Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Vs2KGxQzHtIsZGaFMdqOGUs0vOs.roa
File: Vs2KGxQzHtIsZGaFMdqOGUs0vOs.roa (raw, json)
Hash identifier: rU7IJ5C2uGFnqYGeU7uUD9ExU2mIKviKe12PtNvGAHY=
Subject key identifier: 56:CD:8A:1B:14:33:1E:D2:2C:64:66:85:31:DA:8E:19:4B:34:BC:EB
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 018B03A71860C9CCAFA4C8A31D1D24CD18A5
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Vs2KGxQzHtIsZGaFMdqOGUs0vOs.roa
Signing time: Fri 06 Oct 2023 06:22:44 +0000
ROA not before: Fri 06 Oct 2023 06:22:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9127
IP address blocks: 82.146.4.0/23 maxlen: 24
212.72.192.0/24 maxlen: 24
212.72.192.0/22 maxlen: 22
84.238.164.0/24 maxlen: 24
84.238.166.0/24 maxlen: 24
82.146.8.0/23 maxlen: 24
212.72.196.0/23 maxlen: 23
82.146.10.0/24 maxlen: 24
212.72.204.0/24 maxlen: 24
212.72.200.0/23 maxlen: 23
82.146.14.0/24 maxlen: 24
212.72.204.0/23 maxlen: 23
212.72.213.0/24 maxlen: 24
212.72.207.0/24 maxlen: 24
212.72.208.0/22 maxlen: 22
213.130.94.0/24 maxlen: 24
212.72.215.0/24 maxlen: 24
82.146.30.0/24 maxlen: 24
212.72.216.0/22 maxlen: 22
212.72.220.0/24 maxlen: 24
212.72.222.0/23 maxlen: 23
213.130.70.0/23 maxlen: 23
213.130.72.0/23 maxlen: 23
213.130.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Oct 2023 08:06:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:03:a7:18:60:c9:cc:af:a4:c8:a3:1d:1d:24:cd:18:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Oct 6 06:22:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=56cd8a1b14331ed22c64668531da8e194b34bceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b9:fc:0f:af:03:59:20:c6:1e:92:ae:d1:61:
ed:92:83:5b:a6:80:27:c3:56:f9:0e:0f:5a:e0:55:
23:dd:90:4d:58:ac:03:44:48:18:db:d0:00:28:fb:
31:b0:e9:47:11:a5:48:c3:df:fa:db:c4:00:b4:33:
c8:7a:9b:47:25:6d:c8:3c:d6:f5:c1:bd:cf:02:e1:
87:56:56:0c:e3:c5:61:0e:39:49:9f:6c:37:8e:e4:
3e:1e:2f:17:4c:c7:16:8c:59:5b:e3:2c:9a:fe:b1:
60:e9:f1:4d:3e:5b:57:6a:de:4d:7a:bd:3e:78:c3:
73:1f:b6:72:4f:b5:4f:46:ab:46:20:4d:91:c5:fa:
fb:16:76:ab:43:4a:82:35:a2:6f:34:21:9a:81:4e:
f3:27:1b:30:3b:6c:f8:a1:93:22:a8:b1:78:91:c1:
0b:94:2d:8a:f2:75:f4:fa:a3:9d:a1:39:bd:7c:c7:
2f:8e:51:0b:e2:c0:bd:35:38:04:6d:82:ad:ab:5f:
27:99:cd:b1:aa:93:e2:d9:fa:60:0a:1b:6f:93:99:
0a:77:a1:d0:fd:20:38:a1:d1:82:d9:5c:be:0f:59:
12:16:84:2c:c4:23:81:ed:5a:f7:46:33:c1:07:33:
cb:77:27:d1:e1:2e:a9:a3:49:bd:37:bf:01:8c:c5:
4b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:CD:8A:1B:14:33:1E:D2:2C:64:66:85:31:DA:8E:19:4B:34:BC:EB
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Vs2KGxQzHtIsZGaFMdqOGUs0vOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.146.4.0/23
82.146.8.0-82.146.10.255
82.146.14.0/24
82.146.30.0/24
84.238.164.0/24
84.238.166.0/24
212.72.192.0-212.72.197.255
212.72.200.0/23
212.72.204.0/23
212.72.207.0-212.72.211.255
212.72.213.0/24
212.72.215.0-212.72.220.255
212.72.222.0/23
213.130.70.0-213.130.73.255
213.130.75.0/24
213.130.94.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:52:fb:5a:d7:49:45:47:30:70:17:9a:be:ce:bd:09:b2:c2:
ad:07:90:4a:5c:d0:88:fe:fd:3d:27:90:26:01:fe:bf:35:06:
b5:5a:e2:fd:16:20:86:89:da:dd:42:20:95:57:85:7a:22:41:
56:c6:23:53:61:0f:60:f2:ee:22:04:a5:71:e5:0f:be:fa:88:
d3:b4:d0:40:a0:a0:3f:9a:a4:03:71:eb:cf:ea:0e:1b:22:04:
fd:ad:0c:9a:08:9f:a4:cf:0c:13:b6:d6:f6:2b:91:50:38:74:
61:49:52:d5:76:d8:25:46:b7:17:8b:07:57:75:ec:3c:ad:c1:
3d:3e:a2:ef:4e:3b:a3:ee:fd:0b:d9:29:14:9c:05:ed:a0:d8:
46:52:92:3a:91:bd:19:98:3f:12:0c:62:c7:ee:ed:54:81:ee:
ff:f5:e6:46:5d:b5:23:7d:4f:6f:a4:33:7e:91:1f:b6:33:c6:
1d:8e:88:98:5e:b6:ed:16:30:6e:4e:4c:bf:b8:7d:1d:b9:49:
72:a4:50:b3:d4:95:42:6c:a0:6f:c7:f0:f3:58:8a:b5:bc:1c:
e0:a6:b3:8f:50:24:36:ff:1e:8e:e7:d2:63:7d:df:19:31:7e:
a2:5b:2a:a9:2b:05:ad:1d:7a:b3:3f:68:de:96:1e:42:08:7b:
e2:e6:02:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org