Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/F_NB4_Sb1IGNqfeO4PDqF-F0NNA.roa
File: F_NB4_Sb1IGNqfeO4PDqF-F0NNA.roa (raw, json)
Hash identifier: 2v4IIs41/X2jKCrYyp1WiMGmdey06kBt29FmduM4zKE=
Subject key identifier: 17:F3:41:E3:F4:9B:D4:81:8D:A9:F7:8E:E0:F0:EA:17:E1:74:34:D0
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 0189BF5D8BE11E7F4B6B2B83B1ED4AE75EE3
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/F_NB4_Sb1IGNqfeO4PDqF-F0NNA.roa
Signing time: Fri 04 Aug 2023 07:05:26 +0000
ROA not before: Fri 04 Aug 2023 07:05:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202505
IP address blocks: 89.43.78.0/24 maxlen: 24
86.104.14.0/24 maxlen: 24
193.31.118.0/24 maxlen: 24
193.31.117.0/24 maxlen: 24
193.31.119.0/24 maxlen: 24
84.54.14.0/24 maxlen: 24
185.81.152.0/24 maxlen: 24
185.81.153.0/24 maxlen: 24
185.81.155.0/24 maxlen: 24
185.81.154.0/24 maxlen: 24
213.226.117.0/24 maxlen: 24
176.98.42.0/24 maxlen: 24
176.98.43.0/24 maxlen: 24
2a06:f7c5::/32 maxlen: 32
2a05:88c5::/32 maxlen: 32
2a10:7f46::/32 maxlen: 32
2a10:7f45::/32 maxlen: 32
2a10:3302::/32 maxlen: 32
2a06:f7c4::/32 maxlen: 32
2a05:88c4::/32 maxlen: 32
2a10:3301::/32 maxlen: 32
2a10:7f44::/32 maxlen: 32
2a10:7f47::/32 maxlen: 32
2a06:f7c7::/32 maxlen: 32
2a05:88c7::/32 maxlen: 32
2a10:3303::/32 maxlen: 32
2a10:3300::/32 maxlen: 32
2a11:d102::/32 maxlen: 32
2a11:d101::/32 maxlen: 32
2a10:3304::/32 maxlen: 32
2a10:3307::/32 maxlen: 32
2a10:7f40::/32 maxlen: 32
2a06:f7c3::/32 maxlen: 32
2a10:7fc5::/32 maxlen: 32
2a05:88c6::/32 maxlen: 32
2a10:7f43::/32 maxlen: 32
2a06:f7c0::/32 maxlen: 32
2a05:88c0::/32 maxlen: 32
2a05:88c3::/32 maxlen: 32
2a06:f7c6::/32 maxlen: 32
2a11:d105::/32 maxlen: 32
2a10:7fc2::/32 maxlen: 32
2a11:d104::/32 maxlen: 32
2a10:7fc1::/32 maxlen: 32
2a10:7fc4::/32 maxlen: 32
2a11:d107::/32 maxlen: 32
2a10:7fc0::/32 maxlen: 32
2a10:7fc3::/32 maxlen: 32
2a10:3306::/32 maxlen: 32
2a05:88c1::/32 maxlen: 32
2a06:f7c1::/32 maxlen: 32
2a10:7f42::/32 maxlen: 32
2a10:3305::/32 maxlen: 32
2a10:7fc6::/32 maxlen: 32
2a10:7f41::/32 maxlen: 32
2a06:f7c2::/32 maxlen: 32
2a10:7fc7::/32 maxlen: 32
2a05:88c2::/32 maxlen: 32
2a11:d106::/32 maxlen: 32
2a11:d100::/32 maxlen: 32
