Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/0dL-jgApiwyYvSedfblGc31mP_0.roa
File: 0dL-jgApiwyYvSedfblGc31mP_0.roa (raw, json)
Hash identifier: CGr2dG/AmyUqftKbzPLEDNLi1bqp5V2cRVOioE6zTP8=
Subject key identifier: D1:D2:FE:8E:00:29:8B:0C:98:BD:27:9D:7D:B9:46:73:7D:66:3F:FD
Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Certificate serial: 018DD00D981ACE6B4B9AEB95429A8740A110
Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/0dL-jgApiwyYvSedfblGc31mP_0.roa
Signing time: Thu 22 Feb 2024 09:02:48 +0000
ROA not before: Thu 22 Feb 2024 09:02:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212477
IP address blocks: 37.77.151.0/24 maxlen: 24
45.90.12.0/22 maxlen: 24
45.90.116.0/22 maxlen: 24
62.3.53.0/24 maxlen: 24
77.87.126.0/24 maxlen: 24
89.248.65.0/24 maxlen: 24
94.154.115.0/24 maxlen: 24
109.205.63.0/24 maxlen: 24
146.19.119.0/24 maxlen: 24
146.19.231.0/24 maxlen: 24
178.212.79.0/24 maxlen: 24
185.138.165.0/24 maxlen: 24
185.149.150.0/24 maxlen: 24
193.221.208.0/24 maxlen: 24
2a0b:b680::/29 maxlen: 48
Validation: Failed, certificate revoked on Thu 22 Feb 2024 16:58:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d0:0d:98:1a:ce:6b:4b:9a:eb:95:42:9a:87:40:a1:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Validity
Not Before: Feb 22 09:02:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d1d2fe8e00298b0c98bd279d7db946737d663ffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2a:34:f5:29:f9:3d:36:2d:29:3f:c0:7f:ca:
98:14:02:3c:f2:34:8d:3c:d3:f8:a9:85:5d:7f:c5:
24:d8:9e:84:85:6f:7d:36:1c:bd:2b:c0:e1:72:b3:
ac:9f:0b:01:81:1f:63:f4:ae:12:cc:e6:9e:09:20:
07:8e:b6:f2:26:1a:70:a6:cc:01:45:bb:b6:a8:a8:
a8:0c:0f:1e:fd:c4:54:21:3b:3c:e6:ec:13:e7:3d:
cd:67:ca:00:7e:d3:0f:6e:7b:f0:a5:ef:d7:b1:63:
ed:35:8c:b2:76:4e:d6:bb:25:75:97:5a:f4:07:39:
8e:95:91:4e:01:da:d1:3b:ae:04:6a:be:be:a9:61:
0c:ce:76:53:56:18:a4:54:91:8d:c9:21:de:8b:ab:
39:a5:3a:66:6f:ba:05:2e:cb:95:c1:fc:9e:99:51:
46:ea:9e:ab:a7:7d:8d:44:a5:15:f0:b7:f7:ba:2d:
74:ef:f3:d0:b5:fc:a3:cb:ab:dd:e7:2f:88:e2:f3:
80:5a:08:3d:f0:5c:0d:b5:14:b1:e9:ac:74:9b:eb:
3a:3f:80:bc:97:32:c4:a0:ba:9c:8e:94:8d:3d:b6:
ac:40:f3:7d:4d:f7:38:f1:71:32:50:17:34:aa:c0:
2c:e1:94:d1:7f:05:a9:74:7a:2d:7f:59:b7:63:66:
82:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D2:FE:8E:00:29:8B:0C:98:BD:27:9D:7D:B9:46:73:7D:66:3F:FD
X509v3 Authority Key Identifier:
keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/0dL-jgApiwyYvSedfblGc31mP_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.151.0/24
45.90.12.0/22
45.90.116.0/22
62.3.53.0/24
77.87.126.0/24
89.248.65.0/24
94.154.115.0/24
109.205.63.0/24
146.19.119.0/24
146.19.231.0/24
178.212.79.0/24
185.138.165.0/24
185.149.150.0/24
193.221.208.0/24
IPv6:
2a0b:b680::/29
Signature Algorithm: sha256WithRSAEncryption
97:0c:d1:45:b5:e7:3b:f1:a1:ff:2a:19:37:b9:0e:f8:0a:20:
8c:20:0c:90:cb:fa:04:1f:cb:34:18:e0:e6:17:59:23:9f:2f:
ff:6e:0f:4f:87:85:95:65:5d:69:c3:09:ac:0b:d0:44:27:e5:
bf:8e:a2:80:60:53:42:b6:67:55:88:e7:4b:3a:00:60:52:82:
b4:b2:65:2f:1a:ab:ab:61:da:0d:88:34:b3:2a:04:67:79:87:
63:3e:88:66:ff:36:f5:b1:9d:16:1b:83:e0:e9:a3:1e:f3:cd:
eb:d5:27:1e:b1:fb:bb:24:b2:4c:1c:05:21:68:29:99:38:5c:
60:be:bd:7f:9e:20:b1:b2:62:58:8e:55:59:07:e5:3a:a6:33:
8a:e4:a1:1a:f6:0e:43:e1:03:61:28:05:7d:a9:31:7b:87:44:
69:ed:32:16:09:79:14:6b:ee:52:68:7a:12:88:e9:ac:7a:c2:
9b:9a:d4:5b:de:45:41:ee:70:af:5f:01:d7:14:dc:71:ff:4c:
50:74:84:3f:47:c1:25:c7:a2:df:e5:e0:87:b8:13:d0:f9:f8:
9b:aa:e9:22:b3:2e:08:b2:c2:bc:ee:31:17:8b:ae:1f:9c:38:
d3:0b:7c:79:f5:90:95:89:99:6e:dd:29:fc:d8:45:58:e2:a1:
df:f6:14:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 22 20:07:06 2024 by rpki-client on console-ams.rpki-client.org