Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/EnvIETXZZzVMFFZU1P8xinP9un8.roa
File: EnvIETXZZzVMFFZU1P8xinP9un8.roa (raw, json)
Hash identifier: 9kphPjtFLrYFDGsTeW2FoZVEHxIJJg1Me0YGvem/5nM=
Subject key identifier: 12:7B:C8:11:35:D9:67:35:4C:14:56:54:D4:FF:31:8A:73:FD:BA:7F
Certificate issuer: /CN=de51c3c5ddc4fb61381c3bea24c1ba4f74998eab
Certificate serial: 018B19803AD9F453EDC1FAD37CD39F338304
Authority key identifier: DE:51:C3:C5:DD:C4:FB:61:38:1C:3B:EA:24:C1:BA:4F:74:99:8E:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3lHDxd3E-2E4HDvqJMG6T3SZjqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/EnvIETXZZzVMFFZU1P8xinP9un8.roa
Signing time: Tue 10 Oct 2023 12:11:55 +0000
ROA not before: Tue 10 Oct 2023 12:11:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200773
IP address blocks: 185.242.97.0/24 maxlen: 24
185.242.96.0/22 maxlen: 24
185.242.98.0/24 maxlen: 24
185.242.99.0/24 maxlen: 24
188.247.150.0/24 maxlen: 24
188.247.152.0/24 maxlen: 24
188.247.152.0/21 maxlen: 21
188.247.151.0/24 maxlen: 24
188.247.147.0/24 maxlen: 24
188.247.146.0/24 maxlen: 24
188.247.149.0/24 maxlen: 24
188.247.148.0/24 maxlen: 24
188.247.157.0/24 maxlen: 24
188.247.159.0/24 maxlen: 24
188.247.158.0/24 maxlen: 24
188.247.154.0/24 maxlen: 24
188.247.153.0/24 maxlen: 24
188.247.156.0/24 maxlen: 24
188.247.155.0/24 maxlen: 24
185.71.201.0/24 maxlen: 24
185.71.200.0/24 maxlen: 24
185.71.200.0/22 maxlen: 24
185.71.203.0/24 maxlen: 24
185.71.202.0/24 maxlen: 24
194.38.44.0/24 maxlen: 24
194.38.44.0/22 maxlen: 24
194.38.45.0/24 maxlen: 24
194.38.47.0/24 maxlen: 24
194.38.46.0/24 maxlen: 24
188.247.136.0/21 maxlen: 24
89.38.177.0/24 maxlen: 24
89.38.176.0/24 maxlen: 24
89.38.176.0/21 maxlen: 24
188.247.136.0/24 maxlen: 24
188.247.138.0/24 maxlen: 24
89.38.179.0/24 maxlen: 24
188.247.137.0/24 maxlen: 24
89.38.178.0/24 maxlen: 24
188.247.139.0/24 maxlen: 24
188.247.145.0/24 maxlen: 24
89.38.183.0/24 maxlen: 24
188.247.143.0/24 maxlen: 24
188.247.144.0/24 maxlen: 24
188.247.144.0/20 maxlen: 24
188.247.140.0/24 maxlen: 24
188.247.141.0/24 maxlen: 24
188.247.142.0/24 maxlen: 24
89.38.180.0/22 maxlen: 22
89.38.180.0/24 maxlen: 24
89.38.181.0/24 maxlen: 24
89.38.182.0/24 maxlen: 24
2a03:3ba0::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 10 Oct 2023 12:21:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:19:80:3a:d9:f4:53:ed:c1:fa:d3:7c:d3:9f:33:83:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de51c3c5ddc4fb61381c3bea24c1ba4f74998eab
Validity
