Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/1pTPvbTu0Vc1WlI11_9jZu7J-vk.roa
File: 1pTPvbTu0Vc1WlI11_9jZu7J-vk.roa (raw, json)
Hash identifier: 7NgQAFvDOgsOBBRIU2MLbXHbn5s8QtKRvTu49Af5KaU=
Subject key identifier: D6:94:CF:BD:B4:EE:D1:57:35:5A:52:35:D7:FF:63:66:EE:C9:FA:F9
Certificate issuer: /CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Certificate serial: 018CC3B6842F9A684A17D84B348ABA309A86
Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/1pTPvbTu0Vc1WlI11_9jZu7J-vk.roa
Signing time: Mon 01 Jan 2024 06:29:27 +0000
ROA not before: Mon 01 Jan 2024 06:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48716
IP address blocks: 185.146.0.0/22 maxlen: 24
185.102.72.0/22 maxlen: 24
91.147.95.0/24 maxlen: 24
91.147.94.0/24 maxlen: 24
91.147.92.0/24 maxlen: 24
91.147.92.0/22 maxlen: 22
91.147.93.0/24 maxlen: 24
91.147.104.0/22 maxlen: 24
195.93.152.0/23 maxlen: 24
195.49.211.0/24 maxlen: 24
195.49.212.0/24 maxlen: 24
195.49.212.0/22 maxlen: 22
195.49.209.0/24 maxlen: 24
195.49.210.0/23 maxlen: 23
195.49.210.0/24 maxlen: 24
195.49.213.0/24 maxlen: 24
109.233.108.0/22 maxlen: 32
195.49.214.0/24 maxlen: 24
195.49.215.0/24 maxlen: 24
77.240.38.0/23 maxlen: 24
94.247.128.0/21 maxlen: 24
91.215.137.0/24 maxlen: 32
91.215.136.0/22 maxlen: 24
91.215.136.0/24 maxlen: 24
91.215.139.0/24 maxlen: 32
185.4.180.0/22 maxlen: 24
195.210.46.0/23 maxlen: 24
91.201.214.0/23 maxlen: 24
185.22.64.0/22 maxlen: 24
78.40.108.0/23 maxlen: 24
89.219.32.0/22 maxlen: 24
194.110.54.0/23 maxlen: 24
77.243.80.0/23 maxlen: 24
194.39.64.0/23 maxlen: 24
194.39.64.0/22 maxlen: 24
185.35.222.0/23 maxlen: 24
194.39.67.0/24 maxlen: 24
194.39.66.0/24 maxlen: 24
2a00:5da0::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 01 Mar 2024 14:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:84:2f:9a:68:4a:17:d8:4b:34:8a:ba:30:9a:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Validity
Not Before: Jan 1 06:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d694cfbdb4eed157355a5235d7ff6366eec9faf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8a:58:8e:e8:31:e4:62:01:a0:a1:c8:0c:33:
bb:2e:e5:7a:62:bb:d8:21:d3:f6:a2:32:fd:db:9e:
dd:1b:d6:23:57:d1:93:c3:58:48:0e:00:68:25:85:
99:c4:f5:f4:c8:41:a8:58:5e:bb:f0:a6:48:61:80:
8d:9e:cd:8f:8a:b6:93:ba:4f:1e:88:8f:72:8b:f0:
34:06:44:d6:0c:d3:3a:e1:ff:2f:1b:be:20:9f:9a:
2d:60:e9:05:61:3e:81:df:4e:f4:56:cd:3f:e0:11:
a8:e8:3e:37:b7:a8:da:1a:25:8d:3a:2e:ae:9b:0a:
9d:bd:c6:7a:0c:1a:29:22:ca:89:df:11:01:82:c3:
f1:5b:9b:a5:50:cd:35:22:62:c2:5a:48:ee:d7:06:
9d:83:59:f4:91:b9:96:c8:b1:53:55:65:b7:c2:db:
2c:44:7a:d2:ae:0d:34:70:12:16:a4:fe:eb:af:02:
e0:21:07:d4:42:ad:c3:99:22:59:a5:9d:f1:60:9b:
e4:8c:89:be:d4:5f:3c:cf:fa:92:82:34:f6:49:15:
d3:0b:ef:9d:ff:98:49:fe:fe:38:bd:b2:dd:12:ee:
bf:78:58:64:38:b6:33:8d:79:68:63:25:ff:60:56:
6e:e7:77:36:b4:6e:95:40:5b:6d:ae:eb:f9:b2:1d:
1c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:94:CF:BD:B4:EE:D1:57:35:5A:52:35:D7:FF:63:66:EE:C9:FA:F9
X509v3 Authority Key Identifier:
keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/1pTPvbTu0Vc1WlI11_9jZu7J-vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.240.38.0/23
77.243.80.0/23
78.40.108.0/23
89.219.32.0/22
91.147.92.0/22
91.147.104.0/22
91.201.214.0/23
91.215.136.0/22
94.247.128.0/21
109.233.108.0/22
185.4.180.0/22
185.22.64.0/22
185.35.222.0/23
185.102.72.0/22
185.146.0.0/22
194.39.64.0/22
194.110.54.0/23
195.49.209.0-195.49.215.255
195.93.152.0/23
195.210.46.0/23
IPv6:
2a00:5da0::/32
Signature Algorithm: sha256WithRSAEncryption
51:ca:d3:ee:b4:b5:53:ce:9b:10:7d:32:88:48:98:f5:0a:a7:
07:26:6b:02:d1:78:76:d3:df:5d:58:55:88:5e:ad:c6:50:e3:
2b:8d:25:39:14:2f:bc:16:0b:61:d2:ae:3f:d9:1c:83:bd:85:
99:93:e7:a0:bf:07:b6:6c:63:e1:5e:04:ee:26:16:7d:31:60:
d4:98:7e:49:fa:61:b0:40:23:d9:fa:73:d3:17:c6:7d:54:fa:
56:d4:5d:7a:f9:d7:47:54:69:68:81:e1:5e:bd:8d:6a:98:6d:
dc:1d:74:4a:39:3e:19:93:36:01:1f:90:16:d6:a5:db:1f:60:
74:fa:ab:1d:01:dc:70:58:80:df:19:aa:97:3d:91:ee:2c:6a:
f8:fc:11:ea:ce:f0:2c:2e:54:d6:67:af:75:f5:65:52:f9:99:
00:d6:23:79:f4:2f:25:52:be:e0:be:60:6a:e9:5a:c1:43:5c:
90:59:f3:90:66:ab:38:fc:95:7e:93:16:25:d2:15:a9:f1:d3:
6c:6e:bc:72:12:3e:36:fb:52:6d:6b:f6:ec:c7:7a:a3:37:5c:
53:3f:3b:44:f9:94:4a:97:ec:6e:dd:39:69:75:c9:4e:b8:a5:
e8:5d:4c:40:0c:cf:e1:80:0d:04:fc:37:2a:d0:bf:31:bc:d5:
a4:fb:d1:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 1 18:45:18 2024 by rpki-client on console-ams.rpki-client.org