Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/2TbwZquKjpsQozmWdlwGuzoZ2vY.roa
File: 2TbwZquKjpsQozmWdlwGuzoZ2vY.roa (raw, json)
Hash identifier: 0mo+0nBvC47wYeczudOuy6hQWhswtk1o7gpnd7E3Us8=
Subject key identifier: D9:36:F0:66:AB:8A:8E:9B:10:A3:39:96:76:5C:06:BB:3A:19:DA:F6
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018F8583E64641F0CD98BC7DDE21EF1552E7
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/2TbwZquKjpsQozmWdlwGuzoZ2vY.roa
Signing time: Fri 17 May 2024 07:46:04 +0000
ROA not before: Fri 17 May 2024 07:46:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 89.34.224.0/23 maxlen: 24
89.34.228.0/24 maxlen: 24
89.34.231.0/24 maxlen: 24
89.40.82.0/24 maxlen: 24
89.42.81.0/24 maxlen: 24
89.42.82.0/24 maxlen: 24
89.42.86.0/24 maxlen: 24
89.42.95.0/24 maxlen: 24
89.42.143.0/24 maxlen: 24
89.43.140.0/24 maxlen: 24
89.43.143.0/24 maxlen: 24
89.46.0.0/24 maxlen: 24
89.46.3.0/24 maxlen: 24
89.47.99.0/24 maxlen: 24
89.47.115.0/24 maxlen: 24
89.47.117.0/24 maxlen: 24
89.47.119.0/24 maxlen: 24
89.47.125.0/24 maxlen: 24
89.47.126.0/24 maxlen: 24
89.47.127.0/24 maxlen: 24
93.113.181.0/24 maxlen: 24
185.101.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 13:38:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:85:83:e6:46:41:f0:cd:98:bc:7d:de:21:ef:15:52:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: May 17 07:46:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d936f066ab8a8e9b10a33996765c06bb3a19daf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:08:b2:38:76:85:95:f6:42:e5:f4:4a:72:8c:
72:7e:70:7e:ce:12:71:1f:61:65:bb:29:df:7b:48:
ac:2d:e6:6d:94:41:51:e0:fb:4e:22:40:f6:e8:d9:
45:1f:c3:bc:4f:16:50:35:b4:74:bd:e7:3f:26:77:
e6:7d:da:45:cf:6d:9a:f7:8c:cf:e8:7e:2a:1f:2f:
97:83:32:a2:45:ff:0e:03:b8:e0:02:a7:5a:51:47:
6f:fc:64:87:7e:20:a7:61:5f:76:77:f2:a9:3d:f5:
ae:64:20:86:27:59:4c:65:41:f1:a4:5d:7c:19:3b:
29:43:91:30:7f:1c:a9:c1:3d:34:9e:7a:a3:b5:3b:
b6:1c:f4:e3:77:c4:60:85:b4:a9:8e:f5:83:d8:50:
15:d1:45:31:e2:5d:e7:c9:d5:df:cd:3d:c9:29:9d:
1e:14:17:9e:ea:a8:16:6d:b4:11:ea:d9:5d:9b:ed:
1a:23:14:b6:7a:76:02:6c:f5:92:35:76:92:e0:1a:
55:c7:2a:c3:53:85:78:88:ad:ee:a1:32:2c:1f:e5:
7e:4e:cc:7b:22:e1:2c:d5:e9:80:b3:bd:7e:10:eb:
9f:31:23:77:93:ee:b5:ef:c4:81:2d:6f:bc:88:73:
2f:7d:14:4d:06:65:9c:f6:63:51:18:e4:9a:87:69:
c9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:36:F0:66:AB:8A:8E:9B:10:A3:39:96:76:5C:06:BB:3A:19:DA:F6
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/2TbwZquKjpsQozmWdlwGuzoZ2vY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.224.0/23
89.34.228.0/24
89.34.231.0/24
89.40.82.0/24
89.42.81.0-89.42.82.255
89.42.86.0/24
89.42.95.0/24
89.42.143.0/24
89.43.140.0/24
89.43.143.0/24
89.46.0.0/24
89.46.3.0/24
89.47.99.0/24
89.47.115.0/24
89.47.117.0/24
89.47.119.0/24
89.47.125.0-89.47.127.255
93.113.181.0/24
185.101.105.0/24
Signature Algorithm: sha256WithRSAEncryption
17:f2:32:33:1f:d8:d8:9d:b4:bb:2a:fd:b7:33:6b:ed:4d:e2:
69:7f:ad:f5:24:d8:88:36:9b:62:ff:83:90:02:ca:4a:65:75:
bd:68:e6:70:b1:9a:d9:a8:6b:99:9d:9a:dd:7f:db:51:92:bd:
8e:7d:4a:80:65:2f:13:fa:fe:e9:e1:e9:20:6b:f9:01:3c:d5:
2a:1f:82:7a:98:f6:8c:1a:de:60:af:65:4a:90:42:48:a5:70:
09:1d:60:a9:3a:23:e0:6f:38:c1:8b:c9:44:aa:b9:25:13:0b:
37:1b:aa:ff:14:40:8b:64:1b:bc:75:21:e8:a4:f0:47:a1:3c:
15:3d:f5:8e:05:1c:5d:db:da:dd:25:2f:f0:1e:8f:b3:af:c0:
b9:74:36:6c:83:ef:91:e6:de:b4:f8:f7:3e:ee:b9:cb:e1:26:
4b:ca:2c:92:a9:6a:e9:73:cb:73:8e:d8:66:33:97:4b:9c:c0:
81:cf:42:7b:0c:39:fb:04:8f:e0:fb:81:f9:39:ff:a4:a3:e9:
68:66:7c:30:38:b4:9a:96:b7:31:c3:10:08:35:cd:7e:8f:32:
19:1e:25:ab:e7:ab:9a:df:f9:00:95:2a:e0:46:98:49:25:1e:
8c:dc:d9:f7:cd:f8:c9:4c:ce:96:82:b0:cb:14:32:3c:1c:b1:
f2:40:ee:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 16:11:21 2024 by rpki-client on console-fra.rpki-client.org