Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/OdUlg-jkgiKXmTvoeDk23ymeFCQ.roa
File: OdUlg-jkgiKXmTvoeDk23ymeFCQ.roa (raw, json)
Hash identifier: ZOC4gFg5R7erC68uTazY/WpVX3FUKS2U7Fdt7U9A/Lg=
Subject key identifier: 39:D5:25:83:E8:E4:82:22:97:99:3B:E8:78:39:36:DF:29:9E:14:24
Certificate issuer: /CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Certificate serial: 018C3AB255D077A9724B0F1891BD0E205852
Authority key identifier: AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/OdUlg-jkgiKXmTvoeDk23ymeFCQ.roa
Signing time: Tue 05 Dec 2023 15:56:54 +0000
ROA not before: Tue 05 Dec 2023 15:56:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8359
IP address blocks: 212.188.0.0/17 maxlen: 17
213.87.0.0/16 maxlen: 16
178.141.0.0/16 maxlen: 16
217.74.244.0/22 maxlen: 22
217.74.248.0/21 maxlen: 21
213.87.105.0/24 maxlen: 24
213.87.104.0/24 maxlen: 24
213.87.100.0/24 maxlen: 24
213.87.106.0/23 maxlen: 23
213.87.128.0/19 maxlen: 19
213.87.64.0/22 maxlen: 22
213.87.70.0/23 maxlen: 23
213.87.76.0/23 maxlen: 23
213.87.80.0/20 maxlen: 20
213.87.200.0/22 maxlen: 22
213.87.204.0/22 maxlen: 22
213.87.208.0/23 maxlen: 23
195.34.0.0/19 maxlen: 19
213.87.240.0/22 maxlen: 22
213.87.246.0/24 maxlen: 24
195.34.15.0/24 maxlen: 24
213.87.244.0/23 maxlen: 23
213.87.248.0/22 maxlen: 22
213.87.160.0/22 maxlen: 22
82.96.192.0/18 maxlen: 18
195.34.38.0/24 maxlen: 24
195.34.32.0/19 maxlen: 19
195.34.36.0/24 maxlen: 24
195.34.42.0/24 maxlen: 24
2a00:1fa0:8000::/33 maxlen: 33
2a00:1fa0::/33 maxlen: 33
2a02:29::/36 maxlen: 36
2a02:28:1::/48 maxlen: 48
2a00:1fa2::/33 maxlen: 33
2a02:28::/29 maxlen: 29
2a00:1fa3::/33 maxlen: 33
2a00:1fa3:8000::/40 maxlen: 40
2a00:1fa0::/29 maxlen: 29
2a02:28:a::/48 maxlen: 48
2a02:28::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 06 Dec 2023 20:28:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3a:b2:55:d0:77:a9:72:4b:0f:18:91:bd:0e:20:58:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Validity
Not Before: Dec 5 15:56:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39d52583e8e4822297993be8783936df299e1424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:b2:b5:38:72:46:c1:f0:6d:83:11:51:99:57:
91:df:fd:d9:83:9b:f4:70:37:1b:73:1e:2b:f6:fd:
0c:29:09:f6:62:42:52:1f:6d:6c:99:44:99:f3:fb:
63:38:e6:76:a6:55:db:9f:45:80:86:a2:ae:0d:6b:
b5:fb:44:3a:8e:42:45:33:cc:6e:5c:0b:01:e0:e3:
eb:98:63:25:92:ef:ad:65:9d:9b:ed:1d:43:98:41:
36:84:a1:f5:ae:73:8f:32:21:a9:23:91:e5:d4:95:
c4:70:7a:ad:5d:2d:34:cf:22:fd:5f:09:f7:df:99:
ad:c4:c8:d0:aa:aa:40:22:d5:df:96:88:0a:f3:2a:
8e:a8:78:0f:28:80:23:7d:f0:55:7c:9b:2d:7c:c5:
17:23:d5:4f:a3:fb:4a:25:e1:0e:a5:ba:ea:cb:19:
b5:c8:9f:4e:d6:f5:e2:01:53:e4:78:8f:e6:4f:28:
12:1a:b5:c3:9e:d4:bf:90:09:36:a9:ae:0d:15:30:
ff:5a:1b:56:31:ec:db:14:04:24:c8:12:48:4a:de:
13:0e:c5:d2:87:04:0c:bf:4c:80:46:92:6b:d3:26:
9c:73:d3:5e:a2:86:6d:32:24:05:5b:29:0f:11:bb:
6e:96:bb:c9:14:51:96:68:b2:6b:3b:0d:b2:a5:61:
7c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D5:25:83:E8:E4:82:22:97:99:3B:E8:78:39:36:DF:29:9E:14:24
X509v3 Authority Key Identifier:
keyid:AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/OdUlg-jkgiKXmTvoeDk23ymeFCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/rv4chZQJrF3nQUxI-Gc5kTvmt-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.96.192.0/18
178.141.0.0/16
195.34.0.0/18
212.188.0.0/17
213.87.0.0/16
217.74.244.0-217.74.255.255
IPv6:
2a00:1fa0::/29
2a02:28::/29
Signature Algorithm: sha256WithRSAEncryption
13:ba:99:a4:d4:c6:2d:7d:1d:97:8b:89:73:6c:66:0a:07:a9:
71:7c:d8:3b:fd:3c:aa:00:1f:40:95:a4:34:b1:53:14:3f:e8:
9b:4b:c8:2a:2e:f8:04:ae:6a:6f:e6:3c:99:b5:76:dd:76:2d:
30:6f:31:18:f8:63:69:21:76:20:91:04:d6:05:e0:f0:3d:26:
4e:84:6a:41:34:e8:06:4a:4e:bc:3a:fb:a7:a8:fa:70:b7:19:
2a:d9:14:07:46:5d:64:32:2b:7d:bd:5d:92:f4:77:3e:51:64:
6a:2a:40:b8:eb:d2:62:76:44:77:90:e0:ea:0a:4f:82:1a:22:
3e:5c:74:7c:e8:7a:ed:4c:62:75:22:db:7c:b5:2a:a8:ef:02:
64:72:59:f9:32:4a:51:72:10:6c:d4:29:74:0c:dd:8e:a1:82:
a9:24:29:b0:ce:07:1e:a2:a8:00:b3:7f:aa:93:99:6b:2e:65:
e7:ad:d8:c4:8e:ca:4c:a4:7d:79:c8:13:e4:02:8c:78:3a:4f:
5d:3e:bf:83:04:15:b2:a5:a2:e6:7d:74:d6:cf:bc:70:28:a9:
97:5b:25:17:f9:80:f3:fd:75:60:c2:bd:57:7e:94:de:29:bc:
09:b0:73:30:b7:95:5c:ba:d5:00:fe:b5:44:76:1e:b8:fc:63:
e3:7e:d8:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:30 2024 by rpki-client on console-ams.rpki-client.org