Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/uebP3UqONXLjtR7a0I8WH_PJ5pE.roa
File: uebP3UqONXLjtR7a0I8WH_PJ5pE.roa (raw, json)
Hash identifier: 7Thojd1ihrB9AUc87ji3MayiRXm7CjfeM74Z8VE2KBY=
Subject key identifier: B9:E6:CF:DD:4A:8E:35:72:E3:B5:1E:DA:D0:8F:16:1F:F3:C9:E6:91
Certificate issuer: /CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Certificate serial: 018FA6814C63609DE7CF5ACDA88F9DE81854
Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/uebP3UqONXLjtR7a0I8WH_PJ5pE.roa
Signing time: Thu 23 May 2024 17:30:42 +0000
ROA not before: Thu 23 May 2024 17:30:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48716
IP address blocks: 77.240.38.0/23 maxlen: 24
77.243.80.0/23 maxlen: 24
78.40.108.0/23 maxlen: 24
85.202.194.0/23 maxlen: 24
89.219.32.0/22 maxlen: 24
91.147.92.0/22 maxlen: 22
91.147.92.0/24 maxlen: 24
91.147.93.0/24 maxlen: 24
91.147.94.0/24 maxlen: 24
91.147.95.0/24 maxlen: 24
91.147.104.0/22 maxlen: 24
91.201.214.0/23 maxlen: 24
91.215.136.0/22 maxlen: 24
91.215.136.0/24 maxlen: 24
91.215.137.0/24 maxlen: 32
91.215.139.0/24 maxlen: 32
94.247.128.0/21 maxlen: 24
109.233.108.0/22 maxlen: 32
185.4.180.0/22 maxlen: 24
185.22.64.0/22 maxlen: 24
185.35.222.0/23 maxlen: 24
185.102.72.0/22 maxlen: 24
185.146.0.0/22 maxlen: 24
194.32.140.0/22 maxlen: 24
194.39.64.0/22 maxlen: 24
194.39.64.0/23 maxlen: 24
194.39.66.0/24 maxlen: 24
194.39.67.0/24 maxlen: 24
194.110.54.0/23 maxlen: 24
195.49.209.0/24 maxlen: 24
195.49.210.0/23 maxlen: 23
195.49.210.0/24 maxlen: 24
195.49.211.0/24 maxlen: 24
195.49.212.0/22 maxlen: 22
195.49.212.0/24 maxlen: 24
195.49.213.0/24 maxlen: 24
195.49.214.0/24 maxlen: 24
195.49.215.0/24 maxlen: 24
195.93.152.0/23 maxlen: 24
195.210.46.0/23 maxlen: 24
2a00:5da0::/36 maxlen: 48
Validation: Failed, certificate revoked on Mon 27 May 2024 09:08:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a6:81:4c:63:60:9d:e7:cf:5a:cd:a8:8f:9d:e8:18:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Validity
Not Before: May 23 17:30:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9e6cfdd4a8e3572e3b51edad08f161ff3c9e691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:8d:75:b4:50:d1:94:e5:63:71:cb:34:e5:ef:
2f:92:56:c0:79:f5:e4:ee:e5:18:d4:ce:87:e7:a5:
22:36:07:ab:28:a6:3b:ae:55:65:bd:3e:d9:54:cf:
48:6c:5a:a4:c8:52:95:c9:31:b1:81:02:52:1c:f1:
cc:4e:99:89:b5:01:9c:71:f4:7f:c9:4d:b3:ba:e5:
cb:dc:0c:f5:c2:25:35:14:81:8b:2a:e0:6e:45:73:
8c:dd:be:e9:78:05:48:6d:f5:37:f9:c5:f5:f5:95:
ea:e5:64:c3:16:29:24:b0:0d:92:49:a2:91:6b:1f:
df:21:aa:d6:83:30:f4:b3:dc:11:5d:df:46:b5:22:
cf:6d:cc:96:f6:62:6d:38:a0:d9:69:69:4e:ac:6a:
20:b6:0e:51:06:46:df:1a:7f:2a:08:5d:a9:ba:1f:
13:ed:c4:98:7b:3d:c2:4d:62:01:d3:dd:62:a5:91:
e8:79:f2:8e:0e:0b:79:a0:68:dc:39:bc:19:b8:26:
a1:ba:e4:8c:c7:8e:17:85:19:b4:0c:fe:4e:fb:b4:
d7:52:44:32:04:02:fa:50:38:20:8e:4b:41:8b:6d:
52:85:43:22:32:8f:22:ca:2d:62:1d:45:5c:de:12:
78:fa:6d:80:98:04:1b:9e:d4:52:78:61:1f:a6:61:
1d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:E6:CF:DD:4A:8E:35:72:E3:B5:1E:DA:D0:8F:16:1F:F3:C9:E6:91
X509v3 Authority Key Identifier:
keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/uebP3UqONXLjtR7a0I8WH_PJ5pE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.240.38.0/23
77.243.80.0/23
78.40.108.0/23
85.202.194.0/23
89.219.32.0/22
91.147.92.0/22
91.147.104.0/22
91.201.214.0/23
91.215.136.0/22
94.247.128.0/21
109.233.108.0/22
185.4.180.0/22
185.22.64.0/22
185.35.222.0/23
185.102.72.0/22
185.146.0.0/22
194.32.140.0/22
194.39.64.0/22
194.110.54.0/23
195.49.209.0-195.49.215.255
195.93.152.0/23
195.210.46.0/23
IPv6:
2a00:5da0::/36
Signature Algorithm: sha256WithRSAEncryption
8b:92:45:33:fd:62:e7:fb:66:28:25:78:00:1a:37:36:76:8c:
ec:bc:0f:0f:11:b4:ff:69:f4:f0:53:fa:ac:e2:e3:e1:81:b4:
35:f0:61:62:07:2e:e7:e7:19:66:25:b8:e2:7b:c6:7a:85:cd:
47:3c:3f:42:cf:9c:c3:71:a1:07:4a:06:05:8d:9f:4e:e7:d5:
e6:ec:ae:0d:aa:99:f3:af:9c:4a:55:89:fd:c0:87:85:c9:4c:
2e:4a:7d:1b:5f:a5:9a:f2:11:70:a7:d8:57:fb:4c:5f:91:53:
6a:9c:78:75:d1:e4:8f:3b:f2:d0:c9:44:f5:35:44:66:6d:8d:
40:69:ca:c6:d1:23:a8:e6:19:f7:84:40:fd:24:7f:50:d1:0d:
a7:91:61:46:4c:7c:47:b0:1b:a3:8d:ec:86:f5:34:b4:4a:37:
9a:9b:2e:2d:c0:d3:70:a7:c8:2f:fd:df:8a:60:d2:46:46:61:
28:e2:f2:51:a3:15:1f:98:d1:4a:26:30:e4:03:92:1d:8b:1b:
18:d2:cf:a2:7f:1d:2a:f1:7e:16:75:03:79:2a:10:e5:4d:7f:
78:b5:b7:3c:6b:c1:9b:94:6d:6c:b7:4a:f1:3a:20:75:6e:97:
e6:38:b7:2a:e2:a0:8e:68:6c:79:96:c2:3b:dd:f6:d6:5e:e9:
63:03:52:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:51 2024 by rpki-client on console-fra.rpki-client.org