Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/14YHdyqtnvUYYMVog6eb0irCLZ4.roa
File: 14YHdyqtnvUYYMVog6eb0irCLZ4.roa (raw, json)
Hash identifier: ny2QthmjvoejxBAlGy976IfLRp0n9HRxVFRWJY7X1RY=
Subject key identifier: D7:86:07:77:2A:AD:9E:F5:18:60:C5:68:83:A7:9B:D2:2A:C2:2D:9E
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018F7765B8B463014759FFA89AA94BC2BB64
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/14YHdyqtnvUYYMVog6eb0irCLZ4.roa
Signing time: Tue 14 May 2024 13:58:25 +0000
ROA not before: Tue 14 May 2024 13:58:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2588
IP address blocks: 46.19.200.0/21 maxlen: 21
80.81.32.0/19 maxlen: 24
80.81.35.0/24 maxlen: 24
83.223.128.0/19 maxlen: 19
83.223.145.0/24 maxlen: 24
83.223.155.0/24 maxlen: 24
85.254.49.0/24 maxlen: 24
85.254.69.0/24 maxlen: 24
85.254.128.0/18 maxlen: 18
91.190.32.0/19 maxlen: 24
91.190.36.0/24 maxlen: 24
91.190.52.0/24 maxlen: 24
91.190.56.0/23 maxlen: 24
91.190.60.0/24 maxlen: 24
94.101.224.0/20 maxlen: 20
109.205.120.0/21 maxlen: 21
109.205.127.0/24 maxlen: 24
159.148.0.0/16 maxlen: 16
159.148.10.0/24 maxlen: 24
159.148.49.0/24 maxlen: 24
159.148.50.0/24 maxlen: 24
159.148.63.0/24 maxlen: 24
159.148.78.0/24 maxlen: 24
159.148.80.0/24 maxlen: 24
159.148.116.0/24 maxlen: 24
159.148.117.0/24 maxlen: 24
159.148.186.0/24 maxlen: 24
159.148.188.0/24 maxlen: 24
159.148.201.0/24 maxlen: 24
159.148.229.0/24 maxlen: 24
159.148.233.0/24 maxlen: 24
185.27.92.0/22 maxlen: 22
217.69.112.0/20 maxlen: 20
217.69.113.0/24 maxlen: 24
2a02:610::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 16 May 2024 07:13:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:77:65:b8:b4:63:01:47:59:ff:a8:9a:a9:4b:c2:bb:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: May 14 13:58:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d78607772aad9ef51860c56883a79bd22ac22d9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:34:d0:98:71:0a:99:b4:db:9e:d9:6b:39:90:
ef:00:5c:9a:c3:73:96:e0:7b:f1:80:5a:12:15:ae:
19:76:66:bc:88:92:59:9f:fc:54:8e:c7:49:d0:dd:
da:93:fe:1d:09:a7:93:f4:29:d2:2c:01:ce:22:20:
48:4d:e1:2f:42:7d:9f:b8:b1:23:ad:33:31:8a:9d:
1f:30:1b:5c:60:fd:5e:c9:2f:28:c6:a9:1c:e2:e9:
76:a7:df:d5:03:e1:90:ec:23:07:ca:15:e5:2c:ad:
9d:17:17:41:cb:c8:da:10:dd:5a:2e:2c:28:58:05:
30:d3:eb:be:9a:e8:c3:47:98:7c:c2:db:b5:69:2e:
9e:0a:b5:32:a4:1d:3d:46:8b:ee:36:9b:46:cc:6a:
15:98:c6:61:ca:16:f7:21:14:93:2d:a5:ae:64:e7:
5a:fa:a4:e9:d4:73:ca:dc:cb:ef:f2:dd:e1:d9:1f:
2f:3c:d8:bf:d2:39:b9:25:53:2b:7e:21:ad:68:27:
7a:be:c7:90:64:f5:86:ee:c7:c5:bf:9d:06:52:3e:
3b:4c:84:46:31:0e:00:6f:12:56:b9:48:b8:41:64:
c0:e5:83:9b:98:e1:f1:64:b9:6b:66:ce:ff:c2:41:
a8:f3:9c:19:d0:03:1f:12:61:a4:27:97:95:66:89:
79:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:86:07:77:2A:AD:9E:F5:18:60:C5:68:83:A7:9B:D2:2A:C2:2D:9E
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/14YHdyqtnvUYYMVog6eb0irCLZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.200.0/21
80.81.32.0/19
83.223.128.0/19
85.254.49.0/24
85.254.69.0/24
85.254.128.0/18
91.190.32.0/19
94.101.224.0/20
109.205.120.0/21
159.148.0.0/16
185.27.92.0/22
217.69.112.0/20
IPv6:
2a02:610::/32
Signature Algorithm: sha256WithRSAEncryption
8e:d6:15:2d:48:49:2f:a3:1d:c6:1e:27:de:9b:ad:2c:fb:80:
95:fb:c6:53:b2:a5:14:99:78:fc:53:eb:70:1c:e7:60:84:19:
33:90:7a:64:8c:12:2c:de:4b:fe:74:c9:1e:17:b7:80:ca:15:
0c:51:be:96:97:1f:ef:b3:03:4f:46:c8:11:b3:4d:2c:12:fd:
d4:ef:9d:b9:70:10:26:fb:97:96:5c:eb:a5:9f:35:27:aa:8e:
53:00:73:0a:11:09:e9:89:26:2c:f7:09:b5:79:79:18:be:23:
f8:e2:01:9a:0a:f9:28:e0:92:18:76:55:a7:e7:30:ca:5d:2c:
c7:5a:60:5a:8b:ca:52:85:0d:af:62:5b:4b:1b:68:e2:4e:0c:
be:08:de:6c:bd:0e:92:c2:02:86:11:ae:a0:7d:3e:29:d9:b3:
38:ac:50:83:99:f6:97:bb:93:df:af:7f:b8:fa:a7:bf:23:4b:
dc:cd:53:6c:6b:7b:6b:92:a2:28:8c:08:39:dc:f7:c6:d5:29:
0a:b7:e7:0a:8b:3d:ab:1f:d9:0d:c1:21:55:87:c4:cd:55:1f:
d4:46:1f:da:1c:c4:cb:94:17:16:08:09:fc:1e:fe:6e:29:a4:
f9:1a:07:4e:f8:42:10:dd:f8:aa:1e:93:1d:d5:08:36:95:ad:
de:c0:0f:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:51 2024 by rpki-client on console-fra.rpki-client.org