Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/T-y73bXoN4z0MlCkFYLMtqqttUk.roa
File: T-y73bXoN4z0MlCkFYLMtqqttUk.roa (raw, json)
Hash identifier: MvMCLI5Oh2H69Hp5REgpYYBaIwhUeDSkGeCO+UheGgY=
Subject key identifier: 4F:EC:BB:DD:B5:E8:37:8C:F4:32:50:A4:15:82:CC:B6:AA:AD:B5:49
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018E9963E741D904E5B3223FC38F70A1213A
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/T-y73bXoN4z0MlCkFYLMtqqttUk.roa
Signing time: Mon 01 Apr 2024 11:20:45 +0000
ROA not before: Mon 01 Apr 2024 11:20:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8708
IP address blocks: 80.96.12.0/24 maxlen: 24
80.96.43.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.69.0/24 maxlen: 24
80.96.72.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.82.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.30.0/24 maxlen: 24
81.181.64.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
81.181.246.0/24 maxlen: 24
85.120.20.0/24 maxlen: 24
85.120.23.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
193.230.158.0/24 maxlen: 24
193.230.217.0/24 maxlen: 24
193.230.229.0/24 maxlen: 24
193.231.75.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.194.0/24 maxlen: 24
193.231.226.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
194.102.98.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
194.153.224.0/24 maxlen: 24
217.156.14.0/24 maxlen: 24
217.156.41.0/24 maxlen: 24
217.156.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Jul 2024 08:42:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:99:63:e7:41:d9:04:e5:b3:22:3f:c3:8f:70:a1:21:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Apr 1 11:20:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4fecbbddb5e8378cf43250a41582ccb6aaadb549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ed:0d:91:fb:16:a4:5d:90:2b:19:66:e9:50:
79:6b:70:e7:30:c9:04:9a:4c:97:f1:82:90:62:1b:
36:fd:9a:68:fa:30:a2:a0:b6:1d:66:3d:78:86:0b:
dd:a4:3d:68:05:fb:ea:06:c7:3c:75:51:4c:0a:a7:
a8:ed:02:f9:59:10:80:87:1f:ec:b4:19:48:78:da:
08:7c:f2:45:52:f6:74:4b:3d:b0:cb:dd:46:fd:e2:
0c:4c:d5:10:fd:9f:fb:f6:8d:ca:9a:66:d1:86:54:
3c:af:96:2e:fa:bf:c5:20:4e:a9:14:9c:df:3a:d0:
72:7e:68:57:d2:72:fd:ee:54:a0:b2:47:42:35:41:
94:fb:ee:5b:97:f8:97:0e:94:c8:c1:15:00:8a:6b:
96:a3:c8:1d:fa:2b:d0:0e:54:41:af:d7:73:20:c3:
e7:f9:17:9f:26:92:ed:e7:26:3e:e2:39:6e:f0:82:
db:9f:86:97:0f:dd:0f:da:33:be:6f:cb:d2:e2:98:
c7:a0:fa:cd:04:58:26:2d:8c:be:dd:5a:20:c2:e4:
b3:1b:15:5b:12:5b:3a:56:db:9d:a4:fd:d2:0c:ca:
7a:d8:80:52:0d:ac:0c:29:a2:cb:d9:0b:80:b1:68:
da:95:55:b2:ad:2c:10:29:6c:17:76:6d:c0:c2:fa:
ac:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:EC:BB:DD:B5:E8:37:8C:F4:32:50:A4:15:82:CC:B6:AA:AD:B5:49
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/T-y73bXoN4z0MlCkFYLMtqqttUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.43.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.69.0/24
80.96.72.0/24
80.96.79.0/24
80.96.82.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.30.0/24
81.181.64.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
81.181.246.0/24
85.120.20.0/24
85.120.23.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.230.158.0/24
193.230.217.0/24
193.230.229.0/24
193.231.75.0/24
193.231.108.0/24
193.231.184.0/24
193.231.194.0/24
193.231.226.0/24
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.98.0/24
194.102.134.0/24
194.102.229.0/24
194.153.224.0/24
217.156.14.0/24
217.156.41.0/24
217.156.92.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:6c:1d:96:0a:11:3f:e2:b7:de:0b:1b:3f:5d:d1:dd:93:c1:
3c:34:78:cc:4e:b7:a9:25:c6:61:c0:7e:95:01:42:a6:6b:2e:
29:da:04:3b:19:35:a0:2a:1a:2d:9e:54:c5:0e:b6:7e:e8:76:
49:28:9b:7c:a7:cc:80:69:de:f2:1c:f8:00:e2:35:3f:3a:32:
73:bf:04:1f:c8:37:64:3c:51:5b:b7:20:9b:0e:e6:e2:d0:71:
c4:8c:07:d1:33:ef:43:a6:38:a1:d3:21:cb:08:4d:31:58:31:
f3:7f:f8:93:d8:7c:8f:8e:2c:2b:39:f1:55:76:7c:d0:2e:a3:
7c:f2:e2:57:bb:02:12:94:7f:bd:6f:57:36:03:68:36:9f:ac:
b7:fc:15:f2:d8:0a:fb:24:be:03:21:90:d7:95:bb:f2:07:b1:
6c:d9:f5:25:4f:cb:d6:95:f4:31:c5:18:68:11:f1:ff:26:b3:
86:d8:d9:23:00:81:03:a3:de:22:01:18:51:94:71:d7:c5:32:
29:fc:01:d7:0a:56:86:a4:7a:fd:a2:12:89:05:05:7b:82:91:
86:1c:99:8d:8e:6c:87:29:b7:df:9c:25:8e:a7:43:54:d8:50:
32:18:e1:53:27:14:23:92:d0:b7:66:3f:82:8d:da:f3:71:14:
14:4c:bb:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 4 10:25:22 2024 by rpki-client on console-ams.rpki-client.org