Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/xtL0jnuv-NuTNc9mUgy3uffpkiA.roa
File: xtL0jnuv-NuTNc9mUgy3uffpkiA.roa (raw, json)
Hash identifier: jAT9OY1iFY9zQt4CTzTGgrDv51FsL5uNKMVq8CZ1biA=
Subject key identifier: C6:D2:F4:8E:7B:AF:F8:DB:93:35:CF:66:52:0C:B7:B9:F7:E9:92:20
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0186C66FAEAC14B624D47AF48864DC39D5FF
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/xtL0jnuv-NuTNc9mUgy3uffpkiA.roa
Signing time: Thu 09 Mar 2023 12:54:13 +0000
ROA not before: Thu 09 Mar 2023 12:54:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.44.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
89.43.41.0/24 maxlen: 24
93.114.187.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
85.204.125.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.73.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 14 Mar 2023 10:24:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c6:6f:ae:ac:14:b6:24:d4:7a:f4:88:64:dc:39:d5:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Mar 9 12:54:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6d2f48e7baff8db9335cf66520cb7b9f7e99220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c8:be:ab:df:cd:5c:84:9b:28:96:1d:00:23:
57:34:d9:8b:48:27:0b:8b:36:c3:0b:c2:bc:02:55:
6d:f8:88:5f:28:be:0a:4e:25:c1:c5:51:f8:1c:1d:
06:41:df:14:3f:1d:60:ad:f8:e0:38:3b:f7:5e:f2:
8f:91:62:90:1b:0f:48:5f:df:ad:64:e1:27:5f:eb:
f9:2d:a4:49:37:26:93:9a:d3:9a:3b:b5:80:55:a5:
55:2a:04:fa:3d:14:b0:0a:4b:f4:1e:87:1b:99:b0:
28:84:9f:b3:29:23:aa:29:f6:c8:4b:89:24:7c:6d:
39:ed:5d:d4:fc:06:00:21:df:ef:dc:89:ba:91:30:
2c:4f:e3:a8:e1:ab:75:53:95:97:03:64:51:f9:70:
55:8e:28:a9:3e:34:34:ca:9f:43:b1:6d:24:0e:00:
4d:4f:8e:08:6a:11:c6:e0:6a:46:61:0b:23:32:02:
7d:bb:c6:78:d1:c5:43:d8:7a:c0:f9:64:ae:8a:c2:
6f:13:2a:e1:ef:fa:d5:24:d6:3a:b2:32:64:39:a4:
a0:3b:92:54:c1:08:34:6b:41:ba:f1:cb:ad:f5:c5:
80:ad:6c:1e:1e:cb:02:09:52:80:b3:2d:8d:90:5e:
08:d9:68:cc:6e:12:44:a5:30:e5:ae:28:24:4c:7a:
65:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D2:F4:8E:7B:AF:F8:DB:93:35:CF:66:52:0C:B7:B9:F7:E9:92:20
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/xtL0jnuv-NuTNc9mUgy3uffpkiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
85.204.127.0/24
86.106.80.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.40.0-89.43.42.255
89.43.44.0/24
89.43.46.0/24
89.43.73.0/24
93.113.158.0/24
93.114.55.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
8a:fd:69:5e:0b:c7:79:29:17:5f:70:a4:a3:5a:94:43:47:d1:
c9:da:22:09:0e:86:ed:42:4d:2c:43:10:7a:15:1f:7e:ea:dd:
d6:5a:e5:4b:df:ba:c6:61:96:a1:c4:e7:20:af:ea:1d:70:ec:
6e:30:b4:d3:77:e6:70:25:3e:56:4f:b4:e7:d8:70:97:3d:0d:
e4:6d:e9:57:88:29:ae:fb:32:f0:25:8f:b6:ba:31:84:57:dc:
17:8e:52:de:9f:06:2b:91:d4:d2:4b:1e:85:5b:96:15:56:31:
e1:e5:f6:c6:a3:9f:95:a9:01:dd:38:ab:a0:2b:0b:31:1d:48:
b5:82:3f:62:cb:13:24:38:51:2d:9e:71:83:69:de:86:98:44:
e7:2f:b8:4f:5c:32:cd:83:3e:b0:3b:8c:3b:0c:29:21:0d:ee:
92:b3:05:fe:dd:46:92:17:0b:54:64:92:77:d9:db:cf:03:78:
7e:63:dc:e5:b8:cc:94:2e:09:1a:7d:07:38:ed:20:18:57:10:
77:fa:5e:98:9d:25:92:76:c4:74:88:1c:c9:85:81:31:58:1f:
e5:d2:ff:12:7d:09:ba:95:c6:3b:b1:a1:32:02:c0:ea:6f:f4:
6d:f0:42:76:f3:5a:eb:0d:f0:d6:ff:0c:ca:e6:d1:e6:48:13:
a2:93:d2:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:38 2024 by rpki-client on console-ams.rpki-client.org