Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/5H8Sdqw-cts8JIMeJiLPtendcTw.roa
File: 5H8Sdqw-cts8JIMeJiLPtendcTw.roa (raw, json)
Hash identifier: QYrxcg7COooZB4xasNAdXTFhn2vphPHQ+EVMwHhwkCc=
Subject key identifier: E4:7F:12:76:AC:3E:72:DB:3C:24:83:1E:26:22:CF:B5:E9:DD:71:3C
Certificate issuer: /CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Certificate serial: 018F4E3E4C05D19D8FE0E1A0E8BF8830AF21
Authority key identifier: A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/5H8Sdqw-cts8JIMeJiLPtendcTw.roa
Signing time: Mon 06 May 2024 14:10:56 +0000
ROA not before: Mon 06 May 2024 14:10:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198949
IP address blocks: 80.86.192.0/24 maxlen: 24
80.86.193.0/24 maxlen: 24
80.86.196.0/24 maxlen: 24
80.86.198.0/24 maxlen: 24
80.86.199.0/24 maxlen: 24
81.221.250.0/24 maxlen: 24
81.221.251.0/24 maxlen: 24
81.221.252.0/24 maxlen: 24
81.221.253.0/24 maxlen: 24
81.221.254.0/24 maxlen: 24
81.221.255.0/24 maxlen: 24
82.195.224.0/24 maxlen: 24
82.195.225.0/24 maxlen: 24
82.195.226.0/24 maxlen: 24
82.195.227.0/24 maxlen: 24
194.191.17.0/24 maxlen: 24
194.191.18.0/24 maxlen: 24
194.191.19.0/24 maxlen: 24
194.191.20.0/24 maxlen: 24
194.191.21.0/24 maxlen: 24
194.191.24.0/24 maxlen: 24
194.191.25.0/24 maxlen: 24
194.191.26.0/24 maxlen: 24
194.191.28.0/24 maxlen: 24
194.191.29.0/24 maxlen: 24
194.191.30.0/24 maxlen: 24
195.49.16.0/24 maxlen: 24
212.59.184.0/24 maxlen: 24
212.59.186.0/24 maxlen: 24
212.59.188.0/24 maxlen: 24
212.59.189.0/24 maxlen: 24
2a01:2a8:2001::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 08 May 2024 10:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4e:3e:4c:05:d1:9d:8f:e0:e1:a0:e8:bf:88:30:af:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Validity
Not Before: May 6 14:10:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e47f1276ac3e72db3c24831e2622cfb5e9dd713c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b6:8d:20:cd:bd:a7:70:6d:75:89:ae:40:cd:
4b:2c:51:74:bd:04:25:f7:3f:f8:43:d0:73:2d:6b:
11:8a:8d:72:06:bd:55:bd:41:36:c1:b3:d9:dd:2f:
21:91:37:bb:30:d7:3d:c9:f5:2f:d3:fb:d7:c3:c0:
50:60:f0:2d:ea:4c:6d:52:9b:c8:0b:54:1e:5a:88:
9c:e4:9d:17:54:f7:b8:12:85:e1:ed:7b:43:76:96:
45:07:a3:13:c8:c3:32:9d:c6:21:5c:f8:6c:d1:7d:
30:a6:9e:d2:1b:d2:3f:47:17:d4:99:20:b5:82:36:
2b:7b:7e:f0:a4:ab:7a:22:fc:5d:4c:53:a6:99:9a:
ac:e5:2d:ea:38:1f:78:b6:04:0d:7d:e5:83:d5:6b:
82:3c:ad:0e:d0:12:fd:16:a3:2c:e8:e3:22:52:61:
74:19:a1:26:86:75:2d:78:54:fc:8b:03:8c:3d:e6:
e9:46:be:4a:f7:d4:f5:fa:47:73:aa:e6:ae:43:3d:
8c:0b:6a:72:df:b9:1f:38:00:24:5b:d8:81:95:00:
0c:b0:21:ee:7c:27:2a:41:81:99:eb:3a:f1:70:09:
db:ff:b7:b9:72:d4:5e:83:e1:d7:92:8b:38:84:4a:
48:bf:93:b0:ff:96:6d:75:2d:ac:e9:89:cc:cc:67:
fa:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:7F:12:76:AC:3E:72:DB:3C:24:83:1E:26:22:CF:B5:E9:DD:71:3C
X509v3 Authority Key Identifier:
keyid:A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/5H8Sdqw-cts8JIMeJiLPtendcTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/p0xnBuP769_xRqihTsKjKEqSumI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.86.192.0/23
80.86.196.0/24
80.86.198.0/23
81.221.250.0-81.221.255.255
82.195.224.0/22
194.191.17.0-194.191.21.255
194.191.24.0-194.191.26.255
194.191.28.0-194.191.30.255
195.49.16.0/24
212.59.184.0/24
212.59.186.0/24
212.59.188.0/23
IPv6:
2a01:2a8:2001::/48
Signature Algorithm: sha256WithRSAEncryption
42:c1:f1:23:af:02:81:46:5b:fc:aa:de:24:7c:3e:f4:33:97:
3c:7d:e0:22:42:ef:0d:99:85:ce:ac:ff:49:9e:a1:e9:37:70:
14:42:c7:19:68:ab:6f:ec:d5:ae:c0:00:03:2c:bb:c4:a4:b4:
fe:c2:7d:09:e1:52:a8:2b:d1:00:e6:81:05:f0:f4:ab:a0:9a:
74:b3:34:cf:1e:b4:e2:a4:d7:b2:88:30:d6:d4:2c:d0:1a:b7:
69:e9:ac:1a:2b:24:30:d1:9b:e2:58:33:5e:49:0c:da:a9:f9:
ba:64:40:08:fd:20:0e:97:99:76:75:de:4c:41:67:ee:48:70:
98:45:a1:33:22:45:e9:04:7c:51:36:ac:76:00:1f:9e:85:d0:
a5:66:76:19:a1:9a:6e:62:0d:2b:ef:59:65:ea:a0:1e:da:85:
52:46:85:22:b5:b1:f7:1c:a3:61:1c:9a:e6:78:4a:a0:21:ba:
b8:cd:73:82:a7:47:71:a5:b8:9e:8f:5c:0d:9a:3d:48:03:14:
54:d5:54:44:e6:96:c0:dd:54:bd:e5:12:59:1e:79:17:6f:df:
b4:93:7e:90:34:33:e4:60:c4:60:35:2a:21:56:a7:fb:39:e5:
99:04:e5:ca:da:7f:85:b7:58:95:1a:5e:18:25:d0:9e:dd:41:
36:05:36:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:03 2024 by rpki-client on console-fra.rpki-client.org