Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/wRQFq9hhZy9FxgBoGXbWJsZtsH8.roa
File: wRQFq9hhZy9FxgBoGXbWJsZtsH8.roa (raw, json)
Hash identifier: jYpru8o0VCuo4atvXVAsWBwdDRiTL+zpKtZz5gDfQ0I=
Subject key identifier: C1:14:05:AB:D8:61:67:2F:45:C6:00:68:19:76:D6:26:C6:6D:B0:7F
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 018DB14196C1F74D963FC083B77CC7CABCB5
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/wRQFq9hhZy9FxgBoGXbWJsZtsH8.roa
Signing time: Fri 16 Feb 2024 09:31:21 +0000
ROA not before: Fri 16 Feb 2024 09:31:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34754
IP address blocks: 79.100.144.0/20 maxlen: 24
87.254.160.0/19 maxlen: 24
87.254.160.0/23 maxlen: 24
87.254.162.0/23 maxlen: 24
87.254.162.0/24 maxlen: 24
87.254.163.0/24 maxlen: 24
87.254.164.0/23 maxlen: 24
87.254.164.0/24 maxlen: 24
87.254.165.0/24 maxlen: 24
88.87.0.0/19 maxlen: 24
88.87.0.0/24 maxlen: 24
88.87.1.0/24 maxlen: 24
88.87.2.0/24 maxlen: 24
88.87.3.0/24 maxlen: 24
88.87.4.0/24 maxlen: 24
88.87.5.0/24 maxlen: 24
88.87.6.0/23 maxlen: 24
88.87.8.0/23 maxlen: 24
88.87.8.0/24 maxlen: 24
88.87.10.0/23 maxlen: 24
88.87.10.0/24 maxlen: 24
88.87.12.0/23 maxlen: 24
88.87.14.0/24 maxlen: 24
88.87.15.0/24 maxlen: 24
88.87.16.0/23 maxlen: 24
88.87.18.0/23 maxlen: 24
88.87.20.0/23 maxlen: 24
88.87.22.0/23 maxlen: 24
88.87.22.0/24 maxlen: 24
88.87.23.0/24 maxlen: 24
88.87.24.0/22 maxlen: 24
88.87.28.0/23 maxlen: 24
88.87.30.0/24 maxlen: 24
88.87.31.0/24 maxlen: 24
109.199.128.0/19 maxlen: 24
193.228.172.0/23 maxlen: 24
193.228.182.0/23 maxlen: 24
212.50.64.0/19 maxlen: 24
212.50.64.0/22 maxlen: 24
212.50.68.0/22 maxlen: 24
212.50.70.0/24 maxlen: 24
212.50.72.0/22 maxlen: 24
212.50.76.0/22 maxlen: 24
212.50.76.0/24 maxlen: 24
212.50.77.0/24 maxlen: 24
212.50.78.0/24 maxlen: 24
212.50.79.0/24 maxlen: 24
212.50.80.0/23 maxlen: 24
212.50.82.0/23 maxlen: 24
212.50.84.0/23 maxlen: 24
212.50.86.0/23 maxlen: 24
212.50.88.0/23 maxlen: 24
212.50.90.0/23 maxlen: 24
212.50.91.0/24 maxlen: 24
212.50.92.0/24 maxlen: 24
212.50.93.0/24 maxlen: 24
212.50.94.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Feb 2024 15:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b1:41:96:c1:f7:4d:96:3f:c0:83:b7:7c:c7:ca:bc:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Feb 16 09:31:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c11405abd861672f45c600681976d626c66db07f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5a:01:3e:00:dc:3b:57:4d:22:dd:3e:ca:b9:
c3:a2:66:1e:ef:a0:af:ee:8c:f1:d4:99:47:81:a8:
0b:08:e5:d4:34:e8:6d:1f:6a:24:9a:d5:42:0e:d4:
14:a4:07:59:7e:ee:dd:97:b5:19:1d:51:2b:e8:11:
5b:bf:cc:63:29:b1:ea:38:ec:3d:57:73:b0:63:eb:
b4:c9:5e:45:40:5b:72:00:88:13:8f:77:5f:b7:ce:
59:d8:1e:6e:ee:34:e0:1b:bb:b8:ad:e8:86:e2:e8:
ac:bf:c2:cc:7c:d0:ee:ab:5d:0c:0e:3b:c2:c5:0c:
7c:ab:1e:03:7f:ef:34:2b:53:36:46:d1:07:c0:cd:
03:ed:85:4e:4a:19:04:43:f6:cd:c7:a1:21:65:94:
8b:bf:aa:42:c9:60:1f:3f:22:cd:94:94:89:db:85:
1a:fa:74:33:34:52:39:82:36:30:b0:43:79:8f:6c:
89:90:f1:fb:7e:1a:32:bd:84:7c:dc:14:16:36:e6:
33:ba:94:71:5c:01:b2:29:cf:a3:cc:6e:3d:88:d3:
d6:a0:7c:39:b9:92:a7:84:e3:5a:0b:09:d2:f7:fc:
0b:a6:95:71:8c:3f:fd:2b:20:1a:ae:b5:de:d7:4c:
e3:17:ae:e4:5b:1c:2f:61:9c:2a:d4:ec:ac:66:04:
1c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:14:05:AB:D8:61:67:2F:45:C6:00:68:19:76:D6:26:C6:6D:B0:7F
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/wRQFq9hhZy9FxgBoGXbWJsZtsH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.100.144.0/20
87.254.160.0/19
88.87.0.0/19
109.199.128.0/19
193.228.172.0/23
193.228.182.0/23
212.50.64.0/19
Signature Algorithm: sha256WithRSAEncryption
3d:6e:d0:53:a7:91:94:ed:0e:d5:16:2f:cf:66:04:a7:22:28:
c4:e1:8b:4c:19:14:e7:0c:77:b4:70:62:05:ce:18:d7:48:3a:
ca:c1:4e:5d:b1:80:9f:78:04:a7:67:8b:cb:a4:3b:b8:6d:4b:
3a:61:f3:88:20:9b:bb:6d:7a:d3:2c:5e:d3:ab:6e:fc:4b:25:
cf:88:97:3d:e7:93:fc:3b:40:91:19:bf:c8:fb:e9:69:ac:35:
f1:8a:a5:f7:ef:6c:a7:77:d0:73:8b:2e:ce:a9:01:f5:0e:47:
1b:4e:eb:b2:f3:4d:47:42:f0:3c:a3:27:f2:94:56:33:43:26:
ca:d0:f8:a0:c3:28:09:ee:ed:55:33:4c:94:6e:9a:8c:22:91:
14:69:cf:fc:9c:0e:83:8b:de:42:06:f5:d1:0e:8d:52:7f:e1:
f2:8e:59:62:24:17:f2:e6:53:c2:a6:22:91:4e:35:75:fe:e5:
ed:66:43:e2:3c:a3:e4:b8:73:4d:b3:99:15:20:68:be:fd:a4:
df:0c:f8:98:3e:5b:a1:91:a4:dd:a6:57:42:7a:46:02:46:45:
d8:5d:a2:3b:9e:9e:26:56:15:4f:8f:05:2e:77:3f:5f:bb:e9:
e8:3e:b8:ca:0d:11:57:30:bd:d4:7f:5d:f0:81:53:9e:65:93:
9b:54:ad:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:54 2024 by rpki-client on console-ams.rpki-client.org