Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/iTPbE5H1xpjrj9RLa-VXxz0HF44.roa
File: iTPbE5H1xpjrj9RLa-VXxz0HF44.roa (raw, json)
Hash identifier: nNpIvcry/Cj+sF5C8QMo9HpVB+1gXGjvuc4S1RPkB/s=
Subject key identifier: 89:33:DB:13:91:F5:C6:98:EB:8F:D4:4B:6B:E5:57:C7:3D:07:17:8E
Certificate issuer: /CN=96cbcf2e957ca8d942472a7b0044285b26db6b22
Certificate serial: 0187D08098FFB07A3711D33B1903DBAA029B
Authority key identifier: 96:CB:CF:2E:95:7C:A8:D9:42:47:2A:7B:00:44:28:5B:26:DB:6B:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsvPLpV8qNlCRyp7AEQoWybbayI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/iTPbE5H1xpjrj9RLa-VXxz0HF44.roa
Signing time: Sun 30 Apr 2023 04:51:41 +0000
ROA not before: Sun 30 Apr 2023 04:51:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58256
IP address blocks: 185.83.184.0/24 maxlen: 24
185.83.186.0/24 maxlen: 24
185.83.185.0/24 maxlen: 24
185.83.187.0/24 maxlen: 24
37.143.145.0/24 maxlen: 24
37.143.144.0/24 maxlen: 24
185.42.213.0/24 maxlen: 24
185.42.212.0/24 maxlen: 24
185.42.215.0/24 maxlen: 24
185.42.214.0/24 maxlen: 24
37.143.151.0/24 maxlen: 24
37.143.150.0/24 maxlen: 24
37.143.149.0/24 maxlen: 24
37.143.148.0/24 maxlen: 24
37.143.147.0/24 maxlen: 24
37.143.146.0/24 maxlen: 24
185.83.31.0/24 maxlen: 24
185.83.30.0/24 maxlen: 24
185.83.29.0/24 maxlen: 24
185.83.28.0/24 maxlen: 24
91.108.132.0/24 maxlen: 24
91.108.131.0/24 maxlen: 24
91.108.130.0/24 maxlen: 24
91.108.129.0/24 maxlen: 24
91.108.128.0/24 maxlen: 24
91.108.139.0/24 maxlen: 24
91.108.133.0/24 maxlen: 24
91.108.138.0/24 maxlen: 24
91.108.137.0/24 maxlen: 24
91.108.136.0/24 maxlen: 24
91.108.135.0/24 maxlen: 24
91.108.134.0/24 maxlen: 24
91.108.140.0/24 maxlen: 24
91.108.145.0/24 maxlen: 24
91.108.144.0/24 maxlen: 24
91.108.143.0/24 maxlen: 24
91.108.142.0/24 maxlen: 24
91.108.141.0/24 maxlen: 24
91.108.152.0/24 maxlen: 24
91.108.151.0/24 maxlen: 24
91.108.150.0/24 maxlen: 24
91.108.149.0/24 maxlen: 24
91.108.148.0/24 maxlen: 24
91.108.147.0/24 maxlen: 24
91.108.146.0/24 maxlen: 24
91.108.154.0/24 maxlen: 24
91.108.153.0/24 maxlen: 24
91.108.159.0/24 maxlen: 24
91.108.158.0/24 maxlen: 24
91.108.157.0/24 maxlen: 24
91.108.156.0/24 maxlen: 24
91.108.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d0:80:98:ff:b0:7a:37:11:d3:3b:19:03:db:aa:02:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96cbcf2e957ca8d942472a7b0044285b26db6b22
Validity
