Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/Na2yte_qoesGShhnfcjO9ZkBO5Q.roa
File: Na2yte_qoesGShhnfcjO9ZkBO5Q.roa (raw, json)
Hash identifier: qGFdXcE0HlpgvYufayqPE+NMi57Cd4n5RYwsMOAYvSE=
Subject key identifier: 35:AD:B2:B5:EF:EA:A1:EB:06:4A:18:67:7D:C8:CE:F5:99:01:3B:94
Certificate issuer: /CN=b6d14118dbd227298daa80c7acab11eea6d63e21
Certificate serial: 0188A9749F06275B78B3789831D034888527
Authority key identifier: B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/Na2yte_qoesGShhnfcjO9ZkBO5Q.roa
Signing time: Sun 11 Jun 2023 07:56:12 +0000
ROA not before: Sun 11 Jun 2023 07:56:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34636
IP address blocks: 185.237.11.0/24 maxlen: 24
185.237.9.0/24 maxlen: 24
185.237.10.0/24 maxlen: 24
185.237.8.0/24 maxlen: 24
185.237.8.0/22 maxlen: 22
185.189.122.0/23 maxlen: 23
185.189.122.0/24 maxlen: 24
185.189.123.0/24 maxlen: 24
185.189.120.0/24 maxlen: 24
185.189.120.0/22 maxlen: 22
185.189.120.0/23 maxlen: 23
185.189.121.0/24 maxlen: 24
185.132.80.0/24 maxlen: 24
185.132.80.0/23 maxlen: 23
185.132.80.0/22 maxlen: 22
185.132.82.0/23 maxlen: 23
185.132.83.0/24 maxlen: 24
185.67.102.0/24 maxlen: 24
185.67.103.0/24 maxlen: 24
185.67.100.0/22 maxlen: 22
185.67.100.0/24 maxlen: 24
185.67.101.0/24 maxlen: 24
185.233.14.0/24 maxlen: 24
185.233.15.0/24 maxlen: 24
185.233.12.0/22 maxlen: 22
185.233.12.0/24 maxlen: 24
185.233.13.0/24 maxlen: 24
88.135.41.0/24 maxlen: 24
88.135.42.0/23 maxlen: 23
88.135.42.0/24 maxlen: 24
88.135.40.0/22 maxlen: 22
88.135.40.0/24 maxlen: 24
88.135.40.0/23 maxlen: 23
88.135.43.0/24 maxlen: 24
88.135.44.0/24 maxlen: 24
88.135.46.0/24 maxlen: 24
88.135.47.0/24 maxlen: 24
2a04:f080::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a9:74:9f:06:27:5b:78:b3:78:98:31:d0:34:88:85:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6d14118dbd227298daa80c7acab11eea6d63e21
Validity
Not Before: Jun 11 07:56:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35adb2b5efeaa1eb064a18677dc8cef599013b94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:20:08:56:28:0a:23:d4:d8:57:94:e9:b3:86:
f6:75:58:6b:ca:79:ca:31:d7:3c:4f:3e:13:f5:0f:
6a:c2:1a:5e:cd:b5:b3:fe:28:78:a7:3b:19:29:03:
74:cb:98:96:8f:0e:5b:fa:f9:b2:e9:e5:e0:89:02:
4f:74:b0:92:79:6a:09:5a:ae:35:39:fc:94:fb:5b:
3a:9c:05:ce:25:e6:b5:d6:30:d5:59:30:e2:17:5c:
c3:61:0f:d5:38:a3:88:37:50:10:e5:c6:83:4f:07:
e2:9d:03:d3:4a:56:67:fd:42:20:ec:85:73:f5:00:
98:3f:62:35:7c:a0:4d:09:a6:87:06:58:d2:61:d8:
14:62:77:f7:6a:48:f3:19:7a:b5:82:aa:7f:eb:d4:
a5:be:1b:82:a5:9b:bd:b7:3d:39:f0:f3:51:b2:65:
2d:7c:f6:e4:c4:d6:f2:2f:a5:19:f3:5e:d3:d3:64:
b8:a2:33:b9:ee:e4:62:7d:de:51:72:85:99:db:35:
50:b2:cc:57:4d:26:72:72:59:54:53:ef:9d:95:3f:
db:08:45:2a:35:68:d8:9a:73:6d:17:b9:cf:1f:16:
8d:0a:ae:66:fc:de:33:4d:e0:93:9f:cf:7e:d4:86:
e9:23:85:4c:e5:6a:25:05:3e:61:8c:de:76:57:99:
35:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:AD:B2:B5:EF:EA:A1:EB:06:4A:18:67:7D:C8:CE:F5:99:01:3B:94
X509v3 Authority Key Identifier:
keyid:B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/Na2yte_qoesGShhnfcjO9ZkBO5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/ttFBGNvSJymNqoDHrKsR7qbWPiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.40.0-88.135.44.255
88.135.46.0/23
185.67.100.0/22
185.132.80.0/22
185.189.120.0/22
185.233.12.0/22
185.237.8.0/22
IPv6:
2a04:f080::/29
Signature Algorithm: sha256WithRSAEncryption
53:fd:c3:1b:be:5c:5a:d5:87:d6:d0:a4:6c:86:bb:2e:55:79:
87:b4:ed:ed:7d:e3:35:ac:80:79:38:b4:59:3d:ce:c1:43:c0:
36:d1:89:bc:fa:2f:0a:60:9f:03:6b:56:39:f1:f4:9f:23:72:
08:e7:25:c4:d4:b1:f9:96:59:4c:6c:92:12:3d:65:dc:15:f1:
be:50:b2:5d:84:f1:87:2a:be:3f:56:82:66:5c:bf:d2:94:4c:
13:6f:fc:17:bc:7a:f4:a2:fb:0b:90:25:c9:9a:75:d5:d5:80:
e8:b4:f4:03:4e:fd:82:e4:53:dc:f2:73:ad:7b:83:b8:e9:09:
ba:8a:f4:48:cc:0c:b7:02:f8:e0:7a:3b:2e:c8:fe:70:97:50:
ed:af:7b:09:67:e7:6f:3d:b1:a9:4a:fd:51:29:9c:6c:ba:53:
36:03:ef:12:46:7f:53:e8:90:39:50:6c:b9:98:2a:4f:ae:6f:
b3:72:c8:b9:3c:b5:31:90:18:a7:ca:32:81:73:c8:9d:3f:e3:
c5:d5:e0:bd:56:f0:94:56:d8:69:28:97:86:30:1d:7f:3f:19:
ae:98:6d:da:69:25:30:32:a4:54:b0:d4:03:c2:4c:77:f8:ec:
60:ba:b5:cd:6a:16:9f:1a:e1:3f:d4:a7:99:d4:9c:97:9b:00:
94:8e:de:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:20 2024 by rpki-client on console-ams.rpki-client.org