Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/33bSbRueuT9G0-7MNvBf-629kiY.roa
File: 33bSbRueuT9G0-7MNvBf-629kiY.roa (raw, json)
Hash identifier: fgmdpc6Wwdiaby2LaZQUVvie59BVHU5+CX+4FCAcd+4=
Subject key identifier: DF:76:D2:6D:1B:9E:B9:3F:46:D3:EE:CC:36:F0:5F:FB:AD:BD:92:26
Certificate issuer: /CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Certificate serial: 018A69DF796A25966ACE6D2EF871D3785FC8
Authority key identifier: C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/33bSbRueuT9G0-7MNvBf-629kiY.roa
Signing time: Wed 06 Sep 2023 09:42:47 +0000
ROA not before: Wed 06 Sep 2023 09:42:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48011
IP address blocks: 87.236.161.0/24 maxlen: 24
5.172.177.0/24 maxlen: 24
45.93.168.0/22 maxlen: 24
213.217.31.0/24 maxlen: 24
77.87.122.0/24 maxlen: 24
193.163.72.0/24 maxlen: 24
185.217.143.0/24 maxlen: 24
213.232.203.0/24 maxlen: 24
45.252.180.0/24 maxlen: 24
45.252.182.0/24 maxlen: 24
45.252.183.0/24 maxlen: 24
45.252.181.0/24 maxlen: 24
185.227.139.0/24 maxlen: 24
185.227.137.0/24 maxlen: 24
185.227.138.0/24 maxlen: 24
185.227.136.0/24 maxlen: 24
45.89.236.0/22 maxlen: 24
185.211.79.0/24 maxlen: 24
185.182.105.0/24 maxlen: 24
2a0c:6600:6::/48 maxlen: 48
2a0c:6600:1::/48 maxlen: 48
2a0c:6600:3::/48 maxlen: 48
2a0c:6600:8::/48 maxlen: 48
2a0c:6600:5::/48 maxlen: 48
2a0c:6600:1000::/48 maxlen: 48
2a0c:6600:6000::/48 maxlen: 48
2a0c:6600:6600::/48 maxlen: 48
2a0c:6600::/48 maxlen: 48
2a0c:6600:4000::/48 maxlen: 48
2a0c:6600:3000::/48 maxlen: 48
2a0c:6600:2000::/48 maxlen: 48
2a0c:6600:9::/48 maxlen: 48
2a0c:6600:4::/48 maxlen: 48
2a0c:6600:7::/48 maxlen: 48
2a0c:6600:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 16 Oct 2023 13:08:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:69:df:79:6a:25:96:6a:ce:6d:2e:f8:71:d3:78:5f:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Validity
Not Before: Sep 6 09:42:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df76d26d1b9eb93f46d3eecc36f05ffbadbd9226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:bd:64:a5:52:c5:46:0a:7e:87:34:51:24:29:
c4:d1:52:23:33:0f:49:f9:34:e0:51:73:1c:b2:06:
01:1d:34:d6:83:c0:ff:11:14:8d:99:64:fc:d3:e2:
c7:b2:ba:a7:c0:66:de:76:27:c2:20:17:06:f3:a8:
b3:8a:f5:b6:c9:3e:3f:ff:e8:d0:6f:21:4c:eb:6b:
f6:e4:79:79:56:d0:6e:97:bd:0b:18:d1:48:8d:1f:
2c:e3:99:e2:e1:e7:db:0f:58:32:cf:f3:4e:d4:02:
06:80:0a:19:aa:67:d4:17:9f:89:d5:d8:c4:94:79:
13:df:68:7e:22:f1:27:00:22:2f:a9:2b:09:33:40:
6c:4e:83:f2:63:37:b7:d8:38:06:09:2b:e2:19:79:
6f:91:6f:84:d7:ee:f5:5e:f4:08:77:54:22:49:53:
75:73:df:00:fb:f3:30:8e:36:6f:d7:73:19:89:7d:
00:24:1e:94:5e:f7:2a:4e:72:64:42:a9:f5:09:d4:
60:54:f5:f1:ab:43:6d:d2:89:c1:f4:2c:85:a6:1f:
09:c9:d9:b2:e9:cd:d9:c9:d4:e2:10:30:40:81:69:
56:68:19:b7:36:b4:bb:ee:26:9b:22:4b:19:b7:3a:
78:a7:bc:4a:15:46:9a:7e:bb:f1:40:be:46:08:c6:
0b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:76:D2:6D:1B:9E:B9:3F:46:D3:EE:CC:36:F0:5F:FB:AD:BD:92:26
X509v3 Authority Key Identifier:
keyid:C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/33bSbRueuT9G0-7MNvBf-629kiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/xZvR6MWPZBvZRDBfEcVO_l86DOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.177.0/24
45.89.236.0/22
45.93.168.0/22
45.252.180.0/22
77.87.122.0/24
87.236.161.0/24
185.182.105.0/24
185.211.79.0/24
185.217.143.0/24
185.227.136.0/22
193.163.72.0/24
213.217.31.0/24
213.232.203.0/24
IPv6:
2a0c:6600::-2a0c:6600:9:ffff:ffff:ffff:ffff:ffff
2a0c:6600:1000::/48
2a0c:6600:2000::/48
2a0c:6600:3000::/48
2a0c:6600:4000::/48
2a0c:6600:6000::/48
2a0c:6600:6600::/48
Signature Algorithm: sha256WithRSAEncryption
7d:25:af:a0:c6:64:e3:cd:90:5e:73:3b:91:ae:68:f9:bb:e7:
27:ef:f0:8a:f1:9b:83:b1:97:77:1a:02:90:66:66:5c:47:9f:
7c:ef:d9:c7:86:a4:48:ae:95:f7:db:cc:4e:14:b8:c2:19:c9:
a4:94:c5:da:c5:f8:48:ea:6c:52:c2:03:d7:ea:9c:59:d5:f3:
ae:48:41:5d:0c:2c:b9:46:c0:c2:44:95:fd:06:a6:62:1e:93:
8b:dd:3c:ea:7c:c7:67:05:55:1e:fc:e7:ef:49:77:5c:16:56:
ac:9c:1f:8f:f8:85:19:eb:e3:d5:78:6e:c5:c0:a0:ea:9d:1c:
82:26:7c:15:c3:36:34:98:c6:09:29:17:ad:9e:0d:83:18:83:
88:da:19:c4:1a:3b:ca:6f:05:b2:16:a0:e8:05:3b:f7:97:b4:
5b:f1:b9:72:bb:56:2a:b4:09:c5:af:29:54:84:61:59:69:2c:
17:f2:cb:66:c7:89:f3:2e:56:7e:a5:15:a6:27:9c:cc:be:d0:
27:db:29:d8:5e:d2:f0:98:90:f3:e6:6c:5f:17:81:37:4a:04:
0e:f0:dc:0f:7e:3c:bd:e2:56:30:42:d1:45:58:79:0b:cc:1d:
23:97:fd:fe:70:88:47:07:0b:7b:32:bb:a1:0f:7b:7c:9d:07:
04:59:62:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:13 2024 by rpki-client on console-ams.rpki-client.org