Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/358416-2752-4159-add6-cc3fb351e336/1/r93vstFgJ_I7fhwuG23e_L8OIeg.roa
File: r93vstFgJ_I7fhwuG23e_L8OIeg.roa (raw, json)
Hash identifier: oO17vv8a8pdt/jZ2zMRnAQI9zG4/72jIzYM328Hcpm0=
Subject key identifier: AF:DD:EF:B2:D1:60:27:F2:3B:7E:1C:2E:1B:6D:DE:FC:BF:0E:21:E8
Certificate issuer: /CN=059b86f99e2d6bde14fa8799de71ce41b98020b9
Certificate serial: 018968FEA99A1DC614B0B17F2376366A7743
Authority key identifier: 05:9B:86:F9:9E:2D:6B:DE:14:FA:87:99:DE:71:CE:41:B9:80:20:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZuG-Z4ta94U-oeZ3nHOQbmAILk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/358416-2752-4159-add6-cc3fb351e336/1/r93vstFgJ_I7fhwuG23e_L8OIeg.roa
Signing time: Tue 18 Jul 2023 12:34:27 +0000
ROA not before: Tue 18 Jul 2023 12:34:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203936
IP address blocks: 193.39.95.0/24 maxlen: 24
193.39.94.0/24 maxlen: 24
193.39.93.0/24 maxlen: 24
193.39.92.0/24 maxlen: 24
185.253.144.0/22 maxlen: 22
185.253.147.0/24 maxlen: 24
45.144.248.0/22 maxlen: 22
2a0c:3cc0::/32 maxlen: 32
2a03:6280::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 09 Aug 2023 18:04:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:68:fe:a9:9a:1d:c6:14:b0:b1:7f:23:76:36:6a:77:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=059b86f99e2d6bde14fa8799de71ce41b98020b9
Validity
Not Before: Jul 18 12:34:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=afddefb2d16027f23b7e1c2e1b6ddefcbf0e21e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:43:f2:14:e9:9d:e4:f6:56:24:3b:f0:b1:f4:
79:3e:da:b4:96:0a:dd:49:e2:32:a3:0d:9a:98:ba:
eb:a8:f0:dc:74:5c:16:eb:77:2e:73:02:b9:4c:20:
5e:a6:18:ad:84:63:a8:ba:ba:19:37:d8:08:cb:fc:
ad:1f:81:f7:71:4d:f0:18:f2:65:88:6a:25:c9:0e:
9c:8f:52:d3:3e:7a:e2:fa:e6:ae:0a:3c:c7:89:a8:
60:0c:29:40:55:81:82:54:c0:02:34:46:54:ac:69:
90:4a:63:46:d1:9e:ec:e7:f9:20:da:47:08:59:57:
f3:5e:85:a5:35:a6:ab:89:9e:f6:fe:ab:c8:55:08:
8a:9a:d8:56:cb:01:8f:49:3c:0e:cc:56:93:8c:cc:
49:f8:84:b1:ff:b7:c2:0b:95:c9:99:b2:8b:6e:53:
54:0b:58:88:1f:55:e0:f4:15:1c:84:4e:6c:1a:37:
b1:a8:54:b2:bd:ec:d1:73:69:58:bc:56:fc:12:47:
13:f2:9d:2c:ba:69:b0:87:ad:67:10:4b:8a:2d:1e:
f0:c1:93:1b:35:e5:ee:a7:9f:45:12:e9:84:99:18:
c0:35:bd:7f:5e:b2:54:36:b0:27:76:d0:ea:9f:09:
2f:20:19:e9:cd:15:95:f3:b1:e8:cd:ff:d5:64:81:
c0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:DD:EF:B2:D1:60:27:F2:3B:7E:1C:2E:1B:6D:DE:FC:BF:0E:21:E8
X509v3 Authority Key Identifier:
keyid:05:9B:86:F9:9E:2D:6B:DE:14:FA:87:99:DE:71:CE:41:B9:80:20:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZuG-Z4ta94U-oeZ3nHOQbmAILk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/358416-2752-4159-add6-cc3fb351e336/1/r93vstFgJ_I7fhwuG23e_L8OIeg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/358416-2752-4159-add6-cc3fb351e336/1/BZuG-Z4ta94U-oeZ3nHOQbmAILk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.248.0/22
185.253.144.0/22
193.39.92.0/22
IPv6:
2a03:6280::/29
2a0c:3cc0::/32
Signature Algorithm: sha256WithRSAEncryption
7b:61:23:be:ee:b0:c5:34:d5:d3:b4:41:ce:8d:61:98:8f:e6:
28:59:a9:62:28:85:6f:e7:5a:37:e9:22:39:c3:dd:9b:74:0f:
52:0d:fc:c7:40:3a:ae:95:83:46:6c:38:4f:f5:99:f2:a0:50:
b1:85:a3:48:4b:61:b5:d3:7c:5f:3c:71:fe:49:a9:ca:75:d4:
4a:a1:02:fb:a0:8e:ac:67:52:09:a0:54:73:f0:6b:fd:87:91:
a8:a6:c2:56:d5:c9:ce:04:14:a4:df:3c:5a:e2:e2:86:ae:7a:
a9:82:71:1d:2d:5a:30:f4:af:32:0a:d1:ad:0f:65:04:27:d6:
ff:e2:2c:21:f3:5e:5e:1f:39:61:a1:e3:00:61:a0:a1:a9:b4:
76:72:6e:cc:9d:ec:5c:24:91:77:41:5a:15:34:3e:03:09:d0:
7d:37:f5:cc:ea:a0:70:52:45:1a:d3:20:7e:5c:11:5a:55:9b:
8d:64:54:72:db:86:0f:55:d8:c2:c3:31:05:3a:40:79:b8:6b:
ae:cd:a1:5c:b3:b7:a6:17:4d:93:bd:ad:4f:c0:b0:6c:45:c0:
0d:4d:da:9e:d1:87:17:f6:b6:dd:d6:39:15:2c:7b:3a:d6:03:
b7:f7:f0:f3:4c:86:60:23:99:51:2d:74:08:b5:d8:41:7b:23:
53:4d:83:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:16 2024 by rpki-client on console-fra.rpki-client.org