Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/ix-h8RYJZsulIfPiyKBbL6Y1Gsg.roa
File: ix-h8RYJZsulIfPiyKBbL6Y1Gsg.roa (raw, json)
Hash identifier: 1AKEuTArYWNfrHaI3yMaCKp8YBnPHAWhmCH5jGlZbtc=
Subject key identifier: 8B:1F:A1:F1:16:09:66:CB:A5:21:F3:E2:C8:A0:5B:2F:A6:35:1A:C8
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 018989796B770E8CCD6D7CAFEBE2D1873630
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/ix-h8RYJZsulIfPiyKBbL6Y1Gsg.roa
Signing time: Mon 24 Jul 2023 19:56:23 +0000
ROA not before: Mon 24 Jul 2023 19:56:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.43.0/24 maxlen: 24
89.43.44.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
93.114.187.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
89.45.34.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.72.0/24 maxlen: 24
188.215.73.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 01 Aug 2023 15:58:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:89:79:6b:77:0e:8c:cd:6d:7c:af:eb:e2:d1:87:36:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jul 24 19:56:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b1fa1f1160966cba521f3e2c8a05b2fa6351ac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:62:76:29:ac:87:77:37:6c:02:de:e8:26:73:
ab:92:8f:23:7c:8f:ca:23:f3:d5:4c:79:99:6a:f8:
34:4d:d2:fe:00:e5:24:9a:0c:48:bc:10:14:b3:d0:
0a:b1:0e:99:4a:6f:ea:3a:4a:fa:93:c6:a6:f7:9d:
77:7e:cf:97:e4:6b:c5:95:ce:66:54:e9:11:83:21:
3f:93:79:82:c7:2a:a2:24:a1:2e:ea:ce:af:00:c5:
39:3b:18:c7:63:d1:c2:a9:ed:c9:99:a4:9e:59:68:
f7:8e:72:80:39:c6:42:2f:44:62:f2:93:7a:3e:c7:
d3:9e:7a:b6:c0:e1:18:f4:e4:8b:88:32:d9:85:17:
ea:dd:32:b6:21:29:d1:cc:d9:5f:c5:d7:0a:31:e9:
61:a6:e8:88:f3:ed:bd:34:55:94:7b:f8:64:cc:73:
61:ec:10:4d:3d:c6:a0:44:a6:e0:22:ae:df:a9:27:
f7:fc:af:d9:fb:86:51:a0:1a:56:1a:97:2c:60:38:
de:9b:07:12:0f:5c:ac:8e:9b:f7:f4:b1:5b:82:b0:
55:6c:bb:40:9b:49:30:40:1c:4b:fc:bf:8f:1b:ec:
58:a3:a5:4c:7b:e3:16:20:03:27:af:d1:0f:51:f2:
81:da:78:ba:7f:eb:fd:34:95:36:5f:5b:53:55:fc:
43:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:1F:A1:F1:16:09:66:CB:A5:21:F3:E2:C8:A0:5B:2F:A6:35:1A:C8
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/ix-h8RYJZsulIfPiyKBbL6Y1Gsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.127.0/24
86.106.80.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.40.0/24
89.43.42.0-89.43.44.255
89.43.46.0/24
89.43.73.0/24
89.45.34.0/24
93.113.158.0/24
93.114.55.0/24
93.114.99.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
58:ec:e3:41:d0:fe:60:ad:5d:71:cf:8b:1c:9e:d9:86:6b:51:
97:01:44:d3:2f:9a:65:3d:ea:f3:9b:2c:74:86:11:9b:73:16:
42:4c:85:16:b1:f1:ba:39:f2:40:c4:0b:78:1a:cf:4b:4b:14:
6e:4d:b0:96:ab:29:ea:7a:b4:f3:15:b2:ab:e3:ed:42:f7:e6:
89:86:61:c1:57:c7:38:76:da:8a:cb:a3:fa:82:83:3c:63:8b:
98:29:13:14:ed:fa:1b:85:39:25:81:0a:91:7e:ec:d5:1f:66:
3f:13:82:6a:06:69:bb:c1:11:bc:cb:ec:77:35:0d:36:25:9b:
f0:38:3f:a2:a9:97:38:ce:29:bb:2f:04:2a:45:73:95:28:06:
83:bd:0e:e6:45:5c:f5:84:e8:f3:fa:a8:df:be:d8:62:4d:5b:
87:ca:8c:59:5f:2d:36:0c:56:9e:5b:02:cf:f1:98:c8:0d:ab:
3b:13:dd:be:aa:35:32:96:79:67:97:db:59:d0:f5:a0:28:f3:
c3:9a:01:58:c7:96:ca:9b:ed:a2:63:20:b0:1f:e7:00:9a:94:
d7:3a:6c:67:eb:ee:6a:10:f1:26:3d:42:11:ff:8f:58:2b:2b:
f8:73:89:55:a8:48:26:14:d3:d7:a5:9d:22:78:8c:12:8d:b4:
d6:f0:5b:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org