Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/nwXoPAFT02qh2UabEDcg2TpKX5g.roa
File: nwXoPAFT02qh2UabEDcg2TpKX5g.roa (raw, json)
Hash identifier: vGaCbECVGVti7UkQume3jUUGSIuGZXn3tQRuSCGwA4c=
Subject key identifier: 9F:05:E8:3C:01:53:D3:6A:A1:D9:46:9B:10:37:20:D9:3A:4A:5F:98
Certificate issuer: /CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Certificate serial: 0190264F614D750C1EBC4673C81256913FFF
Authority key identifier: 7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/nwXoPAFT02qh2UabEDcg2TpKX5g.roa
Signing time: Mon 17 Jun 2024 13:07:34 +0000
ROA not before: Mon 17 Jun 2024 13:07:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211381
IP address blocks: 5.8.248.0/24 maxlen: 24
62.233.53.0/24 maxlen: 24
77.220.212.0/24 maxlen: 24
77.220.213.0/24 maxlen: 24
109.107.157.0/24 maxlen: 24
185.93.6.0/24 maxlen: 24
185.201.252.0/24 maxlen: 24
185.229.251.0/24 maxlen: 24
185.237.165.0/24 maxlen: 24
185.241.61.0/24 maxlen: 24
185.251.25.0/24 maxlen: 24
193.3.168.0/24 maxlen: 24
193.169.105.0/24 maxlen: 24
194.15.46.0/24 maxlen: 24
194.26.232.0/24 maxlen: 24
194.62.105.0/24 maxlen: 24
212.86.114.0/24 maxlen: 24
212.86.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Jun 2024 13:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:26:4f:61:4d:75:0c:1e:bc:46:73:c8:12:56:91:3f:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Validity
Not Before: Jun 17 13:07:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9f05e83c0153d36aa1d9469b103720d93a4a5f98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:2b:d7:4f:e1:0c:fc:08:4f:cd:b1:59:ea:5b:
af:e8:fb:89:5f:77:72:5e:23:ac:b4:ad:55:4f:b2:
ee:9f:c4:4f:a9:f2:c0:9f:af:c0:88:dd:4f:d1:9a:
25:57:a9:a8:7b:07:58:41:53:ee:e8:19:94:fb:07:
1d:5b:cf:2a:73:36:63:91:18:32:f9:c3:84:f4:44:
f6:16:30:2f:2e:22:13:69:a8:81:1f:b9:95:ee:91:
3a:be:fe:4e:61:5f:63:b2:dd:6d:55:9f:1d:ec:0e:
c9:eb:89:c4:ba:e3:b5:45:1f:5f:c8:3d:e0:af:cb:
61:34:0f:a1:f1:37:fb:50:25:dd:f2:49:f9:1b:97:
00:5b:b5:88:92:a0:18:1f:2e:ac:ac:ee:2d:3d:d5:
2d:ca:3c:ae:fc:da:e1:f2:c8:3e:f7:2a:e6:3f:27:
5c:1e:2f:65:3a:83:9f:16:6e:cc:af:35:cf:04:a4:
81:38:3c:4f:6b:b3:b6:78:7e:07:db:b3:27:fd:8c:
f0:9e:5a:62:40:cd:47:da:2b:45:05:ab:25:fb:5f:
cd:89:07:7c:af:15:40:0a:90:0c:6e:9a:be:40:48:
7e:53:ac:71:3a:6c:7f:5d:34:79:2e:33:a0:ab:b3:
d0:aa:0a:11:b9:e0:0b:c1:72:ce:4f:ee:40:27:0a:
c5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:05:E8:3C:01:53:D3:6A:A1:D9:46:9B:10:37:20:D9:3A:4A:5F:98
X509v3 Authority Key Identifier:
keyid:7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/nwXoPAFT02qh2UabEDcg2TpKX5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/f8rYnfG_maNvKQzD7w8ee00CdTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.248.0/24
62.233.53.0/24
77.220.212.0/23
109.107.157.0/24
185.93.6.0/24
185.201.252.0/24
185.229.251.0/24
185.237.165.0/24
185.241.61.0/24
185.251.25.0/24
193.3.168.0/24
193.169.105.0/24
194.15.46.0/24
194.26.232.0/24
194.62.105.0/24
212.86.114.0/23
Signature Algorithm: sha256WithRSAEncryption
90:33:64:a8:e2:52:44:7c:31:f5:74:03:20:8f:d6:9e:31:00:
45:dc:b6:0f:93:59:32:8a:56:0f:2b:90:86:bd:cd:b3:e4:0d:
36:b3:94:41:56:fc:9e:73:61:74:73:ef:4e:d4:bd:69:65:45:
52:5b:d4:76:62:4a:fc:04:89:ce:a6:70:ff:ba:10:5d:1c:2d:
da:bb:ae:c8:2d:a5:0b:27:85:28:65:c1:db:f2:11:e8:12:ad:
d2:95:e5:0a:93:22:87:e8:1f:81:db:aa:07:7b:0d:b6:ca:73:
25:5e:57:c3:40:86:56:5e:bb:44:33:6a:a7:ec:c5:ae:14:57:
b8:45:db:6c:24:56:e0:13:9d:e2:36:0e:e6:5b:ff:6c:01:a9:
d9:ce:60:8c:9c:77:5c:6e:01:a8:35:80:82:1e:84:48:97:5b:
88:02:e2:d7:da:e7:2f:b3:cf:51:83:a4:c4:a2:ad:9d:83:b8:
05:dc:6c:ad:90:c3:49:d0:24:20:c6:75:85:69:c8:c7:76:1d:
cc:ff:8f:9c:87:89:a0:f5:53:ab:6e:6a:e7:47:0d:cb:2c:5b:
d9:cc:83:66:dd:98:43:c4:06:d5:1e:5f:7b:f7:3b:43:28:0d:
e8:40:ed:5f:a6:48:b3:22:32:ad:c7:d6:7c:41:a3:eb:1e:9a:
72:94:d6:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:17 2025 by rpki-client