Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/djC6sTHJsV34_b5YVQB3T_DI5-E.roa
File: djC6sTHJsV34_b5YVQB3T_DI5-E.roa (raw, json)
Hash identifier: 2xkNcgCsO61bh7vcPnVM+XMw7v1rac/v6TBV/ZVOcw4=
Subject key identifier: 76:30:BA:B1:31:C9:B1:5D:F8:FD:BE:58:55:00:77:4F:F0:C8:E7:E1
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0191C6E4661EBE6EF8ABDC45021BEEC0295D
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/djC6sTHJsV34_b5YVQB3T_DI5-E.roa
Signing time: Fri 06 Sep 2024 10:32:22 +0000
ROA not before: Fri 06 Sep 2024 10:32:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34450
IP address blocks: 85.204.125.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
86.106.104.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.43.45.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.44.209.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
93.114.171.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.73.0/24 maxlen: 24
188.215.95.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 09 Sep 2024 14:55:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c6:e4:66:1e:be:6e:f8:ab:dc:45:02:1b:ee:c0:29:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Sep 6 10:32:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7630bab131c9b15df8fdbe585500774ff0c8e7e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:21:76:23:eb:aa:a7:9f:2a:00:2b:8a:ad:99:
58:b3:cd:4d:c3:62:bf:f5:b3:30:06:5c:37:49:7c:
a9:39:e8:ed:35:d3:8d:36:04:ba:cb:32:99:9f:9f:
e2:70:55:d8:91:04:d0:1d:5e:8e:b8:5a:74:5f:1b:
b8:1a:20:58:ba:43:7c:6d:9d:77:70:1c:64:6d:a0:
87:73:cd:08:ed:25:e3:25:3c:1e:f9:7a:96:02:a0:
97:03:a3:c7:03:15:b1:b3:c4:0e:7c:92:9c:ab:49:
b8:7a:a1:41:ee:cd:ea:e4:2a:32:cf:ff:48:7e:b0:
4a:29:f0:56:f0:9b:29:52:c6:8b:08:a3:b8:d9:9b:
5d:d6:b1:08:f0:29:42:12:6b:e7:5b:72:f1:00:ed:
a8:68:bc:0a:7e:1e:02:55:78:29:16:4a:86:0f:74:
e1:37:d8:42:87:ed:dd:38:4e:c8:1b:f7:10:51:50:
15:ce:3f:93:30:ec:1e:15:96:1d:82:66:b0:a4:cb:
8d:7b:e6:87:5b:d9:29:59:d8:9b:ca:30:63:a2:a5:
0a:37:01:ed:52:6e:b1:ef:77:65:7f:cb:49:3e:e6:
a5:3a:a9:2e:91:7d:0d:80:67:2f:7e:98:9f:b1:6b:
f6:4e:cf:1e:8c:06:33:1e:88:1b:51:a0:df:f3:b4:
9b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:30:BA:B1:31:C9:B1:5D:F8:FD:BE:58:55:00:77:4F:F0:C8:E7:E1
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/djC6sTHJsV34_b5YVQB3T_DI5-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
86.106.80.0/24
86.106.104.0/24
89.34.8.0/21
89.43.45.0-89.43.46.255
89.44.209.0/24
93.113.158.0/24
93.114.55.0/24
93.114.99.0/24
93.114.171.0/24
188.213.18.0/24
188.215.72.0/23
188.215.95.0/24
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
2a:42:01:5b:35:de:06:1d:ba:01:16:13:0b:7d:64:cb:f4:be:
6b:7e:b4:c8:9b:25:56:a2:ed:5c:f4:7b:09:8c:84:58:3e:2d:
27:6a:bd:02:ed:b7:a1:63:29:be:24:81:79:d0:70:a3:a1:8b:
3c:11:87:63:e8:4c:24:35:ff:2c:25:c5:1c:72:80:d6:89:0d:
8d:25:02:f7:91:67:64:1a:1c:6f:5d:a9:9a:cf:29:c6:36:93:
84:8c:a5:f2:51:ec:d3:eb:2b:48:4f:fa:9b:4f:58:56:c3:54:
2b:42:ff:6d:62:4d:f4:dd:bb:e5:d5:ac:74:16:0a:ac:f7:a3:
3a:cc:a3:48:b7:01:c5:5f:07:11:01:07:94:25:e9:01:6d:d9:
0c:64:f6:0f:71:33:6d:a3:fa:34:1e:78:96:2c:1d:90:d3:68:
ff:8a:e3:fa:04:c5:2c:a0:11:2a:27:1b:79:1a:cb:43:0b:0b:
a1:f4:cb:83:54:5d:3f:cb:2f:77:49:45:ad:ed:92:41:86:07:
76:d5:c6:ae:74:60:4c:73:7d:5f:9b:49:73:6b:94:d3:ad:27:
ab:30:73:f0:26:4d:19:eb:3c:11:8c:ac:46:c1:10:6e:46:69:
e6:d9:df:6e:34:51:06:e5:74:b8:5a:ab:1e:b8:e0:b2:a4:a1:
fc:39:85:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 18:00:52 2024 by rpki-client on console-ams.rpki-client.org