Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/HR1P41peZWlQ2QmynhGeivzuwzc.roa
File: HR1P41peZWlQ2QmynhGeivzuwzc.roa (raw, json)
Hash identifier: 6ievdoggn3FqRlxmPggsSVuH6Hf7jD0bGtkHiYHl/8k=
Subject key identifier: 1D:1D:4F:E3:5A:5E:65:69:50:D9:09:B2:9E:11:9E:8A:FC:EE:C3:37
Certificate issuer: /CN=c44db8b0983acf97a3255152c2ea592adae7735b
Certificate serial: 01870893A8653A4B6D8B43DAB8DE378428E4
Authority key identifier: C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/HR1P41peZWlQ2QmynhGeivzuwzc.roa
Signing time: Wed 22 Mar 2023 09:08:27 +0000
ROA not before: Wed 22 Mar 2023 09:08:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207990
IP address blocks: 94.139.60.0/23 maxlen: 32
91.92.22.0/23 maxlen: 32
180.149.16.0/20 maxlen: 32
185.66.136.0/22 maxlen: 32
193.142.103.0/24 maxlen: 32
119.12.192.0/21 maxlen: 32
188.240.48.0/23 maxlen: 32
180.235.160.0/20 maxlen: 32
91.92.138.0/24 maxlen: 32
89.40.81.0/24 maxlen: 32
193.200.104.0/23 maxlen: 32
110.238.192.0/19 maxlen: 32
92.114.60.0/22 maxlen: 32
176.223.182.0/23 maxlen: 32
91.92.216.0/23 maxlen: 32
91.92.218.0/24 maxlen: 32
5.62.152.0/21 maxlen: 32
188.212.136.0/21 maxlen: 32
93.113.52.0/23 maxlen: 32
188.94.84.0/22 maxlen: 32
91.92.178.0/23 maxlen: 32
94.139.224.0/20 maxlen: 32
89.38.234.0/24 maxlen: 32
180.149.0.0/20 maxlen: 32
91.192.212.0/22 maxlen: 32
77.81.92.0/22 maxlen: 32
188.211.24.0/23 maxlen: 32
86.106.176.0/23 maxlen: 32
Validation: Failed, certificate revoked on Wed 22 Mar 2023 09:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:08:93:a8:65:3a:4b:6d:8b:43:da:b8:de:37:84:28:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c44db8b0983acf97a3255152c2ea592adae7735b
Validity
Not Before: Mar 22 09:08:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d1d4fe35a5e656950d909b29e119e8afceec337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e3:c0:39:38:89:a3:08:ab:28:af:78:a3:e9:
87:bf:53:f3:a2:93:e9:e8:b6:0b:af:b1:85:41:f7:
23:99:2e:47:28:01:7f:b3:ab:c6:58:0f:bb:1d:9b:
23:d0:bb:d5:0a:07:00:e0:c0:67:43:75:05:26:34:
a0:56:d2:cb:cf:1b:aa:e3:02:74:3a:5d:97:30:92:
04:a6:41:52:94:76:3c:73:b9:0b:da:b9:4e:25:7a:
34:60:34:01:7e:68:78:b2:64:ce:b0:3b:a8:72:50:
a2:0d:e5:65:23:ff:62:15:b0:25:3d:55:68:25:d4:
9b:19:6b:48:76:8b:fa:36:48:18:36:3b:60:cf:68:
8a:a5:df:94:6b:5a:35:c2:e6:fa:fe:fd:ae:97:02:
33:8c:bf:11:0c:d4:8b:75:c4:26:c3:fc:6d:c4:d3:
11:00:23:bb:af:70:87:35:2d:b8:a9:3c:6c:09:b9:
b5:52:58:d4:d6:b2:20:30:99:01:0c:3d:05:c7:07:
c2:f4:94:0a:db:ce:84:6d:1d:07:85:78:ab:6e:07:
33:15:c5:16:10:89:42:fc:30:68:94:cc:ea:9d:75:
6f:f9:3c:40:d5:b2:a1:97:f2:45:15:8e:93:63:fc:
2a:ed:11:99:1b:b2:b2:06:24:a8:8a:06:fc:c2:ed:
42:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:1D:4F:E3:5A:5E:65:69:50:D9:09:B2:9E:11:9E:8A:FC:EE:C3:37
X509v3 Authority Key Identifier:
keyid:C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/HR1P41peZWlQ2QmynhGeivzuwzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/xE24sJg6z5ejJVFSwupZKtrnc1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.152.0/21
77.81.92.0/22
86.106.176.0/23
89.38.234.0/24
89.40.81.0/24
91.92.22.0/23
91.92.138.0/24
91.92.178.0/23
91.92.216.0-91.92.218.255
91.192.212.0/22
92.114.60.0/22
93.113.52.0/23
94.139.60.0/23
94.139.224.0/20
110.238.192.0/19
119.12.192.0/21
176.223.182.0/23
180.149.0.0/19
180.235.160.0/20
185.66.136.0/22
188.94.84.0/22
188.211.24.0/23
188.212.136.0/21
188.240.48.0/23
193.142.103.0/24
193.200.104.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:3c:c8:2b:eb:e3:8f:86:03:20:4f:8f:27:52:c0:f5:e5:33:
8a:a1:1e:10:7e:f7:e5:d2:4d:c2:13:0a:02:54:31:ee:d1:ef:
9b:59:a8:96:1a:d8:dd:08:9a:2e:40:5e:6d:b2:d9:36:fd:6d:
b6:4d:2a:ed:73:87:da:67:94:62:8c:2f:04:c0:2d:dc:23:35:
f8:43:0c:58:d7:61:2c:4f:c4:30:2e:16:74:fb:8b:0c:6e:94:
eb:db:7c:b2:25:fb:b1:21:e6:4a:18:59:73:78:f8:3f:5a:d2:
5f:28:78:87:3c:59:d7:29:16:62:63:db:d7:c5:8a:39:21:bd:
3d:4f:43:60:11:88:69:85:da:cc:23:c7:c3:7a:9e:b6:49:60:
f4:79:ca:fa:80:18:f9:66:7e:62:49:7d:e0:74:e8:8f:02:55:
b0:cc:2b:62:6a:3a:70:41:c5:8e:97:98:1e:3e:9a:e2:8f:cd:
41:3a:0e:46:06:00:7a:a6:13:92:58:13:d0:d4:1e:d4:f9:6e:
6e:06:0e:d7:48:d7:cf:b3:f8:38:33:c9:b3:46:e9:ec:93:42:
50:b3:fb:bd:f7:96:85:a8:d6:b6:9e:61:35:68:3e:d7:70:98:
92:4b:ec:07:f2:64:b6:b7:ae:42:5b:78:a1:82:56:c5:a3:26:
fe:a3:94:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:45 2024 by rpki-client on console-ams.rpki-client.org