Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/I_TuMvjj9pmNLBEGOW3zNiyM7dk.roa
File: I_TuMvjj9pmNLBEGOW3zNiyM7dk.roa (raw, json)
Hash identifier: QVwwZBZcxlQsyXUqjJbblXYf/x0l255IEKHj+6UXEn0=
Subject key identifier: 23:F4:EE:32:F8:E3:F6:99:8D:2C:11:06:39:6D:F3:36:2C:8C:ED:D9
Certificate issuer: /CN=8a8fa992bc0a61db2cbe786e1c59d360cce54486
Certificate serial: 018A3B43E34A73772AE6D7845B8D710DBC55
Authority key identifier: 8A:8F:A9:92:BC:0A:61:DB:2C:BE:78:6E:1C:59:D3:60:CC:E5:44:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/I_TuMvjj9pmNLBEGOW3zNiyM7dk.roa
Signing time: Mon 28 Aug 2023 08:30:19 +0000
ROA not before: Mon 28 Aug 2023 08:30:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50473
IP address blocks: 188.64.165.0/24 maxlen: 24
185.61.76.0/22 maxlen: 22
188.64.166.0/23 maxlen: 23
185.42.124.0/23 maxlen: 23
185.42.126.0/23 maxlen: 23
193.105.59.0/24 maxlen: 24
46.151.152.0/21 maxlen: 21
46.151.155.0/24 maxlen: 24
80.251.224.0/20 maxlen: 20
195.216.241.0/24 maxlen: 24
185.21.156.0/22 maxlen: 22
91.214.240.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3b:43:e3:4a:73:77:2a:e6:d7:84:5b:8d:71:0d:bc:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a8fa992bc0a61db2cbe786e1c59d360cce54486
Validity
Not Before: Aug 28 08:30:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23f4ee32f8e3f6998d2c1106396df3362c8cedd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c1:c4:ef:db:53:76:27:85:f3:8f:29:b6:3d:
b9:79:c0:a3:52:09:05:03:9f:69:90:c9:62:9d:8e:
41:f8:92:8f:13:4a:28:42:9a:a6:2d:84:d1:de:b2:
17:c4:3b:60:9a:24:5f:42:2c:c6:34:81:f1:42:9c:
04:e5:bd:5e:25:08:9c:79:83:44:d1:a4:b3:c8:1c:
52:f2:79:bd:b7:25:49:b0:bb:5f:24:d5:84:14:45:
98:f9:a6:b8:1f:f9:09:3b:35:f8:a1:25:26:04:a8:
4a:55:1f:6f:b1:01:23:0f:80:59:4f:64:c3:2d:c6:
56:ff:dd:7c:df:00:2d:df:b6:9d:29:2f:44:90:15:
ad:3d:53:1e:75:07:88:72:a8:3d:15:12:5d:99:9c:
2e:ef:22:a9:7b:78:20:bf:da:7e:2e:6d:cd:69:09:
c4:ca:88:29:33:27:95:cc:eb:ee:f5:6d:7b:7d:7f:
be:cd:63:e2:c9:61:cd:90:27:5d:45:5c:e5:68:5b:
3b:64:e3:cb:fd:03:39:d3:ff:43:e6:32:21:22:8e:
ea:d8:e0:d3:89:7b:27:fd:a6:45:b7:75:91:54:a5:
79:8c:ea:1e:1a:d4:e6:8d:ec:b2:6f:51:b6:2b:d7:
d5:fd:38:46:c4:3c:84:10:ae:20:af:2e:a2:86:d9:
d6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:F4:EE:32:F8:E3:F6:99:8D:2C:11:06:39:6D:F3:36:2C:8C:ED:D9
X509v3 Authority Key Identifier:
keyid:8A:8F:A9:92:BC:0A:61:DB:2C:BE:78:6E:1C:59:D3:60:CC:E5:44:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/I_TuMvjj9pmNLBEGOW3zNiyM7dk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.151.152.0/21
80.251.224.0/20
91.214.240.0/22
185.21.156.0/22
185.42.124.0/22
185.61.76.0/22
188.64.165.0-188.64.167.255
193.105.59.0/24
195.216.241.0/24
Signature Algorithm: sha256WithRSAEncryption
05:3c:db:05:b7:79:47:4b:d0:2e:a0:07:26:06:a2:00:ff:be:
e0:80:49:99:8e:0b:d6:71:2e:6b:f1:84:aa:9b:e1:77:5c:f0:
29:21:1b:c1:07:df:99:52:bf:d7:f1:9c:69:fc:15:b3:3c:ab:
7b:94:02:b3:41:e7:19:31:7d:cb:e3:aa:14:07:ae:34:7e:27:
d6:ea:0a:ac:09:fa:82:5e:87:5d:12:5f:da:89:1d:f6:14:01:
1b:37:27:9c:c3:b2:07:48:b6:0b:27:79:05:a6:0f:a4:42:bb:
95:37:2b:f0:60:6b:ba:9b:d7:44:d1:c8:a5:bd:70:9c:b2:9c:
06:69:88:8a:c2:a6:60:0f:db:36:c8:3b:0f:b0:fd:39:25:69:
0d:73:5a:6e:2f:6b:12:fa:c1:8e:06:f4:b6:4b:1e:2f:99:d6:
de:c4:0d:de:4b:7e:6d:af:b9:dc:e5:32:31:b7:29:13:28:95:
2d:7d:b7:bc:93:29:af:e6:e4:97:e3:7a:47:0b:f5:db:8f:8d:
a5:d6:25:42:e8:67:0a:dc:ad:58:cb:52:bb:65:2d:db:48:11:
9a:55:ca:09:cf:97:22:04:42:12:0d:21:e8:2a:a1:b0:46:f3:
30:19:b1:3a:39:06:c0:55:04:29:8d:80:10:15:30:3b:47:f6:
5b:f6:af:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:04 2024 by rpki-client on console-fra.rpki-client.org