Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/n2ER1VWWbE-beoyLNmAXtS-im_k.roa
File: n2ER1VWWbE-beoyLNmAXtS-im_k.roa (raw, json)
Hash identifier: FpVDPmesz8TWI1QuJGRFx+97S4r8jvRgKMDcc0UXADw=
Subject key identifier: 9F:61:11:D5:55:96:6C:4F:9B:7A:8C:8B:36:60:17:B5:2F:A2:9B:F9
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 018B1AEBB154A5AA811681CBEF7CE50FDA62
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/n2ER1VWWbE-beoyLNmAXtS-im_k.roa
Signing time: Tue 10 Oct 2023 18:48:55 +0000
ROA not before: Tue 10 Oct 2023 18:48:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.43.0/24 maxlen: 24
89.43.45.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.45.34.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.72.0/24 maxlen: 24
188.215.73.0/24 maxlen: 24
93.114.187.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
86.106.104.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
93.114.171.0/24 maxlen: 24
85.204.125.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Oct 2023 15:47:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1a:eb:b1:54:a5:aa:81:16:81:cb:ef:7c:e5:0f:da:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Oct 10 18:48:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f6111d555966c4f9b7a8c8b366017b52fa29bf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ac:8f:72:64:96:32:e7:ab:53:c1:46:ac:d6:
b6:bf:74:37:2d:cf:ca:a1:ff:99:53:ce:2d:0d:ae:
f8:74:60:1b:34:2c:65:47:01:8e:2d:6c:94:48:74:
a8:94:47:c6:62:48:7a:c4:1c:4b:b6:98:2b:cb:23:
05:de:ed:a3:b9:e8:ad:a3:65:7f:83:7a:81:8c:64:
11:8b:78:09:0a:36:4c:d2:3e:44:05:f6:2a:fb:64:
db:ab:4c:bd:1a:bc:69:0d:93:55:2a:0d:50:ad:b1:
2f:e2:fc:bc:3d:8b:46:a2:4e:af:f1:8e:20:6a:e4:
33:3c:5e:79:9e:30:bb:1e:ed:c5:34:a7:0f:b4:e4:
83:7c:54:bf:72:57:a8:55:b0:8a:cc:77:26:39:0b:
6e:5e:b7:fc:61:84:ec:e4:1d:05:7b:49:02:60:75:
2a:d7:94:93:32:c0:ab:fb:23:65:dc:4f:83:e5:51:
8b:9f:fe:fc:e1:d3:2d:d4:02:24:6b:93:6e:79:18:
67:24:7c:ab:ca:7a:80:28:35:2e:bb:f6:8a:21:35:
d6:e2:3a:59:2d:e7:4c:0c:0c:4d:22:ba:42:02:c5:
48:34:5b:41:70:ab:0f:c2:5a:f0:61:0b:99:78:97:
84:eb:f0:21:55:11:bb:ec:c2:23:24:b7:61:61:0f:
ed:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:61:11:D5:55:96:6C:4F:9B:7A:8C:8B:36:60:17:B5:2F:A2:9B:F9
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/n2ER1VWWbE-beoyLNmAXtS-im_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
85.204.127.0/24
86.106.80.0/24
86.106.104.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.42.0/23
89.43.45.0-89.43.46.255
89.43.73.0/24
89.45.34.0/24
93.113.158.0/24
93.114.55.0/24
93.114.99.0/24
93.114.171.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
2d:7c:b3:db:bb:a6:08:0d:87:f6:3e:c4:c6:f1:5a:f3:c6:b9:
31:a1:dc:54:db:b2:f7:19:fe:3b:6a:88:55:80:83:ff:1b:9e:
cb:0e:83:68:f8:09:24:52:91:10:8a:9a:05:e0:f1:19:11:07:
4a:b9:b4:51:4d:ac:ce:8e:d9:64:f8:15:b7:a0:f5:9d:3a:10:
aa:49:0b:2f:84:46:a3:ae:06:81:ed:e3:e0:b2:58:58:52:a4:
ba:10:c7:ad:38:a3:f1:1d:bc:64:df:7d:4c:cd:dd:6f:32:74:
cd:20:af:96:90:94:6f:4d:f8:93:e2:7d:3f:be:2d:cf:e6:36:
91:50:11:f2:5e:a6:2f:11:e5:db:7a:88:b3:97:91:8d:5a:4f:
60:7a:63:d4:77:b4:98:66:ba:8e:4b:2c:25:e5:dd:24:03:2c:
d0:7d:68:8a:1f:4d:db:32:23:59:22:8d:a6:ce:a0:1b:d0:a2:
0b:e9:88:a1:50:2f:63:16:cd:3a:72:86:ef:61:09:06:6b:ef:
87:cb:84:66:57:fe:e9:28:e0:76:36:40:06:fd:3b:a4:49:db:
dc:5a:0d:df:de:80:8e:f0:1e:2a:14:51:0c:3c:7f:5f:e9:f3:
dc:bd:f6:bc:60:7e:56:13:09:bf:32:04:78:0d:6a:6f:39:8a:
ed:b9:35:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org