Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/H-XcIRzdENjcVSsIXZwp6tWs5Y8.roa
File: H-XcIRzdENjcVSsIXZwp6tWs5Y8.roa (raw, json)
Hash identifier: 4n6+5NOToB+08RFnUJlJIDYOgQK1GhI4uw2clGFMCKY=
Subject key identifier: 1F:E5:DC:21:1C:DD:10:D8:DC:55:2B:08:5D:9C:29:EA:D5:AC:E5:8F
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018BA64B04A63E47B7DA77C7BE19697B4C14
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/H-XcIRzdENjcVSsIXZwp6tWs5Y8.roa
Signing time: Mon 06 Nov 2023 20:20:16 +0000
ROA not before: Mon 06 Nov 2023 20:20:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62206
IP address blocks: 5.181.87.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
195.211.190.0/24 maxlen: 24
45.88.138.0/24 maxlen: 24
45.88.136.0/24 maxlen: 24
185.200.63.0/24 maxlen: 24
185.200.62.0/24 maxlen: 24
194.242.96.0/22 maxlen: 22
194.242.97.0/24 maxlen: 24
193.57.43.0/24 maxlen: 24
45.144.212.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
45.132.181.0/24 maxlen: 24
45.132.180.0/24 maxlen: 24
45.94.168.0/22 maxlen: 22
45.94.170.0/24 maxlen: 24
185.43.248.0/24 maxlen: 24
185.43.251.0/24 maxlen: 24
185.43.249.0/24 maxlen: 24
193.30.243.0/24 maxlen: 24
193.30.242.0/24 maxlen: 24
77.83.39.0/24 maxlen: 24
85.209.120.0/22 maxlen: 24
85.209.120.0/23 maxlen: 24
85.209.123.0/24 maxlen: 24
85.209.122.0/24 maxlen: 24
45.9.29.0/24 maxlen: 24
195.177.92.0/24 maxlen: 24
195.177.94.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
193.30.240.0/24 maxlen: 24
2a10:dfc0::/29 maxlen: 29
2a07:9200::/29 maxlen: 29
2a11:580::/29 maxlen: 29
2a0c:a580::/29 maxlen: 29
2a01:7120::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 07 Nov 2023 08:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a6:4b:04:a6:3e:47:b7:da:77:c7:be:19:69:7b:4c:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Nov 6 20:20:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fe5dc211cdd10d8dc552b085d9c29ead5ace58f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c8:dd:0b:33:c2:7f:b2:de:c0:c8:af:a4:4b:
3a:ba:1e:48:75:bf:e3:c4:c4:e3:4d:67:bf:58:22:
c4:61:02:5e:ae:3b:ea:f5:1c:c6:f4:cf:d7:cd:13:
69:85:ed:57:7d:13:d2:bf:e2:5b:2f:bd:a1:bb:0d:
11:f3:2d:51:72:42:07:a0:e4:51:d3:dc:e5:9b:16:
92:54:e6:e8:40:70:54:1c:bb:9b:5d:2d:da:d8:19:
9e:3c:91:b9:42:d3:3a:fe:a5:f4:e5:e7:4d:6e:d5:
5a:2b:49:5e:cc:33:4c:a4:44:55:dc:d2:9f:20:7d:
e5:45:af:cc:7d:10:1f:3c:d4:dd:6b:c3:ed:be:1e:
57:e5:74:89:25:e5:1d:83:05:73:5b:c4:39:4b:15:
9f:d3:33:0f:a0:1a:ff:06:90:59:ec:74:f3:be:4a:
60:fc:93:3f:b6:22:f9:95:29:ce:dc:6b:c4:4d:83:
0c:5e:28:11:33:bc:db:ee:dd:95:9a:a5:27:e9:74:
4f:78:df:83:10:1b:16:62:95:8c:a7:59:46:ec:2d:
fb:e7:ff:78:e3:d3:ef:2e:e3:21:ad:27:7d:04:00:
e3:0e:91:78:c8:2a:9f:e6:86:63:44:00:79:0c:b3:
17:12:5f:e6:05:ca:8c:37:74:09:28:72:c2:86:31:
ce:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:E5:DC:21:1C:DD:10:D8:DC:55:2B:08:5D:9C:29:EA:D5:AC:E5:8F
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/H-XcIRzdENjcVSsIXZwp6tWs5Y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.87.0/24
45.9.29.0/24
45.88.136.0/24
45.88.138.0/24
45.94.168.0/22
45.132.180.0/22
45.144.212.0/24
77.83.37.0/24
77.83.39.0/24
85.209.120.0/22
185.43.248.0/23
185.43.251.0/24
185.200.62.0/23
193.30.240.0/24
193.30.242.0/23
193.57.43.0/24
194.242.96.0/22
195.177.92.0-195.177.94.255
195.211.188.0/22
IPv6:
2a01:7120::/32
2a07:9200::/29
2a0c:a580::/29
2a10:dfc0::/29
2a11:580::/29
Signature Algorithm: sha256WithRSAEncryption
3c:d3:f7:89:26:cb:c0:08:c1:16:7a:a0:4b:be:9c:db:83:df:
1e:a4:89:ed:bf:05:28:59:32:be:15:01:1a:08:73:51:e1:5f:
e9:88:7d:0e:04:b3:23:da:0f:7d:85:99:3a:45:3d:bf:e6:be:
ce:78:94:1b:93:72:3a:50:b3:07:d7:4a:df:2a:dc:08:05:d5:
db:bd:a5:51:be:c6:57:30:b2:e7:2d:d3:ae:f3:d4:d1:cf:96:
4e:5a:fa:20:07:70:5a:e4:c9:16:84:fa:54:71:4d:8c:3e:4e:
11:57:7b:84:67:2a:23:ec:7c:13:d9:c3:cd:e3:14:cb:6b:ae:
0e:cc:8c:4e:ab:e7:a9:80:d0:28:d4:3c:47:c4:1b:e0:e5:c4:
94:7d:49:7a:76:e1:74:95:4a:db:78:3c:e5:39:98:29:1f:4c:
f7:9e:b8:ff:96:61:00:10:26:f7:a2:f5:11:82:96:21:52:46:
3a:3a:51:35:f2:7b:f3:59:0f:7e:b6:d8:09:b5:e5:07:ff:d0:
54:c2:60:ea:f2:9d:66:b7:46:7a:52:1d:bc:1c:7f:c8:35:60:
d3:ab:86:ff:91:ea:7b:7a:3e:0b:cf:b4:09:92:11:06:76:91:
7e:1b:59:11:4a:1c:4f:7b:14:fc:6c:22:26:42:ae:d8:70:74:
0b:26:9f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org