Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/M_2Deqh2e-5nrvKbIBKDQdyPmsU.roa
File: M_2Deqh2e-5nrvKbIBKDQdyPmsU.roa (raw, json)
Hash identifier: XJAvsWlHjGL8pqpnE5YGCQ304vt/UhcaX4E13b53sSo=
Subject key identifier: 33:FD:83:7A:A8:76:7B:EE:67:AE:F2:9B:20:12:83:41:DC:8F:9A:C5
Certificate issuer: /CN=0fe39b41074c7d6adc8ee274e239f7b8eb3585e9
Certificate serial: 018E512D93020A2C3D102BD29E65B3CC2988
Authority key identifier: 0F:E3:9B:41:07:4C:7D:6A:DC:8E:E2:74:E2:39:F7:B8:EB:35:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-ObQQdMfWrcjuJ04jn3uOs1hek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/M_2Deqh2e-5nrvKbIBKDQdyPmsU.roa
Signing time: Mon 18 Mar 2024 10:48:44 +0000
ROA not before: Mon 18 Mar 2024 10:48:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12338
IP address blocks: 85.84.0.0/16 maxlen: 16
85.84.16.0/21 maxlen: 21
85.84.168.0/21 maxlen: 21
85.84.176.0/21 maxlen: 21
85.85.0.0/16 maxlen: 16
85.85.16.0/21 maxlen: 21
85.85.48.0/21 maxlen: 21
85.85.144.0/21 maxlen: 21
178.60.64.0/18 maxlen: 18
178.60.64.0/21 maxlen: 21
178.60.64.0/22 maxlen: 22
178.60.68.0/24 maxlen: 24
178.60.69.0/24 maxlen: 24
178.60.70.0/24 maxlen: 24
178.60.71.0/24 maxlen: 24
178.60.72.0/24 maxlen: 24
178.60.73.0/24 maxlen: 24
178.60.76.0/22 maxlen: 22
178.60.80.0/22 maxlen: 22
178.60.96.0/21 maxlen: 21
178.60.104.0/22 maxlen: 22
178.60.108.0/22 maxlen: 22
178.60.112.0/22 maxlen: 22
178.60.116.0/24 maxlen: 24
178.60.117.0/24 maxlen: 24
178.60.118.0/24 maxlen: 24
178.60.120.0/24 maxlen: 24
178.60.121.0/24 maxlen: 24
178.60.122.0/23 maxlen: 23
185.116.180.0/22 maxlen: 22
212.8.64.0/18 maxlen: 18
212.55.0.0/19 maxlen: 19
212.142.128.0/17 maxlen: 17
2a00:7b00::/29 maxlen: 29
2a00:7b00::/40 maxlen: 40
2a00:7b00:10::/48 maxlen: 48
2a00:7b00:11::/48 maxlen: 48
2a00:7b00:12::/48 maxlen: 48
2a00:7b00:13::/48 maxlen: 48
2a00:7b00:14::/48 maxlen: 48
2a00:7b00:15::/48 maxlen: 48
2a00:7b00:16::/48 maxlen: 48
2a00:7b00:17::/48 maxlen: 48
2a00:7b00:18::/48 maxlen: 48
2a00:7b00:19::/48 maxlen: 48
2a00:7b00:c10::/48 maxlen: 48
2a00:7b00:b000::/40 maxlen: 40
2a00:7b00:c000::/40 maxlen: 40
2a00:7b00:c800::/40 maxlen: 40
2a00:7b00:d000::/40 maxlen: 40
2a00:7b00:d800::/40 maxlen: 40
2a00:7b00:e000::/40 maxlen: 40
2a00:7b00:e800::/40 maxlen: 40
2a00:7b00:ef00::/40 maxlen: 40
2a00:7b00:f000::/40 maxlen: 40
2a00:7b00:f800::/40 maxlen: 40
2a00:7b00:ff00::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 25 Mar 2024 08:56:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:51:2d:93:02:0a:2c:3d:10:2b:d2:9e:65:b3:cc:29:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fe39b41074c7d6adc8ee274e239f7b8eb3585e9
