Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/l-0sVeSUINZPCrefkSZH4oN1ShY.roa
File: l-0sVeSUINZPCrefkSZH4oN1ShY.roa (raw, json)
Hash identifier: jbI67CUmMyG9F4HfJct55fE1A5OghJSFUN88PIi3c2A=
Subject key identifier: 97:ED:2C:55:E4:94:20:D6:4F:0A:B7:9F:91:26:47:E2:83:75:4A:16
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 018FC5945138D80CC48ED8D6805254F00914
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/l-0sVeSUINZPCrefkSZH4oN1ShY.roa
Signing time: Wed 29 May 2024 18:19:42 +0000
ROA not before: Wed 29 May 2024 18:19:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34450
IP address blocks: 85.204.125.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
86.106.104.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.37.136.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
89.43.45.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.44.209.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
93.113.203.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
93.114.171.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.73.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 03 Jun 2024 14:25:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c5:94:51:38:d8:0c:c4:8e:d8:d6:80:52:54:f0:09:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: May 29 18:19:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97ed2c55e49420d64f0ab79f912647e283754a16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f5:d6:d5:e0:4e:35:4b:32:47:56:6f:e6:03:
5c:6c:a7:25:ef:70:ee:d1:36:18:0e:cf:47:61:27:
1f:d1:48:79:b7:9c:2f:4f:29:7e:d7:89:cb:48:a1:
22:58:c9:85:34:8d:e3:b9:73:09:f9:47:61:23:b2:
1e:99:3d:05:09:cb:5a:a8:5f:cb:1d:f9:58:6d:87:
e8:18:e0:47:4b:39:f4:70:20:5c:36:eb:2a:f4:7b:
c1:b5:4c:43:92:5a:d2:67:61:a4:b3:95:ef:74:a6:
f0:12:c6:2f:98:6b:33:d9:14:af:00:75:40:b7:a7:
c1:ec:72:40:d9:98:21:a7:05:ff:55:fb:dd:67:f9:
12:24:24:53:f4:55:ea:fe:ce:98:a1:c9:35:d8:e0:
b8:6f:31:1f:3b:f4:8d:94:64:f9:6c:50:1f:8f:e5:
83:1c:00:21:2b:40:0d:2c:fc:d3:88:64:ba:d4:9c:
9f:a6:7a:81:49:1f:7e:87:5a:48:02:4b:10:ff:d6:
3d:c7:6e:18:b7:94:dc:e2:86:a9:d8:bf:da:19:98:
e9:7d:7d:08:03:bf:3d:6a:1d:fc:a4:98:73:1b:ae:
03:c3:f2:77:70:a5:95:de:67:55:a1:6e:a0:1a:19:
ef:ce:7f:2e:cd:92:42:b8:90:86:91:69:36:d3:b1:
df:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:ED:2C:55:E4:94:20:D6:4F:0A:B7:9F:91:26:47:E2:83:75:4A:16
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/l-0sVeSUINZPCrefkSZH4oN1ShY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
86.106.80.0/24
86.106.104.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.45.0-89.43.46.255
89.44.209.0/24
93.113.158.0/24
93.113.203.0/24
93.114.55.0/24
93.114.99.0/24
93.114.171.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
ac:af:40:ef:7f:fc:dd:fb:6d:6b:36:ab:dc:5c:a3:f2:88:30:
da:2a:d5:0c:d1:0f:b0:1a:e9:1e:79:0b:20:89:f2:c2:eb:be:
fb:11:9a:21:d5:4f:3a:aa:c3:bc:67:34:f5:36:9a:0f:bf:81:
de:8e:52:f0:b8:e3:67:a7:bf:94:a7:b6:32:26:ff:a7:b5:3e:
45:76:68:5e:8b:32:10:a7:06:b0:9d:0d:92:e6:e1:4b:31:f0:
42:a8:c8:13:82:73:ce:bf:08:5c:87:ae:da:a5:6c:1e:1a:2d:
6b:81:10:9a:7c:50:b7:4e:c6:9f:18:06:9c:5a:af:45:b8:f4:
e1:3e:17:73:30:5a:75:76:21:15:d6:e6:05:b2:27:51:b0:67:
b6:d3:90:30:75:d6:26:e8:6a:29:02:32:79:5d:b5:21:a7:82:
29:0e:b7:50:28:f8:19:b1:bc:30:fa:33:bf:64:01:43:d7:55:
b0:52:2a:be:6c:a9:60:cb:3a:af:fb:79:88:0a:5e:58:ce:9b:
11:ad:da:8f:b4:fd:70:0e:81:1a:76:f0:ca:fe:ef:1b:31:58:
62:e1:3d:12:e9:dc:30:6a:e9:28:b5:97:e9:68:85:1b:60:24:
e7:55:ce:c1:45:36:02:a5:56:2a:5a:06:53:cc:b9:85:ad:94:
d7:13:38:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org