Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a59390-8048-43b9-82b5-761dab389b5b/1/If9eGsIs-Ql8bo1gnTqs7gUfNcw.roa
File: If9eGsIs-Ql8bo1gnTqs7gUfNcw.roa (raw, json)
Hash identifier: NgzLv2DliVG1BWXmVBrlHBiVUd2GVxymkPIHxx/r/38=
Subject key identifier: 21:FF:5E:1A:C2:2C:F9:09:7C:6E:8D:60:9D:3A:AC:EE:05:1F:35:CC
Certificate issuer: /CN=87107e3fd9b94b4b36e6a8f370e8650a7f57e6c3
Certificate serial: 018571552410F43896B6E4B6554558C0771D
Authority key identifier: 87:10:7E:3F:D9:B9:4B:4B:36:E6:A8:F3:70:E8:65:0A:7F:57:E6:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hxB-P9m5S0s25qjzcOhlCn9X5sM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a59390-8048-43b9-82b5-761dab389b5b/1/If9eGsIs-Ql8bo1gnTqs7gUfNcw.roa
Signing time: Mon 02 Jan 2023 07:14:43 +0000
ROA not before: Mon 02 Jan 2023 07:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29124
IP address blocks: 185.55.0.0/22 maxlen: 24
46.39.224.0/19 maxlen: 24
185.60.44.0/22 maxlen: 24
134.0.96.0/20 maxlen: 24
62.182.72.0/21 maxlen: 24
84.51.96.0/19 maxlen: 24
109.225.192.0/18 maxlen: 24
91.123.16.0/20 maxlen: 24
195.234.56.0/24 maxlen: 24
213.193.0.0/19 maxlen: 24
188.68.96.0/19 maxlen: 24
82.199.96.0/19 maxlen: 24
176.97.128.0/21 maxlen: 24
95.143.208.0/20 maxlen: 24
84.51.64.0/19 maxlen: 24
46.31.24.0/21 maxlen: 24
81.200.0.0/19 maxlen: 24
109.229.128.0/19 maxlen: 24
79.172.64.0/18 maxlen: 24
91.189.240.0/21 maxlen: 24
91.207.170.0/23 maxlen: 24
90.155.128.0/17 maxlen: 24
94.102.112.0/20 maxlen: 24
2a02:2620::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:24:10:f4:38:96:b6:e4:b6:55:45:58:c0:77:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87107e3fd9b94b4b36e6a8f370e8650a7f57e6c3
Validity
Not Before: Jan 2 07:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21ff5e1ac22cf9097c6e8d609d3aacee051f35cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:87:73:ea:31:af:76:32:2b:62:8c:9b:95:d5:
7b:c9:cd:9f:39:4b:2a:f9:6a:69:9e:c2:89:13:68:
75:e0:fe:d0:4a:80:ae:86:65:d4:cb:4c:47:34:c1:
44:b1:8e:05:f3:7c:82:ba:18:08:e1:73:f5:08:ea:
af:89:4a:c7:f3:ba:e8:8b:a4:e6:01:f0:5e:c7:d8:
a8:fa:ca:3d:61:f8:d1:e0:62:30:05:14:47:b9:fc:
8b:fd:81:ff:25:d7:69:e9:8f:ff:82:34:b7:8c:03:
77:3a:c5:e6:3b:05:29:bc:0e:b3:39:3c:46:77:e8:
15:82:8d:59:ea:3c:c0:54:89:cb:2e:93:9a:f7:ee:
e5:d9:50:b8:01:9c:6f:92:63:1d:db:74:c4:97:c1:
e1:1b:49:dc:3d:7f:c8:36:c2:54:52:ed:cc:b0:d7:
e9:50:02:0a:f5:67:58:7f:27:dd:ea:6d:34:60:df:
6f:f4:25:eb:63:3b:04:9c:c5:d4:75:38:91:e3:52:
07:ac:10:17:0e:2b:07:69:4e:76:e5:33:7a:3e:6a:
ff:5f:eb:dc:b7:e0:59:5e:a6:72:50:70:7d:b3:d9:
2d:5a:51:87:b7:b4:b2:78:7b:66:ba:9a:00:bc:07:
8f:0c:73:3f:26:af:6f:ed:59:c0:3f:5c:63:13:25:
a8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:FF:5E:1A:C2:2C:F9:09:7C:6E:8D:60:9D:3A:AC:EE:05:1F:35:CC
X509v3 Authority Key Identifier:
keyid:87:10:7E:3F:D9:B9:4B:4B:36:E6:A8:F3:70:E8:65:0A:7F:57:E6:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hxB-P9m5S0s25qjzcOhlCn9X5sM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a59390-8048-43b9-82b5-761dab389b5b/1/If9eGsIs-Ql8bo1gnTqs7gUfNcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a59390-8048-43b9-82b5-761dab389b5b/1/hxB-P9m5S0s25qjzcOhlCn9X5sM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.24.0/21
46.39.224.0/19
62.182.72.0/21
79.172.64.0/18
81.200.0.0/19
82.199.96.0/19
84.51.64.0/18
90.155.128.0/17
91.123.16.0/20
91.189.240.0/21
91.207.170.0/23
94.102.112.0/20
95.143.208.0/20
109.225.192.0/18
109.229.128.0/19
134.0.96.0/20
176.97.128.0/21
185.55.0.0/22
185.60.44.0/22
188.68.96.0/19
195.234.56.0/24
213.193.0.0/19
IPv6:
2a02:2620::/32
Signature Algorithm: sha256WithRSAEncryption
a3:e9:fa:ec:38:b7:9b:31:11:52:f0:f2:f1:8e:09:97:82:ce:
7a:e8:76:f6:eb:d8:5d:50:67:3a:7c:24:cd:2b:c9:f5:b3:97:
75:ce:63:90:6d:1c:6f:14:c3:70:d6:e8:43:ef:4b:7c:30:41:
2a:1a:5d:c3:ba:e8:42:16:0c:76:8a:96:07:91:c0:7d:7a:ec:
6c:3a:9c:f5:1c:97:81:e7:4b:5e:7f:d3:35:8d:01:ee:a2:e6:
5b:a1:26:fb:58:23:7d:78:a0:09:75:bd:b4:16:10:4d:78:db:
5b:37:0d:3b:c1:20:94:76:22:92:ef:e8:f4:67:c1:53:a3:6a:
14:4a:fd:d2:a0:dc:87:dd:78:ec:5a:26:88:2d:2f:6b:ed:01:
89:93:e4:39:c7:de:ac:9c:e1:20:a8:74:a5:6c:f5:4e:0d:8c:
59:a8:5e:9f:1f:6b:58:4e:cf:04:60:97:3e:38:d7:14:a2:ae:
cd:b9:d0:b7:c4:c9:2e:8e:7e:92:52:74:76:b8:d5:06:7f:d5:
be:aa:92:87:a3:ed:15:7e:6c:b9:41:fd:29:10:a0:b5:63:45:
c6:1e:0a:4e:92:f4:21:bb:8a:b0:e2:5a:32:c5:f0:79:9b:82:
fd:cb:74:34:48:fc:96:25:37:91:ba:ab:66:53:d3:ae:08:ca:
47:e9:fe:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:21 2024 by rpki-client on console-fra.rpki-client.org