Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/6703ca-ced4-4207-ab05-4a6f55771bd1/1/2KBhlaB3EYDemsA5Y6jm6UWV-Aw.roa
File: 2KBhlaB3EYDemsA5Y6jm6UWV-Aw.roa (raw, json)
Hash identifier: JxJsZbYJhdmKgqcKJ7/X4bgd5CExwauIAzVVY7f4bmc=
Subject key identifier: D8:A0:61:95:A0:77:11:80:DE:9A:C0:39:63:A8:E6:E9:45:95:F8:0C
Certificate issuer: /CN=bab453d97ba2f4a045843e6b4a953b3e5106eaf2
Certificate serial: 019173DBAE7705F6411A48D34F285E378A4B
Authority key identifier: BA:B4:53:D9:7B:A2:F4:A0:45:84:3E:6B:4A:95:3B:3E:51:06:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/urRT2Xui9KBFhD5rSpU7PlEG6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/6703ca-ced4-4207-ab05-4a6f55771bd1/1/2KBhlaB3EYDemsA5Y6jm6UWV-Aw.roa
Signing time: Wed 21 Aug 2024 07:34:22 +0000
ROA not before: Wed 21 Aug 2024 07:34:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29385
IP address blocks: 94.230.224.0/24 maxlen: 24
94.230.227.0/24 maxlen: 24
213.206.32.0/19 maxlen: 19
213.206.32.0/24 maxlen: 24
213.206.33.0/24 maxlen: 24
213.206.34.0/24 maxlen: 24
213.206.35.0/24 maxlen: 24
213.206.36.0/24 maxlen: 24
213.206.37.0/24 maxlen: 24
213.206.38.0/24 maxlen: 24
213.206.39.0/24 maxlen: 24
213.206.40.0/24 maxlen: 24
213.206.41.0/24 maxlen: 24
213.206.42.0/24 maxlen: 24
213.206.43.0/24 maxlen: 24
213.206.44.0/24 maxlen: 24
213.206.45.0/24 maxlen: 24
213.206.46.0/24 maxlen: 24
213.206.47.0/24 maxlen: 24
213.206.48.0/24 maxlen: 24
213.206.49.0/24 maxlen: 24
213.206.50.0/24 maxlen: 24
213.206.51.0/24 maxlen: 24
213.206.52.0/24 maxlen: 24
213.206.53.0/24 maxlen: 24
213.206.54.0/24 maxlen: 24
213.206.55.0/24 maxlen: 24
213.206.56.0/24 maxlen: 24
213.206.57.0/24 maxlen: 24
213.206.58.0/24 maxlen: 24
213.206.59.0/24 maxlen: 24
213.206.60.0/24 maxlen: 24
213.206.61.0/24 maxlen: 24
213.206.62.0/24 maxlen: 24
213.206.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Aug 2024 05:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:73:db:ae:77:05:f6:41:1a:48:d3:4f:28:5e:37:8a:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bab453d97ba2f4a045843e6b4a953b3e5106eaf2
Validity
Not Before: Aug 21 07:34:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d8a06195a0771180de9ac03963a8e6e94595f80c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9a:ab:9e:18:06:24:54:87:03:78:76:d5:2e:
b5:76:4d:24:63:22:ee:29:51:28:91:42:7b:db:4d:
30:4f:77:22:91:72:16:13:eb:47:f4:56:ee:91:07:
35:55:d9:3e:6d:3e:65:7f:07:f1:4d:40:37:40:25:
d7:ed:54:63:3f:20:2d:92:13:97:9a:c0:5f:94:cc:
cb:dd:3c:f9:7f:fe:58:6b:16:c6:0e:cd:55:c6:10:
0e:bd:19:70:50:1a:29:26:04:15:8c:f8:4f:61:92:
48:9e:83:d8:b5:19:c1:05:a7:52:3f:9a:5c:47:83:
95:82:9b:e4:1d:20:16:ae:85:95:a8:2a:e7:6c:42:
81:3e:ab:95:79:e3:7a:64:d2:a4:6c:3f:63:26:5f:
e7:ea:2e:99:f1:1a:61:b5:86:44:14:89:9a:9e:a4:
1f:58:4e:b9:29:95:6f:52:43:49:f9:41:51:cc:81:
d7:ee:7f:15:cc:47:a3:2c:47:52:61:7d:42:fb:fd:
b9:08:d2:ba:d3:6e:a4:d2:bd:2e:71:ce:cc:a3:06:
81:0e:9d:a6:a1:ff:59:3b:fb:f1:fc:f7:86:87:c2:
01:80:c8:4e:c1:94:e8:e2:20:45:2e:33:3a:6f:b0:
15:cb:a8:39:16:05:97:9b:df:02:84:04:93:c1:19:
25:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A0:61:95:A0:77:11:80:DE:9A:C0:39:63:A8:E6:E9:45:95:F8:0C
X509v3 Authority Key Identifier:
keyid:BA:B4:53:D9:7B:A2:F4:A0:45:84:3E:6B:4A:95:3B:3E:51:06:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/urRT2Xui9KBFhD5rSpU7PlEG6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6703ca-ced4-4207-ab05-4a6f55771bd1/1/2KBhlaB3EYDemsA5Y6jm6UWV-Aw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6703ca-ced4-4207-ab05-4a6f55771bd1/1/urRT2Xui9KBFhD5rSpU7PlEG6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.230.224.0/24
94.230.227.0/24
213.206.32.0/19
Signature Algorithm: sha256WithRSAEncryption
11:04:5c:46:c0:72:35:a8:b5:d0:76:a1:9c:0c:8b:f5:e0:1d:
b6:2c:dd:68:f3:32:59:7a:e6:60:5d:6e:2d:9c:4a:47:09:23:
30:62:10:01:8d:68:31:6d:46:2e:86:15:b8:5e:54:e2:9f:2a:
f8:42:67:65:8c:97:69:72:5a:de:c0:b9:ec:e9:17:7d:9b:fa:
89:b8:07:12:53:71:c2:cd:7d:1f:fb:1c:17:b4:1e:e5:60:2a:
ec:4e:0c:42:03:91:72:6d:c1:84:05:87:d7:bd:1d:78:3e:e8:
c4:7e:15:f6:30:a2:10:a0:77:fc:3b:d7:d3:e1:fb:09:9f:ec:
ec:43:1e:29:09:c1:41:db:aa:f7:7e:0f:d4:d4:7d:5d:be:6a:
68:09:58:42:ab:79:11:e0:38:48:1f:2d:4e:a8:e3:f8:fe:2c:
69:65:87:fe:5f:3b:59:9a:2e:b0:b4:52:05:1d:3c:05:e4:53:
9a:d1:f9:9f:cc:7f:36:fd:2b:a8:81:22:5d:3a:8a:89:94:84:
8f:61:c9:e7:eb:23:a9:1f:09:01:7e:17:c4:09:81:b6:93:a3:
51:8c:17:1f:d6:aa:14:e5:64:80:b7:e4:a5:e2:b1:df:0c:5a:
17:de:3f:bc:ed:4e:41:93:2e:00:3d:17:d0:c0:a7:ae:76:7c:
2b:f1:11:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 08:35:26 2024 by rpki-client on console-fra.rpki-client.org