Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/kVvI9-7kdefxeBoO29Ll8u7HS18.roa
File: kVvI9-7kdefxeBoO29Ll8u7HS18.roa (raw, json)
Hash identifier: H/f/2E9PoXJ6eC934VKZNv5GA47hAovJ4JSbUAqOCCk=
Subject key identifier: 91:5B:C8:F7:EE:E4:75:E7:F1:78:1A:0E:DB:D2:E5:F2:EE:C7:4B:5F
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 01888B1B7405561EE6554615A9288DFEC4BC
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/kVvI9-7kdefxeBoO29Ll8u7HS18.roa
Signing time: Mon 05 Jun 2023 10:30:12 +0000
ROA not before: Mon 05 Jun 2023 10:30:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.44.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
93.114.187.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
89.43.45.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
85.204.125.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.73.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 05 Jun 2023 10:39:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8b:1b:74:05:56:1e:e6:55:46:15:a9:28:8d:fe:c4:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jun 5 10:30:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=915bc8f7eee475e7f1781a0edbd2e5f2eec74b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:32:ce:6e:22:c1:28:dd:f3:0c:af:f6:c2:76:
99:d9:16:d0:02:a9:bb:5b:ae:8c:e3:e6:2a:cb:8c:
f9:72:ea:8b:a5:76:22:aa:2c:9f:df:a2:c8:ef:b6:
d7:36:fd:1d:29:c5:1b:d3:2b:58:8d:f0:60:04:27:
40:53:5e:88:8a:26:81:c7:bf:d0:bc:11:fb:28:5f:
6b:26:3a:32:a3:13:88:d0:07:e1:c1:6f:c9:8a:bc:
2a:5f:6a:58:01:60:59:6e:86:6e:72:1f:e6:52:d4:
cc:92:b0:19:8a:fa:0d:ff:66:c5:ab:ec:74:19:92:
45:15:cf:f2:75:ae:82:a1:1b:65:48:7a:90:a4:e5:
a2:ee:be:21:15:bd:8f:56:52:15:e0:03:d7:28:21:
c0:cd:b5:6f:75:b8:aa:fe:ee:3c:4f:a7:c3:30:9d:
f2:7c:c2:75:e4:fa:e5:69:b2:b5:6c:d0:fc:8e:fd:
43:ac:2d:1f:70:b8:d8:c2:7f:6b:58:8b:ca:ee:45:
db:a3:8e:03:ce:01:82:c6:5a:ea:cb:f0:ff:39:a1:
2a:d4:56:c4:99:b9:b0:d7:91:8c:c4:a3:d9:87:ac:
ba:44:28:9a:5d:b4:25:63:88:d2:d8:48:6d:3b:d0:
66:7b:b1:99:39:a8:3f:d6:a0:ee:85:ea:d0:77:3f:
e3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:5B:C8:F7:EE:E4:75:E7:F1:78:1A:0E:DB:D2:E5:F2:EE:C7:4B:5F
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/kVvI9-7kdefxeBoO29Ll8u7HS18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
85.204.127.0/24
86.106.80.0/24
89.33.163.0/24
89.34.8.0/21
89.39.252.0/24
89.43.40.0/24
89.43.42.0/24
89.43.44.0-89.43.46.255
89.43.73.0/24
93.113.158.0/24
93.114.55.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
cc:84:9d:04:57:bc:dd:12:d4:9d:de:aa:31:ac:b1:68:4d:6f:
fa:75:70:5f:fb:4e:03:e3:4d:74:19:79:86:4b:1f:4f:8e:29:
97:e5:c9:58:80:97:0d:63:58:ab:bb:e0:18:9d:37:39:37:6c:
95:a4:bb:aa:af:67:8c:3c:6a:cd:e5:ee:0b:da:f2:29:7b:6d:
d5:6a:ee:4c:a4:9e:59:f7:22:dc:43:06:b2:5f:c5:99:cd:d4:
7f:4f:2d:87:cc:79:5d:c7:5b:e6:19:3e:9e:c8:f3:ad:9f:67:
18:b8:e3:79:5c:92:d9:3c:81:b8:f5:cc:46:72:47:f4:46:8c:
52:94:06:4d:9f:62:b3:4c:29:8d:8d:34:e1:eb:ac:bc:3d:a2:
d1:ec:6d:2d:f4:b0:71:c4:4d:d2:8e:b8:fd:e4:3d:db:4d:f9:
83:10:c7:01:36:48:a6:03:0f:56:27:bb:06:d2:f8:b5:f0:d5:
41:47:76:e0:fb:f4:ce:90:85:2d:0b:e9:e4:e1:95:ba:bd:a3:
ff:37:e8:da:e5:31:db:06:62:8a:9f:23:4f:dd:8d:98:5d:41:
ba:72:07:9a:ac:58:29:77:ef:b6:e5:bf:b4:53:38:bb:6c:dd:
1f:3b:e0:f4:7d:55:07:4b:16:cc:d3:5b:05:7e:1a:9d:a3:76:
29:4a:b0:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org