Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/nJNWQRqU7K_w7fNQb28uEosm4Ns.roa
File: nJNWQRqU7K_w7fNQb28uEosm4Ns.roa (raw, json)
Hash identifier: v8x9QLvPQ8HYFkhQfTEIdM8tqidicwqWxXNfGxdMrh4=
Subject key identifier: 9C:93:56:41:1A:94:EC:AF:F0:ED:F3:50:6F:6F:2E:12:8B:26:E0:DB
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0188B6403D4454A60683E146C8D2D75BC591
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/nJNWQRqU7K_w7fNQb28uEosm4Ns.roa
Signing time: Tue 13 Jun 2023 19:34:03 +0000
ROA not before: Tue 13 Jun 2023 19:34:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.44.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
93.114.187.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
85.204.125.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.73.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 15 Jun 2023 19:35:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b6:40:3d:44:54:a6:06:83:e1:46:c8:d2:d7:5b:c5:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jun 13 19:34:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c9356411a94ecaff0edf3506f6f2e128b26e0db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:70:8f:28:52:a5:5f:cd:0b:44:f2:89:57:5e:
f3:2c:f3:29:96:4c:96:d3:b2:47:e6:70:30:6a:e8:
eb:b2:5c:8c:fe:5b:5b:0d:6e:fc:ea:57:38:c7:d1:
39:43:d1:49:87:ad:85:94:f6:60:b5:f7:70:30:b8:
46:3d:29:f3:ac:19:ba:12:de:c3:b0:66:e7:cc:99:
82:03:5f:da:88:7f:a2:3f:8b:f2:7f:59:5b:02:8d:
5f:01:43:65:c1:af:29:dc:29:41:9b:db:6c:c2:b1:
48:83:74:ea:79:f6:b3:f5:50:d5:cf:3d:89:67:68:
fa:cc:98:5d:df:0a:ac:76:04:ab:0d:3e:28:4c:2e:
18:14:40:5c:a6:1f:46:29:db:2b:79:4f:6a:d0:40:
e4:0a:7d:24:7b:5f:71:6b:bb:25:eb:eb:29:94:9d:
a4:3f:cd:8b:52:d0:1f:fc:25:30:20:6d:ef:51:d1:
2c:d0:fd:3e:99:2a:a3:79:1d:77:60:c7:f7:c0:37:
7d:98:3b:0d:e5:02:93:7f:c5:7a:ba:0b:8d:45:d6:
66:4f:d2:de:3f:53:0a:9e:38:63:1b:a1:1f:5f:a4:
b7:1e:43:e2:39:a5:cd:fa:94:d9:64:6f:99:df:79:
b5:26:21:04:b2:0e:5d:4c:ae:cb:53:f7:bf:63:2b:
e9:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:93:56:41:1A:94:EC:AF:F0:ED:F3:50:6F:6F:2E:12:8B:26:E0:DB
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/nJNWQRqU7K_w7fNQb28uEosm4Ns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
85.204.127.0/24
86.106.80.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.40.0/24
89.43.42.0/24
89.43.44.0/24
89.43.46.0/24
89.43.73.0/24
93.113.158.0/24
93.114.55.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
24:ed:8e:ce:cb:e1:d9:4a:db:07:70:e4:cb:21:7d:ae:a5:6f:
55:de:d6:fa:6f:67:bf:fa:7d:4e:9e:06:df:f5:16:40:a2:94:
43:69:99:8d:ca:15:f3:9e:ac:8f:00:f8:97:67:59:65:0e:57:
b7:28:30:35:bb:15:fe:ee:07:43:cd:59:31:94:64:fd:a4:ba:
83:03:ad:c8:8b:92:1a:14:fb:d2:33:8d:e8:5d:95:56:df:6b:
a4:70:54:7d:01:95:3f:36:e3:8f:71:85:2b:a7:d3:8a:b0:92:
14:75:ef:f8:78:ae:b5:c2:c5:d0:5a:81:38:9a:15:4a:10:63:
a8:42:5a:a2:e5:c2:40:e7:06:53:d0:81:01:49:63:74:4f:78:
e1:c0:f0:5e:66:27:ae:80:c7:9b:60:80:78:a7:c6:26:74:0b:
f3:38:5a:61:6e:8f:20:07:4b:d1:26:86:6e:fa:ef:2b:d9:f5:
f4:c0:49:40:5c:2d:c1:cd:3d:0c:f6:0a:81:ac:2a:7a:69:e9:
0b:34:7b:c2:06:32:26:20:6d:97:08:ca:4b:3b:c2:53:6f:eb:
a5:18:1b:e7:a7:26:d6:42:65:0d:0d:85:88:d3:c2:b6:b1:d1:
6f:47:3d:88:41:02:28:d0:fb:5f:61:d7:83:45:0d:27:a9:66:
5b:01:48:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org