Not Before: Oct 10 12:11:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=127bc81135d967354c145654d4ff318a73fdba7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2e:4e:69:f3:a6:d2:69:16:35:b3:e4:df:18:
71:1d:1d:0c:92:45:ae:66:c9:e4:d4:5b:b9:7d:7a:
fd:81:a2:9e:8b:c1:51:83:fa:c9:bc:b3:c6:f6:e0:
a3:b8:e0:6b:25:f0:98:86:f2:23:29:68:c1:7d:15:
17:b9:03:ed:d4:47:f8:86:f5:6c:b6:80:79:d5:ee:
71:76:79:cd:6e:a5:17:3c:13:d5:5d:b9:ff:33:1d:
a5:b0:0a:b4:2b:fb:43:19:f0:de:13:93:c2:26:05:
73:1e:f1:bd:42:e8:5d:f2:49:06:09:62:a7:46:e8:
96:08:5d:e0:48:7c:a0:0f:74:3e:bd:7c:42:ae:f4:
33:b1:48:61:e8:55:73:dd:9b:42:25:3b:1e:07:42:
62:dc:19:8e:8e:2b:86:15:9d:a2:05:98:63:f1:d5:
d3:53:d8:5a:32:51:cc:a3:73:25:65:4d:af:8d:c8:
03:73:3b:da:a4:64:fd:33:dd:51:6a:c8:ae:43:4d:
23:c1:97:c0:46:0f:3c:e6:87:d5:18:21:d0:4b:fd:
46:59:07:da:7f:24:c9:4d:2b:ac:d7:86:71:5a:42:
1f:5a:42:9b:b5:c4:8b:01:94:36:7a:ed:f9:c2:73:
ca:c2:26:0f:ab:5f:dd:4a:f0:64:e4:05:73:ba:44:
48:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:7B:C8:11:35:D9:67:35:4C:14:56:54:D4:FF:31:8A:73:FD:BA:7F
X509v3 Authority Key Identifier:
keyid:DE:51:C3:C5:DD:C4:FB:61:38:1C:3B:EA:24:C1:BA:4F:74:99:8E:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3lHDxd3E-2E4HDvqJMG6T3SZjqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/EnvIETXZZzVMFFZU1P8xinP9un8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/3lHDxd3E-2E4HDvqJMG6T3SZjqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.38.176.0/21
185.71.200.0/22
185.242.96.0/22
188.247.136.0-188.247.159.255
194.38.44.0/22
IPv6:
2a03:3ba0::/32
Signature Algorithm: sha256WithRSAEncryption
18:9d:07:6f:31:29:1a:50:fc:31:26:1a:48:2f:86:90:5e:0e:
92:15:89:59:f9:55:97:2f:05:83:9f:b0:7e:22:cd:bf:13:62:
40:bc:d9:11:0d:8d:e3:d2:89:44:88:cb:e1:27:4a:dd:e9:38:
9e:0b:b0:7c:b4:35:bc:19:43:33:7a:d1:d9:83:7f:8f:ae:99:
94:a2:c3:7f:1e:8e:dc:31:0d:ed:a9:1c:53:a3:77:df:76:d9:
5c:94:2a:cf:c4:a0:1b:e1:12:5e:b9:99:de:52:62:27:90:e3:
2a:0e:80:87:a1:bb:f9:2e:55:95:a7:27:ce:cc:c2:ba:0c:ec:
3f:79:5c:9c:7b:59:6f:e6:1e:ef:4c:99:a5:7f:c7:48:b9:22:
80:a4:26:68:ab:42:1d:15:53:41:c3:22:c9:33:d3:2a:ea:79:
25:5c:e1:a8:f4:d6:96:92:ba:51:bb:3f:27:34:bb:7e:eb:18:
38:29:c7:18:32:6d:f4:84:3c:9d:1c:27:95:b8:9a:48:d8:8e:
0e:f4:b7:02:7e:7b:0d:3d:71:76:46:9b:5f:04:df:94:d2:23:
f2:22:30:af:c3:9c:6d:8b:d7:b5:68:81:83:43:11:e4:8d:43:
3e:e0:ef:0f:1c:5e:54:9c:60:de:7b:26:b1:a6:ca:6f:67:79:
54:d7:a1:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:24 2024 by rpki-client on console-ams.rpki-client.org