Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/H1NxEwMF903UWf9nPMyrkutFeUA.roa
File: H1NxEwMF903UWf9nPMyrkutFeUA.roa (raw, json)
Hash identifier: 8GVHAP1h8+ZU14y/uXdIAmKTRFYnY0NPbjnZEdmErOI=
Subject key identifier: 1F:53:71:13:03:05:F7:4D:D4:59:FF:67:3C:CC:AB:92:EB:45:79:40
Certificate issuer: /CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Certificate serial: 0185DF186937EE2707168881FE3F4DD35BCF
Authority key identifier: A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/H1NxEwMF903UWf9nPMyrkutFeUA.roa
Signing time: Mon 23 Jan 2023 14:46:37 +0000
ROA not before: Mon 23 Jan 2023 14:46:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48854
IP address blocks: 185.134.28.0/22 maxlen: 22
195.178.14.0/23 maxlen: 23
80.70.0.0/23 maxlen: 23
185.21.40.0/22 maxlen: 22
80.70.7.0/24 maxlen: 24
212.97.132.0/22 maxlen: 22
212.97.140.0/22 maxlen: 22
94.143.8.0/21 maxlen: 21
93.191.152.0/21 maxlen: 21
93.191.152.0/22 maxlen: 22
217.61.236.0/22 maxlen: 22
93.191.156.0/24 maxlen: 24
93.191.158.0/24 maxlen: 24
93.191.157.0/24 maxlen: 24
89.188.72.0/21 maxlen: 21
185.25.141.0/24 maxlen: 24
185.25.143.0/24 maxlen: 24
94.231.96.0/20 maxlen: 20
94.231.103.0/24 maxlen: 24
185.223.24.0/22 maxlen: 22
185.221.36.0/22 maxlen: 22
212.237.248.0/23 maxlen: 23
194.150.112.0/22 maxlen: 22
185.20.204.0/22 maxlen: 22
185.20.205.0/24 maxlen: 24
185.20.206.0/23 maxlen: 23
2a06:eac0::/29 maxlen: 48
2a02:2338::/32 maxlen: 48
2a02:2339:4000::/34 maxlen: 48
Validation: Failed, certificate revoked on Thu 26 Jan 2023 09:18:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:df:18:69:37:ee:27:07:16:88:81:fe:3f:4d:d3:5b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Validity
Not Before: Jan 23 14:46:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f5371130305f74dd459ff673cccab92eb457940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f7:ef:66:99:41:91:bf:41:88:78:df:84:39:
d9:44:e8:7a:ca:d6:0b:f0:8f:0f:52:92:67:d7:3c:
71:6f:f7:dd:95:1c:30:cb:f9:3d:08:41:d5:2e:cb:
7f:2b:a4:5a:d1:13:91:dc:db:93:d8:f7:fc:62:13:
d1:8e:98:9e:2a:77:0f:bb:1d:04:0f:97:ae:14:87:
3f:4c:a6:fd:af:ce:3e:e0:63:61:68:73:7c:e3:1c:
bf:5a:8c:e9:f9:56:9b:0c:7c:1d:27:6b:2f:48:6e:
af:51:48:4b:a4:61:17:d9:fc:e0:58:87:63:25:2c:
89:f3:1d:4d:7f:fe:41:ec:5b:c6:9e:f2:45:68:92:
6b:22:2a:9e:5d:d7:64:dd:8f:d5:47:1d:54:34:46:
0c:62:0d:e6:aa:c8:3d:a5:73:19:e6:60:a2:b2:b1:
73:02:d9:47:4b:65:ab:d7:37:f7:03:0e:38:5b:2b:
f7:6f:d3:7d:6b:0a:7a:d7:92:f2:02:26:ee:77:eb:
d2:8f:0c:13:25:c6:42:06:71:11:7e:39:59:6f:04:
cc:bb:df:22:55:5d:25:ff:95:2c:87:27:24:77:9e:
66:1e:a4:e1:dd:30:56:da:cf:3c:e6:49:14:fb:67:
c3:d3:7e:5f:e1:ff:7d:ff:77:3f:71:e4:08:db:84:
78:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:53:71:13:03:05:F7:4D:D4:59:FF:67:3C:CC:AB:92:EB:45:79:40
X509v3 Authority Key Identifier:
keyid:A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/H1NxEwMF903UWf9nPMyrkutFeUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.70.0.0/23
80.70.7.0/24
89.188.72.0/21
93.191.152.0/21
94.143.8.0/21
94.231.96.0/20
185.20.204.0/22
185.21.40.0/22
185.25.141.0/24
185.25.143.0/24
185.134.28.0/22
185.221.36.0/22
185.223.24.0/22
194.150.112.0/22
195.178.14.0/23
212.97.132.0/22
212.97.140.0/22
212.237.248.0/23
217.61.236.0/22
IPv6:
2a02:2338::/32
2a02:2339:4000::/34
2a06:eac0::/29
Signature Algorithm: sha256WithRSAEncryption
65:a5:a4:5f:4c:de:e9:79:31:8f:61:12:e5:44:59:c6:99:4d:
40:75:53:a7:5a:8d:f2:1e:9b:75:ba:47:9f:8c:55:c2:f0:4c:
41:26:1f:33:ac:a1:b2:0d:88:5f:d3:7c:b3:c7:1f:fc:f1:16:
38:10:3c:4c:bc:71:07:16:e8:f8:1e:f9:02:5b:56:69:af:cb:
e7:7f:71:fb:72:78:21:d4:a7:28:b5:15:28:c4:69:a2:87:77:
7e:8c:45:16:dc:f7:ca:e4:a6:ac:81:c0:a7:05:b7:17:28:b2:
4d:53:8a:4b:f3:51:4c:d7:f0:f0:d4:a4:bd:9c:80:cd:2f:66:
14:49:67:bb:ef:bf:fe:09:b2:e5:81:f8:3c:4f:6d:dc:cc:ef:
d6:de:a3:c8:83:a8:b2:c5:f7:5b:6f:02:45:c4:40:12:43:f0:
f7:42:8b:fc:4b:f0:d4:39:c5:8a:5d:60:86:ee:f1:24:20:cc:
9b:3d:f7:fc:a0:f1:5f:1c:e2:70:d9:17:19:1d:88:be:60:2c:
7a:50:fe:ab:f5:40:74:2a:94:22:24:54:45:8b:d5:3b:a5:eb:
70:59:32:3d:0f:6c:f2:c0:31:10:d4:64:7b:64:3e:54:63:f4:
f1:1b:db:0e:cd:5d:43:59:2e:2d:50:38:e1:e0:15:9c:a1:62:
9d:b4:e9:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:23 2024 by rpki-client on console-fra.rpki-client.org