Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/VmPploRhCXbUagiWOke17-pihq8.roa
File: VmPploRhCXbUagiWOke17-pihq8.roa (raw, json)
Hash identifier: akUPH9+l6uuedRWLK+8NnnCOHRmRzy/0bA5+666CuBc=
Subject key identifier: 56:63:E9:96:84:61:09:76:D4:6A:08:96:3A:47:B5:EF:EA:62:86:AF
Certificate issuer: /CN=b155daddb871b9d6a53cd6b47f776250837f7774
Certificate serial: 0186DEB8204FB0A2AE5CB47A6AD7CA7943BE
Authority key identifier: B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/VmPploRhCXbUagiWOke17-pihq8.roa
Signing time: Tue 14 Mar 2023 06:04:14 +0000
ROA not before: Tue 14 Mar 2023 06:04:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9145
IP address blocks: 92.252.0.0/17 maxlen: 24
212.95.96.0/19 maxlen: 19
212.6.64.0/18 maxlen: 24
85.16.0.0/16 maxlen: 16
95.33.0.0/16 maxlen: 24
85.8.64.0/18 maxlen: 18
213.252.128.0/18 maxlen: 24
37.138.0.0/16 maxlen: 16
82.149.160.0/19 maxlen: 19
90.153.0.0/17 maxlen: 17
89.166.128.0/17 maxlen: 17
213.168.192.0/19 maxlen: 19
80.66.0.0/19 maxlen: 24
62.89.160.0/19 maxlen: 24
91.96.0.0/15 maxlen: 24
213.183.160.0/19 maxlen: 19
31.150.0.0/16 maxlen: 16
80.228.0.0/16 maxlen: 24
87.245.0.0/18 maxlen: 18
89.233.64.0/19 maxlen: 19
31.184.0.0/18 maxlen: 18
213.182.96.0/19 maxlen: 19
91.248.0.0/15 maxlen: 24
31.187.112.0/20 maxlen: 20
213.170.160.0/19 maxlen: 19
178.142.0.0/16 maxlen: 24
188.118.128.0/18 maxlen: 24
2a02:8200::/27 maxlen: 27
Validation: Failed, certificate revoked on Tue 14 Mar 2023 06:27:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:de:b8:20:4f:b0:a2:ae:5c:b4:7a:6a:d7:ca:79:43:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155daddb871b9d6a53cd6b47f776250837f7774
Validity
Not Before: Mar 14 06:04:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5663e99684610976d46a08963a47b5efea6286af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:53:c5:4b:14:74:9c:84:04:74:11:3e:7c:3b:
91:0b:e6:6d:82:86:8f:58:64:42:29:d6:04:8e:06:
a2:1b:db:ed:0d:d1:d3:14:94:79:e6:2d:27:22:20:
aa:41:6a:52:fc:7b:20:8d:d4:9b:66:fd:4f:03:33:
9d:ba:91:55:2a:c7:a3:a9:da:2a:a4:d7:c3:00:87:
72:7d:ce:91:ef:23:40:e2:33:fe:5b:d6:7e:4d:24:
69:c7:b8:48:0e:c4:bd:1c:98:fe:9e:c3:5e:5c:3a:
47:a0:ed:ae:14:86:f9:98:38:da:b6:ed:c9:a6:44:
29:92:7a:ea:a6:80:9e:39:ef:03:c2:08:3b:d0:da:
29:27:e3:f7:0d:5e:bc:97:be:fb:24:91:01:e7:07:
f7:e9:16:55:5a:c9:18:c3:fb:07:46:90:3e:09:bf:
eb:16:80:b7:dd:c1:a8:ee:d8:fc:ac:fc:67:70:b0:
98:e1:7b:a8:e2:40:f3:07:fa:ff:fc:f2:95:d0:6c:
f6:38:79:34:75:da:c1:aa:a7:25:a4:43:d3:c7:3c:
d3:58:25:bb:58:fa:f6:e1:4d:ec:f7:33:83:8b:d1:
01:4f:47:ee:89:2f:6a:85:4b:f1:d9:65:79:39:38:
f3:5a:bf:c1:95:fd:9e:fd:41:c5:c4:45:71:6f:83:
ff:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:63:E9:96:84:61:09:76:D4:6A:08:96:3A:47:B5:EF:EA:62:86:AF
X509v3 Authority Key Identifier:
keyid:B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/VmPploRhCXbUagiWOke17-pihq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/sVXa3bhxudalPNa0f3diUIN_d3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.150.0.0/16
31.184.0.0/18
31.187.112.0/20
37.138.0.0/16
62.89.160.0/19
80.66.0.0/19
80.228.0.0/16
82.149.160.0/19
85.8.64.0/18
85.16.0.0/16
87.245.0.0/18
89.166.128.0/17
89.233.64.0/19
90.153.0.0/17
91.96.0.0/15
91.248.0.0/15
92.252.0.0/17
95.33.0.0/16
178.142.0.0/16
188.118.128.0/18
212.6.64.0/18
212.95.96.0/19
213.168.192.0/19
213.170.160.0/19
213.182.96.0/19
213.183.160.0/19
213.252.128.0/18
IPv6:
2a02:8200::/27
Signature Algorithm: sha256WithRSAEncryption
89:55:4f:fa:24:70:16:af:37:7b:77:d8:10:3c:9b:6f:a6:af:
ff:d2:56:ec:39:bf:ef:7a:40:00:2a:7d:c7:64:07:6d:c2:ce:
86:b5:a7:bb:ba:3a:a6:33:fe:f6:39:b0:00:f6:2a:ef:73:5e:
9a:f9:a1:f2:7c:2e:03:7e:0f:6f:bf:a8:d3:c0:1e:e7:ae:14:
5d:e4:40:2b:6c:b7:24:ee:91:73:f0:bb:f9:ad:80:7e:1e:3a:
d8:58:02:54:75:b9:77:84:01:d1:ad:4a:1e:09:2d:8a:8d:7a:
3c:2d:bb:f8:75:fa:18:34:b7:49:78:48:4e:b7:4f:a5:c0:34:
75:30:43:06:1d:36:13:7c:cd:c6:3e:5e:8a:67:47:cf:34:36:
69:96:9c:e4:30:54:9e:24:5d:27:86:56:5f:58:2e:db:43:70:
02:f9:21:9d:93:a3:78:f4:c2:80:76:64:40:68:fc:ea:e8:06:
8d:70:c0:be:dc:db:f1:d4:65:71:65:b7:67:fe:74:44:a1:5d:
32:48:23:f0:0e:46:60:c3:50:7c:9f:1d:ce:c5:24:24:07:f7:
45:31:2c:fd:94:f5:1c:d1:62:bc:ce:77:e2:8b:28:99:71:bc:
f9:3e:e1:0d:a1:9e:3a:6b:7c:20:3b:cc:7e:1c:54:88:d0:c7:
d4:18:29:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:54 2024 by rpki-client on console-fra.rpki-client.org