Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/TzUxF5zVAEa-kx7Ja3peMA24JYE.roa
File: TzUxF5zVAEa-kx7Ja3peMA24JYE.roa (raw, json)
Hash identifier: yLBd+WpyXB76UlYWpPFHlILyWQPHsxlD6ys0DmOdiH0=
Subject key identifier: 4F:35:31:17:9C:D5:00:46:BE:93:1E:C9:6B:7A:5E:30:0D:B8:25:81
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0189C089699EB0A9BDAE36DF2A46960E630E
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/TzUxF5zVAEa-kx7Ja3peMA24JYE.roa
Signing time: Fri 04 Aug 2023 12:32:58 +0000
ROA not before: Fri 04 Aug 2023 12:32:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.43.0/24 maxlen: 24
89.43.44.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
93.114.187.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
89.45.34.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.72.0/24 maxlen: 24
188.215.73.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c0:89:69:9e:b0:a9:bd:ae:36:df:2a:46:96:0e:63:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Aug 4 12:32:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f3531179cd50046be931ec96b7a5e300db82581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:07:be:f0:40:58:b2:ae:08:ab:19:44:23:a6:
dc:90:e2:65:25:34:e9:83:74:4b:8a:3b:17:21:fb:
c0:df:f0:47:38:66:2f:f5:c3:f1:19:e5:fe:97:1b:
53:da:36:cf:87:f9:13:38:a0:b3:d9:b1:4f:71:4a:
ff:de:f4:91:bd:b7:40:09:37:7a:1b:b2:ca:79:7e:
5a:6a:ea:43:8a:bc:71:4b:3b:09:ca:94:2a:3d:64:
74:2d:05:b8:cf:c9:bd:c1:d9:72:55:f4:c3:91:e6:
96:c8:6a:10:6b:cd:68:78:ba:a3:3e:f5:c6:3c:94:
07:36:a1:eb:37:2d:d8:4a:44:3f:9f:d9:5d:61:cf:
73:78:79:94:86:a6:a5:1e:6e:f3:2e:a1:81:31:51:
2b:89:78:86:d6:88:42:e3:58:ae:11:b2:38:0a:95:
9b:a3:e5:e8:cf:40:af:62:c4:e7:5d:aa:3e:ac:70:
d5:01:69:44:2f:72:e5:f1:3e:ec:45:ce:f5:00:5d:
5d:51:e9:e1:e6:1f:f5:69:01:a0:93:4c:93:e9:44:
30:98:42:08:9c:c0:09:a9:aa:21:c2:b5:80:8b:41:
5e:69:59:a8:3a:36:04:43:14:a7:ac:c4:5e:ec:0c:
6c:40:02:b9:b4:15:f2:c6:41:e4:2c:31:77:5c:44:
41:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:35:31:17:9C:D5:00:46:BE:93:1E:C9:6B:7A:5E:30:0D:B8:25:81
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/TzUxF5zVAEa-kx7Ja3peMA24JYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.127.0/24
86.106.80.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.40.0/24
89.43.42.0-89.43.44.255
89.43.46.0/24
89.45.34.0/24
93.113.158.0/24
93.114.55.0/24
93.114.99.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
9e:93:0d:89:17:c7:f2:be:25:8a:0c:b5:e8:15:2a:1f:86:00:
56:24:e4:c2:4b:f7:54:ea:05:70:5c:9c:04:f6:90:7a:6e:7d:
f8:f9:6d:11:70:89:74:28:c5:9e:92:1b:1c:72:07:a8:2f:e2:
38:b4:e6:b3:c2:e3:58:15:a4:be:fc:ce:78:ce:f9:7e:36:19:
cb:a0:96:b8:e8:fa:a1:37:fd:05:49:2a:c6:d4:5d:a8:01:c0:
9f:dc:8c:cd:2d:88:70:8a:a2:32:76:94:a4:c2:dc:31:53:2b:
ad:81:cc:cf:f7:d5:0a:99:28:35:74:a6:fe:6c:30:a2:56:dc:
e2:7b:99:ab:7e:ae:4a:67:54:bc:9f:b6:0d:88:ae:cf:ad:a8:
09:9b:95:0e:ac:6a:5f:13:74:b8:21:b4:ea:ec:19:80:5c:23:
a9:b2:4c:7b:d7:58:4e:1d:68:33:e1:af:e2:8d:c6:e0:b7:03:
9b:03:c4:7d:5e:b7:53:4d:a5:93:da:20:ed:41:be:7a:da:aa:
97:f0:d1:59:86:ec:a1:75:a0:fd:90:8f:16:9d:bf:c9:9c:e6:
55:d6:ac:a1:eb:30:93:2d:ef:67:ee:b1:f0:ee:0d:0b:ac:d8:
93:c7:8d:7a:ec:ba:c3:f7:0a:96:ec:f8:f5:05:dc:d1:3b:14:
4d:0d:74:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 29 20:26:08 2023 by rpki-client on console-fra.rpki-client.org