Validity
Not Before: Mar 18 10:48:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33fd837aa8767bee67aef29b20128341dc8f9ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1e:a2:49:88:2a:95:47:90:98:8b:ee:d7:fb:
3b:a9:71:2a:3e:a5:16:ed:66:60:35:a0:18:eb:48:
04:ff:31:03:87:5b:eb:a4:bb:4f:2f:41:34:cb:64:
f3:94:2a:36:be:7c:44:0e:1e:e1:02:2a:52:71:b8:
6e:88:66:bb:3b:60:6d:86:b1:32:72:82:10:cb:f5:
d9:5f:9b:af:fb:5c:52:10:10:28:f4:44:c4:fc:03:
d2:61:f0:44:3a:24:dc:60:f7:ab:8a:a4:a4:f4:d5:
3d:26:b9:2f:7f:21:5a:aa:92:9f:1a:1b:4f:fd:cb:
5f:bf:9a:1b:31:5d:4d:4f:85:7b:90:02:d4:14:5a:
a7:ce:63:27:65:01:13:1f:3a:90:a6:84:0e:cb:ac:
77:b0:9d:12:7c:cf:90:a9:31:f1:87:6f:e9:52:96:
be:18:7a:77:42:e5:e4:f3:a9:56:e0:7a:92:02:c8:
87:e2:35:df:3f:32:5d:c0:8c:9c:3b:ee:d8:0b:77:
9a:4c:64:c5:fc:78:67:74:3e:16:1b:da:cb:ea:b9:
53:72:27:3e:34:cc:07:ae:b6:89:b1:c7:c4:64:4d:
cc:19:ba:a3:32:8c:a5:91:e5:c9:dd:9f:49:b8:56:
f5:b6:00:cd:e8:e4:36:4b:7f:2d:74:e0:b2:93:36:
8d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:FD:83:7A:A8:76:7B:EE:67:AE:F2:9B:20:12:83:41:DC:8F:9A:C5
X509v3 Authority Key Identifier:
keyid:0F:E3:9B:41:07:4C:7D:6A:DC:8E:E2:74:E2:39:F7:B8:EB:35:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-ObQQdMfWrcjuJ04jn3uOs1hek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/M_2Deqh2e-5nrvKbIBKDQdyPmsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/D-ObQQdMfWrcjuJ04jn3uOs1hek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.84.0.0/15
178.60.64.0/18
185.116.180.0/22
212.8.64.0/18
212.55.0.0/19
212.142.128.0/17
IPv6:
2a00:7b00::/29
Signature Algorithm: sha256WithRSAEncryption
93:7d:3f:dc:68:5b:f2:b6:35:d3:44:51:e7:ab:ab:ec:fa:c1:
57:55:69:b6:c9:c2:d8:b3:92:30:86:eb:4d:22:fb:70:d1:a4:
91:cb:a1:5e:41:e6:56:7b:d0:76:54:17:32:fd:5b:7c:9d:e5:
c1:97:00:a3:99:33:41:31:fb:5e:49:a1:66:f7:d4:2d:51:de:
aa:bd:5c:c2:53:9d:9b:2f:21:1b:85:75:32:2b:4b:07:a6:eb:
6b:99:b6:6e:af:4e:56:7b:01:c5:4c:d1:ba:3a:67:77:1d:46:
73:a8:1c:15:8f:ed:a6:53:92:de:44:61:e2:0f:58:4a:fb:ce:
92:f4:38:10:79:52:de:97:da:71:15:d3:86:9e:cf:44:7b:1d:
aa:0e:f9:17:10:88:3f:36:c5:11:cb:2e:f0:79:18:a7:a0:2c:
c3:33:25:7a:9a:2b:92:db:84:12:f7:0e:07:60:8c:91:ca:60:
0f:59:da:b1:2e:f3:8b:c0:2d:84:d3:42:74:fa:0f:05:ba:bd:
c9:32:fd:7a:65:e9:da:17:f7:c1:49:c4:d9:95:74:48:7d:e4:
d2:6a:4c:df:f6:21:2b:47:bb:e6:94:83:1b:0b:55:22:f1:37:
18:67:db:40:23:34:12:f6:53:df:4b:d8:27:46:e5:4c:fb:12:
be:24:2b:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 25 12:23:07 2024 by rpki-client on console-fra.rpki-client.org