2a11:d103::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bf:5d:8b:e1:1e:7f:4b:6b:2b:83:b1:ed:4a:e7:5e:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: Aug 4 07:05:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17f341e3f49bd4818da9f78ee0f0ea17e17434d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0f:2c:e9:30:62:e2:26:6c:56:80:8f:3c:b7:
e4:9b:49:90:b4:1d:ac:65:b0:50:4d:93:de:62:93:
4c:e4:53:4d:51:48:3f:c0:dd:29:37:23:de:d2:f8:
ce:97:cf:97:0a:33:8b:ae:ef:70:ee:3f:6e:dd:7e:
37:ef:d4:cb:6d:08:0a:da:fd:92:a9:45:7f:09:4f:
e4:f4:b3:3c:fd:f4:dc:4f:c3:01:47:4a:7d:ca:35:
50:e4:7b:f8:e7:2e:23:a2:36:47:4d:f3:66:eb:78:
37:ab:31:14:c8:0e:ae:31:1a:a1:26:66:5b:ea:d8:
2e:13:27:26:b1:4e:69:4f:1f:3f:cf:5f:d4:37:08:
eb:af:96:38:4a:8c:da:9f:79:75:6f:d9:af:38:3c:
73:4d:fb:34:6d:a8:da:9c:b7:8f:f9:b5:60:d8:7e:
50:51:24:98:d4:71:8f:66:37:a1:69:fe:17:52:ba:
dc:43:bf:47:40:ce:cf:64:56:ee:8b:3a:76:34:71:
a1:b3:c2:00:e5:0f:b7:e8:26:b6:fb:6f:ce:3a:8e:
08:8a:b0:94:11:b8:29:0a:00:e1:32:fa:bb:2a:95:
e5:71:bd:eb:9a:fe:37:42:33:a3:96:f5:05:52:93:
be:82:10:d9:29:9a:7a:61:9c:4c:01:4e:90:10:52:
b8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:F3:41:E3:F4:9B:D4:81:8D:A9:F7:8E:E0:F0:EA:17:E1:74:34:D0
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/F_NB4_Sb1IGNqfeO4PDqF-F0NNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.14.0/24
86.104.14.0/24
89.43.78.0/24
176.98.42.0/23
185.81.152.0/22
193.31.117.0-193.31.119.255
213.226.117.0/24
IPv6:
2a05:88c0::/29
2a06:f7c0::/29
2a10:3300::/29
2a10:7f40::/29
2a10:7fc0::/29
2a11:d100::/29
Signature Algorithm: sha256WithRSAEncryption
e6:72:5c:1b:8e:22:70:72:0c:d2:1e:4d:7d:23:82:9a:d3:dd:
e0:f5:00:30:02:27:4e:d2:8b:6f:7f:d3:f6:cb:84:62:63:e9:
f8:fd:c7:e3:2f:06:3a:a7:6a:bf:b3:ab:c2:d8:50:02:17:66:
23:2e:8b:d9:49:b8:c9:73:6c:b4:a4:fc:7f:ab:88:ba:36:b5:
16:56:c0:ee:be:fa:97:2e:c6:7f:f8:92:5c:62:fa:57:40:16:
6a:59:48:b4:f4:35:b3:3b:24:6d:a5:8b:76:cc:10:ec:79:10:
16:05:83:f2:a2:17:a7:10:af:8b:e2:e7:c8:16:b3:06:92:e5:
91:2e:1d:2b:94:2c:f8:80:dc:85:37:04:23:c1:5c:2e:a2:8c:
1b:a7:ac:33:5f:0b:e0:f9:67:6e:d6:e9:a3:9b:3b:62:80:56:
00:0b:4f:14:03:80:7c:5e:70:79:a5:4b:5f:d8:b5:7f:d6:81:
a6:ce:87:fe:2e:22:0a:e0:4c:72:92:95:c6:f9:7a:a6:f5:7b:
94:d2:27:dd:47:11:ce:1d:c1:2e:c0:2e:a5:97:0d:a6:58:a3:
20:fa:7f:ca:10:e8:16:dd:0d:e7:44:bb:9c:79:7c:2c:9b:c7:
76:a3:73:86:3b:62:0e:ee:5d:22:e2:81:c6:c4:e2:67:74:02:
2f:0d:33:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:05 2024 by rpki-client on console-ams.rpki-client.org