Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/k84M63oTMcwqEhwbcdgM_dM2tpY.roa
File: k84M63oTMcwqEhwbcdgM_dM2tpY.roa (raw, json)
Hash identifier: /kgnBUjpaWt6OyaytWLzaLXSze5fAoWOZrcHZNONDo0=
Subject key identifier: 93:CE:0C:EB:7A:13:31:CC:2A:12:1C:1B:71:D8:0C:FD:D3:36:B6:96
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 018CC794E9DC884134EBDB142D23FD706D90
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/k84M63oTMcwqEhwbcdgM_dM2tpY.roa
Signing time: Tue 02 Jan 2024 00:31:14 +0000
ROA not before: Tue 02 Jan 2024 00:31:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14576
IP address blocks: 194.110.150.0/24 maxlen: 24
45.159.23.0/24 maxlen: 24
193.31.127.0/24 maxlen: 24
193.202.16.0/24 maxlen: 24
193.56.20.0/24 maxlen: 24
88.218.46.0/24 maxlen: 24
176.126.111.0/24 maxlen: 24
194.99.25.0/24 maxlen: 24
89.19.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Aug 2024 20:37:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:e9:dc:88:41:34:eb:db:14:2d:23:fd:70:6d:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Jan 2 00:31:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93ce0ceb7a1331cc2a121c1b71d80cfdd336b696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:31:9a:7e:47:0f:5f:14:f7:d4:ee:e7:7b:83:
6f:de:e6:7a:e6:d8:5e:75:0e:d5:93:d8:21:3d:f5:
4e:3d:df:7a:90:89:6e:1d:db:70:a9:9f:72:96:d4:
67:03:5a:1e:b7:d9:bb:46:b3:12:c1:9e:3c:19:86:
df:f2:f6:36:0b:e4:51:07:df:e8:6a:c6:56:0b:b4:
82:97:b8:87:e5:a1:28:49:1f:a1:10:a2:73:75:09:
d0:19:d6:a4:b1:96:98:e9:8b:33:94:6c:6f:90:ba:
dd:60:1b:44:f7:23:1c:fc:0f:f9:0a:e8:88:34:0b:
94:1e:54:ee:7a:27:a8:02:9a:6e:e4:07:01:ec:2c:
2d:27:4a:70:c8:e0:4f:88:82:98:ad:e8:f9:37:ff:
ac:4e:01:bd:06:ea:b6:4d:76:5d:8a:b2:91:cf:11:
2a:c0:92:2e:93:40:f8:06:12:91:6e:1b:3b:be:70:
08:d4:dc:51:73:c2:1d:d5:72:d8:24:f4:8e:7e:6b:
e1:35:72:fa:c0:59:70:0a:0d:a8:6c:e6:cf:d1:2e:
88:40:e3:79:92:85:42:a3:7d:38:42:01:51:ec:35:
fd:16:7d:68:17:c3:10:cf:a5:8e:e5:b5:da:91:26:
42:d5:c5:d4:91:74:55:08:61:44:74:50:43:b8:ea:
81:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:CE:0C:EB:7A:13:31:CC:2A:12:1C:1B:71:D8:0C:FD:D3:36:B6:96
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/k84M63oTMcwqEhwbcdgM_dM2tpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.23.0/24
88.218.46.0/24
89.19.34.0/24
176.126.111.0/24
193.31.127.0/24
193.56.20.0/24
193.202.16.0/24
194.99.25.0/24
194.110.150.0/24
Signature Algorithm: sha256WithRSAEncryption
54:28:4f:c7:ce:ca:43:8c:e2:95:a8:d6:4a:22:fb:39:5b:0c:
d5:7a:78:f7:b0:b0:f2:2d:de:ef:c0:e4:56:e5:b3:1e:6e:25:
82:53:f9:56:f1:72:24:22:9f:16:35:8f:88:33:21:bf:30:77:
1e:ac:ce:0e:cf:66:08:a1:6c:be:3d:25:a5:ee:e0:88:e1:9b:
5c:f1:70:0d:e0:dc:05:d3:9e:ff:26:4c:53:98:34:55:56:52:
e5:d4:6c:63:da:b7:e0:1c:af:89:2c:93:ba:d5:b3:80:a4:c4:
63:34:e7:d0:8e:99:c8:dc:a2:e8:dc:e6:c4:25:85:2c:12:d3:
7c:5a:e8:db:41:44:c9:c8:76:c8:48:1b:69:be:8d:84:8f:2f:
02:3f:84:24:a3:b3:51:04:bf:f3:83:4e:6b:3d:24:ec:82:66:
fc:6d:46:23:ff:27:e1:12:85:4a:76:06:52:7f:9e:d2:f5:10:
5a:c5:09:f1:96:08:ce:3b:9c:4a:e3:00:5f:a3:ab:4a:86:0f:
ba:f2:d2:a2:d7:06:36:fd:99:a6:88:1c:d7:18:ca:f5:5b:5f:
54:7d:ff:d9:42:15:64:a7:90:28:d5:96:ef:8f:c6:0e:6d:d8:
b0:b6:e3:ed:7a:c2:3e:dc:40:09:9f:a8:e5:4c:73:3a:46:18:
83:5e:ff:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 21 23:31:40 2024 by rpki-client on console-ams.rpki-client.org