Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/gU25uMNYKSf3gWALX1FHnigWiF8.roa
File: gU25uMNYKSf3gWALX1FHnigWiF8.roa (raw, json)
Hash identifier: 9SIV5m6XKmw0sO3NyH44nsl3w2e11iJD0oOoaSDdzyo=
Subject key identifier: 81:4D:B9:B8:C3:58:29:27:F7:81:60:0B:5F:51:47:9E:28:16:88:5F
Certificate issuer: /CN=b155daddb871b9d6a53cd6b47f776250837f7774
Certificate serial: 018899E5295A9079D3EB9B809C4557B569FC
Authority key identifier: B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/gU25uMNYKSf3gWALX1FHnigWiF8.roa
Signing time: Thu 08 Jun 2023 07:25:12 +0000
ROA not before: Thu 08 Jun 2023 07:25:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 212.95.96.0/19 maxlen: 24
92.252.0.0/17 maxlen: 24
212.6.64.0/18 maxlen: 24
212.68.64.0/19 maxlen: 24
85.16.0.0/16 maxlen: 24
95.33.0.0/16 maxlen: 24
85.8.64.0/18 maxlen: 24
213.252.128.0/18 maxlen: 24
37.138.0.0/16 maxlen: 24
82.149.160.0/19 maxlen: 24
90.153.0.0/17 maxlen: 24
89.166.128.0/17 maxlen: 24
213.168.192.0/19 maxlen: 24
80.66.0.0/19 maxlen: 24
62.89.160.0/19 maxlen: 24
213.183.160.0/19 maxlen: 24
91.96.0.0/15 maxlen: 24
31.150.0.0/16 maxlen: 24
80.228.0.0/16 maxlen: 24
87.245.0.0/18 maxlen: 24
89.233.64.0/19 maxlen: 24
31.184.0.0/18 maxlen: 24
91.248.0.0/15 maxlen: 24
213.182.96.0/19 maxlen: 24
31.187.112.0/20 maxlen: 24
213.170.160.0/19 maxlen: 24
178.142.0.0/16 maxlen: 24
188.118.128.0/18 maxlen: 24
2a02:8020::/30 maxlen: 48
2a02:8200::/27 maxlen: 48
2a00:1470::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 22 Sep 2023 08:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:99:e5:29:5a:90:79:d3:eb:9b:80:9c:45:57:b5:69:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155daddb871b9d6a53cd6b47f776250837f7774
Validity
Not Before: Jun 8 07:25:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=814db9b8c3582927f781600b5f51479e2816885f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:70:96:3b:fb:6f:81:df:84:97:2b:62:50:8b:
17:54:6a:2c:09:4f:d5:f5:0c:b4:85:bf:04:fc:b7:
30:bc:50:36:5e:b1:7e:ae:5d:0c:eb:f0:03:82:4c:
c1:c5:be:f1:38:5b:d9:63:bb:35:f7:48:f1:e5:31:
9c:da:7e:84:d8:f7:24:39:cc:56:74:0d:d7:ed:87:
69:5e:7b:39:bd:b6:da:c1:9d:16:ec:fd:18:af:85:
ab:91:17:57:a5:7a:2b:31:de:ec:74:18:b9:91:14:
18:b7:15:07:02:5d:1b:4c:c8:75:62:1c:a4:de:82:
5f:0c:c5:a7:c7:17:84:07:67:1d:6d:ea:b3:de:f3:
4b:a8:aa:fd:fc:ec:a3:e5:7e:02:38:31:d5:94:19:
1a:6e:5a:94:ef:d9:8e:7a:9d:89:ab:1c:b0:8b:1b:
5e:62:a0:eb:13:64:4e:4d:cc:02:96:9c:c7:06:8a:
36:e3:3c:ef:dd:bf:d2:ef:4e:0e:ee:4d:8a:99:93:
17:20:e7:28:86:7a:aa:a6:18:a3:b4:45:e0:ca:57:
83:42:51:9d:a2:ae:00:cf:03:c1:fe:f1:3d:9f:fa:
c1:e9:42:87:be:7a:9f:ea:7f:6d:3b:75:d1:14:48:
23:be:6f:00:73:16:5c:09:49:bc:e2:de:5f:c8:12:
ad:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:4D:B9:B8:C3:58:29:27:F7:81:60:0B:5F:51:47:9E:28:16:88:5F
X509v3 Authority Key Identifier:
keyid:B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/gU25uMNYKSf3gWALX1FHnigWiF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/sVXa3bhxudalPNa0f3diUIN_d3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.150.0.0/16
31.184.0.0/18
31.187.112.0/20
37.138.0.0/16
62.89.160.0/19
80.66.0.0/19
80.228.0.0/16
82.149.160.0/19
85.8.64.0/18
85.16.0.0/16
87.245.0.0/18
89.166.128.0/17
89.233.64.0/19
90.153.0.0/17
91.96.0.0/15
91.248.0.0/15
92.252.0.0/17
95.33.0.0/16
178.142.0.0/16
188.118.128.0/18
212.6.64.0/18
212.68.64.0/19
212.95.96.0/19
213.168.192.0/19
213.170.160.0/19
213.182.96.0/19
213.183.160.0/19
213.252.128.0/18
IPv6:
2a00:1470::/32
2a02:8020::/30
2a02:8200::/27
Signature Algorithm: sha256WithRSAEncryption
7f:6b:83:ca:43:0d:88:f8:f3:13:b4:c9:0e:90:1c:59:02:2b:
ce:c1:43:c5:3d:96:1c:0f:17:55:39:b4:17:1f:18:07:08:45:
c5:f9:89:6d:46:97:4c:f7:38:db:41:ad:26:97:37:79:9c:8e:
90:48:d0:da:b3:35:91:5a:47:86:ea:cb:23:a0:0d:4b:78:ae:
0b:8f:30:52:fc:8c:4f:6f:e3:b9:ca:ec:d3:c3:7d:ef:0f:e1:
ee:31:4d:6b:07:19:9d:d3:3b:08:a2:23:26:28:b7:d9:f5:b9:
60:5f:09:57:16:49:5c:ef:39:9d:ce:ab:a1:f1:01:7a:0a:b6:
51:5b:fc:ee:c7:cc:62:84:b0:00:3c:16:36:14:c5:b1:fa:9e:
51:89:6c:03:66:93:30:21:5c:fb:83:e6:37:11:8d:f4:27:77:
13:22:d7:c9:8d:e7:af:0b:84:cf:03:fd:c7:b4:74:69:51:94:
e4:8d:cd:77:58:63:0a:51:e5:95:cf:57:d8:25:15:cd:76:6c:
7c:60:e4:14:ab:8f:0a:6e:a4:8d:b9:5c:c4:a1:dc:d0:2b:ff:
ff:df:4d:a2:d7:7e:20:69:c2:08:64:06:b6:c8:77:72:1f:1f:
61:f2:a2:0c:39:db:43:f2:80:08:43:7b:0d:f8:e8:2a:d1:10:
36:99:f1:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:54 2024 by rpki-client on console-fra.rpki-client.org