Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/3d3c3b-1a95-4b50-8974-c1d0acb7819a/1/NCvjLjKLqQxQXYAFLHvgm2m494E.roa
File: NCvjLjKLqQxQXYAFLHvgm2m494E.roa (raw, json)
Hash identifier: 8dnt5lGKDF1Fv8ivFWCTycKFlutgyqNPH8ySHY5sY4c=
Subject key identifier: 34:2B:E3:2E:32:8B:A9:0C:50:5D:80:05:2C:7B:E0:9B:69:B8:F7:81
Certificate issuer: /CN=8f90f6b75e913f2782ed549eb72172c59cc47af1
Certificate serial: 0188D3DAFBBDACD526A4204782D881FA89C6
Authority key identifier: 8F:90:F6:B7:5E:91:3F:27:82:ED:54:9E:B7:21:72:C5:9C:C4:7A:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j5D2t16RPyeC7VSetyFyxZzEevE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/3d3c3b-1a95-4b50-8974-c1d0acb7819a/1/NCvjLjKLqQxQXYAFLHvgm2m494E.roa
Signing time: Mon 19 Jun 2023 13:32:03 +0000
ROA not before: Mon 19 Jun 2023 13:32:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203924
IP address blocks: 185.216.120.0/24 maxlen: 24
185.216.120.0/22 maxlen: 22
185.216.121.0/24 maxlen: 24
185.216.122.0/23 maxlen: 23
85.117.252.0/23 maxlen: 23
85.117.252.0/22 maxlen: 22
85.117.254.0/23 maxlen: 23
185.113.144.0/24 maxlen: 24
185.113.144.0/22 maxlen: 22
185.113.145.0/24 maxlen: 24
185.113.147.0/24 maxlen: 24
185.146.36.0/24 maxlen: 24
185.146.36.0/22 maxlen: 22
185.146.37.0/24 maxlen: 24
185.146.38.0/23 maxlen: 23
193.105.0.0/24 maxlen: 24
2a0b:b644::/30 maxlen: 30
2a0b:b640::/30 maxlen: 30
2a0b:b640::/29 maxlen: 29
2a07:4d00::/30 maxlen: 30
2a07:4d00::/29 maxlen: 29
2a06:6a40::/29 maxlen: 29
2a07:4d04::/30 maxlen: 30
Validation: Failed, certificate revoked on Mon 19 Jun 2023 15:06:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d3:da:fb:bd:ac:d5:26:a4:20:47:82:d8:81:fa:89:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f90f6b75e913f2782ed549eb72172c59cc47af1
Validity
Not Before: Jun 19 13:32:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=342be32e328ba90c505d80052c7be09b69b8f781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3f:8e:c4:37:fc:ae:86:f9:f5:75:81:df:62:
e9:db:bc:82:dd:ab:f6:61:d7:f7:66:eb:c7:a6:e4:
77:e6:a3:ff:d2:43:f1:31:48:b7:a9:6e:04:2b:10:
03:e8:72:98:5a:dd:87:fd:95:3a:57:88:87:76:16:
dc:4b:52:47:02:bb:6e:57:58:4d:56:f6:1a:c2:84:
10:4a:aa:af:96:cc:c0:8d:db:63:fd:ba:81:94:8c:
a7:4b:f6:0d:1f:e6:9c:93:fe:e3:9b:97:c0:10:39:
ae:22:98:0d:d5:06:16:6d:e3:5b:f6:73:16:ac:66:
ee:23:6d:4a:46:7d:2e:af:ff:76:49:cd:de:59:d7:
5b:5e:a2:99:71:1e:5c:f0:5f:b5:55:c6:2d:02:06:
61:3d:3c:36:c7:b8:ee:3e:78:e9:37:91:56:19:a0:
5e:a6:45:c9:a6:b7:f6:64:a6:6a:e7:40:8e:f9:ba:
77:3c:df:8c:b0:e1:29:a9:62:70:b3:89:52:d1:77:
4b:50:06:36:1d:b0:6d:4c:4b:5f:98:d4:01:8a:4c:
39:96:bc:16:01:b2:f8:cb:57:ee:f3:87:a3:f5:46:
d8:3d:1a:67:bd:be:61:c6:44:8e:a7:9c:f8:a0:2f:
38:87:97:af:60:6a:7c:7e:97:9c:ae:81:7b:4f:9d:
f7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:2B:E3:2E:32:8B:A9:0C:50:5D:80:05:2C:7B:E0:9B:69:B8:F7:81
X509v3 Authority Key Identifier:
keyid:8F:90:F6:B7:5E:91:3F:27:82:ED:54:9E:B7:21:72:C5:9C:C4:7A:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j5D2t16RPyeC7VSetyFyxZzEevE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/3d3c3b-1a95-4b50-8974-c1d0acb7819a/1/NCvjLjKLqQxQXYAFLHvgm2m494E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/3d3c3b-1a95-4b50-8974-c1d0acb7819a/1/j5D2t16RPyeC7VSetyFyxZzEevE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.252.0/22
185.113.144.0/22
185.146.36.0/22
185.216.120.0/22
193.105.0.0/24
IPv6:
2a06:6a40::/29
2a07:4d00::/29
2a0b:b640::/29
Signature Algorithm: sha256WithRSAEncryption
5d:e4:aa:c8:be:80:f1:5b:b7:8f:e0:3f:42:53:e3:74:c7:3b:
62:ac:3b:6d:83:e1:79:aa:a6:73:f6:18:85:35:1c:0c:73:e1:
a0:4d:67:a8:44:21:e8:c1:1b:c1:17:54:1a:11:95:87:58:b1:
24:9e:b4:31:d2:dd:f8:d6:a0:cc:a4:76:e7:d0:7c:2b:82:0e:
fc:ef:11:39:e9:a3:45:51:39:5c:80:13:8c:de:58:45:64:93:
f3:b9:5e:2a:78:b1:67:1b:7b:5b:68:bb:b2:31:5c:b5:a3:dc:
35:74:3f:fe:e8:b8:f0:f6:b6:96:d5:36:b5:54:34:ab:b6:b6:
6c:ee:29:d4:90:15:be:2b:e9:74:ff:1e:2a:93:e9:b3:1d:97:
27:9d:c9:d7:69:20:e3:1b:aa:a5:45:25:d7:8b:68:b6:5e:8f:
53:cb:00:71:d6:d1:57:e0:ae:f4:88:95:69:e5:59:1d:a2:95:
3b:fd:1b:6f:ee:f0:46:80:f5:13:7b:45:4b:c1:d6:54:15:58:
e6:9d:23:ca:23:84:db:6f:4f:95:38:26:02:10:85:6b:3d:ba:
6e:d3:65:f7:46:a1:13:e9:7f:5f:d1:70:20:68:b4:17:cc:b2:
bf:38:e3:56:dc:49:55:22:9c:a1:d1:8f:32:9b:d7:dd:36:8b:
d3:25:da:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:45 2024 by rpki-client on console-fra.rpki-client.org