Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/DMqDqFKX1Rp3lvJN_TY_LgvJNUc.roa
File: DMqDqFKX1Rp3lvJN_TY_LgvJNUc.roa (raw, json)
Hash identifier: ZEyr0D7Lo5dJtEeA5zv6sgicCLgT0AQc3xxkEP/sxm4=
Subject key identifier: 0C:CA:83:A8:52:97:D5:1A:77:96:F2:4D:FD:36:3F:2E:0B:C9:35:47
Certificate issuer: /CN=d055e0b86f3f5125054863cf9264e6346e09bbb7
Certificate serial: 018572BA8496615807829DB61CAD07AAF171
Authority key identifier: D0:55:E0:B8:6F:3F:51:25:05:48:63:CF:92:64:E6:34:6E:09:BB:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0FXguG8_USUFSGPPkmTmNG4Ju7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/DMqDqFKX1Rp3lvJN_TY_LgvJNUc.roa
Signing time: Mon 02 Jan 2023 13:45:04 +0000
ROA not before: Mon 02 Jan 2023 13:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203053
IP address blocks: 86.107.43.0/24 maxlen: 24
89.39.209.0/24 maxlen: 24
86.107.78.0/24 maxlen: 24
86.107.79.0/24 maxlen: 24
188.214.214.0/24 maxlen: 24
86.105.228.0/24 maxlen: 24
185.146.85.0/24 maxlen: 24
185.146.84.0/22 maxlen: 22
185.146.87.0/24 maxlen: 24
185.146.86.0/24 maxlen: 24
93.119.122.0/24 maxlen: 24
89.42.13.0/24 maxlen: 24
89.40.33.0/24 maxlen: 24
89.40.32.0/24 maxlen: 24
188.212.127.0/24 maxlen: 24
176.126.172.0/24 maxlen: 24
93.113.55.0/24 maxlen: 24
93.113.54.0/24 maxlen: 24
89.37.29.0/24 maxlen: 24
37.156.181.0/24 maxlen: 24
37.156.180.0/24 maxlen: 24
31.14.56.0/24 maxlen: 24
188.212.252.0/24 maxlen: 24
188.212.255.0/24 maxlen: 24
93.114.248.0/24 maxlen: 24
85.204.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Feb 2023 09:33:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:84:96:61:58:07:82:9d:b6:1c:ad:07:aa:f1:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d055e0b86f3f5125054863cf9264e6346e09bbb7
Validity
Not Before: Jan 2 13:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0cca83a85297d51a7796f24dfd363f2e0bc93547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fd:52:50:57:f7:25:1b:c2:b7:38:c4:35:34:
b1:1c:77:3b:a5:ce:a4:fd:a5:d5:8f:48:71:47:2d:
03:d0:27:9a:d9:8a:59:00:5b:ed:25:85:df:23:f9:
93:01:ed:57:a0:f3:ea:ec:a3:5a:83:15:bb:c7:06:
7d:b1:e4:33:72:a6:1b:56:43:9f:01:90:7b:ec:c4:
1e:db:17:10:57:e2:96:e7:e1:d6:88:32:ac:32:44:
93:0b:04:62:b3:9d:f5:50:3a:31:c1:b1:61:1a:b6:
af:7b:97:61:dd:d4:d7:86:2e:15:a3:47:f1:30:0a:
47:e8:15:84:db:73:fd:1f:6e:6d:3d:55:26:28:d0:
de:72:a5:ef:3e:7b:6e:38:be:f7:b2:ff:9e:8a:84:
62:d9:78:51:b5:54:ca:27:87:c3:cf:64:9e:60:ec:
e5:34:da:0d:f8:fb:10:08:0b:cc:b4:76:69:34:cd:
cf:b6:9b:62:6c:88:99:04:59:03:88:ff:66:43:85:
3f:83:30:90:51:b4:3d:2b:fe:99:cd:36:8c:0d:93:
ee:14:4e:e8:ce:b6:6b:6c:cc:cd:7d:3f:68:7d:a0:
92:19:90:0c:dc:2e:14:0a:b1:72:51:cf:b2:b6:93:
77:e8:58:44:88:29:a2:a7:99:69:09:63:bb:fe:58:
42:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:CA:83:A8:52:97:D5:1A:77:96:F2:4D:FD:36:3F:2E:0B:C9:35:47
X509v3 Authority Key Identifier:
keyid:D0:55:E0:B8:6F:3F:51:25:05:48:63:CF:92:64:E6:34:6E:09:BB:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0FXguG8_USUFSGPPkmTmNG4Ju7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/DMqDqFKX1Rp3lvJN_TY_LgvJNUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/1cba9f-cd6e-4d12-a78d-f98c7fec194e/1/0FXguG8_USUFSGPPkmTmNG4Ju7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.56.0/24
37.156.180.0/23
85.204.69.0/24
86.105.228.0/24
86.107.43.0/24
86.107.78.0/23
89.37.29.0/24
89.39.209.0/24
89.40.32.0/23
89.42.13.0/24
93.113.54.0/23
93.114.248.0/24
93.119.122.0/24
176.126.172.0/24
185.146.84.0/22
188.212.127.0/24
188.212.252.0/24
188.212.255.0/24
188.214.214.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:77:30:aa:06:78:be:6e:6c:af:bc:ac:d8:10:95:fc:72:0e:
e2:3d:2a:fd:95:51:47:a1:d4:7f:03:16:83:5c:91:a5:e8:8d:
ff:43:ce:7f:1b:80:e5:29:77:5a:53:d5:bd:a8:64:8a:0e:eb:
15:61:2f:5a:64:ce:43:4f:e8:01:31:7c:e2:66:0c:48:3e:36:
e9:97:b1:63:c2:13:46:11:14:50:51:d0:58:77:c8:0e:60:9a:
59:51:08:d7:18:fc:bf:51:ac:24:35:1d:3e:b3:5a:6c:37:c2:
a8:ed:9b:37:8a:02:8e:23:7a:2c:fc:ef:fd:16:7e:ac:12:93:
0a:f7:fd:c0:c1:8f:c9:67:6d:f6:15:54:58:8b:54:8e:0a:75:
21:55:06:84:7d:67:63:ed:cc:65:ee:40:c6:06:bf:b1:a9:75:
34:9a:d7:a6:1f:2c:98:a2:cb:29:29:b4:59:b3:da:6e:b3:e3:
7e:2c:82:69:45:e0:2e:78:61:3f:ff:dc:12:9d:ac:e3:dc:31:
2f:07:bd:d7:44:a1:fd:23:3c:22:e7:78:f4:d9:f5:a4:d2:0c:
4b:ea:54:21:3f:30:a5:32:ab:9f:e1:ca:c6:1d:69:57:87:ad:
14:91:8e:6b:10:6d:f5:31:13:82:8f:23:04:a3:b7:1b:fc:25:
3a:ec:83:2f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:54 2024 by rpki-client on console-ams.rpki-client.org