Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/TzSdmzWC8VB4cJQ0IjEfkS3_uyU.roa
File: TzSdmzWC8VB4cJQ0IjEfkS3_uyU.roa (raw, json)
Hash identifier: k/E6nWoxvZeuUBsmifv0O7kUHicYHLQX7eFEf0aMVgc=
Subject key identifier: 4F:34:9D:9B:35:82:F1:50:78:70:94:34:22:31:1F:91:2D:FF:BB:25
Certificate issuer: /CN=b9b8139993be665f3b5d0f6909ef058fa8f97922
Certificate serial: 018A4AC2CF63CA76AD2674C758394FA7426D
Authority key identifier: B9:B8:13:99:93:BE:66:5F:3B:5D:0F:69:09:EF:05:8F:A8:F9:79:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/TzSdmzWC8VB4cJQ0IjEfkS3_uyU.roa
Signing time: Thu 31 Aug 2023 08:43:15 +0000
ROA not before: Thu 31 Aug 2023 08:43:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39442
IP address blocks: 188.247.32.0/19 maxlen: 19
217.149.176.0/22 maxlen: 22
217.149.176.0/20 maxlen: 20
217.149.181.0/24 maxlen: 24
217.149.184.0/21 maxlen: 21
213.234.0.0/20 maxlen: 20
213.234.0.0/24 maxlen: 24
213.234.1.0/24 maxlen: 24
213.234.5.0/24 maxlen: 24
213.234.6.0/24 maxlen: 24
213.234.8.0/24 maxlen: 24
213.234.10.0/24 maxlen: 24
213.234.11.0/24 maxlen: 24
213.234.16.0/22 maxlen: 22
213.234.16.0/24 maxlen: 24
213.234.18.0/23 maxlen: 23
213.234.20.0/24 maxlen: 24
213.234.21.0/24 maxlen: 24
213.234.22.0/24 maxlen: 24
188.247.44.0/24 maxlen: 24
188.247.44.0/22 maxlen: 22
188.247.40.0/24 maxlen: 24
185.183.48.0/22 maxlen: 22
188.247.55.0/24 maxlen: 24
188.247.56.0/21 maxlen: 21
185.125.72.0/22 maxlen: 22
92.39.104.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4a:c2:cf:63:ca:76:ad:26:74:c7:58:39:4f:a7:42:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b8139993be665f3b5d0f6909ef058fa8f97922
Validity
Not Before: Aug 31 08:43:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f349d9b3582f1507870943422311f912dffbb25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:fc:fd:96:be:98:7c:3e:b1:f1:62:a9:f6:1c:
21:74:12:1f:92:2b:9b:db:ec:c0:96:64:83:03:ef:
f3:c3:1b:bd:91:4f:84:9c:a4:4a:dc:e7:6a:1b:06:
ae:0d:15:d2:b6:a0:54:b9:84:f9:08:60:fe:d9:32:
eb:4b:cd:f9:29:3f:bd:ef:aa:53:90:72:f9:01:64:
f8:63:d3:8a:78:86:fe:c5:1a:f9:19:0f:86:e4:c2:
71:02:43:de:44:a6:64:8e:44:40:40:e5:7c:33:95:
0d:ac:44:0a:04:d8:5d:a4:5b:68:ec:05:89:c7:c7:
08:6c:7a:2a:9b:23:83:b8:0c:8a:89:64:ac:e2:15:
cb:f2:53:57:ab:dd:4b:f8:fd:ff:cc:6f:1a:fc:35:
7d:e0:e2:bb:59:95:ee:15:26:da:18:20:71:70:e1:
24:ad:6a:72:be:e8:26:77:75:e6:e8:f5:e9:f5:e9:
1c:ec:3d:99:f6:17:5c:99:25:4e:a4:3a:65:8e:00:
16:0f:28:d4:7e:69:20:68:6d:5c:62:51:c1:e8:34:
1b:53:3e:b7:67:97:e9:b7:07:0f:b6:bf:fd:9a:10:
49:d2:f7:7f:d0:41:a4:48:86:08:cf:15:bb:f4:ed:
e5:4f:f2:2c:85:23:3d:22:b6:9a:07:bd:72:13:43:
70:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:34:9D:9B:35:82:F1:50:78:70:94:34:22:31:1F:91:2D:FF:BB:25
X509v3 Authority Key Identifier:
keyid:B9:B8:13:99:93:BE:66:5F:3B:5D:0F:69:09:EF:05:8F:A8:F9:79:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/TzSdmzWC8VB4cJQ0IjEfkS3_uyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.39.104.0/21
185.125.72.0/22
185.183.48.0/22
188.247.32.0/19
213.234.0.0-213.234.22.255
217.149.176.0/20
Signature Algorithm: sha256WithRSAEncryption
78:e8:54:60:31:fd:6f:f2:7f:c5:b3:84:1a:7d:54:e4:14:da:
04:35:c6:4a:da:25:48:4e:c8:14:bb:6d:f3:35:ae:0d:95:2d:
96:d4:ba:f7:ae:bb:06:d6:a3:b7:0d:33:e1:f7:04:71:64:1d:
3c:06:ff:88:1f:34:f7:15:cb:a3:dd:3f:24:e7:75:4e:d0:de:
57:1f:9c:cd:1b:b7:38:0d:f3:18:f4:c0:58:f3:8c:31:fe:91:
20:6d:2a:f0:0f:3e:38:0d:cb:fd:a5:e4:c2:ef:63:dd:48:70:
39:28:54:3c:a7:5f:ed:d5:f0:b2:f3:ec:33:94:b8:29:7e:65:
a3:62:31:c2:ba:3f:8b:2c:2a:3c:fb:de:05:99:cd:be:73:7a:
6e:c7:cb:6d:af:ee:5a:aa:ff:15:6d:de:25:b3:92:c7:ba:47:
a3:06:3f:cd:e5:c4:7a:aa:7a:2d:6a:50:f3:2c:cc:18:78:a5:
c6:5b:b7:cc:00:5e:c9:11:52:93:53:9f:41:e1:99:51:cb:1a:
c7:fe:15:73:36:35:57:22:d1:41:b3:a3:1e:b6:70:45:e7:b3:
7c:7e:c9:e2:99:b3:bc:1d:a3:3d:fc:b2:30:79:6b:3e:47:54:
d5:9e:f8:14:67:a1:c3:73:ba:96:6a:b6:a6:bf:ca:80:98:dd:
b6:b1:f9:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:43 2024 by rpki-client on console-ams.rpki-client.org