Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/e9e087-e768-44d8-9ec8-88e4466915f8/1/_f0pn09Alm0UCHSmTBPYA7PY5YM.roa
File: _f0pn09Alm0UCHSmTBPYA7PY5YM.roa (raw, json)
Hash identifier: y9CjAQZmY7tGGeUlXE5DiZIagQVxEmfS41ZorZzdQJg=
Subject key identifier: FD:FD:29:9F:4F:40:96:6D:14:08:74:A6:4C:13:D8:03:B3:D8:E5:83
Certificate issuer: /CN=595b243a7233e571c3c173eb8249111906326019
Certificate serial: 01872B3951213566A9EA31F9E4857DDAF049
Authority key identifier: 59:5B:24:3A:72:33:E5:71:C3:C1:73:EB:82:49:11:19:06:32:60:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WVskOnIz5XHDwXPrgkkRGQYyYBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/e9e087-e768-44d8-9ec8-88e4466915f8/1/_f0pn09Alm0UCHSmTBPYA7PY5YM.roa
Signing time: Wed 29 Mar 2023 02:36:29 +0000
ROA not before: Wed 29 Mar 2023 02:36:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39824
IP address blocks: 79.134.37.0/24 maxlen: 24
79.134.42.0/23 maxlen: 24
79.134.40.0/24 maxlen: 24
46.36.132.0/22 maxlen: 24
46.36.130.0/23 maxlen: 24
80.249.142.0/23 maxlen: 24
46.36.128.0/23 maxlen: 24
46.36.156.0/23 maxlen: 24
81.88.144.0/21 maxlen: 24
212.45.82.0/23 maxlen: 24
212.45.80.0/23 maxlen: 24
212.45.94.0/23 maxlen: 24
62.84.36.0/22 maxlen: 24
62.84.44.0/23 maxlen: 24
62.84.48.0/20 maxlen: 24
213.232.242.0/23 maxlen: 24
213.232.246.0/23 maxlen: 24
185.102.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Mar 2023 02:37:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2b:39:51:21:35:66:a9:ea:31:f9:e4:85:7d:da:f0:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=595b243a7233e571c3c173eb8249111906326019
Validity
Not Before: Mar 29 02:36:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdfd299f4f40966d140874a64c13d803b3d8e583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:38:81:a8:d6:eb:4b:90:11:07:90:e8:c0:77:
0b:c5:eb:e3:b3:6a:37:d1:15:0c:92:37:e2:ff:e1:
6d:e0:42:58:07:5c:9b:25:b0:1a:57:3a:50:44:12:
ff:42:cc:6b:6e:21:cd:97:b2:15:ee:ed:c6:e9:0d:
1e:a5:84:d4:c8:97:ff:63:dd:a6:6f:99:d0:02:74:
54:f3:34:6d:ae:ae:a7:54:83:81:ac:1f:81:54:78:
de:49:e7:b3:7d:97:b8:c2:93:2a:f8:0e:93:97:a3:
00:74:f3:6a:a2:f6:8a:d6:df:4a:4c:88:d9:80:0d:
bd:fd:c2:d6:7b:0f:f9:e3:89:89:1f:7f:48:f8:fc:
f2:a8:c7:4d:07:13:e3:93:59:86:3a:bf:ed:dd:69:
50:b0:25:ef:f5:6c:78:47:45:5d:52:b5:96:9a:1e:
d7:d1:53:8b:88:a9:84:9e:aa:5d:d8:8c:8a:44:1e:
15:8b:4b:9e:a1:75:c0:50:bb:34:38:a3:75:9f:8f:
ec:5e:42:1a:11:59:24:b6:02:0b:42:3a:ca:93:ea:
ab:9d:87:e2:35:07:d6:f7:74:81:fa:31:37:4e:84:
b1:c2:af:a7:d5:37:14:84:75:4e:11:52:69:ad:c9:
fc:ad:11:d4:b4:c2:31:97:ee:21:bd:ec:3e:5e:50:
5e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:FD:29:9F:4F:40:96:6D:14:08:74:A6:4C:13:D8:03:B3:D8:E5:83
X509v3 Authority Key Identifier:
keyid:59:5B:24:3A:72:33:E5:71:C3:C1:73:EB:82:49:11:19:06:32:60:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WVskOnIz5XHDwXPrgkkRGQYyYBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/e9e087-e768-44d8-9ec8-88e4466915f8/1/_f0pn09Alm0UCHSmTBPYA7PY5YM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/e9e087-e768-44d8-9ec8-88e4466915f8/1/WVskOnIz5XHDwXPrgkkRGQYyYBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.36.128.0/21
46.36.156.0/23
62.84.36.0/22
62.84.44.0/23
62.84.48.0/20
79.134.37.0/24
79.134.40.0/24
79.134.42.0/23
80.249.142.0/23
81.88.144.0/21
185.102.119.0/24
212.45.80.0/22
212.45.94.0/23
213.232.242.0/23
213.232.246.0/23
Signature Algorithm: sha256WithRSAEncryption
93:d3:fc:88:ff:86:14:50:c6:c1:3c:64:45:d0:4f:88:38:7f:
13:e6:58:11:a2:82:db:ed:20:64:da:99:00:ba:52:51:24:25:
d9:6b:f2:c9:a0:1d:a8:29:65:3c:23:98:5b:c4:5a:68:b6:a1:
03:39:e6:f3:0c:24:e4:ab:68:36:65:73:34:fe:d3:7c:38:05:
69:73:9d:6c:ba:b5:11:9d:95:35:0a:ba:c1:da:98:de:25:b3:
08:90:8e:3f:6e:3b:17:c8:c4:fe:d6:0a:57:d2:96:dd:5f:70:
3e:77:8d:55:cc:75:0b:9e:59:fb:10:4c:fc:29:d2:4f:fb:34:
11:8c:a3:74:36:2b:ee:f3:45:4f:5b:ce:50:ce:b2:07:ea:c7:
e8:49:2b:e1:78:30:70:5a:f4:d4:05:df:31:1e:ef:a5:84:7c:
1b:32:b3:10:d7:76:65:72:ad:34:37:38:24:92:a5:3d:e0:27:
c8:42:5b:40:a6:8b:27:73:d8:a4:e2:61:13:3a:2f:2a:3d:bb:
98:c3:2d:c4:05:62:c6:3a:c3:48:1a:72:d6:b4:03:1c:7b:98:
50:99:a2:df:f0:c4:76:a2:bf:a6:98:41:c4:0c:09:9c:8b:8c:
15:b7:26:7d:e4:af:ba:99:3e:fb:99:de:f0:2e:ef:30:ae:45:
ca:ae:38:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:26 2024 by rpki-client on console-ams.rpki-client.org