Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/_EYWOizDn9p1EIZ2l4r3UTennmc.roa
File: _EYWOizDn9p1EIZ2l4r3UTennmc.roa (raw, json)
Hash identifier: j7nK0UF3DpBw531NcPeOo1oTbzhHm2mQFiyTSqZ7oco=
Subject key identifier: FC:46:16:3A:2C:C3:9F:DA:75:10:86:76:97:8A:F7:51:37:A7:9E:67
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018731C4BB75CFFCEB4A51D7581135819ACA
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/_EYWOizDn9p1EIZ2l4r3UTennmc.roa
Signing time: Thu 30 Mar 2023 09:06:29 +0000
ROA not before: Thu 30 Mar 2023 09:06:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44486
IP address blocks: 212.87.214.0/23 maxlen: 23
185.132.55.0/24 maxlen: 24
185.132.54.0/24 maxlen: 24
45.137.71.0/24 maxlen: 24
45.137.69.0/24 maxlen: 24
45.131.109.0/24 maxlen: 24
45.67.136.0/24 maxlen: 24
45.145.224.0/23 maxlen: 23
45.91.251.0/24 maxlen: 24
5.180.252.0/23 maxlen: 23
5.180.254.0/23 maxlen: 23
5.253.244.0/24 maxlen: 24
45.134.108.0/24 maxlen: 24
45.134.108.0/23 maxlen: 23
45.134.109.0/24 maxlen: 24
45.84.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Aug 2023 12:38:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:31:c4:bb:75:cf:fc:eb:4a:51:d7:58:11:35:81:9a:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Mar 30 09:06:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc46163a2cc39fda75108676978af75137a79e67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:92:cc:db:20:21:ae:39:43:f2:08:af:0d:33:
8a:5f:01:67:c6:2d:5d:3e:a4:f5:c5:23:de:cf:dc:
be:25:03:9d:f2:08:bf:eb:94:75:18:3e:33:84:72:
cc:49:5f:9d:75:2d:7a:47:1d:53:b3:40:35:1d:88:
36:34:b2:c0:9a:e7:18:7c:50:0f:10:5b:5e:50:85:
8e:ff:1f:47:4c:cc:ba:6d:12:b8:c4:ed:f3:4f:5a:
f8:c9:87:7b:52:89:7f:1e:0d:96:fb:f3:e3:f0:14:
72:53:af:35:a2:0a:e2:cc:8d:2f:88:35:ba:de:d2:
d9:3a:01:00:6d:a3:95:2c:4e:a9:4b:fc:b7:22:b9:
2b:96:5e:7c:06:5c:22:f5:1a:e2:2d:71:cf:f3:31:
c8:73:6e:b0:e1:40:86:5d:32:3b:a3:ce:7b:c4:e1:
aa:5c:aa:4a:10:b2:22:26:30:ec:84:01:aa:db:e2:
7c:5a:b4:15:31:b7:1f:1e:0e:cf:48:82:8d:d9:40:
8b:73:95:3b:c5:da:4e:ec:cc:c9:6b:9d:36:cc:0e:
4c:82:da:9b:8d:cc:e4:a4:d9:a9:32:2a:30:3c:63:
61:23:41:eb:0a:9a:98:b3:95:02:a6:fd:11:f1:a4:
fc:1d:df:a8:48:54:3e:41:e5:a9:43:d7:8b:51:cf:
27:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:46:16:3A:2C:C3:9F:DA:75:10:86:76:97:8A:F7:51:37:A7:9E:67
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/_EYWOizDn9p1EIZ2l4r3UTennmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.252.0/22
5.253.244.0/24
45.67.136.0/24
45.84.199.0/24
45.91.251.0/24
45.131.109.0/24
45.134.108.0/23
45.137.69.0/24
45.137.71.0/24
45.145.224.0/23
185.132.54.0/23
212.87.214.0/23
Signature Algorithm: sha256WithRSAEncryption
36:a6:82:02:4d:dc:47:2d:83:b8:75:90:55:4a:4c:99:8d:73:
c1:fa:f6:c9:ca:65:fd:d0:fe:17:d1:73:3e:3a:1c:05:b9:5d:
a1:5f:38:36:83:84:88:c7:a3:e7:27:cc:a6:8c:f1:75:be:95:
bd:0e:fe:2d:21:d9:dc:c4:be:68:f5:b2:d1:13:e5:4c:57:1f:
ba:8d:53:76:43:0b:95:25:7b:56:0c:5d:ab:92:16:a0:ad:2d:
bf:5a:6f:99:24:5a:d3:18:f9:07:33:29:c4:02:40:ac:5f:c4:
ab:ec:2f:a9:9d:e3:85:0e:4b:61:2d:cd:98:dc:7c:f7:b2:21:
3c:67:d1:71:e7:3b:60:ee:61:d8:d1:2c:e0:d4:79:cf:89:43:
c5:42:58:63:ce:a3:af:14:84:28:a8:f0:1d:7f:c7:0a:09:0e:
a6:db:17:c2:fe:fd:5b:72:d1:7a:45:79:cc:dc:82:f1:0f:f1:
04:bc:73:85:4a:d0:13:64:36:66:19:60:5c:cb:6e:1e:f9:ea:
10:2c:d3:68:64:c3:73:ff:84:9e:08:9c:9c:25:c4:e3:39:ee:
b5:fb:ed:66:90:a4:8b:f8:7e:d2:9e:a3:9e:ed:c4:18:c1:a9:
13:a8:bd:08:17:f3:c3:a6:df:8c:0d:d0:a8:49:c8:0e:e8:d1:
0a:4b:61:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org