Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/48RUedmoLCJ083rxkWWeb67FQj4.roa
File: 48RUedmoLCJ083rxkWWeb67FQj4.roa (raw, json)
Hash identifier: QS4r5xFf9PCgzKl1vlrIVumzfVxCbvPqsMx6ZrynASg=
Subject key identifier: E3:C4:54:79:D9:A8:2C:22:74:F3:7A:F1:91:65:9E:6F:AE:C5:42:3E
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 018AFA6502AAA1D8E61D7138CBE1D10960A1
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/48RUedmoLCJ083rxkWWeb67FQj4.roa
Signing time: Wed 04 Oct 2023 11:13:58 +0000
ROA not before: Wed 04 Oct 2023 11:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34754
IP address blocks: 88.87.0.0/24 maxlen: 24
88.87.4.0/24 maxlen: 24
88.87.1.0/24 maxlen: 24
88.87.2.0/24 maxlen: 24
88.87.3.0/24 maxlen: 24
88.87.0.0/19 maxlen: 24
88.87.8.0/24 maxlen: 24
88.87.10.0/24 maxlen: 24
88.87.5.0/24 maxlen: 24
88.87.8.0/23 maxlen: 24
88.87.10.0/23 maxlen: 24
88.87.6.0/23 maxlen: 24
88.87.14.0/24 maxlen: 24
88.87.15.0/24 maxlen: 24
88.87.12.0/23 maxlen: 24
88.87.16.0/23 maxlen: 24
88.87.22.0/24 maxlen: 24
88.87.23.0/24 maxlen: 24
88.87.22.0/23 maxlen: 24
79.100.144.0/20 maxlen: 24
88.87.24.0/22 maxlen: 24
88.87.18.0/23 maxlen: 24
88.87.20.0/23 maxlen: 24
88.87.30.0/24 maxlen: 24
88.87.31.0/24 maxlen: 24
88.87.28.0/23 maxlen: 24
212.50.82.0/23 maxlen: 24
212.50.84.0/23 maxlen: 24
212.50.80.0/23 maxlen: 24
212.50.79.0/24 maxlen: 24
212.50.88.0/23 maxlen: 24
212.50.90.0/23 maxlen: 24
212.50.86.0/23 maxlen: 24
212.50.91.0/24 maxlen: 24
212.50.94.0/23 maxlen: 24
212.50.92.0/24 maxlen: 24
212.50.93.0/24 maxlen: 24
193.228.172.0/23 maxlen: 24
193.228.182.0/23 maxlen: 24
212.50.64.0/22 maxlen: 24
212.50.64.0/19 maxlen: 24
212.50.68.0/22 maxlen: 24
212.50.70.0/24 maxlen: 24
212.50.76.0/22 maxlen: 24
212.50.72.0/22 maxlen: 24
212.50.78.0/24 maxlen: 24
212.50.76.0/24 maxlen: 24
212.50.77.0/24 maxlen: 24
87.254.164.0/23 maxlen: 24
87.254.160.0/23 maxlen: 24
87.254.160.0/19 maxlen: 24
87.254.162.0/23 maxlen: 24
87.254.163.0/24 maxlen: 24
87.254.164.0/24 maxlen: 24
87.254.162.0/24 maxlen: 24
109.199.128.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fa:65:02:aa:a1:d8:e6:1d:71:38:cb:e1:d1:09:60:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Oct 4 11:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3c45479d9a82c2274f37af191659e6faec5423e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:79:cf:c1:ed:63:ba:42:80:59:8c:98:bf:10:
70:a8:72:2f:df:e4:0a:a1:c8:69:67:09:8f:ad:be:
d9:bd:62:95:d7:11:72:2f:24:2a:06:4f:2f:ce:a2:
82:11:82:ad:1c:d1:bd:c2:38:77:31:a2:27:57:33:
79:08:11:00:7f:da:77:21:49:52:44:f7:7f:75:41:
a5:7a:66:d4:6e:65:f7:8a:a3:03:9b:71:92:47:f1:
48:3a:16:13:57:75:03:f6:87:2b:b1:0c:b6:98:75:
2e:93:87:7b:8c:fb:86:34:89:92:b3:03:11:c9:57:
ce:96:fd:62:58:cc:2b:35:94:99:99:e7:c4:f0:97:
e7:a2:3e:f7:7b:ec:a3:75:a8:d9:ac:98:6e:61:f6:
52:32:a3:d4:de:3f:3d:c3:97:8f:80:a6:4d:79:e7:
5e:ef:04:b5:2b:ca:3a:ae:c9:19:93:07:4f:15:14:
99:0d:c9:c9:b2:65:d3:8e:8e:8f:ce:9e:0e:86:29:
a1:60:4d:6c:a7:51:8a:92:de:0b:6d:14:0a:20:c6:
c0:08:0f:14:2a:06:58:b8:77:4a:79:19:32:8c:a0:
cb:7e:d8:34:a3:a8:25:9f:8f:1c:72:ce:db:0b:44:
62:4a:78:4d:23:f5:c3:33:80:ab:21:ba:6c:7e:94:
8c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:C4:54:79:D9:A8:2C:22:74:F3:7A:F1:91:65:9E:6F:AE:C5:42:3E
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/48RUedmoLCJ083rxkWWeb67FQj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.100.144.0/20
87.254.160.0/19
88.87.0.0/19
109.199.128.0/19
193.228.172.0/23
193.228.182.0/23
212.50.64.0/19
Signature Algorithm: sha256WithRSAEncryption
a5:f6:6b:d3:28:00:76:d7:79:1c:97:3d:8c:98:dc:e4:bb:f9:
26:58:5c:dd:89:3d:ea:44:29:bd:dd:81:9d:b6:eb:85:e7:93:
75:ef:5a:d6:c7:51:ee:3d:43:7b:4f:a8:27:bf:5d:1e:cc:e8:
26:e1:c4:72:20:89:64:60:b0:52:52:35:a5:49:4d:c7:d4:97:
88:40:40:df:a7:56:e9:06:7c:b0:e5:97:66:f2:08:c8:16:91:
b5:17:89:56:ee:94:1c:cf:fa:44:e9:58:0e:9e:7e:9b:5e:88:
43:cf:61:a7:b4:d9:29:75:9b:18:14:76:30:ba:8b:83:0b:24:
55:5c:0d:17:2f:b6:8c:3d:01:fe:4a:bb:9f:d4:81:fe:db:cd:
90:6a:94:ad:b2:d1:8d:a8:70:9b:0e:ca:4e:94:85:12:19:20:
03:db:a8:80:06:7b:3f:df:bf:dd:f4:db:b5:c1:7c:12:04:bb:
eb:78:71:98:dc:9c:f3:3a:90:63:e0:93:ed:cf:75:c9:87:42:
e3:03:0a:35:85:fa:d1:b9:f1:a6:f5:27:fa:13:92:50:55:56:
e5:57:0b:b5:d7:c1:45:80:81:40:13:bb:60:7b:1d:9f:7b:af:
1c:c6:22:1e:1e:34:0f:6b:ff:cd:4e:cb:db:0a:dc:96:64:6a:
67:cc:5e:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org