Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/hJyeS39LAsemFM3dVuguvxhAA4I.roa
File: hJyeS39LAsemFM3dVuguvxhAA4I.roa (raw, json)
Hash identifier: oi8V+RXGbC1guucWBQKg5uJvvjY9AUXxJF8c0RRV4/A=
Subject key identifier: 84:9C:9E:4B:7F:4B:02:C7:A6:14:CD:DD:56:E8:2E:BF:18:40:03:82
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018B86E1F07084AAF5F68DBBF737F56DE0CA
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/hJyeS39LAsemFM3dVuguvxhAA4I.roa
Signing time: Tue 31 Oct 2023 17:57:15 +0000
ROA not before: Tue 31 Oct 2023 17:57:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.226.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
217.156.41.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
81.181.30.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
81.181.64.0/24 maxlen: 24
193.231.194.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
193.230.158.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
194.102.98.0/24 maxlen: 24
194.102.106.0/23 maxlen: 23
217.156.92.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.69.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.72.0/24 maxlen: 24
80.96.82.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
81.181.246.0/24 maxlen: 24
193.230.217.0/24 maxlen: 24
193.230.229.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.43.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
85.120.20.0/24 maxlen: 24
85.120.23.0/24 maxlen: 24
193.231.75.0/24 maxlen: 24
194.153.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:86:e1:f0:70:84:aa:f5:f6:8d:bb:f7:37:f5:6d:e0:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Oct 31 17:57:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=849c9e4b7f4b02c7a614cddd56e82ebf18400382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:11:41:3f:b3:15:8b:c9:02:08:7e:5d:21:27:
74:23:bb:de:77:0e:ed:79:62:c7:13:06:fe:e2:12:
1b:8a:db:4d:ee:07:2d:b1:bd:c2:f5:80:25:ef:47:
08:7f:5a:e7:fb:ce:83:c3:72:83:bf:25:43:d6:44:
a8:cb:92:a1:c8:f2:9e:8e:34:0b:ab:c9:70:7e:95:
93:bb:84:5c:37:84:bb:b4:d3:2c:f4:68:4f:55:39:
9f:e5:f2:9a:48:2c:9c:76:c2:bc:8a:dd:2b:74:f2:
b9:4f:2e:60:67:0a:dc:ee:d7:72:17:44:78:5b:4f:
74:bb:b8:54:0b:85:8a:b6:ad:fa:22:41:bc:2b:c7:
76:71:60:3d:fd:45:e8:65:4c:08:10:7f:2a:5e:6c:
ce:dc:d4:83:7b:9e:c5:d1:c8:4b:e2:e0:44:e1:a8:
8b:1c:bc:c4:e4:a1:fb:e0:21:fc:b7:31:c0:f2:11:
39:ed:d4:e0:c3:e7:b5:fb:d3:0d:eb:df:6d:8c:0b:
63:9d:20:9d:b6:ea:c5:23:69:ff:88:21:d2:39:55:
6a:ba:4a:c5:3d:0d:04:a7:bb:cc:7b:60:ca:0c:ca:
18:50:8b:4a:2d:e0:2b:2d:b0:9a:c7:7f:5c:ab:06:
f8:08:67:4d:0f:19:4d:db:9d:f5:27:fb:91:88:65:
56:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:9C:9E:4B:7F:4B:02:C7:A6:14:CD:DD:56:E8:2E:BF:18:40:03:82
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/hJyeS39LAsemFM3dVuguvxhAA4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.43.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.69.0/24
80.96.72.0/24
80.96.79.0/24
80.96.82.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.30.0/24
81.181.64.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
81.181.246.0/24
85.120.20.0/24
85.120.23.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.230.158.0/24
193.230.217.0/24
193.230.229.0/24
193.231.75.0/24
193.231.108.0/24
193.231.184.0/24
193.231.194.0/24
193.231.226.0/24
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.98.0/24
194.102.106.0/23
194.102.134.0/24
194.102.229.0/24
194.153.224.0/24
217.156.14.0/24
217.156.41.0/24
217.156.92.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:af:57:e1:66:bb:65:6e:c7:af:01:4c:ec:18:00:28:6d:3a:
5b:de:14:06:1f:b4:e8:ed:af:bc:43:18:70:de:a7:f9:7a:8b:
fe:f5:34:71:11:d0:de:95:19:7c:3f:6e:62:ce:1d:9f:62:25:
df:8a:a6:ed:b4:16:c1:c1:c1:3c:30:5c:0d:5d:7c:a4:64:a3:
f0:a3:d2:df:26:9e:47:8c:9a:18:c5:8e:03:27:01:1a:2a:d5:
7a:b3:f4:76:3d:e1:71:ec:0b:77:9b:f8:39:5b:76:37:04:aa:
74:5e:a9:c0:e0:c8:48:5f:6e:04:61:73:d3:c0:e1:c8:79:a3:
8e:ba:29:28:6f:99:9b:33:15:46:61:46:8c:6b:a4:0e:b8:32:
3d:5c:e0:74:7e:b5:7a:17:84:12:05:55:2b:58:9e:4c:f6:e0:
8a:c5:ff:75:db:a0:38:7e:a0:fa:47:60:ce:c8:52:5b:c0:3a:
5c:9f:99:dd:82:8d:81:22:d9:95:58:df:4f:a0:27:49:bb:96:
71:33:fa:cf:51:c4:e3:63:0d:1c:dd:38:76:5b:5e:1b:12:f3:
5a:a7:d2:4e:00:80:d3:a2:a4:98:0a:9c:27:a0:56:b7:1b:e0:
95:25:4a:19:a8:0f:0d:6f:3c:34:c9:50:0e:f2:63:09:99:b6:
8d:ad:79:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org