Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/NDsB5ul-9JHNnbrRFtMmuPIs47M.roa
File: NDsB5ul-9JHNnbrRFtMmuPIs47M.roa (raw, json)
Hash identifier: cjvu/M3nxx/anlprCEruOAS5V5womQhFoEPYlN/NzAw=
Subject key identifier: 34:3B:01:E6:E9:7E:F4:91:CD:9D:BA:D1:16:D3:26:B8:F2:2C:E3:B3
Certificate issuer: /CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Certificate serial: 018F7CC04307BFFCC8907B58CFB2EDFD8278
Authority key identifier: 66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/NDsB5ul-9JHNnbrRFtMmuPIs47M.roa
Signing time: Wed 15 May 2024 14:55:25 +0000
ROA not before: Wed 15 May 2024 14:55:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34170
IP address blocks: 80.69.48.0/24 maxlen: 24
80.69.49.0/24 maxlen: 24
80.69.50.0/24 maxlen: 24
80.69.51.0/24 maxlen: 24
80.69.53.0/24 maxlen: 24
80.69.56.0/24 maxlen: 24
80.69.57.0/24 maxlen: 24
80.69.60.0/24 maxlen: 24
91.135.240.0/24 maxlen: 24
91.135.241.0/24 maxlen: 24
91.135.242.0/24 maxlen: 24
91.135.243.0/24 maxlen: 24
91.135.244.0/24 maxlen: 24
91.135.252.0/24 maxlen: 24
91.135.253.0/24 maxlen: 24
92.39.90.0/24 maxlen: 24
92.39.91.0/24 maxlen: 24
92.39.92.0/24 maxlen: 24
92.39.93.0/24 maxlen: 24
92.39.94.0/24 maxlen: 24
158.181.34.0/24 maxlen: 24
158.181.37.0/24 maxlen: 24
158.181.38.0/24 maxlen: 24
158.181.39.0/24 maxlen: 24
158.181.44.0/23 maxlen: 23
158.181.46.0/23 maxlen: 23
185.105.196.0/24 maxlen: 24
185.105.197.0/24 maxlen: 24
185.105.198.0/24 maxlen: 24
185.105.199.0/24 maxlen: 24
212.47.152.0/24 maxlen: 24
212.47.154.0/24 maxlen: 24
212.47.155.0/24 maxlen: 24
212.47.157.0/24 maxlen: 24
212.47.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 May 2024 07:46:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7c:c0:43:07:bf:fc:c8:90:7b:58:cf:b2:ed:fd:82:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Validity
Not Before: May 15 14:55:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=343b01e6e97ef491cd9dbad116d326b8f22ce3b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:75:15:a6:2e:80:23:b4:31:16:83:d6:ad:40:
11:7f:0c:f8:da:c9:16:da:b4:7d:82:02:a2:ec:91:
83:75:f4:9e:15:b1:01:09:5d:7e:77:93:e9:79:3b:
3e:26:d6:50:9d:f6:a8:5c:9c:d7:c1:2c:f4:bc:dd:
b3:52:f8:3e:98:1c:0a:4b:15:d0:5d:a7:28:c2:8b:
83:39:3f:85:b2:68:0f:a8:f0:c3:98:47:0d:c1:4d:
58:ac:f6:95:06:4f:68:ae:b6:1e:cb:6e:ec:6f:d3:
9f:29:05:a8:96:6d:e7:13:ed:d6:11:c3:86:8a:5e:
f5:c5:ba:b4:39:0c:0b:d7:33:76:fc:9a:60:20:5b:
98:58:47:67:a2:73:99:96:cc:d9:6c:bb:1e:a3:ad:
e8:ff:15:be:84:cd:05:4a:a8:66:78:9e:17:fc:52:
3b:3e:c4:f0:02:44:a2:ef:8d:13:9f:1b:4e:2b:b1:
e0:73:cc:da:c1:96:f2:c8:a1:e7:07:05:1d:57:d1:
f0:15:b5:13:87:97:cd:84:e7:e5:69:6f:a6:6c:cf:
fe:65:c2:b2:d9:25:70:c0:3c:49:8e:81:04:28:61:
bc:7d:76:1a:3c:c0:c0:a7:e9:6f:d3:4a:27:51:2a:
56:78:67:93:76:3a:3b:60:06:ed:11:be:37:25:4a:
61:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:3B:01:E6:E9:7E:F4:91:CD:9D:BA:D1:16:D3:26:B8:F2:2C:E3:B3
X509v3 Authority Key Identifier:
keyid:66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/NDsB5ul-9JHNnbrRFtMmuPIs47M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.69.48.0/22
80.69.53.0/24
80.69.56.0/23
80.69.60.0/24
91.135.240.0-91.135.244.255
91.135.252.0/23
92.39.90.0-92.39.94.255
158.181.34.0/24
158.181.37.0-158.181.39.255
158.181.44.0/22
185.105.196.0/22
212.47.152.0/24
212.47.154.0/23
212.47.157.0-212.47.158.255
Signature Algorithm: sha256WithRSAEncryption
58:c0:18:e1:be:1f:17:b0:e0:d3:a7:a1:7a:73:3f:d6:d9:c5:
ea:a0:dc:58:fa:21:6e:35:7d:2b:4b:06:7f:42:2d:15:a8:e2:
5a:79:32:4e:9e:17:26:8c:c8:45:db:e5:55:48:6e:55:91:5a:
c3:22:e4:a6:cc:00:54:bc:66:9c:ea:08:a5:b9:3b:f6:b1:fa:
17:62:94:78:8b:9b:3c:68:5d:37:91:13:1f:f8:0e:05:48:39:
b4:85:93:76:1c:3d:57:22:74:58:f4:30:c1:62:65:71:bc:09:
e7:d0:54:66:2a:ef:a2:52:70:b1:37:90:11:2f:2f:dd:d9:ba:
7e:b9:d7:33:ab:bf:fb:55:94:81:ea:b0:42:f9:0b:e9:42:93:
b6:e9:d0:f5:e9:5f:c5:2e:e0:67:e7:88:4e:71:6c:51:fb:dc:
1e:3b:bb:d6:d1:6f:8d:d2:67:98:35:ed:2e:f3:3f:a0:55:6a:
80:55:00:25:f9:b0:33:98:7b:f4:7b:ea:29:9b:97:34:fd:2a:
ad:48:b9:85:1e:45:a6:d7:3e:e2:fb:2a:cd:3a:b3:5b:19:55:
c7:09:d7:2b:25:26:d0:9c:dc:ca:1b:e3:ac:fb:0a:7a:60:83:
46:86:2c:92:a5:c9:7f:d1:d5:15:55:03:c5:e3:b1:35:8e:89:
75:ab:f6:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:51 2024 by rpki-client on console-ams.rpki-client.org