Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/sf6byoiuvJo6YkiDqa9LIDi1wCU.roa
File: sf6byoiuvJo6YkiDqa9LIDi1wCU.roa (raw, json)
Hash identifier: cy00rggaudX29gBQQi2JKdqAlmQtbcT0lBkmaFLA7rA=
Subject key identifier: B1:FE:9B:CA:88:AE:BC:9A:3A:62:48:83:A9:AF:4B:20:38:B5:C0:25
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 019146E0C12C4B610A538471EE42FE668140
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/sf6byoiuvJo6YkiDqa9LIDi1wCU.roa
Signing time: Mon 12 Aug 2024 13:56:59 +0000
ROA not before: Mon 12 Aug 2024 13:56:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34450
IP address blocks: 85.204.125.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
86.106.104.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.43.45.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.44.209.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
93.113.203.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
93.114.171.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.73.0/24 maxlen: 24
188.215.95.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 06 Sep 2024 10:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:46:e0:c1:2c:4b:61:0a:53:84:71:ee:42:fe:66:81:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Aug 12 13:56:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1fe9bca88aebc9a3a624883a9af4b2038b5c025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:81:bf:02:4d:50:bd:8f:81:22:e2:de:68:b3:
75:8b:e6:c9:4a:77:c3:4e:69:53:fc:04:78:b9:44:
0f:9b:68:12:84:30:10:5d:1d:3d:ef:c0:2f:15:bc:
d9:7d:cb:18:83:91:44:bc:71:7c:45:7f:04:a4:49:
5c:93:17:48:e0:e5:6f:6e:91:db:5c:b2:43:f6:3e:
b9:d1:9a:1e:a6:20:bb:78:b6:54:74:2e:aa:06:d0:
81:69:23:0a:47:79:2a:b4:df:56:16:c0:5a:dc:dd:
cf:f2:eb:04:68:b4:ab:ec:51:2c:ae:72:55:8c:30:
ec:11:c9:0c:73:1d:f0:ae:55:89:2a:f3:1f:b5:ad:
d8:5c:33:9c:f4:5c:2d:e3:ca:60:d7:6e:36:b6:dd:
af:a3:e3:8d:43:36:2e:1c:e0:36:21:54:4b:93:6b:
df:bd:3d:54:c2:e2:ed:d1:6f:63:8f:a4:8d:fe:6e:
52:2e:7a:47:a9:a1:40:f0:01:50:13:b9:ee:5e:cd:
c6:69:cb:6c:e1:2c:0f:e6:91:77:7c:8c:9a:f2:f9:
4e:f6:2b:05:74:96:b9:62:1c:df:3f:6d:9b:b3:44:
bb:e8:15:63:7d:db:41:06:2b:8d:33:d5:d6:24:21:
e0:0b:99:10:b3:b9:61:cf:ca:97:0d:6b:38:6a:5f:
77:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:FE:9B:CA:88:AE:BC:9A:3A:62:48:83:A9:AF:4B:20:38:B5:C0:25
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/sf6byoiuvJo6YkiDqa9LIDi1wCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
86.106.80.0/24
86.106.104.0/24
89.34.8.0/21
89.43.45.0-89.43.46.255
89.44.209.0/24
93.113.158.0/24
93.113.203.0/24
93.114.55.0/24
93.114.99.0/24
93.114.171.0/24
188.213.18.0/24
188.215.72.0/23
188.215.95.0/24
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
45:d4:58:f8:76:4f:4c:78:dc:d0:a0:4e:03:44:92:26:28:14:
6f:10:50:9c:dc:f5:81:ad:dc:19:99:ba:c4:85:c8:2f:b2:93:
2a:9d:29:0a:7c:88:64:74:87:82:de:9c:70:68:f6:00:67:08:
e7:23:1d:bc:80:d9:dd:1f:ad:9e:99:2e:23:04:3e:2d:81:61:
3f:75:2b:ef:9b:cc:5e:6b:5c:ed:7e:c6:18:0a:60:94:1c:de:
91:4d:3a:a4:7a:6f:8e:96:3c:b2:f5:3c:55:19:72:75:1a:47:
55:fe:62:fd:18:70:4a:e8:55:14:4d:dd:27:13:84:5e:8f:50:
fd:83:92:8e:af:6e:b3:cd:ad:53:c9:ce:bf:12:3f:e9:ce:68:
0b:d0:6a:83:c5:2c:aa:22:49:38:97:2a:6f:13:11:c3:a5:86:
c2:d1:80:3f:46:2b:44:de:d0:d0:0e:c0:15:3a:2a:1c:ac:86:
fe:88:79:78:6e:ec:61:83:e6:d6:f8:70:23:b9:7f:ac:a1:44:
09:a9:bc:48:89:45:51:41:b2:77:b7:46:91:33:ee:f3:5d:16:
bb:d2:1e:49:a0:cc:7f:97:2a:1b:8b:78:cc:e7:bd:bf:30:5e:
dd:c1:b2:de:bb:18:1b:b1:16:6c:2f:d4:d3:1c:dd:f7:92:1a:
fe:fc:40:40
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Sep 6 12:37:50 2024 by rpki-client on console-ams.rpki-client.org