Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/7e3Owp8TgMYVT6ZPbXZpTEVLibk.roa
File: 7e3Owp8TgMYVT6ZPbXZpTEVLibk.roa (raw, json)
Hash identifier: 7BpHOtoBBAP2fkJKumICZ5cQlvTJXm5H2SPVIVLtlsU=
Subject key identifier: ED:ED:CE:C2:9F:13:80:C6:15:4F:A6:4F:6D:76:69:4C:45:4B:89:B9
Certificate issuer: /CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Certificate serial: 01884494886D0D56A0BB78929C66FDDF54BD
Authority key identifier: 4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/7e3Owp8TgMYVT6ZPbXZpTEVLibk.roa
Signing time: Mon 22 May 2023 17:49:24 +0000
ROA not before: Mon 22 May 2023 17:49:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49788
IP address blocks: 91.223.100.0/24 maxlen: 24
151.252.8.0/21 maxlen: 24
91.90.104.0/21 maxlen: 21
193.202.115.0/24 maxlen: 24
91.225.60.0/22 maxlen: 22
91.189.120.0/21 maxlen: 21
91.221.130.0/23 maxlen: 23
45.153.104.0/22 maxlen: 22
91.209.212.0/24 maxlen: 24
185.7.192.0/22 maxlen: 22
91.193.0.0/22 maxlen: 24
176.111.206.0/23 maxlen: 23
185.55.104.0/22 maxlen: 22
185.80.180.0/22 maxlen: 24
79.141.96.0/20 maxlen: 20
91.218.184.0/22 maxlen: 22
2a04:d340::/29 maxlen: 29
2001:67c:206c::/48 maxlen: 48
2a02:d140::/29 maxlen: 29
2a0f:7900::/29 maxlen: 29
2a04:dc80::/29 maxlen: 29
2001:67c:230::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 08 Dec 2023 14:50:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:44:94:88:6d:0d:56:a0:bb:78:92:9c:66:fd:df:54:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Validity
Not Before: May 22 17:49:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ededcec29f1380c6154fa64f6d76694c454b89b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fc:a7:45:6f:4b:12:0a:20:3a:8c:e8:b8:cc:
58:c8:7c:79:41:bb:1f:30:66:28:3f:77:10:a1:04:
56:04:20:77:62:2b:73:c1:dc:2d:e1:ba:46:07:25:
57:46:70:80:43:c5:cd:d7:b1:75:b4:82:66:5d:ed:
f1:01:82:59:6e:91:8f:5c:6a:0b:26:13:f5:5e:5d:
1f:1c:17:89:f1:54:84:1d:52:cd:13:48:15:2a:89:
40:c4:c2:bf:2e:1a:3b:53:a7:e9:fd:05:49:25:c6:
5d:a0:8d:bb:f0:f7:9e:4c:10:8d:74:6d:f0:d0:ee:
d0:4d:c3:0c:4e:40:42:12:c6:a3:88:2c:17:70:5b:
43:09:c7:cd:9b:a2:f1:a5:17:03:e8:e5:3c:4a:df:
ba:d4:c7:08:a0:55:25:80:48:0f:9b:19:3f:02:a7:
6f:11:8c:fb:23:96:40:1a:be:ee:c9:d6:94:5a:d3:
d7:36:16:7f:57:df:70:6b:9d:87:02:fc:87:18:6a:
20:95:9d:b8:83:63:c7:27:a3:4d:d7:e8:44:37:22:
ef:11:b8:af:4b:dd:53:fe:a8:28:84:be:27:e8:e7:
0c:ab:78:91:3d:21:55:c3:2d:a4:de:81:4e:71:77:
8f:64:40:3c:7c:91:71:78:4a:d5:ef:ef:a3:03:f3:
15:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:ED:CE:C2:9F:13:80:C6:15:4F:A6:4F:6D:76:69:4C:45:4B:89:B9
X509v3 Authority Key Identifier:
keyid:4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/7e3Owp8TgMYVT6ZPbXZpTEVLibk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.104.0/22
79.141.96.0/20
91.90.104.0/21
91.189.120.0/21
91.193.0.0/22
91.209.212.0/24
91.218.184.0/22
91.221.130.0/23
91.223.100.0/24
91.225.60.0/22
151.252.8.0/21
176.111.206.0/23
185.7.192.0/22
185.55.104.0/22
185.80.180.0/22
193.202.115.0/24
IPv6:
2001:67c:230::/48
2001:67c:206c::/48
2a02:d140::/29
2a04:d340::/29
2a04:dc80::/29
2a0f:7900::/29
Signature Algorithm: sha256WithRSAEncryption
a9:ae:67:5b:17:34:c4:79:c5:b3:40:d7:72:27:26:85:8b:3b:
21:0d:d8:6d:c4:74:8f:83:b6:4e:ba:76:ca:27:60:8b:78:11:
29:c0:b8:15:1f:e0:b6:7a:1a:06:e4:d6:4f:a0:23:35:03:69:
35:e9:62:8a:1f:3b:58:3b:ab:85:8b:da:33:02:0f:1d:d5:4b:
5a:fb:b7:5b:aa:03:60:1a:2d:5f:75:8f:43:19:de:75:02:20:
3d:9b:ab:07:be:66:48:17:e3:d0:e3:63:88:86:8e:c0:e7:54:
ea:a0:7e:06:4c:5a:f5:e3:ce:f4:4f:a1:ee:b4:aa:58:0c:47:
28:f0:f4:5d:c1:0f:10:07:f1:a4:4f:ee:55:e9:26:19:01:fe:
28:4f:74:36:39:70:71:b8:61:76:12:28:18:e8:78:bc:d1:7a:
4f:fc:cf:bc:19:41:70:3a:50:c9:ba:03:06:dc:86:de:43:fc:
f2:3e:75:c4:ea:a3:5d:1f:d5:57:71:d8:2c:9a:e2:c3:f3:ba:
6c:27:b9:6e:14:0d:5a:fa:cd:00:18:fb:87:fd:41:82:02:d4:
5c:8c:0d:c3:53:43:4c:61:a0:81:83:57:24:e2:55:87:aa:e1:
34:87:c1:8a:5a:e4:ca:fe:8c:8e:8a:7a:52:d0:10:5c:14:b0:
ce:7b:15:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:30 2024 by rpki-client on console-fra.rpki-client.org