Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/iGj8KH84e5L0YmGv2ldI9oBiheo.roa
File: iGj8KH84e5L0YmGv2ldI9oBiheo.roa (raw, json)
Hash identifier: OO3c6naDY3kEJwlIXA8bpCrwy5wsh816d639c9iGOpE=
Subject key identifier: 88:68:FC:28:7F:38:7B:92:F4:62:61:AF:DA:57:48:F6:80:62:85:EA
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018BD2A086F065274A8158A88E08BF68A1CF
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/iGj8KH84e5L0YmGv2ldI9oBiheo.roa
Signing time: Wed 15 Nov 2023 10:56:57 +0000
ROA not before: Wed 15 Nov 2023 10:56:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62206
IP address blocks: 5.181.87.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
195.211.190.0/24 maxlen: 24
45.88.138.0/24 maxlen: 24
45.88.136.0/24 maxlen: 24
185.200.63.0/24 maxlen: 24
185.200.62.0/24 maxlen: 24
194.242.96.0/22 maxlen: 22
194.242.97.0/24 maxlen: 24
193.57.43.0/24 maxlen: 24
45.144.212.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
45.132.181.0/24 maxlen: 24
45.94.168.0/22 maxlen: 22
45.94.170.0/24 maxlen: 24
185.43.248.0/24 maxlen: 24
185.43.251.0/24 maxlen: 24
185.43.249.0/24 maxlen: 24
193.30.243.0/24 maxlen: 24
193.30.242.0/24 maxlen: 24
77.83.39.0/24 maxlen: 24
85.209.120.0/22 maxlen: 24
85.209.120.0/23 maxlen: 24
85.209.123.0/24 maxlen: 24
85.209.122.0/24 maxlen: 24
45.9.29.0/24 maxlen: 24
195.177.92.0/24 maxlen: 24
195.177.94.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
193.30.240.0/24 maxlen: 24
2a10:dfc0::/29 maxlen: 29
2a07:9200::/29 maxlen: 29
2a11:580::/29 maxlen: 29
2a0c:a580::/29 maxlen: 29
2a01:7120::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 16 Nov 2023 11:44:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d2:a0:86:f0:65:27:4a:81:58:a8:8e:08:bf:68:a1:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Nov 15 10:56:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8868fc287f387b92f46261afda5748f6806285ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:15:94:7a:c1:76:e5:ad:a4:da:f5:40:d8:5c:
0d:8f:52:e7:bd:75:03:9e:45:c7:da:f6:b1:03:93:
74:b2:2c:a9:5c:61:e3:af:56:01:26:86:b0:8a:48:
11:0a:a7:e3:11:4e:94:16:cd:c4:2e:1f:c3:d1:c5:
d7:ca:a4:7e:d6:fc:82:dd:4e:ce:90:6e:60:e9:e9:
07:b3:09:03:3a:5d:96:bb:d2:1e:9f:59:08:4f:27:
cd:1f:57:0a:6d:c5:a7:cc:20:be:9c:c8:b3:a9:53:
6d:df:49:3f:03:98:44:b6:a1:9f:c8:52:66:91:a5:
2b:2e:15:59:78:2d:21:42:ea:29:fb:20:51:a0:1e:
88:a3:e3:91:7f:3a:76:e3:f0:40:47:41:4b:4d:7d:
aa:1a:10:50:a1:17:4d:e0:5b:30:49:62:da:a1:ad:
d1:70:d0:82:f7:d0:68:be:b2:44:31:69:2e:b9:1c:
46:55:59:bd:ad:99:93:68:00:8a:24:08:e0:85:45:
f9:87:0a:ac:e1:55:0e:2c:e7:dc:7c:67:42:2b:7e:
af:86:c4:d3:62:8d:9a:24:e0:ff:b7:64:c3:04:45:
7b:85:f2:d4:e0:cc:4f:66:ef:f7:f7:fd:40:5d:f4:
9f:d0:c6:05:b2:19:f1:da:d2:fa:83:e0:f9:80:29:
46:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:68:FC:28:7F:38:7B:92:F4:62:61:AF:DA:57:48:F6:80:62:85:EA
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/iGj8KH84e5L0YmGv2ldI9oBiheo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.87.0/24
45.9.29.0/24
45.88.136.0/24
45.88.138.0/24
45.94.168.0/22
45.132.181.0-45.132.183.255
45.144.212.0/24
77.83.37.0/24
77.83.39.0/24
85.209.120.0/22
185.43.248.0/23
185.43.251.0/24
185.200.62.0/23
193.30.240.0/24
193.30.242.0/23
193.57.43.0/24
194.242.96.0/22
195.177.92.0-195.177.94.255
195.211.188.0/22
IPv6:
2a01:7120::/32
2a07:9200::/29
2a0c:a580::/29
2a10:dfc0::/29
2a11:580::/29
Signature Algorithm: sha256WithRSAEncryption
71:a3:02:38:2f:a4:f0:7b:0d:e6:8d:50:08:55:60:17:a5:44:
eb:38:bf:10:3c:c3:81:7d:24:92:93:89:5c:f8:56:eb:7c:9e:
c4:9d:d7:b5:16:52:c9:e9:8a:a5:6e:49:61:f6:30:a3:0e:d0:
54:5e:5a:59:26:e7:e7:bd:82:68:c5:cc:00:f6:28:af:7d:ed:
47:59:f3:40:dc:b6:83:4a:ff:75:9c:7a:9d:47:6b:3e:0d:91:
04:e9:fe:9b:7e:cf:b7:43:12:2c:27:9c:48:04:e0:a2:66:90:
b7:19:4c:f1:1f:5b:af:44:b2:bb:d8:43:ba:85:7e:32:a8:c5:
9d:1d:1e:15:67:0e:4d:b0:c3:96:42:03:c8:13:4d:5a:40:11:
57:dd:18:74:db:48:13:0f:09:00:01:82:66:2c:39:88:c2:10:
c6:92:09:c9:bf:a6:85:17:63:a1:a0:b2:10:78:05:6c:bb:49:
b4:cd:8c:ae:9e:43:5c:ee:18:82:dc:49:16:6a:0a:49:4d:6f:
af:cc:b4:0a:1f:b6:23:1f:f8:95:56:b2:69:8a:bc:a3:af:b3:
79:b2:17:71:ee:de:db:8c:f0:9a:de:38:2d:c1:9d:e6:ce:24:
f8:b5:30:cb:4c:5d:aa:a6:bf:2c:da:84:2e:55:1d:cb:0a:5f:
ae:9c:a4:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:19 2024 by rpki-client on console-ams.rpki-client.org