Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/n0Hj15TEAOrGC0RH99fOT4Wx6YA.roa
File: n0Hj15TEAOrGC0RH99fOT4Wx6YA.roa (raw, json)
Hash identifier: M9uSG8JOkTCYuqENomkVLJw1OubFie9h11u7kn9u+0g=
Subject key identifier: 9F:41:E3:D7:94:C4:00:EA:C6:0B:44:47:F7:D7:CE:4F:85:B1:E9:80
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 018FDE7DA6BA7CEAD42DAD0C9BAC39783D9B
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/n0Hj15TEAOrGC0RH99fOT4Wx6YA.roa
Signing time: Mon 03 Jun 2024 14:25:27 +0000
ROA not before: Mon 03 Jun 2024 14:25:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34450
IP address blocks: 85.204.125.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
86.106.104.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.37.136.0/24 maxlen: 24
89.43.45.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.44.209.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
93.113.203.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
93.114.171.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.73.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 16 Jul 2024 11:31:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:de:7d:a6:ba:7c:ea:d4:2d:ad:0c:9b:ac:39:78:3d:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jun 3 14:25:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9f41e3d794c400eac60b4447f7d7ce4f85b1e980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:f4:7a:e2:77:d5:ed:de:cb:9f:ef:a0:a6:dd:
4b:9a:3c:54:c2:8b:7b:00:93:92:4b:82:f0:53:6f:
a5:06:51:f6:4f:be:bd:fe:48:a4:79:39:3c:d6:c0:
34:18:8b:23:dd:e0:8a:76:94:3f:91:19:fc:b5:8d:
a5:ae:8c:94:19:c3:18:3c:a3:52:74:e2:c2:b3:e6:
39:2b:17:34:55:4c:34:36:88:e8:3b:dd:0a:d0:b1:
a3:c3:59:f2:05:41:b3:b4:ff:16:22:b0:b9:10:7f:
be:55:0f:7f:80:e7:bf:e1:62:27:53:96:aa:15:5b:
9b:83:45:9e:87:71:6a:5e:eb:de:7b:5c:ad:56:48:
5c:09:19:13:d7:ce:8d:86:9c:77:92:52:47:98:c0:
ee:b0:52:1b:2e:f0:75:69:28:ff:8f:84:53:13:46:
21:ae:c9:34:d5:3c:65:09:b2:ab:ec:2a:5a:10:95:
5d:83:56:b9:48:70:00:97:ec:52:29:5c:4e:7f:6f:
ab:d0:d6:ed:32:ba:6b:5b:b7:a6:f6:d3:11:3a:3a:
af:ee:a2:29:e4:87:dc:1f:09:76:56:cf:74:37:8b:
4b:ea:80:41:51:19:0d:38:a8:07:da:62:9d:8a:7f:
f9:61:d1:60:5b:9c:3a:be:3c:52:94:28:fd:6f:d4:
a1:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:41:E3:D7:94:C4:00:EA:C6:0B:44:47:F7:D7:CE:4F:85:B1:E9:80
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/n0Hj15TEAOrGC0RH99fOT4Wx6YA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
86.106.80.0/24
86.106.104.0/24
89.34.8.0/21
89.37.136.0/24
89.43.45.0-89.43.46.255
89.44.209.0/24
93.113.158.0/24
93.113.203.0/24
93.114.55.0/24
93.114.99.0/24
93.114.171.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
b3:6a:a3:44:1a:b2:0c:f0:14:4d:f4:c4:01:1d:9b:53:4a:da:
57:d7:b8:cb:db:0f:59:97:59:7c:50:bc:88:ab:c2:4e:ff:fa:
c2:b5:c3:2d:00:2e:f0:0d:59:64:b0:27:18:06:c6:4e:d8:2d:
5a:af:98:f2:ef:29:b1:54:6e:80:df:fe:9c:7a:67:d7:7f:3a:
1f:86:7e:71:f9:ae:ec:a0:b0:bd:f7:1a:ea:7c:d4:60:51:f1:
3d:b0:2c:16:1e:4d:dc:2c:bb:49:b1:91:d5:40:18:db:a5:04:
64:1c:12:cf:97:15:4a:a8:db:59:40:b9:6b:ad:c3:36:65:a6:
e4:28:72:57:57:13:14:c8:6f:7b:58:47:7b:3c:5a:27:ad:49:
06:4c:d9:c3:73:4a:33:c4:5c:d4:e9:be:aa:25:f9:ad:d2:f6:
39:9a:70:80:6a:f6:6d:49:73:c9:09:14:4f:6a:75:4b:b4:25:
c9:07:62:0a:84:f3:03:37:5e:f0:27:b2:de:64:a8:ad:a3:ec:
44:54:ad:cd:65:8c:1f:66:10:2f:bd:ed:70:73:5a:e5:8b:f0:
00:06:4b:fa:b7:78:7e:d5:06:67:ce:0d:7d:42:6d:de:04:b4:
15:ee:24:46:df:48:39:14:00:57:ea:29:aa:fc:f0:d1:87:2e:
fb:a7:e0:a5
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jul 16 15:47:46 2024 by rpki-client on console-fra.rpki-client.org