Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/AIinJPaGXKE68C9CDN_m7R4nVC4.roa
File: AIinJPaGXKE68C9CDN_m7R4nVC4.roa (raw, json)
Hash identifier: oY4hJ1i3h6IvGhKQSSpF1bUw9dzMmk63L+qoZyswGAk=
Subject key identifier: 00:88:A7:24:F6:86:5C:A1:3A:F0:2F:42:0C:DF:E6:ED:1E:27:54:2E
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 01882076643BF4B2B817B5F7C5894DE2299A
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/AIinJPaGXKE68C9CDN_m7R4nVC4.roa
Signing time: Mon 15 May 2023 17:30:09 +0000
ROA not before: Mon 15 May 2023 17:30:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.55.4.0/22 maxlen: 23
176.96.88.0/22 maxlen: 22
109.207.136.0/22 maxlen: 22
176.103.240.0/21 maxlen: 22
176.116.232.0/22 maxlen: 22
185.55.140.0/22 maxlen: 22
185.55.140.0/23 maxlen: 23
185.55.142.0/23 maxlen: 23
46.173.240.0/21 maxlen: 21
64.43.112.0/22 maxlen: 22
178.212.184.0/22 maxlen: 22
178.212.184.0/21 maxlen: 21
64.43.124.0/22 maxlen: 22
178.212.188.0/22 maxlen: 22
176.110.216.0/22 maxlen: 22
176.110.216.0/21 maxlen: 21
176.110.220.0/22 maxlen: 22
91.233.0.0/23 maxlen: 23
176.102.120.0/21 maxlen: 21
176.102.120.0/22 maxlen: 22
176.102.124.0/22 maxlen: 22
193.36.204.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 25 Sep 2023 16:50:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:76:64:3b:f4:b2:b8:17:b5:f7:c5:89:4d:e2:29:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: May 15 17:30:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0088a724f6865ca13af02f420cdfe6ed1e27542e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:81:a6:fd:0a:64:62:77:8d:b0:89:4d:be:85:
8f:7b:7d:6f:b4:c6:ad:70:8f:b1:d3:7c:76:8f:f6:
13:41:fe:b2:5d:79:70:60:f4:0d:b4:e1:1f:71:76:
ac:69:89:44:85:d9:81:94:d5:b7:d0:e1:b1:8b:4a:
38:9c:57:2d:14:16:1f:dd:4e:2f:13:8f:3d:68:36:
cb:c0:ac:67:94:f6:c3:83:a7:c4:d1:d6:18:a5:06:
10:bf:03:8e:ae:05:09:bd:aa:1f:c3:5a:f5:85:a6:
f2:ef:a5:30:09:ec:a4:20:97:85:d4:71:af:0f:72:
ec:01:01:57:2f:3e:43:f6:31:13:af:6d:d0:3f:2b:
e1:55:d8:66:61:05:cc:1c:ad:e2:2c:a4:44:b1:27:
ea:6c:05:3c:16:2d:b8:d8:e6:e3:56:6a:4f:12:f9:
da:e2:72:4b:2b:ea:cc:3a:75:44:33:60:30:79:ee:
c0:9e:a6:98:90:5d:05:c4:48:bc:61:16:92:14:01:
4c:10:d7:e9:37:ba:a4:31:67:cb:4c:ac:9c:03:85:
83:d7:0a:a3:5b:72:f2:0a:ae:0f:5e:29:13:68:f6:
e4:05:32:9c:19:7f:99:a1:70:26:4c:8f:fa:af:0d:
08:66:ef:6d:94:21:7d:e8:3a:95:fe:f8:74:91:c7:
7f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:88:A7:24:F6:86:5C:A1:3A:F0:2F:42:0C:DF:E6:ED:1E:27:54:2E
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/AIinJPaGXKE68C9CDN_m7R4nVC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.173.240.0/21
64.43.112.0/22
64.43.124.0/22
91.233.0.0/23
109.207.136.0/22
176.96.88.0/22
176.102.120.0/21
176.103.240.0/21
176.110.216.0/21
176.116.232.0/22
178.212.184.0/21
185.55.4.0/22
185.55.140.0/22
193.36.204.0/22
Signature Algorithm: sha256WithRSAEncryption
92:db:f6:d1:ee:72:79:2c:a4:c4:66:af:4a:e6:02:63:c9:dc:
e3:10:5a:d3:20:8f:5e:71:12:da:97:0b:d3:fb:e9:76:ab:28:
68:58:5e:41:c2:5a:9e:3d:45:1b:ce:e1:ad:a9:e8:b1:a4:16:
01:19:49:50:6f:0e:e6:fb:95:f3:4f:91:6c:75:13:b7:e9:8a:
20:0d:18:b0:35:d9:5d:34:37:fe:78:df:39:0a:9f:51:3c:95:
bb:0d:93:13:79:72:f5:b1:f3:38:d3:fc:7a:a1:19:f0:26:2a:
9b:f8:46:c5:bd:d5:09:77:d5:ac:a2:ec:15:8e:87:fa:e2:7b:
22:f4:e4:eb:af:58:ac:e5:3c:9e:fc:b8:01:62:1b:dc:f6:82:
49:b2:d2:d0:22:7f:3e:5d:76:db:f9:72:23:e5:50:64:7a:52:
5e:f6:35:00:f4:f1:37:1b:cf:75:6c:c1:fa:ed:be:16:16:9d:
60:8c:1b:be:8c:f9:33:04:a3:66:76:b2:f5:e6:33:f5:c3:28:
e7:9e:a8:5b:44:88:bd:5f:9c:ef:27:04:b9:dc:e5:9f:ed:01:
1b:f6:27:db:6b:96:51:2e:39:16:b3:f2:1f:33:d3:d5:6a:1a:
8f:a1:5b:e7:45:69:b7:d9:f2:a6:78:d6:87:17:98:fc:dc:45:
e9:2c:22:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org