Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/P47PKiz7cUtII0L7wbgijViJRqU.roa
File: P47PKiz7cUtII0L7wbgijViJRqU.roa (raw, json)
Hash identifier: fY9MFUKIuRbKgPAFcO6cyeNi6nj8RXYJpSUEmgYsF20=
Subject key identifier: 3F:8E:CF:2A:2C:FB:71:4B:48:23:42:FB:C1:B8:22:8D:58:89:46:A5
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0191A2E4B3D669119B8791FED29399059442
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/P47PKiz7cUtII0L7wbgijViJRqU.roa
Signing time: Fri 30 Aug 2024 10:46:22 +0000
ROA not before: Fri 30 Aug 2024 10:46:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212667
IP address blocks: 5.182.116.0/24 maxlen: 24
45.86.3.0/24 maxlen: 24
45.90.44.0/24 maxlen: 24
45.90.47.0/24 maxlen: 24
45.128.130.0/23 maxlen: 23
45.128.228.0/22 maxlen: 22
46.149.174.0/24 maxlen: 24
46.174.192.0/24 maxlen: 24
46.174.193.0/24 maxlen: 24
46.174.194.0/24 maxlen: 24
46.174.195.0/24 maxlen: 24
46.174.196.0/24 maxlen: 24
46.174.197.0/24 maxlen: 24
46.174.198.0/24 maxlen: 24
46.174.199.0/24 maxlen: 24
62.204.32.0/24 maxlen: 24
178.212.78.0/24 maxlen: 24
185.253.2.0/24 maxlen: 24
188.64.140.0/24 maxlen: 24
188.93.136.0/24 maxlen: 24
195.96.141.0/24 maxlen: 24
212.18.98.0/24 maxlen: 24
212.52.13.0/24 maxlen: 24
212.60.6.0/24 maxlen: 24
212.107.24.0/24 maxlen: 24
212.115.48.0/24 maxlen: 24
212.115.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Sep 2024 10:34:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a2:e4:b3:d6:69:11:9b:87:91:fe:d2:93:99:05:94:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 30 10:46:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f8ecf2a2cfb714b482342fbc1b8228d588946a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:dd:32:20:93:cd:f4:b6:e1:90:a8:1c:68:09:
5d:2b:13:1c:94:35:34:2f:c0:c8:ab:ec:e2:9c:fe:
b0:fe:2b:cc:93:c4:27:cc:05:22:3d:11:b1:aa:f6:
f4:cb:dc:21:1e:1b:10:10:a9:de:46:75:8e:d1:36:
fd:73:a1:84:7e:6b:f0:57:ee:71:3c:08:77:25:c0:
4b:c0:e9:20:0f:ab:e7:05:7f:77:bd:ec:91:f4:6e:
6b:4c:56:cf:c9:91:40:d1:94:2a:82:63:f8:8e:f4:
56:01:52:b3:ea:a7:ce:e3:51:fe:20:b1:b0:d9:20:
a0:8a:d9:10:5d:31:44:e2:cd:39:d0:a9:6c:97:bc:
d8:af:10:24:37:9f:46:7b:8d:72:71:04:fe:12:ed:
c8:22:82:df:6e:fd:ad:f0:66:b1:77:40:a4:67:5e:
ed:39:0a:28:6f:89:ee:47:46:69:74:85:c5:10:91:
98:99:66:30:5a:f0:89:b5:e7:aa:9b:79:fb:dd:bf:
c8:60:e9:c4:3b:0f:d4:d6:56:56:1d:ec:15:0e:4a:
93:58:15:b5:cb:40:f1:fd:bf:ad:ef:87:ac:58:ba:
4d:5b:3d:a0:fd:33:27:cf:9d:a4:79:42:44:81:06:
61:11:8b:dc:c7:66:c0:9c:8a:0c:9a:54:98:44:5a:
86:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:8E:CF:2A:2C:FB:71:4B:48:23:42:FB:C1:B8:22:8D:58:89:46:A5
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/P47PKiz7cUtII0L7wbgijViJRqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.116.0/24
45.86.3.0/24
45.90.44.0/24
45.90.47.0/24
45.128.130.0/23
45.128.228.0/22
46.149.174.0/24
46.174.192.0/21
62.204.32.0/24
178.212.78.0/24
185.253.2.0/24
188.64.140.0/24
188.93.136.0/24
195.96.141.0/24
212.18.98.0/24
212.52.13.0/24
212.60.6.0/24
212.107.24.0/24
212.115.48.0/24
212.115.50.0/24
Signature Algorithm: sha256WithRSAEncryption
71:07:c1:34:26:a1:61:a2:68:77:80:cd:58:d0:f5:6f:45:7d:
50:c5:c6:20:7d:99:08:37:df:c1:07:22:85:b4:8e:65:20:00:
0b:f0:ca:03:5b:1b:4e:12:f9:a7:98:3b:72:21:83:c3:83:e3:
b4:60:03:58:db:63:0c:b9:90:6a:a6:5d:ba:7e:f1:76:07:ab:
7a:73:47:8a:d2:ee:b9:db:e6:6b:af:0c:44:8f:03:0f:93:0a:
16:ee:d3:bb:83:d9:c8:5a:d4:28:46:e0:6e:cb:f2:92:41:95:
12:85:d6:a4:4e:5d:07:0e:0d:f4:d8:2e:ea:79:de:47:b4:c6:
1e:10:b5:92:f5:d9:da:89:5c:7e:ce:5a:99:81:39:ea:cf:18:
0b:29:14:dc:51:6d:8d:fc:50:83:b5:4e:a4:25:46:33:1e:c2:
94:e7:24:40:66:db:be:3d:04:73:6d:02:bb:ee:68:1e:ef:18:
4e:df:37:d3:d0:ce:f8:09:f5:9f:04:01:a5:a6:c7:28:e8:f5:
dc:9b:0b:eb:4e:23:ea:a8:14:6e:be:d1:c5:ca:11:56:45:52:
be:b9:c4:0e:67:66:2f:ab:87:87:26:41:94:57:63:93:72:bb:
16:20:55:80:be:d8:54:46:53:d7:17:b8:57:4d:3b:e4:0d:56:
a9:27:f2:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 12:50:08 2024 by rpki-client on console-fra.rpki-client.org