Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/8wN1rxEAdvTT0meUJTvWb5y4YHE.roa
File: 8wN1rxEAdvTT0meUJTvWb5y4YHE.roa (raw, json)
Hash identifier: QxrbFaxGo5qF32pa5SutuWifAXRtDi2mGp53rKcUfSM=
Subject key identifier: F3:03:75:AF:11:00:76:F4:D3:D2:67:94:25:3B:D6:6F:9C:B8:60:71
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 018E383BC574329BAB69AD2FCC40BBC56917
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/8wN1rxEAdvTT0meUJTvWb5y4YHE.roa
Signing time: Wed 13 Mar 2024 14:33:45 +0000
ROA not before: Wed 13 Mar 2024 14:33:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 5.182.100.0/24 maxlen: 24
5.182.101.0/24 maxlen: 24
45.14.72.0/24 maxlen: 24
45.84.44.0/24 maxlen: 24
45.84.45.0/24 maxlen: 24
45.84.47.0/24 maxlen: 24
45.157.74.0/23 maxlen: 23
85.8.188.0/24 maxlen: 24
85.8.189.0/24 maxlen: 24
85.8.190.0/23 maxlen: 23
85.209.216.0/24 maxlen: 24
85.209.218.0/23 maxlen: 23
88.218.100.0/24 maxlen: 24
88.218.101.0/24 maxlen: 24
88.218.102.0/23 maxlen: 23
92.119.180.0/24 maxlen: 24
92.119.181.0/24 maxlen: 24
92.119.182.0/24 maxlen: 24
139.28.137.0/24 maxlen: 24
139.28.138.0/23 maxlen: 23
141.98.240.0/24 maxlen: 24
141.98.241.0/24 maxlen: 24
141.98.242.0/23 maxlen: 23
193.31.72.0/24 maxlen: 24
193.31.73.0/24 maxlen: 24
193.31.75.0/24 maxlen: 24
194.5.0.0/22 maxlen: 22
194.124.52.0/22 maxlen: 22
195.206.108.0/24 maxlen: 24
195.206.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Mar 2024 11:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:38:3b:c5:74:32:9b:ab:69:ad:2f:cc:40:bb:c5:69:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Mar 13 14:33:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f30375af110076f4d3d26794253bd66f9cb86071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:1b:35:5c:e3:ca:c1:b7:ad:49:8d:6d:6a:f4:
09:37:c4:27:ea:d8:5b:5c:c1:12:09:fe:5c:b6:93:
45:a6:b8:37:0d:9e:ea:09:c8:93:44:04:0e:f3:74:
14:a0:80:8d:f7:9e:fb:27:8b:f1:4f:49:5b:93:a4:
29:ff:12:b6:8c:b6:9f:b2:09:c3:16:89:f9:28:f7:
1f:2e:44:04:5a:03:e4:86:ca:a5:c7:f4:0f:f2:3c:
3a:b4:b2:63:b5:2d:2f:27:e4:09:ea:ad:b1:df:31:
67:1a:d8:d1:0d:fd:37:84:bb:19:73:7e:ed:71:85:
80:ef:b4:7a:69:8d:08:5f:aa:c7:cf:af:83:f7:f8:
c4:0a:e0:0b:09:89:1a:ba:f5:a5:d7:9c:45:d9:a1:
8e:58:3d:bd:93:a2:eb:44:64:b9:09:ab:9e:3c:6a:
44:10:f7:33:61:f3:06:e6:0a:82:30:92:b9:a4:7c:
87:0f:43:d8:c8:cd:ff:eb:07:ed:8d:6d:e8:f7:c6:
7a:0b:e9:77:03:3b:57:24:6a:7a:9d:cc:a3:3e:fb:
56:58:3f:78:c8:bb:11:07:d5:7e:f5:52:76:e5:35:
0f:6e:de:01:6c:a5:dd:0e:14:4b:b6:83:62:34:e8:
2f:16:e8:dc:28:13:36:50:5e:63:b3:c3:31:99:04:
d7:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:03:75:AF:11:00:76:F4:D3:D2:67:94:25:3B:D6:6F:9C:B8:60:71
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/8wN1rxEAdvTT0meUJTvWb5y4YHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.100.0/23
45.14.72.0/24
45.84.44.0/23
45.84.47.0/24
45.157.74.0/23
85.8.188.0/22
85.209.216.0/24
85.209.218.0/23
88.218.100.0/22
92.119.180.0-92.119.182.255
139.28.137.0-139.28.139.255
141.98.240.0/22
193.31.72.0/23
193.31.75.0/24
194.5.0.0/22
194.124.52.0/22
195.206.108.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:d1:59:e6:44:de:19:0f:85:d7:56:6f:a0:8e:06:ac:92:f4:
cd:b3:1d:67:98:66:37:30:ef:1a:74:b1:d5:60:b8:43:5f:2f:
18:0c:e8:0b:cd:de:3c:df:a6:71:73:bf:8b:9a:38:33:1c:48:
de:d1:bc:bb:57:ef:a5:92:b9:15:22:81:ab:cf:39:71:68:d4:
68:69:d5:3e:cf:6d:bd:c0:6e:ba:58:19:7f:ae:3a:81:0a:83:
53:be:0b:60:02:c9:9b:8a:a6:85:35:d3:80:dc:08:3d:50:ac:
02:67:53:cd:ad:ce:76:10:94:0b:c9:d6:0d:a9:57:19:a5:aa:
f4:36:84:a9:3f:1d:4f:28:b1:b7:79:2c:3b:98:d8:32:11:c2:
1f:ef:1b:4b:4a:b3:a1:21:14:3a:82:b2:3c:0f:08:b6:35:a8:
64:8e:5a:e1:ec:1b:d1:ba:b1:9d:30:6e:f0:0c:6d:80:4c:4c:
cc:77:f6:9f:e0:25:bc:43:ee:4c:73:db:23:6c:20:41:80:72:
1f:4e:15:b3:3c:0e:e6:85:c8:26:a2:82:c2:32:37:a6:6a:14:
f1:1d:07:c0:22:19:5e:eb:c1:da:bd:4c:98:e2:63:63:1a:52:
8f:f0:69:97:19:e9:ff:0f:f2:98:b3:64:87:d5:15:d4:9d:7c:
6b:2d:55:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 21 15:31:08 2024 by rpki-client on console-fra.rpki-client.org