e5:ad:dd:5e:7c:83:e8:88:c6:
42:b3:73:4d:87:24:ad:e0:3c:09:66:4d:cf:73:dd:40:16:33:
7d:1b:53:12:14:a1:ef:fc:dd:af:c0:6a:0d:43:2f:f8:9b:28:
75:34:2a:a1:24:fb:db:43:6b:f4:4c:f2:22:af:f6:2c:11:ba:
8f:89:60:f5:03:db:88:74:1a:30:34:28:81:68:8d:30:67:cb:
7a:70:9f:b9:51:aa:ba:15:40:df:dc:1c:f8:07:a1:a9:f1:9f:
61:cd:cd:ec:4d:08:70:31:95:8a:2b:e3:9b:54:d8:57:f8:36:
12:b1:d6:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:14 2024 by rpki-client on console-fra.rpki-client.org