Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/3d3c3b-1a95-4b50-8974-c1d0acb7819a/1/9EVWnaJV0RlD3jzO2xdYPIs2sRc.roa
File: 9EVWnaJV0RlD3jzO2xdYPIs2sRc.roa (raw, json)
Hash identifier: orvCRTTnhua9ktVVZUbkCbTS/49R4y0uT7gLUNu7e3k=
Subject key identifier: F4:45:56:9D:A2:55:D1:19:43:DE:3C:CE:DB:17:58:3C:8B:36:B1:17
Certificate issuer: /CN=8f90f6b75e913f2782ed549eb72172c59cc47af1
Certificate serial: 0189045180BF3AA29B87816430B970977C1E
Authority key identifier: 8F:90:F6:B7:5E:91:3F:27:82:ED:54:9E:B7:21:72:C5:9C:C4:7A:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j5D2t16RPyeC7VSetyFyxZzEevE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/3d3c3b-1a95-4b50-8974-c1d0acb7819a/1/9EVWnaJV0RlD3jzO2xdYPIs2sRc.roa
Signing time: Wed 28 Jun 2023 23:23:17 +0000
ROA not before: Wed 28 Jun 2023 23:23:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203924
IP address blocks: 185.216.120.0/24 maxlen: 24
185.216.120.0/22 maxlen: 22
185.216.121.0/24 maxlen: 24
185.216.122.0/23 maxlen: 23
85.117.252.0/23 maxlen: 23
85.117.252.0/22 maxlen: 22
85.117.254.0/23 maxlen: 23
185.113.144.0/24 maxlen: 24
185.113.144.0/22 maxlen: 22
185.113.145.0/24 maxlen: 24
185.113.146.0/24 maxlen: 24
185.113.147.0/24 maxlen: 24
185.146.36.0/24 maxlen: 24
185.146.36.0/22 maxlen: 22
185.146.37.0/24 maxlen: 24
185.146.38.0/23 maxlen: 23
193.105.0.0/24 maxlen: 24
2a0b:b644::/30 maxlen: 30
2a0b:b640::/30 maxlen: 30
2a0b:b640::/29 maxlen: 29
2a07:4d00::/30 maxlen: 30
2a07:4d00::/29 maxlen: 29
2a06:6a40::/29 maxlen: 29
2a07:4d04::/30 maxlen: 30
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:04:51:80:bf:3a:a2:9b:87:81:64:30:b9:70:97:7c:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f90f6b75e913f2782ed549eb72172c59cc47af1
Validity
Not Before: Jun 28 23:23:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f445569da255d11943de3ccedb17583c8b36b117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:01:45:3d:e6:7f:1b:55:66:da:c5:30:42:de:
07:fe:6d:b5:65:35:14:be:ee:3a:1c:96:5c:e0:b9:
f9:f8:05:04:9c:d5:b3:f3:0b:8f:dd:5c:14:60:d2:
ca:8a:8f:2d:73:a9:4f:2e:b2:8f:ed:fc:85:3d:cd:
3a:02:8e:95:2c:84:3f:df:4e:e5:0b:70:df:49:af:
29:57:9a:2d:b3:5f:fe:fa:85:d3:52:20:3b:60:3f:
85:3d:a4:eb:b1:27:6c:71:f7:14:e0:1a:c3:c8:31:
13:bd:65:14:2d:99:e2:54:1f:c3:ff:11:1e:7f:09:
83:a4:0c:74:28:18:fc:55:b3:b8:1c:e5:fb:b6:3c:
ce:7e:c5:05:8c:6d:7e:d9:73:9d:dc:a5:b1:f2:88:
66:76:cd:b8:53:6f:cc:bb:9c:f1:9b:97:8a:9d:c1:
1b:01:49:e3:ff:6f:0e:c1:d7:13:56:9f:95:65:61:
01:e9:4c:ea:46:61:72:c5:a7:03:ea:5d:45:ac:c8:
cd:b3:3c:ed:70:65:ac:1b:07:fa:4a:34:2b:53:e7:
1f:d2:f3:97:68:ee:c8:80:da:63:1f:d3:99:74:0e:
88:58:c4:30:20:79:66:ef:64:45:b1:b7:1a:e4:c6:
a0:18:4e:c5:af:b9:86:25:00:2a:43:46:4e:84:28:
59:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:45:56:9D:A2:55:D1:19:43:DE:3C:CE:DB:17:58:3C:8B:36:B1:17
X509v3 Authority Key Identifier:
keyid:8F:90:F6:B7:5E:91:3F:27:82:ED:54:9E:B7:21:72:C5:9C:C4:7A:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j5D2t16RPyeC7VSetyFyxZzEevE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/3d3c3b-1a95-4b50-8974-c1d0acb7819a/1/9EVWnaJV0RlD3jzO2xdYPIs2sRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/3d3c3b-1a95-4b50-8974-c1d0acb7819a/1/j5D2t16RPyeC7VSetyFyxZzEevE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.252.0/22
185.113.144.0/22
185.146.36.0/22
185.216.120.0/22
193.105.0.0/24
IPv6:
2a06:6a40::/29
2a07:4d00::/29
2a0b:b640::/29
Signature Algorithm: sha256WithRSAEncryption
45:3b:ff:3e:4c:f3:3c:ab:2e:27:71:86:fd:99:6e:86:ab:4c:
5b:72:4d:51:68:52:76:a4:3b:80:d3:de:c2:37:5d:24:8d:94:
e3:77:36:aa:a7:f2:3b:61:e6:e3:22:8f:f7:ba:74:8e:98:91:
cb:36:32:c4:3a:6c:59:06:cf:b2:26:05:88:6e:e1:53:24:78:
b9:aa:68:95:07:0a:27:a1:ec:56:b2:62:d5:5c:60:b6:7d:be:
60:63:e8:af:58:12:fd:6f:0e:cf:ea:ff:b2:38:67:49:21:81:
1f:fa:34:2f:35:fb:23:10:07:75:95:f6:01:5b:7c:30:6e:8c:
1a:16:24:c8:60:f7:d9:19:8f:60:7f:d0:fd:1c:c7:14:fa:28:
89:32:c5:b6:d9:4d:c1:22:11:9b:f4:55:fe:86:48:c3:7a:d8:
ee:8a:e2:b5:81:2c:19:99:fe:94:5a:8d:95:eb:ef:8f:7e:38:
b3:79:15:fa:2e:6e:65:20:d7:2e:35:72:60:62:44:ca:ec:64:
bc:53:6b:c9:e8:73:f7:df:e6:6c:88:6e:ae:78:a0:e6:60:2f:
c3:38:5d:83:00:b7:5c:ba:87:9d:d3:2f:b8:aa:14:2f:61:c1:
82:b5:2d:03:e4:33:66:b4:1e:f2:cb:76:c4:18:21:3c:0c:54:
d8:9a:45:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:00 2024 by rpki-client on console-ams.rpki-client.org