Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e19c6-defd-455f-90a3-88ed8d7717a4/1/NzbkRf55IjYcz3XO2UvB_A-tYMQ.roa
File: NzbkRf55IjYcz3XO2UvB_A-tYMQ.roa (raw, json)
Hash identifier: 96QN28ZmpJg1Vz2Yxa/oYELYGArBm/t4tjudvprLtKg=
Subject key identifier: 37:36:E4:45:FE:79:22:36:1C:CF:75:CE:D9:4B:C1:FC:0F:AD:60:C4
Certificate issuer: /CN=a49c4e0cf5c8dbbb6a67cf1da2f31f4162749fdd
Certificate serial: 018BDDF8F1E68FBAED340A91D2C1D06DA592
Authority key identifier: A4:9C:4E:0C:F5:C8:DB:BB:6A:67:CF:1D:A2:F3:1F:41:62:74:9F:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pJxODPXI27tqZ88dovMfQWJ0n90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e19c6-defd-455f-90a3-88ed8d7717a4/1/NzbkRf55IjYcz3XO2UvB_A-tYMQ.roa
Signing time: Fri 17 Nov 2023 15:49:21 +0000
ROA not before: Fri 17 Nov 2023 15:49:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202087
IP address blocks: 185.83.148.0/23 maxlen: 23
185.83.150.0/23 maxlen: 23
94.26.95.0/24 maxlen: 24
94.26.93.0/24 maxlen: 24
94.26.98.0/23 maxlen: 23
94.26.97.0/24 maxlen: 24
94.26.101.0/24 maxlen: 24
94.26.103.0/24 maxlen: 24
94.26.109.0/24 maxlen: 24
104.255.128.0/21 maxlen: 21
185.75.80.0/22 maxlen: 22
185.49.216.0/22 maxlen: 22
153.94.56.0/21 maxlen: 21
185.94.78.0/23 maxlen: 23
185.94.76.0/23 maxlen: 23
45.94.8.0/22 maxlen: 24
185.9.212.0/22 maxlen: 22
192.190.168.0/22 maxlen: 22
94.190.197.0/24 maxlen: 24
94.190.196.0/22 maxlen: 22
94.190.196.0/24 maxlen: 24
94.190.199.0/24 maxlen: 24
94.190.198.0/24 maxlen: 24
45.89.212.0/22 maxlen: 22
2a03:50c0:1000::/36 maxlen: 36
2a03:50c0:3300::/40 maxlen: 40
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:dd:f8:f1:e6:8f:ba:ed:34:0a:91:d2:c1:d0:6d:a5:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a49c4e0cf5c8dbbb6a67cf1da2f31f4162749fdd
Validity
Not Before: Nov 17 15:49:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3736e445fe7922361ccf75ced94bc1fc0fad60c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b4:cb:fa:00:be:63:ea:1a:90:ad:3b:7e:52:
b9:e6:75:21:4b:8d:4e:4f:e1:02:a3:26:71:4e:a8:
d2:be:48:a6:c4:05:6d:38:9d:dc:7a:3e:17:59:30:
7d:93:91:91:ba:df:91:8d:43:98:12:61:13:24:86:
86:82:70:d7:20:03:36:ad:a3:94:aa:a7:f3:4a:c2:
e3:a6:52:53:2f:87:f9:e9:1c:ef:03:ba:1a:1d:4e:
a5:bf:55:47:79:f2:10:4e:d3:20:32:26:b4:0c:62:
5b:69:f0:2d:ae:74:2c:d9:ac:71:5f:27:b7:75:c0:
af:cf:e0:43:06:1a:8e:ac:71:cd:31:9c:c6:5d:6a:
a0:a5:6a:2c:d3:80:8a:25:f0:22:a8:0a:90:ec:22:
49:02:a2:1a:0f:d1:cf:ee:a3:77:6f:df:78:33:93:
02:dc:79:90:e3:5f:d8:e4:43:2b:ab:11:23:58:72:
cf:54:68:97:74:bc:37:e3:c3:a2:3b:1f:1c:31:0d:
7e:d2:a1:8e:03:d8:37:a6:56:47:97:62:c8:92:4a:
5c:c6:5e:4d:02:a6:b3:cf:4f:41:d4:b6:f4:2a:5f:
c2:f3:de:3b:46:16:7c:c9:43:e6:1b:db:4d:a8:8d:
96:be:5b:2b:88:61:a7:b6:6d:9c:86:41:f5:bb:9f:
21:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:36:E4:45:FE:79:22:36:1C:CF:75:CE:D9:4B:C1:FC:0F:AD:60:C4
X509v3 Authority Key Identifier:
keyid:A4:9C:4E:0C:F5:C8:DB:BB:6A:67:CF:1D:A2:F3:1F:41:62:74:9F:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pJxODPXI27tqZ88dovMfQWJ0n90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e19c6-defd-455f-90a3-88ed8d7717a4/1/NzbkRf55IjYcz3XO2UvB_A-tYMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e19c6-defd-455f-90a3-88ed8d7717a4/1/pJxODPXI27tqZ88dovMfQWJ0n90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.212.0/22
45.94.8.0/22
94.26.93.0/24
94.26.95.0/24
94.26.97.0-94.26.99.255
94.26.101.0/24
94.26.103.0/24
94.26.109.0/24
94.190.196.0/22
104.255.128.0/21
153.94.56.0/21
185.9.212.0/22
185.49.216.0/22
185.75.80.0/22
185.83.148.0/22
185.94.76.0/22
192.190.168.0/22
IPv6:
2a03:50c0:1000::/36
2a03:50c0:3300::/40
Signature Algorithm: sha256WithRSAEncryption
7a:27:45:a3:b1:7a:93:0c:26:d4:f8:92:6c:f1:26:47:a9:29:
ee:11:40:52:9d:b2:d0:05:85:49:20:2b:1e:3d:de:1b:5a:c4:
5d:17:08:45:67:e5:b7:2a:4d:d3:26:e5:f8:24:1f:09:9c:34:
89:64:61:d7:92:e6:7b:46:85:3b:6f:da:33:a9:55:f7:95:5a:
0a:49:90:5e:cf:a6:b0:fb:30:a2:31:e0:1d:6e:60:d7:8c:f0:
05:a5:1b:0c:a5:9f:ca:42:90:2f:54:78:1c:48:9e:fd:a7:ce:
b0:1d:5e:da:90:ef:8c:cb:2e:3b:5c:0d:87:80:f8:d6:4b:c9:
f4:ed:20:50:f8:d2:20:cc:25:0f:05:31:14:e5:d3:45:46:ab:
6e:b7:07:63:60:13:9f:9a:0a:cc:6a:51:b9:6e:6e:2f:fa:a6:
e9:b6:31:d3:42:94:45:72:a2:fe:65:e0:1c:67:1d:25:27:69:
79:09:a5:23:ec:79:27:fb:31:08:a0:fa:27:79:b4:28:ad:b7:
c9:ff:d5:c3:59:4b:1c:c8:2e:3d:a6:15:28:c4:47:ae:9e:72:
59:bb:60:f8:68:1a:49:3a:a2:15:26:27:dc:be:85:c4:37:b7:
c6:18:5a:d4:e7:88:c3:80:a4:26:99:31:01:29:bb:2b:43:46:
aa:60:b8:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:21 2024 by rpki-client on console-ams.rpki-client.org