Not Before: Apr 30 04:51:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8933db1391f5c698eb8fd44b6be557c73d07178e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e5:a4:30:71:cc:c3:ea:b5:49:6b:e7:e6:c3:
21:ef:6e:72:e9:d6:79:a2:54:93:90:9e:97:8a:66:
10:e4:44:10:e7:63:c7:7d:a1:33:2d:c1:75:8f:0d:
68:d6:43:f4:68:93:56:f2:be:8c:af:fc:8a:7e:14:
d4:6d:82:de:bd:4e:fd:72:e5:8f:99:bf:17:71:01:
bb:a7:84:f2:51:4f:07:94:24:a1:e2:70:2a:5d:3f:
0b:f9:b2:bd:d2:8a:8c:17:24:e2:0f:11:f4:45:06:
b4:37:aa:42:df:37:fc:36:76:cb:1e:58:c5:21:a4:
f0:11:9a:20:25:95:83:f6:36:95:09:6b:c8:3a:0b:
80:b1:2d:6f:38:20:de:5e:60:f6:a6:97:e3:e4:62:
91:cc:29:c3:fd:52:c1:de:a8:c3:3d:7b:fe:59:60:
19:31:dc:b4:3c:d2:15:7b:40:8b:4d:4f:ff:b3:d2:
69:ca:2b:f2:1e:b7:f2:88:49:c8:53:04:d5:7e:83:
cc:e8:91:f0:7f:e7:d8:d3:73:06:1b:c5:8b:fd:a0:
63:81:f3:7f:67:57:45:33:e8:82:28:00:10:2d:fb:
44:32:94:ee:da:c9:3c:2c:a6:8c:71:ec:e3:be:4e:
ae:43:2d:3b:f4:b8:1e:05:8f:70:98:b7:60:06:73:
2d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:33:DB:13:91:F5:C6:98:EB:8F:D4:4B:6B:E5:57:C7:3D:07:17:8E
X509v3 Authority Key Identifier:
keyid:96:CB:CF:2E:95:7C:A8:D9:42:47:2A:7B:00:44:28:5B:26:DB:6B:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsvPLpV8qNlCRyp7AEQoWybbayI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/iTPbE5H1xpjrj9RLa-VXxz0HF44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1b60e9-b6e0-4890-9de1-13b431342ab8/1/lsvPLpV8qNlCRyp7AEQoWybbayI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.144.0/21
91.108.128.0/19
185.42.212.0/22
185.83.28.0/22
185.83.184.0/22
Signature Algorithm: sha256WithRSAEncryption
18:7d:11:03:7a:f6:5c:c4:00:2d:67:55:9c:a8:f9:79:51:33:
0c:29:95:a9:de:a4:54:57:97:4b:08:bd:22:4a:bb:06:36:c9:
56:a1:73:96:67:da:98:c5:e1:14:c9:e0:29:64:88:9f:d5:d7:
cd:1d:21:3b:43:23:e7:7b:1c:bc:63:6d:23:ff:11:9e:2f:3a:
75:db:ff:a7:03:8d:b3:d1:bd:f5:d5:6a:2f:e5:89:d9:05:29:
f3:27:fe:01:26:e7:4a:e0:62:30:56:b6:29:b7:85:ba:6e:68:
49:ea:fb:02:c5:05:0a:1f:aa:a3:56:af:de:8c:ad:11:1f:14:
32:02:9a:ac:45:86:76:0d:54:98:2a:e2:6e:7c:b7:45:cd:f8:
7b:96:17:c7:29:47:52:a3:30:92:55:b4:2c:6e:e9:05:4e:df:
b8:1e:17:d8:16:7b:79:ba:6d:64:23:98:b8:cf:3e:a1:85:ab:
db:f7:ba:9a:63:fe:65:c9:2f:f1:63:f5:dc:09:6e:cf:e7:7e:
bc:51:10:95:d7:61:b5:29:b0:a1:37:86:e9:88:ba:57:e0:f5:
5e:c4:e0:ed:bc:76:9c:cf:b7:dd:07:81:5c:a3:f2:4c:c7:f0:
c1:ee:00:74:76:7a:ab:de:09:b1:c3:21:cb:0c:e2:28:c4:5b:
ed:ba:48:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:19 2024 by rpki-client on console-ams.rpki-client.org