Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/b3gzs-5cgznaWFqFVJNMzYAJtyE.roa
File: b3gzs-5cgznaWFqFVJNMzYAJtyE.roa (raw, json)
Hash identifier: ITu7Vw4bSfucVFz/B04YkfhvYVkNXd6j/oqxEMYr5FE=
Subject key identifier: 6F:78:33:B3:EE:5C:83:39:DA:58:5A:85:54:93:4C:CD:80:09:B7:21
Certificate issuer: /CN=389755423f832a528c93136110f0fe4b10453582
Certificate serial: 01857082BC7A6924F02C4A92CA9406B53A15
Authority key identifier: 38:97:55:42:3F:83:2A:52:8C:93:13:61:10:F0:FE:4B:10:45:35:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJdVQj-DKlKMkxNhEPD-SxBFNYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/b3gzs-5cgznaWFqFVJNMzYAJtyE.roa
Signing time: Mon 02 Jan 2023 03:24:54 +0000
ROA not before: Mon 02 Jan 2023 03:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205993
IP address blocks: 89.34.4.0/24 maxlen: 24
185.199.230.0/23 maxlen: 23
185.199.228.0/23 maxlen: 23
89.34.0.0/24 maxlen: 24
46.102.190.0/24 maxlen: 24
188.214.193.0/24 maxlen: 24
188.213.23.0/24 maxlen: 24
89.40.138.0/24 maxlen: 24
188.214.140.0/24 maxlen: 24
188.214.155.0/24 maxlen: 24
89.32.202.0/24 maxlen: 24
86.105.186.0/24 maxlen: 24
2a0a:a4c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:bc:7a:69:24:f0:2c:4a:92:ca:94:06:b5:3a:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=389755423f832a528c93136110f0fe4b10453582
Validity
Not Before: Jan 2 03:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f7833b3ee5c8339da585a8554934ccd8009b721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3c:f6:27:e7:88:33:2e:74:93:49:76:de:c3:
db:dc:04:47:4a:58:20:49:ba:5d:00:73:60:48:e3:
5e:ab:22:e4:71:46:a5:3e:ab:e1:de:d2:27:48:37:
77:d2:64:38:de:e9:49:79:75:cb:bb:7f:54:7e:1a:
4f:b2:bb:fb:b6:7c:85:ff:b0:ae:59:5d:88:a8:05:
11:ab:2e:cd:df:2a:29:ef:ec:52:5b:89:8b:3a:30:
bf:64:95:df:a4:67:04:ea:de:bb:49:b4:1e:d7:e5:
3a:9d:1a:6c:7a:fc:a9:79:d7:0f:d6:3e:bf:91:6a:
f5:01:e8:72:0a:35:8c:d7:ec:70:13:50:9c:07:be:
82:ce:b9:4a:b5:6a:18:34:f8:f2:f9:95:2d:4f:22:
ad:e1:85:18:2e:d8:96:04:c1:b7:75:cd:71:41:ec:
ba:a9:14:c9:34:f1:45:4b:ac:7d:cf:9b:80:24:c1:
b5:37:2a:b8:ad:6f:ac:12:04:4d:50:82:b0:df:f8:
c1:01:c9:1e:75:f3:b6:4f:f4:2d:1d:a6:be:86:40:
45:b5:2d:e0:6f:8a:58:76:78:43:63:cd:9e:4b:6c:
d3:8f:8c:e7:32:1b:e7:53:95:ef:78:9c:23:b6:f9:
b5:58:30:25:cb:a4:42:39:d4:a2:42:1a:91:60:29:
17:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:78:33:B3:EE:5C:83:39:DA:58:5A:85:54:93:4C:CD:80:09:B7:21
X509v3 Authority Key Identifier:
keyid:38:97:55:42:3F:83:2A:52:8C:93:13:61:10:F0:FE:4B:10:45:35:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJdVQj-DKlKMkxNhEPD-SxBFNYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/b3gzs-5cgznaWFqFVJNMzYAJtyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/d9b596-601e-4426-a428-46957bd8860d/1/OJdVQj-DKlKMkxNhEPD-SxBFNYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.190.0/24
86.105.186.0/24
89.32.202.0/24
89.34.0.0/24
89.34.4.0/24
89.40.138.0/24
185.199.228.0/22
188.213.23.0/24
188.214.140.0/24
188.214.155.0/24
188.214.193.0/24
IPv6:
2a0a:a4c0::/29
Signature Algorithm: sha256WithRSAEncryption
15:b3:d1:07:86:1a:f5:42:9f:03:42:88:9b:92:04:52:d6:0f:
92:eb:4f:e0:6e:91:2d:c6:8e:7e:65:40:2b:9b:3e:90:8c:82:
19:42:b7:a1:51:a0:dd:16:8f:d5:b6:7a:43:83:a8:aa:84:ab:
4b:77:31:62:99:13:fc:6a:97:2e:bf:92:23:9d:82:e4:82:9b:
c5:cb:22:34:f2:c8:ea:aa:7c:d8:f1:16:36:d8:41:c2:6a:92:
f5:83:f8:dc:68:4f:81:a4:91:ce:95:c4:47:42:1f:61:6a:54:
d9:ef:bb:32:5b:a8:79:8d:36:ba:f9:07:37:da:ca:59:ea:a5:
27:b8:9a:44:a2:2b:77:36:25:14:e7:e6:f0:09:7b:34:ae:f5:
e1:da:96:8d:40:88:7d:eb:e2:d5:95:71:eb:d4:16:b9:86:34:
2d:97:04:91:bc:36:5a:a6:67:82:44:28:e7:42:eb:db:36:30:
9c:b7:b6:b4:2f:38:a2:eb:e8:65:a5:be:0f:5f:7a:d9:29:10:
b3:08:62:03:93:44:00:e0:78:e0:91:38:ec:7b:76:0b:9c:1d:
b6:b1:88:a2:aa:bc:56:c8:38:65:71:e7:59:98:ab:d2:c9:1f:
0a:d9:6c:ca:2a:a5:65:7e:5c:59:df:cb:9a:69:18:b0:87:57:
bd:d0:c6:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:55 2024 by rpki-client on console-fra.rpki-client.org