Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/84IteUu8mUznghiVB9JdxH2dKe8.roa
File: 84IteUu8mUznghiVB9JdxH2dKe8.roa (raw, json)
Hash identifier: AU2pHqmJhZaAwI4zBAEkw2OmtYAhMRtZQtkSzh/8MAw=
Subject key identifier: F3:82:2D:79:4B:BC:99:4C:E7:82:18:95:07:D2:5D:C4:7D:9D:29:EF
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018A4637025F7FC329054AF49224BC778B31
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/84IteUu8mUznghiVB9JdxH2dKe8.roa
Signing time: Wed 30 Aug 2023 11:32:04 +0000
ROA not before: Wed 30 Aug 2023 11:32:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 81.181.68.0/23 maxlen: 24
194.102.36.0/22 maxlen: 24
81.181.72.0/23 maxlen: 24
217.156.16.0/23 maxlen: 24
217.156.26.0/24 maxlen: 24
80.97.40.0/21 maxlen: 24
81.181.104.0/21 maxlen: 24
85.122.120.0/22 maxlen: 22
85.122.124.0/22 maxlen: 24
217.156.48.0/22 maxlen: 24
81.181.14.0/23 maxlen: 24
81.181.26.0/23 maxlen: 24
194.102.148.0/23 maxlen: 24
194.102.160.0/23 maxlen: 24
85.121.48.0/21 maxlen: 24
194.102.174.0/23 maxlen: 24
194.102.180.0/22 maxlen: 24
85.120.224.0/21 maxlen: 24
80.97.96.0/23 maxlen: 24
217.156.94.0/23 maxlen: 24
80.96.54.0/23 maxlen: 24
80.96.102.0/23 maxlen: 24
85.121.168.0/22 maxlen: 24
194.102.224.0/22 maxlen: 24
80.96.44.0/23 maxlen: 24
81.180.98.0/23 maxlen: 24
85.121.232.0/21 maxlen: 24
194.105.12.0/22 maxlen: 24
194.153.230.0/23 maxlen: 24
81.180.228.0/23 maxlen: 24
194.153.244.0/23 maxlen: 24
85.120.84.0/23 maxlen: 24
81.180.254.0/23 maxlen: 24
81.180.174.0/23 maxlen: 24
85.121.208.0/21 maxlen: 24
80.96.156.0/22 maxlen: 24
194.153.225.0/24 maxlen: 24
193.226.76.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Sep 2023 11:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:46:37:02:5f:7f:c3:29:05:4a:f4:92:24:bc:77:8b:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Aug 30 11:32:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3822d794bbc994ce782189507d25dc47d9d29ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:55:4a:f2:57:b5:95:c3:bc:40:03:1c:ce:b1:
3d:67:01:5c:f3:9f:0e:75:59:6c:17:2d:d3:3c:f4:
78:7f:6a:eb:9f:9b:38:d7:e2:fd:19:c9:0b:14:a9:
02:67:a1:73:53:8b:ef:52:37:0f:6c:0c:e6:c5:ff:
cc:39:98:e2:5d:11:f6:26:4d:a9:40:96:09:5c:ce:
df:37:de:b0:30:f7:f4:3c:44:b0:7c:ea:ff:1c:96:
31:45:e8:1b:74:6c:21:21:90:0e:6d:f1:b7:56:2d:
51:e2:4a:50:57:82:90:1b:6b:27:58:00:5b:b2:56:
93:e2:37:63:66:85:89:a1:14:d4:10:b9:79:72:2c:
15:85:3c:ba:ad:fe:e1:d8:80:d9:0d:13:4f:09:93:
7a:de:bc:7c:3a:61:86:ba:74:bb:b4:18:b4:92:60:
d1:4e:dc:86:02:46:65:3c:80:9b:6b:33:f8:44:97:
28:c5:8f:d3:79:31:08:0a:20:a5:64:fd:eb:0a:57:
51:c7:b8:f1:07:67:72:9c:8a:8f:fb:86:ac:5f:58:
0c:90:e8:c7:4c:58:aa:6d:46:b9:01:60:21:e7:c4:
f0:67:e8:a1:7e:cc:92:d6:95:63:7c:46:55:90:d7:
2e:57:b6:e7:f7:04:12:49:8e:c0:75:62:49:ff:72:
f2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:82:2D:79:4B:BC:99:4C:E7:82:18:95:07:D2:5D:C4:7D:9D:29:EF
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/84IteUu8mUznghiVB9JdxH2dKe8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.44.0/23
80.96.54.0/23
80.96.102.0/23
80.96.156.0/22
80.97.40.0/21
80.97.96.0/23
81.180.98.0/23
81.180.174.0/23
81.180.228.0/23
81.180.254.0/23
81.181.14.0/23
81.181.26.0/23
81.181.68.0/23
81.181.72.0/23
81.181.104.0/21
85.120.84.0/23
85.120.224.0/21
85.121.48.0/21
85.121.168.0/22
85.121.208.0/21
85.121.232.0/21
85.122.120.0/21
193.226.76.0/22
194.102.36.0/22
194.102.148.0/23
194.102.160.0/23
194.102.174.0/23
194.102.180.0/22
194.102.224.0/22
194.105.12.0/22
194.153.225.0/24
194.153.230.0/23
194.153.244.0/23
217.156.16.0/23
217.156.26.0/24
217.156.48.0/22
217.156.94.0/23
Signature Algorithm: sha256WithRSAEncryption
85:7f:ab:3d:86:13:8a:c2:ad:77:b1:4c:d2:99:b5:6f:b1:da:
6c:e3:d3:74:85:ce:95:bb:ea:17:79:81:a0:54:8d:1d:e2:7c:
d7:fd:45:40:11:5f:68:23:3b:35:17:36:13:da:1e:de:0f:c9:
6e:ce:f2:14:65:db:c0:f2:43:75:7e:34:ca:a5:f2:4b:64:3e:
09:c3:78:b7:7b:2d:51:a1:fd:81:a0:66:76:a8:ad:19:08:e3:
5f:13:17:e6:b2:76:9d:80:6f:f2:74:b8:a7:77:8b:b0:4f:7c:
3f:0b:db:5b:3d:b8:d3:fa:74:4d:95:72:a0:8c:db:37:df:e4:
d6:56:29:29:12:d0:15:e6:10:df:a9:65:33:66:c0:a1:06:67:
59:bb:0d:f0:ca:f4:d2:e8:09:88:71:17:81:dc:2c:6a:ca:95:
8c:d0:ba:ce:b9:d4:a0:66:3d:f8:bd:66:79:2a:17:92:c5:38:
b9:e8:f9:0a:1a:47:f0:34:a5:2d:eb:a0:6d:39:52:e6:7c:ea:
b6:43:63:8e:1b:2e:0b:63:44:40:52:f3:40:5f:33:fe:24:f9:
af:76:d0:f1:c9:15:13:48:04:fd:76:07:bc:c4:a4:c3:66:bb:
5d:ad:08:c0:e9:bc:bc:29:0e:97:85:a7:c6:4d:97:5e:bb:0a:
42:c6:de:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:21 2024 by rpki-client on console-fra.rpki-client.org