Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/enVmImX1_ceajLM12Zk79izy4OQ.roa
File: enVmImX1_ceajLM12Zk79izy4OQ.roa (raw, json)
Hash identifier: rGwpmpZaZ8aW/kbEybKmEtZSdUB9n3DI0t4EVcUezGQ=
Subject key identifier: 7A:75:66:22:65:F5:FD:C7:9A:8C:B3:35:D9:99:3B:F6:2C:F2:E0:E4
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018E0EBB531CCBB020C0BF336FDC8C3985EE
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/enVmImX1_ceajLM12Zk79izy4OQ.roa
Signing time: Tue 05 Mar 2024 13:09:01 +0000
ROA not before: Tue 05 Mar 2024 13:09:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2588
IP address blocks: 46.19.200.0/21 maxlen: 24
80.81.32.0/19 maxlen: 24
80.81.35.0/24 maxlen: 24
83.223.128.0/19 maxlen: 24
83.223.145.0/24 maxlen: 24
83.223.155.0/24 maxlen: 24
85.254.0.0/17 maxlen: 24
85.254.49.0/24 maxlen: 24
85.254.62.0/24 maxlen: 24
85.254.69.0/24 maxlen: 24
85.254.104.0/22 maxlen: 22
85.254.108.0/22 maxlen: 22
85.254.116.0/22 maxlen: 22
85.254.116.0/24 maxlen: 24
85.254.122.0/24 maxlen: 24
85.254.128.0/18 maxlen: 24
91.190.32.0/19 maxlen: 24
91.190.36.0/24 maxlen: 24
91.190.52.0/24 maxlen: 24
91.190.56.0/23 maxlen: 24
91.190.60.0/24 maxlen: 24
94.101.224.0/20 maxlen: 24
109.205.120.0/21 maxlen: 24
109.205.127.0/24 maxlen: 24
159.148.0.0/16 maxlen: 16
159.148.10.0/24 maxlen: 24
159.148.49.0/24 maxlen: 24
159.148.50.0/24 maxlen: 24
159.148.63.0/24 maxlen: 24
159.148.78.0/24 maxlen: 24
159.148.80.0/24 maxlen: 24
159.148.116.0/24 maxlen: 24
159.148.117.0/24 maxlen: 24
159.148.125.0/24 maxlen: 24
159.148.131.0/24 maxlen: 24
159.148.138.0/24 maxlen: 24
159.148.150.0/24 maxlen: 24
159.148.186.0/24 maxlen: 24
159.148.188.0/24 maxlen: 24
159.148.201.0/24 maxlen: 24
159.148.222.0/24 maxlen: 24
159.148.229.0/24 maxlen: 24
159.148.233.0/24 maxlen: 24
185.27.92.0/22 maxlen: 24
185.176.116.0/22 maxlen: 24
217.69.112.0/20 maxlen: 24
217.69.113.0/24 maxlen: 24
2a02:610::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 09 Mar 2024 12:37:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0e:bb:53:1c:cb:b0:20:c0:bf:33:6f:dc:8c:39:85:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Mar 5 13:09:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a75662265f5fdc79a8cb335d9993bf62cf2e0e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:74:01:ce:b1:17:a4:1d:59:24:3f:58:92:e0:
21:0f:d3:12:78:a9:37:fe:2a:ac:84:b6:ea:41:1f:
e5:d8:e3:b2:1a:d7:b4:38:67:b5:47:79:f4:5e:a6:
da:c3:e1:1f:f1:95:c4:6a:02:66:dc:ec:79:c6:f3:
7a:c5:af:a6:88:89:ff:d2:d4:3a:f3:e7:94:a0:16:
63:b8:d5:93:02:2a:69:c7:e0:5e:9b:6b:ea:1a:5d:
38:cc:76:be:2f:32:c4:95:e8:1f:b2:50:ad:db:4b:
47:2c:80:e7:eb:5a:18:84:c3:68:64:29:84:53:68:
73:32:af:f6:72:32:04:a5:fe:1d:a7:c6:7e:33:d1:
41:8e:42:1b:39:82:2b:f4:ef:8c:3b:a3:ac:cd:8c:
4e:6d:4a:7c:d5:b5:8d:a9:a5:c8:d9:57:d2:e9:38:
d7:91:ac:98:64:e2:d7:09:0b:4a:90:8b:10:d9:32:
1e:83:38:80:3d:ca:7e:8a:f8:b8:1c:06:ce:77:2d:
74:8e:ff:f9:68:e9:cf:6c:d5:d1:05:62:56:e0:34:
c1:e9:e9:0d:2d:b5:7e:6b:ee:56:9d:16:14:bf:14:
2e:f0:58:08:4b:c3:99:fe:3f:0d:63:83:29:91:5b:
7f:b0:60:e0:1a:21:21:42:87:a1:51:64:e2:93:9c:
fa:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:75:66:22:65:F5:FD:C7:9A:8C:B3:35:D9:99:3B:F6:2C:F2:E0:E4
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/enVmImX1_ceajLM12Zk79izy4OQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.200.0/21
80.81.32.0/19
83.223.128.0/19
85.254.0.0-85.254.191.255
91.190.32.0/19
94.101.224.0/20
109.205.120.0/21
159.148.0.0/16
185.27.92.0/22
185.176.116.0/22
217.69.112.0/20
IPv6:
2a02:610::/32
Signature Algorithm: sha256WithRSAEncryption
03:bf:98:6c:a7:bb:40:a2:68:58:63:95:97:82:40:15:54:1a:
9f:43:85:7b:d2:ad:62:90:4d:cf:a0:4c:1e:a7:63:df:33:a0:
82:8a:76:2f:28:70:65:c4:29:65:04:03:ab:1b:9e:41:1d:ee:
19:05:b8:e6:42:72:14:0c:f3:41:2c:07:f1:60:82:58:8f:6d:
27:74:1c:9e:c5:7a:ed:0e:6d:26:c9:4b:a8:ad:6e:47:9a:42:
5d:77:89:b8:f4:8d:a3:35:b5:e4:15:46:4c:51:08:e7:6c:6c:
8c:d8:60:30:10:7c:92:2f:cd:89:28:43:49:2a:47:0e:50:ee:
f1:57:e1:fd:87:b5:51:86:22:d4:89:f6:d0:34:39:23:eb:ff:
42:58:df:b4:5e:f3:d2:49:13:92:79:aa:d4:06:e2:98:d3:a4:
9b:9d:18:73:f0:9c:e4:89:ff:6e:83:47:07:e3:2e:23:ee:56:
e6:ed:21:2d:48:c2:67:a1:35:4d:d8:4d:f7:08:c9:11:ff:2e:
67:74:4c:a8:00:10:ec:51:ea:04:bf:9e:94:51:26:d7:78:5c:
73:b1:85:5f:0e:96:27:5c:62:48:8e:a8:c7:51:24:33:06:fd:
f1:bb:06:6c:2c:64:7e:4f:84:bd:d8:4a:88:0b:f9:7c:8d:19:
9a:07:4f:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 9 17:14:15 2024 by rpki-client on console-ams.rpki-client.org