Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/ibWA43p84dsbo5h06nnexR9_-QI.roa
File: ibWA43p84dsbo5h06nnexR9_-QI.roa (raw, json)
Hash identifier: gADPZUzR1XgrqyWYmTbojwEyBqv9ZI3YZBhL4E3+vMo=
Subject key identifier: 89:B5:80:E3:7A:7C:E1:DB:1B:A3:98:74:EA:79:DE:C5:1F:7F:F9:02
Certificate issuer: /CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Certificate serial: 018A26E1155905E7A987F9BE990A5986DFC6
Authority key identifier: 08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/ibWA43p84dsbo5h06nnexR9_-QI.roa
Signing time: Thu 24 Aug 2023 09:29:59 +0000
ROA not before: Thu 24 Aug 2023 09:29:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206617
IP address blocks: 188.241.251.0/24 maxlen: 24
195.2.218.0/23 maxlen: 23
193.178.224.0/23 maxlen: 23
185.18.24.0/22 maxlen: 24
31.14.184.0/21 maxlen: 22
188.213.16.0/24 maxlen: 24
188.241.186.0/24 maxlen: 24
188.213.40.0/21 maxlen: 22
93.114.170.0/24 maxlen: 24
188.240.42.0/24 maxlen: 24
188.240.44.0/23 maxlen: 23
188.241.153.0/24 maxlen: 24
93.114.245.0/24 maxlen: 24
93.115.210.0/24 maxlen: 24
185.167.52.0/22 maxlen: 24
89.40.234.0/23 maxlen: 23
89.32.152.0/23 maxlen: 23
2a03:f140::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 25 Aug 2023 15:33:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:26:e1:15:59:05:e7:a9:87:f9:be:99:0a:59:86:df:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Validity
Not Before: Aug 24 09:29:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89b580e37a7ce1db1ba39874ea79dec51f7ff902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f8:28:01:76:49:22:6e:a4:93:ff:67:e5:3d:
3f:b4:f4:ef:53:8b:e3:38:5b:06:27:ea:12:7d:65:
9f:9e:da:ab:94:02:5f:11:1a:22:5d:01:28:d2:f4:
f1:f9:05:96:2f:b5:79:fd:48:2e:9a:d8:ad:4a:cb:
ea:56:3b:db:b9:1a:3e:15:78:41:98:9e:e6:11:30:
47:37:45:f5:70:3e:2a:3b:43:a4:2a:21:0c:4d:59:
c0:0a:88:a9:98:01:d6:a2:d5:0a:d5:ce:89:c1:c4:
52:84:7b:d2:71:d2:fd:e4:f6:dd:f2:7a:fa:18:28:
7d:fa:1e:d6:c7:12:0e:54:4d:e5:7d:ac:ea:bb:a5:
74:85:9f:2c:e2:00:7a:e3:32:e3:dd:90:0c:d1:5c:
89:8c:25:16:0b:db:3c:62:b1:9f:92:84:12:b8:5c:
36:74:d5:aa:95:4f:c3:b4:35:0b:29:ea:a4:43:4b:
0d:d6:dd:34:84:e0:d7:cf:a4:8a:d1:0b:c9:c7:25:
fc:5a:8b:f2:c7:30:c9:aa:4a:07:2b:ac:0e:9f:7d:
b7:85:86:74:6e:be:87:d5:41:cc:26:de:b6:44:3c:
c8:28:38:6e:f6:6d:8e:46:16:f9:25:e8:3a:db:79:
21:e8:9d:00:46:58:aa:c0:4c:e8:19:e3:d1:cc:4f:
8f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B5:80:E3:7A:7C:E1:DB:1B:A3:98:74:EA:79:DE:C5:1F:7F:F9:02
X509v3 Authority Key Identifier:
keyid:08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/ibWA43p84dsbo5h06nnexR9_-QI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.184.0/21
89.32.152.0/23
89.40.234.0/23
93.114.170.0/24
93.114.245.0/24
93.115.210.0/24
185.18.24.0/22
185.167.52.0/22
188.213.16.0/24
188.213.40.0/21
188.240.42.0/24
188.240.44.0/23
188.241.153.0/24
188.241.186.0/24
188.241.251.0/24
193.178.224.0/23
195.2.218.0/23
IPv6:
2a03:f140::/32
Signature Algorithm: sha256WithRSAEncryption
84:5c:db:97:18:b4:d0:1f:79:a1:1a:79:9b:01:5b:d1:a8:95:
1c:a9:fb:3e:ed:95:10:93:db:93:e8:e2:f8:6d:0a:14:6b:c0:
5c:86:2f:d8:cf:fe:5c:f3:b0:87:5b:f0:6d:b2:68:25:e5:b7:
1c:d1:36:a0:17:b5:49:20:10:f5:09:ab:ff:40:e3:5d:29:67:
a5:d6:94:d1:71:fd:4b:38:ae:0e:64:c6:dd:4d:61:48:c3:5a:
a8:11:af:f3:00:15:73:2b:56:b7:af:dc:f5:b7:21:4e:24:53:
c2:6f:d4:51:f1:3d:d8:cf:32:48:49:b9:19:2c:49:66:bf:6e:
75:39:e6:ca:65:6e:2e:b2:0b:d0:ec:09:14:fd:2e:ee:57:33:
1f:c1:00:ff:cb:8e:a8:2e:99:36:09:13:dd:79:e4:fc:1b:40:
87:74:7e:84:57:22:17:6f:2c:00:8b:fd:90:e0:33:51:f0:ed:
ec:51:8f:f9:c8:89:e4:87:0e:07:5c:ff:31:24:ac:3d:f9:fb:
27:20:9f:8c:93:95:f3:1a:5b:cc:a5:78:ba:e7:38:53:ce:11:
d8:74:31:4b:b9:f5:03:1e:2b:14:0b:06:61:58:08:1c:4b:be:
4a:a2:33:cf:5b:15:67:da:93:9c:9c:8d:80:6a:65:74:38:4d:
13:2b:5c:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:54 2024 by rpki-client on console-fra.rpki-client.org