Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/58uXyh14wVfeE0LwrzN7PT5zCr8.roa
File: 58uXyh14wVfeE0LwrzN7PT5zCr8.roa (raw, json)
Hash identifier: JO/h7qD7Eb4rcTxBWDRvJubHGrNQswcka6ntj76Xlxg=
Subject key identifier: E7:CB:97:CA:1D:78:C1:57:DE:13:42:F0:AF:33:7B:3D:3E:73:0A:BF
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018E3C5B61758FE96E0D9F8A1A8C53DE5E00
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/58uXyh14wVfeE0LwrzN7PT5zCr8.roa
Signing time: Thu 14 Mar 2024 09:46:45 +0000
ROA not before: Thu 14 Mar 2024 09:46:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13194
IP address blocks: 80.81.61.0/24 maxlen: 24
85.254.71.0/24 maxlen: 24
85.254.73.0/24 maxlen: 24
85.254.74.0/23 maxlen: 23
85.254.74.0/24 maxlen: 24
85.254.75.0/24 maxlen: 24
85.254.76.0/22 maxlen: 22
85.254.76.0/24 maxlen: 24
85.254.80.0/22 maxlen: 22
85.254.84.0/23 maxlen: 23
85.254.92.0/22 maxlen: 22
85.254.92.0/23 maxlen: 23
85.254.92.0/24 maxlen: 24
85.254.93.0/24 maxlen: 24
85.254.94.0/24 maxlen: 24
85.254.95.0/24 maxlen: 24
85.254.96.0/22 maxlen: 22
85.254.96.0/23 maxlen: 23
85.254.98.0/23 maxlen: 23
85.254.100.0/24 maxlen: 24
85.254.101.0/24 maxlen: 24
85.254.102.0/24 maxlen: 24
85.254.112.0/21 maxlen: 21
85.254.124.0/23 maxlen: 23
85.254.141.0/24 maxlen: 24
85.254.149.0/24 maxlen: 24
85.254.151.0/24 maxlen: 24
85.254.152.0/22 maxlen: 22
85.254.159.0/24 maxlen: 24
85.254.161.0/24 maxlen: 24
85.254.168.0/24 maxlen: 24
85.254.169.0/24 maxlen: 24
85.254.170.0/24 maxlen: 24
85.254.176.0/23 maxlen: 23
91.190.45.0/24 maxlen: 24
159.148.73.0/24 maxlen: 24
159.148.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Mar 2024 18:55:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3c:5b:61:75:8f:e9:6e:0d:9f:8a:1a:8c:53:de:5e:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Mar 14 09:46:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7cb97ca1d78c157de1342f0af337b3d3e730abf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f5:1c:70:f3:87:fc:5e:29:69:3a:13:af:6b:
df:be:b9:16:bb:3f:1d:04:ec:1c:75:e5:a1:b8:2e:
70:83:ef:b7:4a:a2:d2:21:e3:6c:ce:26:30:c7:5b:
02:62:6d:68:d1:e6:3d:69:fd:6f:2e:db:35:fa:1c:
92:a7:e8:d4:7e:c6:df:9f:87:cc:12:af:9c:2d:9b:
dd:89:68:e5:de:09:9f:6d:93:9d:9d:f6:58:3c:2a:
2a:db:0d:b4:39:8b:ad:b0:95:b1:cd:96:d3:7d:f5:
14:f2:3d:a5:1b:4c:bd:c9:53:0f:f0:51:6a:ff:a5:
03:08:ac:20:ba:d8:17:cf:4d:0a:f4:fa:e8:32:d5:
96:d7:8f:58:42:31:49:1b:90:f7:0c:08:09:94:3d:
ca:5b:b0:01:be:e0:9f:e0:84:28:c3:3d:24:80:18:
45:56:57:26:ae:ab:ff:97:17:8d:05:9f:cc:65:15:
d8:71:bd:9c:c1:09:c4:f3:56:71:c3:46:23:0e:b5:
04:df:8d:6e:a5:a4:83:95:62:f2:43:95:6c:89:13:
59:d5:8a:ad:99:60:ac:d4:c5:13:9c:8d:a8:2a:ba:
54:49:4e:02:2f:89:57:6c:ae:a3:89:75:8d:21:ef:
bc:c8:f7:1a:04:3e:f8:05:40:e2:1a:20:eb:3d:82:
2a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:CB:97:CA:1D:78:C1:57:DE:13:42:F0:AF:33:7B:3D:3E:73:0A:BF
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/58uXyh14wVfeE0LwrzN7PT5zCr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.81.61.0/24
85.254.71.0/24
85.254.73.0-85.254.85.255
85.254.92.0-85.254.102.255
85.254.112.0/21
85.254.124.0/23
85.254.141.0/24
85.254.149.0/24
85.254.151.0-85.254.155.255
85.254.159.0/24
85.254.161.0/24
85.254.168.0-85.254.170.255
85.254.176.0/23
91.190.45.0/24
159.148.73.0/24
159.148.249.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:a8:bf:85:87:b6:b6:27:68:ac:03:0d:61:ed:bc:9e:fd:89:
bd:c0:80:3f:82:7c:a4:8a:b2:a7:06:57:63:e1:bc:1b:fe:bb:
61:b5:77:ce:72:b5:90:bd:f5:3c:fc:f5:d2:d8:05:22:e8:22:
e5:d0:90:29:c3:b0:d9:0a:94:d8:72:e4:3a:0b:cb:35:b5:26:
17:fc:31:93:03:d9:3e:1a:0a:1a:11:68:c0:2d:66:0d:93:fb:
bd:e5:f7:be:7c:39:61:c3:25:8b:15:44:81:53:9d:9e:76:c4:
2b:15:67:8d:c9:37:ea:82:9b:ab:c4:ef:1d:39:a2:f6:1f:60:
94:0d:87:8e:4d:50:d1:42:d3:53:a6:1a:4f:22:09:74:20:1d:
a3:f2:25:19:e0:69:d6:b2:bd:f2:68:fd:ae:fa:f9:ce:b1:e1:
e9:0c:93:aa:74:3a:a6:f3:14:9a:95:d6:fd:2e:f8:1d:b8:cc:
67:09:f7:b9:89:db:9f:5d:f9:fc:45:fe:09:39:97:42:2e:67:
ca:4e:ae:71:a0:ea:f2:98:b9:7b:f1:2e:98:c4:ed:f9:e2:28:
f0:1f:e6:b2:43:d3:d7:5a:e1:68:76:43:a5:f3:57:62:6d:cf:
70:32:17:73:79:91:95:40:bd:5d:de:be:9f:b6:f3:2a:7c:af:
94:ea:88:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 27 23:33:31 2024 by rpki-client on console-fra.rpki-client.org