Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HbXJQxdJtlhfM84NxFxvWwf5O94.roa
File: HbXJQxdJtlhfM84NxFxvWwf5O94.roa (raw, json)
Hash identifier: sInl0CMP/xGv2ZUOiTqh8Locpmqu8c50MYiub/LNJJk=
Subject key identifier: 1D:B5:C9:43:17:49:B6:58:5F:33:CE:0D:C4:5C:6F:5B:07:F9:3B:DE
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0185709554115816E1E4D6379CF3268347A5
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HbXJQxdJtlhfM84NxFxvWwf5O94.roa
Signing time: Mon 02 Jan 2023 03:45:12 +0000
ROA not before: Mon 02 Jan 2023 03:45:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51812
IP address blocks: 95.46.152.0/23 maxlen: 23
146.120.186.0/23 maxlen: 24
92.253.216.0/23 maxlen: 23
146.120.114.0/23 maxlen: 24
95.46.98.0/23 maxlen: 24
93.171.14.0/23 maxlen: 23
92.38.20.0/23 maxlen: 24
146.120.156.0/23 maxlen: 24
93.171.98.0/23 maxlen: 24
92.38.88.0/23 maxlen: 24
92.38.90.0/23 maxlen: 24
146.158.10.0/23 maxlen: 24
93.170.104.0/23 maxlen: 23
93.170.120.0/23 maxlen: 23
93.170.32.0/23 maxlen: 23
93.171.216.0/23 maxlen: 24
93.170.50.0/23 maxlen: 24
95.47.202.0/23 maxlen: 23
95.46.38.0/23 maxlen: 23
146.120.98.0/23 maxlen: 23
93.170.138.0/23 maxlen: 23
95.47.184.0/23 maxlen: 23
93.170.172.0/23 maxlen: 23
95.46.12.0/23 maxlen: 23
95.46.14.0/23 maxlen: 23
95.47.198.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:54:11:58:16:e1:e4:d6:37:9c:f3:26:83:47:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1db5c9431749b6585f33ce0dc45c6f5b07f93bde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:41:51:f2:51:82:34:b9:d2:a4:cb:3f:53:1e:
d8:d7:67:7e:ea:98:e8:b0:cd:5b:fa:67:7b:37:ac:
19:0a:e8:c4:02:0c:27:bc:59:17:a0:fc:47:77:18:
35:1b:1d:c8:10:36:42:80:45:a9:de:2c:b8:46:5f:
5c:5f:22:24:8d:4f:26:2c:91:75:f4:ca:af:5d:25:
9c:a8:cd:ec:ff:02:c1:47:a6:53:c4:04:d1:e3:2e:
20:72:a2:0b:54:a1:2b:43:0e:04:96:e5:af:3c:b5:
6f:02:99:d8:7e:9f:60:2c:e9:91:13:fc:1f:a6:80:
41:91:64:ba:f5:8b:a1:a0:f7:1d:cd:c3:e4:37:ec:
48:80:10:a9:6b:5b:aa:32:4b:87:b6:48:f2:dd:4e:
fb:25:b4:3a:a5:e5:58:7b:35:cf:7f:41:91:0b:4b:
03:c4:e7:73:a3:1e:05:5c:30:04:e9:c9:ef:4f:c3:
72:81:1d:10:0c:7c:c2:fc:37:b4:b8:95:f1:29:0a:
62:3b:2b:78:c5:f1:72:0e:c7:e1:9d:71:b4:89:b8:
84:2c:23:92:e0:ac:0e:37:ac:e6:9c:3f:de:61:bd:
bd:09:8e:3c:34:25:c7:3a:d8:27:06:c6:e5:7a:c4:
2d:b5:2e:a6:56:77:4d:fc:27:ea:e3:f6:02:db:41:
42:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:B5:C9:43:17:49:B6:58:5F:33:CE:0D:C4:5C:6F:5B:07:F9:3B:DE
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HbXJQxdJtlhfM84NxFxvWwf5O94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.20.0/23
92.38.88.0/22
92.253.216.0/23
93.170.32.0/23
93.170.50.0/23
93.170.104.0/23
93.170.120.0/23
93.170.138.0/23
93.170.172.0/23
93.171.14.0/23
93.171.98.0/23
93.171.216.0/23
95.46.12.0/22
95.46.38.0/23
95.46.98.0/23
95.46.152.0/23
95.47.184.0/23
95.47.198.0/23
95.47.202.0/23
146.120.98.0/23
146.120.114.0/23
146.120.156.0/23
146.120.186.0/23
146.158.10.0/23
Signature Algorithm: sha256WithRSAEncryption
00:1e:b3:2e:91:0d:81:15:c2:ca:37:4d:8d:bf:7f:52:1d:8a:
8d:6d:15:e7:98:d2:12:f0:7e:37:86:d0:6c:0e:5c:ea:e7:34:
d6:95:b1:1d:92:48:61:86:a8:9b:c9:0e:ee:72:ca:8e:ce:a5:
f3:f4:14:20:e3:dd:d2:e5:c4:da:1e:76:75:a5:bc:e2:3f:da:
32:39:17:3c:e3:15:57:ee:62:9d:04:85:11:a2:08:b7:28:eb:
b4:70:80:30:ed:4c:fb:d9:8a:6d:75:e4:2b:ef:92:bf:f3:37:
a8:20:12:e5:fa:d7:67:58:7c:d5:75:b1:56:c8:23:f6:f8:bc:
da:4c:0d:91:2f:09:58:ce:38:a8:83:ed:7e:cf:77:bf:9f:6d:
74:65:6e:6e:d5:e4:6c:bf:fa:49:25:52:03:59:88:0c:ef:9a:
b1:65:e1:4a:65:b7:5e:1b:87:4b:32:67:56:44:b5:27:53:87:
c8:7d:fe:f3:34:06:f5:72:a4:7e:f5:e0:c2:09:62:6f:87:87:
dd:d7:06:2a:75:12:7f:8f:00:b5:8d:a2:9d:ea:96:fb:c4:51:
e9:64:8a:0b:ea:3a:9f:2a:b4:14:c5:c9:df:c0:65:0f:67:88:
19:91:24:26:cd:b1:00:b9:93:3a:6e:1b:45:1e:87:54:86:6e:
27:ec:a9:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:50 2024 by rpki-client on console-ams.rpki-client.org