Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/4AgidUT0EMbUh-KJdsDZI1R-1sc.roa
File: 4AgidUT0EMbUh-KJdsDZI1R-1sc.roa (raw, json)
Hash identifier: VvXT+a8jOl6beziIRLFYMA7ANuPH40kAh3MoME95s0g=
Subject key identifier: E0:08:22:75:44:F4:10:C6:D4:87:E2:89:76:C0:D9:23:54:7E:D6:C7
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 018B1D42729F2D9695F485D2447430170F3C
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/4AgidUT0EMbUh-KJdsDZI1R-1sc.roa
Signing time: Wed 11 Oct 2023 05:42:55 +0000
ROA not before: Wed 11 Oct 2023 05:42:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43811
IP address blocks: 194.176.54.0/23 maxlen: 23
85.206.140.0/24 maxlen: 24
85.206.141.0/24 maxlen: 24
85.206.142.0/24 maxlen: 24
85.206.143.0/24 maxlen: 24
82.135.217.0/24 maxlen: 24
82.135.218.0/24 maxlen: 24
85.206.148.0/22 maxlen: 22
193.105.146.0/24 maxlen: 24
195.12.180.0/24 maxlen: 24
194.176.36.0/24 maxlen: 24
194.176.32.0/24 maxlen: 24
194.176.33.0/24 maxlen: 24
194.176.35.0/24 maxlen: 24
88.119.222.0/24 maxlen: 24
88.119.220.0/24 maxlen: 24
88.119.221.0/24 maxlen: 24
212.47.123.0/24 maxlen: 24
88.119.246.0/24 maxlen: 24
31.193.192.0/24 maxlen: 24
193.200.124.0/24 maxlen: 24
193.200.125.0/24 maxlen: 24
31.193.197.0/24 maxlen: 24
31.193.198.0/24 maxlen: 24
31.193.199.0/24 maxlen: 24
31.193.193.0/24 maxlen: 24
31.193.194.0/24 maxlen: 24
31.193.195.0/24 maxlen: 24
31.193.196.0/24 maxlen: 24
88.119.180.0/24 maxlen: 24
81.7.105.0/24 maxlen: 24
88.118.143.0/24 maxlen: 24
81.7.107.0/24 maxlen: 24
81.7.106.0/24 maxlen: 24
81.7.114.0/24 maxlen: 24
81.7.115.0/24 maxlen: 24
82.135.132.0/24 maxlen: 24
92.61.32.0/20 maxlen: 32
185.3.231.0/24 maxlen: 24
185.3.228.0/24 maxlen: 24
185.3.229.0/24 maxlen: 24
185.3.230.0/24 maxlen: 24
2a00:1eb8:c004::/48 maxlen: 48
2a02:118:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Nov 2023 06:49:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1d:42:72:9f:2d:96:95:f4:85:d2:44:74:30:17:0f:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Oct 11 05:42:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e008227544f410c6d487e28976c0d923547ed6c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c7:d7:a8:bf:c4:38:78:57:e2:a0:3d:4d:9b:
fa:f3:79:f1:60:e4:18:eb:05:6e:7e:4e:ea:52:77:
42:5b:e8:4c:ce:45:70:65:fc:68:f9:0d:1a:5a:50:
08:ab:82:be:0a:7b:fd:25:96:3c:ae:0c:15:b9:4e:
9d:e7:3e:15:3b:81:18:b6:3b:15:24:a9:25:e6:a1:
54:75:c2:24:2c:89:52:31:3e:38:d0:75:40:10:24:
45:46:af:ce:6f:79:c2:a3:af:f0:d3:23:c9:81:7a:
94:bf:af:bb:65:8c:d1:75:7d:10:cc:d2:8d:4b:58:
d0:00:b1:64:3f:2b:a5:57:0b:0f:3a:61:5f:df:0f:
86:44:97:6d:d3:42:b1:c3:f7:4d:00:78:03:6f:e7:
c3:cd:67:06:4e:3f:f0:d1:d3:87:79:ba:59:9f:45:
7f:71:ce:67:f6:b4:78:f2:33:07:5f:73:a7:72:4e:
56:7e:22:8e:b0:fa:76:10:b2:5f:96:47:d8:89:8b:
3d:87:e1:d5:98:7c:fe:4f:f8:c6:b4:bd:17:68:74:
67:9d:c2:f0:25:97:b4:f5:6f:35:55:79:45:26:25:
23:6b:42:ff:f2:91:a8:8b:7d:5b:67:ae:8b:3d:19:
91:ea:0d:4e:25:bb:57:a2:2a:9c:df:f1:0d:24:e2:
8b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:08:22:75:44:F4:10:C6:D4:87:E2:89:76:C0:D9:23:54:7E:D6:C7
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/4AgidUT0EMbUh-KJdsDZI1R-1sc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.192.0/21
81.7.105.0-81.7.107.255
81.7.114.0/23
82.135.132.0/24
82.135.217.0-82.135.218.255
85.206.140.0/22
85.206.148.0/22
88.118.143.0/24
88.119.180.0/24
88.119.220.0-88.119.222.255
88.119.246.0/24
92.61.32.0/20
185.3.228.0/22
193.105.146.0/24
193.200.124.0/23
194.176.32.0/23
194.176.35.0-194.176.36.255
194.176.54.0/23
195.12.180.0/24
212.47.123.0/24
IPv6:
2a00:1eb8:c004::/48
2a02:118:2::/48
Signature Algorithm: sha256WithRSAEncryption
1b:07:ad:75:24:10:24:04:4a:45:52:de:e5:b4:c7:96:7d:0d:
f9:b9:02:c9:c5:eb:67:b2:10:cb:af:a2:5a:b0:48:8a:3c:74:
2c:4c:c8:15:1a:50:1d:47:7f:38:68:36:2f:09:3d:0e:7f:52:
48:47:61:5f:ef:f8:0d:37:f9:e8:60:27:e8:74:83:59:cf:ea:
3b:af:75:e8:0b:23:71:38:93:d6:e0:78:f4:b8:e1:bf:ae:11:
92:a4:06:b1:e0:1c:e7:0e:01:57:81:88:f3:cd:e0:d8:12:14:
37:69:0a:d4:82:12:dd:1d:c7:ea:01:01:24:b3:0d:d0:3f:17:
75:58:55:fb:f8:b0:5a:f5:0b:92:60:01:aa:86:81:9a:ab:9b:
f2:2a:91:b3:f0:d4:07:60:b0:e5:fc:cd:e3:44:ab:85:35:0e:
76:be:dc:c6:34:16:b0:cd:4e:05:56:ba:8b:f1:a6:3b:1f:75:
b7:c2:77:b6:9b:e5:9e:47:94:c4:ac:a9:48:ca:9d:50:0f:b4:
ef:df:20:2f:6e:48:35:2d:63:9d:82:50:3d:9a:32:63:60:72:
51:3e:32:5f:d0:ba:ee:cf:7d:84:81:c2:77:74:7a:79:eb:1e:
46:d8:52:5e:27:c6:ca:4f:9e:d0:49:f8:db:a9:6b:a8:b8:77:
4c:32:64:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:42 2024 by rpki-client on console-ams.rpki-client.org