Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/WRd3rvkpBoqflLZRll2DIZsvnh4.roa
File: WRd3rvkpBoqflLZRll2DIZsvnh4.roa (raw, json)
Hash identifier: /PbAlTmR2d4842wMDrAf7F+tAf5BSJZAtUU/hnLwzFU=
Subject key identifier: 59:17:77:AE:F9:29:06:8A:9F:94:B6:51:96:5D:83:21:9B:2F:9E:1E
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 018973965C5A10785027C29BEDD3CEFE2368
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/WRd3rvkpBoqflLZRll2DIZsvnh4.roa
Signing time: Thu 20 Jul 2023 13:56:21 +0000
ROA not before: Thu 20 Jul 2023 13:56:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.43.0/24 maxlen: 24
89.43.44.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
93.114.187.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
89.45.34.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.73.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 24 Jul 2023 19:56:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:73:96:5c:5a:10:78:50:27:c2:9b:ed:d3:ce:fe:23:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jul 20 13:56:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=591777aef929068a9f94b651965d83219b2f9e1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:36:82:5c:79:7f:ff:c9:27:77:6a:50:17:38:
91:ce:bc:93:92:53:a0:fa:c8:cd:85:4b:2d:3a:1e:
1b:34:e9:25:68:83:aa:06:3d:f8:ae:47:12:8a:4d:
72:95:bb:0a:a1:0d:d7:ac:fe:93:f7:33:8d:67:9e:
db:1b:c7:16:98:a2:07:c2:58:99:f4:76:df:d6:d9:
b1:d4:3f:a0:c8:89:ee:48:c0:2a:b6:84:fc:a7:65:
72:9f:aa:5d:ff:4f:f5:80:5b:4d:d8:70:2a:2a:05:
14:22:f0:49:fd:70:a7:14:f0:e9:2b:b5:58:af:59:
bc:4a:c7:53:bd:89:8e:ab:b8:6e:22:61:9e:5d:24:
b5:63:f9:1d:97:d2:e6:5c:2d:c2:ad:e3:08:1b:c6:
ef:a1:7b:1a:a3:21:f3:f3:44:dd:43:27:21:9f:dd:
5a:31:d6:6b:6b:47:e9:22:a3:9d:2c:04:62:8f:dd:
d2:e3:2a:11:b8:a8:16:a2:b2:d5:f2:09:50:ca:60:
a0:56:a4:93:29:51:57:27:2e:c9:23:81:cf:79:a2:
36:3a:40:8f:a9:61:db:70:02:5e:23:bf:23:aa:93:
36:e5:b5:5f:8f:8c:b5:8d:35:49:a1:5d:f1:9d:6a:
df:4f:5f:51:a4:62:31:a4:85:9b:17:f7:81:3e:cb:
c4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:17:77:AE:F9:29:06:8A:9F:94:B6:51:96:5D:83:21:9B:2F:9E:1E
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/WRd3rvkpBoqflLZRll2DIZsvnh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.127.0/24
86.106.80.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.40.0/24
89.43.42.0-89.43.44.255
89.43.46.0/24
89.43.73.0/24
89.45.34.0/24
93.113.158.0/24
93.114.55.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
8c:db:e8:21:c0:51:fb:bd:09:8c:9d:fb:fb:9e:60:be:d8:96:
4c:47:53:62:28:5b:4c:78:5c:15:65:94:f0:b3:9b:56:00:80:
4a:29:c4:4b:21:03:c4:4e:95:6c:db:29:f4:ac:a9:5b:38:88:
bd:e4:b8:9c:aa:84:eb:96:e7:66:c1:31:df:0e:7c:ac:66:52:
a0:16:fc:76:8b:ab:be:51:42:d7:f1:ff:4e:6d:a4:e2:07:54:
70:89:ff:2f:00:f1:ff:95:1f:ac:94:b8:f6:b3:f8:0e:cb:54:
31:fc:48:b0:b9:cf:d7:4b:ad:a9:6b:3e:48:d6:23:5d:3a:d5:
d4:9d:40:53:e5:e7:c9:e6:de:4c:b1:ef:2a:20:87:07:9e:0e:
d9:7d:31:01:ad:19:79:c1:08:2d:cd:0e:23:5c:e9:fb:5a:94:
cb:2b:20:db:7e:9a:dd:99:52:e0:8a:04:5d:3f:f2:de:c4:3e:
10:c7:2d:0f:46:3a:91:06:90:64:b8:d6:df:e4:57:06:49:ea:
98:3f:41:84:59:e9:da:8e:fe:f0:ea:e2:a1:d4:0c:ea:11:e9:
ea:f9:10:37:e3:c3:cc:92:5f:d2:65:cb:44:2d:fa:e1:ff:f5:
7f:75:63:1d:34:54:07:69:27:e0:9a:bb:b9:bb:d8:35:90:e8:
05:89:05:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:38 2024 by rpki-client on console-ams.rpki-client.org