Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/_ekTBSOYEZUPKdUaNNPqEJKv7F4.roa
File: _ekTBSOYEZUPKdUaNNPqEJKv7F4.roa (raw, json)
Hash identifier: UyDS6TCn++f3XEKcfwnJivT0WjZwwjfnz5IyWijB8bU=
Subject key identifier: FD:E9:13:05:23:98:11:95:0F:29:D5:1A:34:D3:EA:10:92:AF:EC:5E
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE66F22D0394C54D87DDA8E06DDA430
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/_ekTBSOYEZUPKdUaNNPqEJKv7F4.roa
Signing time: Sun 01 Jan 2023 10:35:19 +0000
ROA not before: Sun 01 Jan 2023 10:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205132
IP address blocks: 84.238.167.0/24 maxlen: 24
212.72.199.0/24 maxlen: 24
94.236.169.0/24 maxlen: 24
83.228.61.0/24 maxlen: 24
83.228.89.0/24 maxlen: 24
83.228.87.0/24 maxlen: 24
83.228.86.0/24 maxlen: 24
213.91.157.0/24 maxlen: 24
77.85.198.0/24 maxlen: 24
213.91.173.0/24 maxlen: 24
213.91.191.0/24 maxlen: 24
84.238.192.0/24 maxlen: 24
212.72.221.0/24 maxlen: 24
84.238.194.0/24 maxlen: 24
84.238.193.0/24 maxlen: 24
46.10.156.0/24 maxlen: 24
46.10.179.0/24 maxlen: 24
77.85.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:6f:22:d0:39:4c:54:d8:7d:da:8e:06:dd:a4:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fde91305239811950f29d51a34d3ea1092afec5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:82:5d:dc:1f:5b:91:b3:5a:51:b5:28:6e:4b:
21:fb:f8:6c:b0:32:56:25:19:d0:97:e4:96:a0:78:
98:b5:40:a5:fc:f5:26:9c:4d:99:28:ee:3e:08:6d:
ec:98:da:83:44:3e:31:10:49:8b:65:0e:b3:f7:ca:
98:f6:09:d4:3c:06:a9:58:c1:45:7d:6a:c6:1b:43:
53:0e:f5:1f:de:34:db:5b:f6:21:65:be:6b:bd:15:
8c:d3:29:55:25:e5:22:61:b0:aa:0d:19:6d:22:85:
68:28:52:94:ab:b9:a1:03:fc:1c:0c:59:23:b7:88:
55:3c:b5:ba:36:18:92:e5:8d:79:61:a6:ac:50:a3:
13:d7:f9:cd:10:9e:4d:0d:f1:59:9b:32:46:f6:31:
1a:d1:09:7e:e6:86:45:9b:f4:98:8e:02:3f:64:22:
a4:81:65:9e:37:9e:b2:81:b0:cb:06:ab:0e:6c:fd:
77:9e:71:d8:d9:a2:94:69:19:22:fb:65:15:ca:dd:
27:46:a3:e0:07:a0:c5:fc:97:74:db:0b:60:85:bf:
82:01:c7:2b:38:c1:00:fb:0b:00:1f:a5:96:d0:14:
d6:b7:7a:f1:e9:d0:22:86:6f:95:b8:78:1d:ea:88:
13:78:e0:5f:b6:d0:d8:71:63:f4:b9:f3:ed:b7:00:
fa:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:E9:13:05:23:98:11:95:0F:29:D5:1A:34:D3:EA:10:92:AF:EC:5E
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/_ekTBSOYEZUPKdUaNNPqEJKv7F4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.10.156.0/24
46.10.179.0/24
77.85.170.0/24
77.85.198.0/24
83.228.61.0/24
83.228.86.0/23
83.228.89.0/24
84.238.167.0/24
84.238.192.0-84.238.194.255
94.236.169.0/24
212.72.199.0/24
212.72.221.0/24
213.91.157.0/24
213.91.173.0/24
213.91.191.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:23:a2:ec:b8:23:45:82:0e:08:9d:94:f1:42:ef:76:bb:f6:
f2:02:ce:c4:ef:4c:4c:6c:9f:36:82:90:5b:96:97:bf:ac:c7:
10:93:3d:7b:70:f9:a1:a9:43:ef:b4:7e:22:e1:4b:29:4b:e1:
14:6f:d7:08:49:bf:c1:94:98:04:07:04:f4:d1:ea:95:bd:eb:
7b:ca:7d:da:9a:d0:a8:d5:a8:4c:5d:10:fa:ba:88:50:b1:d4:
ec:dc:ce:ba:b5:60:da:c5:08:f2:ce:e1:d8:30:0c:51:1b:99:
dc:bd:bc:8d:ce:a0:92:8d:81:2b:35:93:c2:45:56:fa:53:d6:
d8:c7:99:6e:05:b7:81:38:9e:45:5d:6c:9b:0a:1f:6f:3e:d8:
66:25:0e:e2:50:7d:b1:ac:32:28:25:64:30:de:3f:59:46:0c:
c4:52:67:bd:88:82:ef:ba:f0:85:ea:e6:60:be:0a:f0:c7:bd:
f7:59:86:b2:84:4e:df:bb:00:59:84:cb:fa:e5:84:07:6f:2d:
3e:53:9f:46:93:85:8c:ab:3b:f4:86:ba:23:2e:b8:eb:02:08:
37:ea:59:bb:d4:e4:30:30:08:f0:0d:22:57:bc:12:b4:59:60:
99:79:14:b3:e2:9b:61:11:f4:64:08:6c:05:9e:16:e7:ad:85:
a2:6e:be:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org