Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/CSz_7GqZlbcfdnaLfoj4sEenoEA.roa
File: CSz_7GqZlbcfdnaLfoj4sEenoEA.roa (raw, json)
Hash identifier: bFXPjTqz+o7hdOO6uQyY+sh8/Ay0h3/VH6hMXmho9Rk=
Subject key identifier: 09:2C:FF:EC:6A:99:95:B7:1F:76:76:8B:7E:88:F8:B0:47:A7:A0:40
Certificate issuer: /CN=fd261d45319e8375187436da44bf5b9adb044a7f
Certificate serial: 018CC425277F2AB9975F9B06F183EF0DCD59
Authority key identifier: FD:26:1D:45:31:9E:83:75:18:74:36:DA:44:BF:5B:9A:DB:04:4A:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_SYdRTGeg3UYdDbaRL9bmtsESn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/CSz_7GqZlbcfdnaLfoj4sEenoEA.roa
Signing time: Mon 01 Jan 2024 08:30:18 +0000
ROA not before: Mon 01 Jan 2024 08:30:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8758
IP address blocks: 37.46.144.0/22 maxlen: 24
194.31.128.0/23 maxlen: 24
217.71.240.0/20 maxlen: 24
178.250.130.0/23 maxlen: 24
185.160.244.0/22 maxlen: 24
217.150.224.0/20 maxlen: 24
157.143.0.0/17 maxlen: 24
109.70.112.0/21 maxlen: 24
109.70.116.0/22 maxlen: 24
109.70.115.0/24 maxlen: 24
212.25.0.0/19 maxlen: 24
77.74.96.0/21 maxlen: 24
145.40.192.0/19 maxlen: 24
84.254.80.0/20 maxlen: 24
95.143.48.0/20 maxlen: 24
91.84.64.0/19 maxlen: 24
84.254.96.0/20 maxlen: 24
83.150.0.0/18 maxlen: 24
87.239.200.0/21 maxlen: 24
88.218.24.0/22 maxlen: 24
31.24.8.0/21 maxlen: 24
178.22.104.0/21 maxlen: 24
80.89.208.0/20 maxlen: 24
194.246.118.0/23 maxlen: 24
217.22.128.0/20 maxlen: 24
2001:8e0::/29 maxlen: 32
2a01:bd00::/32 maxlen: 32
2a00:10c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 13 Mar 2024 15:20:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:27:7f:2a:b9:97:5f:9b:06:f1:83:ef:0d:cd:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd261d45319e8375187436da44bf5b9adb044a7f
Validity
Not Before: Jan 1 08:30:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=092cffec6a9995b71f76768b7e88f8b047a7a040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:67:0f:0a:ce:aa:9c:76:7d:c4:01:9f:de:07:
e6:74:3b:81:a2:fd:c8:cb:00:5d:fe:8f:f6:e4:15:
7c:49:60:bd:c5:36:58:b3:cd:55:99:f4:54:3a:2c:
ee:82:64:76:e7:3a:27:bc:3d:85:f6:13:e2:83:c5:
c4:fa:46:94:31:21:02:05:58:87:41:b2:18:ef:08:
28:ad:09:3c:ce:c2:4d:ea:98:7c:52:a3:0f:e2:08:
ad:8f:0a:7d:0c:73:bf:8b:5c:69:d4:43:53:76:5a:
28:d9:0a:bb:69:0a:86:d8:5b:55:cf:39:21:5e:80:
c0:e9:5f:74:a8:15:be:4a:a8:6b:c0:5e:33:6b:cd:
66:79:66:94:ac:00:fa:64:31:84:7d:cf:a2:39:b0:
52:bc:7a:8c:cc:fe:4b:d5:0a:1e:d5:07:3b:2a:a6:
ff:f8:32:75:4e:72:24:66:32:b1:91:1e:d0:c3:60:
37:53:51:0d:cb:ad:ca:a2:4a:24:86:6b:75:9a:32:
19:4a:0f:64:c9:11:40:f4:d0:c0:1a:e8:4f:83:1a:
3e:23:d5:02:26:14:d1:1e:b0:aa:7b:b5:fc:c6:16:
3a:3d:b4:1b:eb:85:a0:d4:79:ce:20:8c:44:c3:4e:
9a:b4:ce:69:3a:ee:7b:23:39:64:04:fb:0a:3e:96:
fe:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:2C:FF:EC:6A:99:95:B7:1F:76:76:8B:7E:88:F8:B0:47:A7:A0:40
X509v3 Authority Key Identifier:
keyid:FD:26:1D:45:31:9E:83:75:18:74:36:DA:44:BF:5B:9A:DB:04:4A:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_SYdRTGeg3UYdDbaRL9bmtsESn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/CSz_7GqZlbcfdnaLfoj4sEenoEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/_SYdRTGeg3UYdDbaRL9bmtsESn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.8.0/21
37.46.144.0/22
77.74.96.0/21
80.89.208.0/20
83.150.0.0/18
84.254.80.0-84.254.111.255
87.239.200.0/21
88.218.24.0/22
91.84.64.0/19
95.143.48.0/20
109.70.112.0/21
145.40.192.0/19
157.143.0.0/17
178.22.104.0/21
178.250.130.0/23
185.160.244.0/22
194.31.128.0/23
194.246.118.0/23
212.25.0.0/19
217.22.128.0/20
217.71.240.0/20
217.150.224.0/20
IPv6:
2001:8e0::/29
2a00:10c0::/32
2a01:bd00::/32
Signature Algorithm: sha256WithRSAEncryption
88:ed:f7:63:16:02:6a:0a:76:a7:fd:2a:92:7e:36:98:df:78:
23:99:6c:9f:2b:39:1e:14:f8:72:19:79:43:c0:85:88:39:48:
09:61:b5:db:8c:fa:eb:06:ea:b6:d5:e8:a1:11:04:21:a7:c6:
c3:62:eb:d2:2f:10:92:82:78:f5:31:e0:87:24:bf:2b:ba:ae:
b7:a1:fe:a9:7b:e3:80:4c:7e:ce:69:d4:bb:ec:27:5c:b2:c5:
40:68:ab:b1:36:e7:df:43:0b:58:06:34:c3:5a:e6:c1:c6:e7:
49:86:ca:6c:0e:c8:ef:34:be:ac:25:42:88:14:ee:1d:54:7e:
cc:c3:83:02:55:26:ea:25:d3:48:ec:4f:25:8c:c4:fa:00:a0:
3e:fe:c4:34:aa:00:a9:86:a3:27:0c:fc:d1:35:76:ff:25:38:
be:cd:94:2b:79:4c:6a:d0:3d:ce:e2:83:32:9c:ce:15:af:ef:
3a:58:1f:88:dc:57:fa:c4:4d:d8:be:50:29:0d:c2:68:80:84:
8c:a4:aa:f2:10:8b:c0:39:7d:52:83:da:45:ac:3d:ac:a8:69:
43:fa:42:07:6d:68:80:7c:d9:05:8b:80:0d:c7:88:5f:b1:c9:
00:ee:79:cf:17:72:e8:0a:bb:a0:7e:40:16:9f:86:61:17:e2:
c9:80:d1:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 19:43:29 2024 by rpki-client on console-fra.rpki-client.org