Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/2k82ZvHOnRGvtAr1d8JQh0t6iCA.roa
File: 2k82ZvHOnRGvtAr1d8JQh0t6iCA.roa (raw, json)
Hash identifier: gQRjOLZqaQlEU6Bx7tP/nlBObfcAefhHfVaHBB9znvA=
Subject key identifier: DA:4F:36:66:F1:CE:9D:11:AF:B4:0A:F5:77:C2:50:87:4B:7A:88:20
Certificate issuer: /CN=1795ac843cd8ba90188f7313652bb561299b296f
Certificate serial: 0189FD3F1146236E4F54F9219115DDFDDDC0
Authority key identifier: 17:95:AC:84:3C:D8:BA:90:18:8F:73:13:65:2B:B5:61:29:9B:29:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5WshDzYupAYj3MTZSu1YSmbKW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/2k82ZvHOnRGvtAr1d8JQh0t6iCA.roa
Signing time: Wed 16 Aug 2023 07:28:36 +0000
ROA not before: Wed 16 Aug 2023 07:28:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31313
IP address blocks: 213.177.16.0/21 maxlen: 32
213.177.24.0/21 maxlen: 32
93.113.29.0/24 maxlen: 32
203.25.143.0/24 maxlen: 32
89.42.116.0/23 maxlen: 32
193.151.28.0/22 maxlen: 32
89.35.192.0/24 maxlen: 32
91.235.4.0/23 maxlen: 32
213.177.0.0/21 maxlen: 32
86.105.108.0/22 maxlen: 32
213.177.8.0/21 maxlen: 32
193.169.21.0/24 maxlen: 32
130.195.57.0/24 maxlen: 24
89.41.56.0/23 maxlen: 32
89.43.190.0/23 maxlen: 32
195.242.244.0/22 maxlen: 32
89.200.246.0/23 maxlen: 32
89.200.247.0/24 maxlen: 32
86.105.216.0/22 maxlen: 32
2a00:5dc0::/29 maxlen: 128
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fd:3f:11:46:23:6e:4f:54:f9:21:91:15:dd:fd:dd:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1795ac843cd8ba90188f7313652bb561299b296f
Validity
Not Before: Aug 16 07:28:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da4f3666f1ce9d11afb40af577c250874b7a8820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:24:a3:31:12:e5:94:33:fe:ef:dd:fc:dc:e0:
0f:73:1a:b3:67:91:05:60:54:f9:5c:32:e4:bb:57:
7d:14:a3:d2:3e:95:48:d4:a2:40:cb:0a:d5:eb:57:
50:7c:ad:90:54:8b:45:3a:bf:b7:85:7c:f6:c5:b6:
9d:ef:59:e4:7e:0c:f8:26:b6:c1:2f:0a:4d:43:72:
87:bc:2f:13:8c:fd:9d:5c:5b:81:a2:dc:3d:9c:b1:
12:6c:f4:ec:ec:d6:73:9a:35:f6:84:60:10:c3:2b:
e3:7e:db:62:f9:13:4a:ff:28:a8:3d:f1:7a:f1:fe:
81:7c:94:6d:0f:99:c0:d7:57:2b:a5:08:4d:bc:93:
58:9a:9d:eb:d3:9d:ff:20:7d:67:6b:e9:4f:7c:b5:
73:e4:4f:41:e5:f6:8c:37:52:dd:48:c6:a8:2a:44:
e6:02:4e:50:4a:e0:77:e6:73:93:92:a3:13:c2:05:
7a:0f:a3:2b:d2:44:5b:2e:5a:64:59:1d:3b:26:a6:
6a:37:0b:c8:cb:98:8c:84:45:af:ba:40:9e:40:d6:
96:d7:1c:60:c1:4c:ba:7c:8f:1f:e2:c8:3a:ce:f9:
fc:89:2d:81:69:35:da:93:06:9d:61:4a:7c:c3:c3:
b5:da:6e:39:f9:dc:7b:10:6a:ea:84:b5:e2:60:6b:
79:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:4F:36:66:F1:CE:9D:11:AF:B4:0A:F5:77:C2:50:87:4B:7A:88:20
X509v3 Authority Key Identifier:
keyid:17:95:AC:84:3C:D8:BA:90:18:8F:73:13:65:2B:B5:61:29:9B:29:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5WshDzYupAYj3MTZSu1YSmbKW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/2k82ZvHOnRGvtAr1d8JQh0t6iCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/F5WshDzYupAYj3MTZSu1YSmbKW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.108.0/22
86.105.216.0/22
89.35.192.0/24
89.41.56.0/23
89.42.116.0/23
89.43.190.0/23
89.200.246.0/23
91.235.4.0/23
93.113.29.0/24
130.195.57.0/24
193.151.28.0/22
193.169.21.0/24
195.242.244.0/22
203.25.143.0/24
213.177.0.0/19
IPv6:
2a00:5dc0::/29
Signature Algorithm: sha256WithRSAEncryption
2c:2c:7a:9b:c5:b7:ba:16:4d:25:c4:ad:a4:3d:ec:0b:11:56:
0c:85:ba:c6:80:4e:cb:83:07:e0:5f:04:46:f6:e7:1a:9c:b8:
42:a6:37:0a:07:16:cd:ed:39:eb:22:70:8d:09:23:b5:76:61:
df:9f:0f:d3:28:29:da:31:ca:24:7b:2e:cd:a1:66:3f:94:16:
03:40:b3:1e:fd:72:2d:f7:33:81:2e:d0:5c:50:5b:0e:6d:4f:
66:94:5f:85:db:9b:9b:41:d6:19:73:7e:ed:73:68:19:b1:95:
3b:1c:2f:f7:f7:31:22:0e:ed:76:47:69:df:7f:74:85:bd:44:
99:2f:91:22:cf:8d:a1:d4:0e:c9:0b:42:56:60:c2:b2:2b:fd:
02:9d:6d:bf:09:36:5e:18:55:05:fa:8f:77:ab:f2:fe:62:2b:
d5:1b:51:77:13:83:d7:41:b4:b8:61:25:e7:66:0d:6b:38:0d:
c9:e1:37:ab:8a:cd:3e:45:36:14:8e:ac:b5:fd:79:d5:e9:54:
69:59:ec:fc:e3:24:c3:3f:7f:43:80:3a:c9:86:01:ab:3a:eb:
e8:5c:10:0f:e6:3e:da:24:a6:9b:d2:75:5e:73:47:57:14:77:
15:e8:fd:64:53:e5:6e:3c:e9:db:d2:04:70:6c:4a:0f:88:f8:
1c:3f:82:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:19 2024 by rpki-client on console-fra.rpki-client.org