Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/fb10uyLyl0T5CCBiCSGUASob9Fo.roa
File: fb10uyLyl0T5CCBiCSGUASob9Fo.roa (raw, json)
Hash identifier: lMDypLBiH/ciR45E6WxPILCZ+SPhhnv+nACnA3Em9E4=
Subject key identifier: 7D:BD:74:BB:22:F2:97:44:F9:08:20:62:09:21:94:01:2A:1B:F4:5A
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 018BCE8CD48C1285E44542DEE51CF15930BF
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/fb10uyLyl0T5CCBiCSGUASob9Fo.roa
Signing time: Tue 14 Nov 2023 15:56:57 +0000
ROA not before: Tue 14 Nov 2023 15:56:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51765
IP address blocks: 185.202.108.0/24 maxlen: 24
94.154.113.0/24 maxlen: 24
193.31.126.0/24 maxlen: 24
62.204.49.0/24 maxlen: 24
193.163.92.0/24 maxlen: 24
91.247.163.0/24 maxlen: 24
88.218.45.0/24 maxlen: 24
88.218.47.0/24 maxlen: 24
37.72.141.0/24 maxlen: 24
193.151.189.0/24 maxlen: 24
193.151.191.0/24 maxlen: 24
193.151.190.0/24 maxlen: 24
194.70.234.0/24 maxlen: 24
146.19.39.0/24 maxlen: 24
178.20.28.0/22 maxlen: 24
212.18.113.0/24 maxlen: 24
45.159.22.0/24 maxlen: 24
45.159.21.0/24 maxlen: 24
194.99.24.0/24 maxlen: 24
77.83.24.0/22 maxlen: 24
194.99.26.0/24 maxlen: 24
83.97.116.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ce:8c:d4:8c:12:85:e4:45:42:de:e5:1c:f1:59:30:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Nov 14 15:56:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7dbd74bb22f29744f9082062092194012a1bf45a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e6:a7:ed:88:ed:ba:f7:ca:a6:9b:dd:6f:a2:
af:8d:45:05:bd:77:26:c8:af:46:1c:3c:0b:5c:44:
43:79:64:27:57:d2:06:3d:4a:3d:0e:ba:ee:66:3e:
24:3d:77:a8:24:95:64:f8:74:b6:b6:f6:00:c4:6e:
b0:fc:97:35:bf:17:7b:5d:71:12:75:8a:45:10:0f:
2c:6f:42:32:ef:3c:d2:db:6e:01:d4:eb:7d:de:cf:
5d:37:22:b9:a8:13:4c:ce:e7:25:42:4e:06:5c:14:
11:0c:c6:4f:ce:7f:9c:87:3d:a3:71:62:7a:a1:11:
49:29:52:d9:ba:e8:22:2a:52:3c:7c:9d:cb:5d:01:
35:88:4a:41:8a:c0:b1:de:36:a6:7e:4a:4c:91:13:
26:11:44:5f:bb:41:74:19:76:4b:38:2e:5c:e4:84:
b6:fb:58:50:21:9a:a3:0b:88:c0:74:68:49:61:6e:
df:30:5e:60:f7:8e:d8:7d:f5:df:2e:f6:64:3a:0a:
c0:a6:7b:3e:65:bd:8c:5a:b2:ed:23:9c:ed:f1:af:
f4:b6:54:14:bc:58:d7:c1:26:f8:48:62:43:9c:2e:
cc:98:d7:66:61:ab:c0:62:dd:7d:5d:68:00:f3:cd:
e3:55:fc:ae:64:b1:7b:6f:7e:32:45:15:f3:39:84:
b6:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:BD:74:BB:22:F2:97:44:F9:08:20:62:09:21:94:01:2A:1B:F4:5A
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/fb10uyLyl0T5CCBiCSGUASob9Fo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.141.0/24
45.159.21.0-45.159.22.255
62.204.49.0/24
77.83.24.0/22
83.97.116.0/22
88.218.45.0/24
88.218.47.0/24
91.247.163.0/24
94.154.113.0/24
146.19.39.0/24
178.20.28.0/22
185.202.108.0/24
193.31.126.0/24
193.151.189.0-193.151.191.255
193.163.92.0/24
194.70.234.0/24
194.99.24.0/24
194.99.26.0/24
212.18.113.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:73:1b:79:de:d7:79:96:44:83:46:58:9e:98:7a:40:ea:4e:
ec:7b:1b:69:f5:52:73:f5:62:85:fe:c3:2a:92:cd:c3:96:7a:
71:04:d5:73:c0:66:0e:7a:31:35:5d:9e:b5:44:9d:38:1a:54:
36:88:8c:fc:c3:cc:a7:91:94:3e:fb:9c:af:4e:37:ef:40:94:
ff:e3:0a:c8:31:ed:86:20:32:50:5c:0d:1a:d4:87:80:6d:85:
6d:58:b6:39:7f:74:06:49:1f:9f:47:a6:d7:1b:d8:16:50:8a:
f7:ab:9a:74:3c:d0:83:b3:66:2c:ae:70:ad:4a:c8:08:6b:41:
7b:e3:03:f9:f0:bb:91:b7:81:cd:70:2f:ef:da:ab:f0:25:fb:
8a:8f:d9:71:2d:46:a8:d3:61:29:9f:34:a5:47:32:fb:6a:08:
b5:9c:04:41:8b:53:2b:25:f0:c8:78:e2:6e:e8:e5:da:d3:c1:
c1:99:03:dd:ac:2c:f1:11:41:25:c0:df:80:87:7e:9d:59:57:
ea:f0:e1:7e:3b:bd:04:34:10:a2:98:52:e3:3a:15:87:c7:46:
5e:fc:0f:6c:f7:40:15:88:77:db:14:03:26:98:77:de:c7:09:
8c:7d:68:6a:c1:a9:e5:56:a1:ba:44:ff:0c:d2:4d:1d:34:da:
2e:16:30:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 20 23:31:06 2023 by rpki-client on console-fra.rpki-client.org