Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/t43cZISpfbkPrfAOi11FnQT05LM.roa
File: t43cZISpfbkPrfAOi11FnQT05LM.roa (raw, json)
Hash identifier: EsxLlrzrTDVx2ILPESxm8dv7o5FEy5S0xJOK307WjGE=
Subject key identifier: B7:8D:DC:64:84:A9:7D:B9:0F:AD:F0:0E:8B:5D:45:9D:04:F4:E4:B3
Certificate issuer: /CN=26a5aa918cbfeb3e12997f33890feb258907b343
Certificate serial: 018A00A0FC66584BC6AC47DA1931E0DFBB2B
Authority key identifier: 26:A5:AA:91:8C:BF:EB:3E:12:99:7F:33:89:0F:EB:25:89:07:B3:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/t43cZISpfbkPrfAOi11FnQT05LM.roa
Signing time: Wed 16 Aug 2023 23:14:24 +0000
ROA not before: Wed 16 Aug 2023 23:14:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58321
IP address blocks: 185.204.216.0/22 maxlen: 24
195.114.0.0/23 maxlen: 24
193.17.184.0/24 maxlen: 24
178.250.40.0/21 maxlen: 24
185.201.112.0/22 maxlen: 24
194.169.227.0/24 maxlen: 24
185.208.164.0/24 maxlen: 24
195.242.116.0/23 maxlen: 24
195.2.254.0/23 maxlen: 24
193.218.152.0/22 maxlen: 24
91.228.196.0/22 maxlen: 24
185.193.112.0/22 maxlen: 24
94.152.254.0/24 maxlen: 24
91.237.52.0/24 maxlen: 24
94.152.255.0/24 maxlen: 24
185.25.148.0/22 maxlen: 24
185.5.96.0/22 maxlen: 24
91.199.22.0/24 maxlen: 24
91.239.66.0/23 maxlen: 24
185.243.52.0/22 maxlen: 24
185.123.160.0/22 maxlen: 24
185.123.160.0/24 maxlen: 24
185.140.120.0/22 maxlen: 24
195.78.66.0/23 maxlen: 24
91.234.146.0/24 maxlen: 24
185.180.204.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:00:a0:fc:66:58:4b:c6:ac:47:da:19:31:e0:df:bb:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26a5aa918cbfeb3e12997f33890feb258907b343
Validity
Not Before: Aug 16 23:14:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b78ddc6484a97db90fadf00e8b5d459d04f4e4b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:30:cd:8a:bc:ef:bb:6d:5c:df:ac:ed:0e:be:
fa:49:8c:99:5c:a0:6c:0f:a7:e2:72:7c:4b:73:6b:
b1:32:fb:91:1d:ce:f4:38:99:80:1f:b8:fa:fa:05:
44:3c:09:05:9e:32:70:cb:78:7a:6c:cb:61:b2:22:
da:1f:d0:92:55:4a:4d:37:a6:ee:3c:80:4f:3e:e4:
87:5a:30:04:7a:f2:d7:3d:4a:70:d7:42:39:d7:f6:
a5:b0:82:2e:21:f8:a9:5e:68:05:f8:0b:55:49:fe:
60:0d:41:ea:9e:f3:f0:3c:bf:93:0b:ac:1e:1f:ef:
48:99:42:4e:5a:20:e5:3e:d0:9f:86:9d:47:e3:28:
bd:8b:e7:55:e3:db:d1:03:46:80:61:cd:40:52:75:
2a:2b:d5:b0:ff:e6:f7:e2:49:d8:ec:ed:6e:42:a5:
47:43:71:7b:fa:61:64:9e:3f:f5:30:65:24:88:1f:
8c:ea:01:51:95:1d:c8:e2:3b:66:bd:8d:70:eb:46:
2c:96:28:f3:55:0f:15:1f:6d:42:71:78:59:92:19:
d4:36:71:d4:69:c0:ae:65:76:2f:49:80:54:dd:6b:
90:d9:4e:08:e3:58:86:3f:ee:14:56:37:d6:9d:ff:
67:0f:4a:d5:17:f4:70:0c:db:32:fa:35:ed:20:2e:
c1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:8D:DC:64:84:A9:7D:B9:0F:AD:F0:0E:8B:5D:45:9D:04:F4:E4:B3
X509v3 Authority Key Identifier:
keyid:26:A5:AA:91:8C:BF:EB:3E:12:99:7F:33:89:0F:EB:25:89:07:B3:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/t43cZISpfbkPrfAOi11FnQT05LM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1433ea-1080-46e5-b612-297e282d66a8/1/JqWqkYy_6z4SmX8ziQ_rJYkHs0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.22.0/24
91.228.196.0/22
91.234.146.0/24
91.237.52.0/24
91.239.66.0/23
94.152.254.0/23
178.250.40.0/21
185.5.96.0/22
185.25.148.0/22
185.123.160.0/22
185.140.120.0/22
185.180.204.0/22
185.193.112.0/22
185.201.112.0/22
185.204.216.0/22
185.208.164.0/24
185.243.52.0/22
193.17.184.0/24
193.218.152.0/22
194.169.227.0/24
195.2.254.0/23
195.78.66.0/23
195.114.0.0/23
195.242.116.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:3a:4b:d0:73:1b:5c:43:af:19:d6:42:46:f1:87:0c:5f:ed:
c8:ad:91:e2:2d:6b:c0:cd:dd:c1:02:4e:16:e6:ff:79:2d:de:
b1:32:a5:74:6d:d6:98:28:dc:a5:ba:86:65:f8:30:54:bf:d7:
17:4d:66:17:fb:fe:e4:e9:ee:00:95:f5:2f:15:01:de:3f:e7:
9d:4f:ac:d5:85:ac:f5:bb:8b:9c:ab:2a:34:18:4a:83:fd:31:
a7:92:5b:c2:b8:b7:aa:75:3e:f6:4d:65:5d:5a:b3:df:51:75:
d4:80:8a:21:e5:fc:a0:a3:5d:3b:ce:ba:25:99:4f:31:6f:e3:
4f:ae:2c:e1:23:a7:d9:f4:79:f0:8e:96:df:17:88:7c:7a:9a:
07:7e:6a:4c:90:a1:2d:8d:01:d7:63:b3:19:8d:af:28:7b:79:
84:12:e1:66:27:5d:c8:78:b3:2a:53:c1:9d:47:0b:25:0b:be:
22:18:4d:86:67:1c:ae:82:1d:e3:ad:d4:89:33:d9:66:b3:8e:
c5:b6:c8:09:f9:f2:76:a7:57:70:62:a8:44:69:9e:79:a6:36:
3f:ae:99:26:8b:da:28:c5:d7:6e:6c:c9:b7:45:14:41:ac:8d:
8c:4e:35:06:0f:d8:74:e7:df:c9:37:3f:67:8a:16:6c:ce:a6:
70:b7:90:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:21 2024 by rpki-client on console-fra.rpki-client.org