Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/iIEkRDNXKp0Qm5OOxbgBSvntcLE.roa
File: iIEkRDNXKp0Qm5OOxbgBSvntcLE.roa (raw, json)
Hash identifier: OmnLUbH6v17bksJjUwLZpZFDPFvP3Pnw0uMP9403sdY=
Subject key identifier: 88:81:24:44:33:57:2A:9D:10:9B:93:8E:C5:B8:01:4A:F9:ED:70:B1
Certificate issuer: /CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Certificate serial: 018C00F3B805089383CE68ADD66DCA1FFF17
Authority key identifier: 50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/iIEkRDNXKp0Qm5OOxbgBSvntcLE.roa
Signing time: Fri 24 Nov 2023 10:50:21 +0000
ROA not before: Fri 24 Nov 2023 10:50:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204035
IP address blocks: 193.56.173.0/24 maxlen: 24
37.228.132.0/24 maxlen: 24
37.228.134.0/24 maxlen: 24
37.228.151.0/24 maxlen: 24
37.228.148.0/24 maxlen: 24
193.56.126.0/24 maxlen: 24
193.56.156.0/24 maxlen: 24
185.107.192.0/23 maxlen: 23
185.107.192.0/22 maxlen: 22
185.107.192.0/24 maxlen: 24
185.107.193.0/24 maxlen: 24
185.107.194.0/24 maxlen: 24
194.125.251.0/24 maxlen: 24
194.125.248.0/24 maxlen: 24
194.125.248.0/22 maxlen: 22
194.125.249.0/24 maxlen: 24
194.125.250.0/24 maxlen: 24
185.245.168.0/22 maxlen: 22
185.101.95.0/24 maxlen: 24
185.101.92.0/22 maxlen: 22
185.101.93.0/24 maxlen: 24
185.116.156.0/22 maxlen: 22
185.116.156.0/24 maxlen: 24
185.116.157.0/24 maxlen: 24
185.116.158.0/24 maxlen: 24
185.116.159.0/24 maxlen: 24
193.46.24.0/22 maxlen: 22
2a06:7f80::/29 maxlen: 29
2a06:7f80:3::/48 maxlen: 48
2a06:1c40::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:00:f3:b8:05:08:93:83:ce:68:ad:d6:6d:ca:1f:ff:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Validity
Not Before: Nov 24 10:50:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8881244433572a9d109b938ec5b8014af9ed70b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5d:a0:bf:97:38:24:b6:49:9c:73:f7:3b:4c:
34:8a:40:10:62:c9:f3:17:51:53:a8:89:86:8e:0b:
09:b2:50:03:34:d3:06:83:5d:fc:5d:6f:75:9a:cf:
b4:64:f4:11:53:83:25:d0:8e:54:41:db:56:91:17:
57:3e:26:fd:45:6b:eb:e1:52:d8:81:9e:fc:37:50:
1e:70:47:32:6d:90:dd:95:3d:18:b7:5e:c1:4c:c2:
a3:49:72:7d:3a:5f:7a:5b:43:44:d2:04:00:39:c8:
c2:43:44:f1:66:f9:ef:b0:76:95:d6:35:61:c8:5d:
80:f6:19:a6:e2:52:40:9a:15:b3:e5:87:0b:a3:74:
70:c2:db:bf:75:75:86:0c:80:4f:a1:f4:37:b4:60:
52:62:aa:3b:81:ca:f4:5a:00:b2:00:73:07:2a:3e:
36:83:69:62:1e:2c:5a:9b:3f:bd:62:66:53:6d:40:
25:41:4c:15:fb:66:f9:38:82:86:ee:57:27:1e:d8:
8a:30:a8:ae:55:35:22:88:f2:de:2a:c5:d6:35:3e:
2b:13:92:4a:fc:f8:8f:e6:34:c9:d0:f3:1a:ef:be:
06:91:8e:19:20:cc:b9:c3:e6:fb:73:06:0a:3c:7a:
d5:70:f5:91:ba:5b:52:cd:7a:f7:9a:1f:bd:d9:01:
10:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:81:24:44:33:57:2A:9D:10:9B:93:8E:C5:B8:01:4A:F9:ED:70:B1
X509v3 Authority Key Identifier:
keyid:50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/iIEkRDNXKp0Qm5OOxbgBSvntcLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/UNGBlrKfYOhdhxLeQDmlMc_BqzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.228.132.0/24
37.228.134.0/24
37.228.148.0/24
37.228.151.0/24
185.101.92.0/22
185.107.192.0/22
185.116.156.0/22
185.245.168.0/22
193.46.24.0/22
193.56.126.0/24
193.56.156.0/24
193.56.173.0/24
194.125.248.0/22
IPv6:
2a06:1c40::/29
2a06:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
bc:70:0c:ef:a5:76:d6:50:a3:b4:ea:1a:b9:18:32:5f:ee:37:
82:6b:60:a3:4d:e6:02:56:0b:d1:97:0b:90:a9:9c:cf:b4:54:
69:aa:3a:4d:eb:ab:68:1e:bf:7d:0b:f8:f7:be:81:2b:f7:2c:
66:2e:03:8c:5e:19:59:c3:f5:07:68:e1:ad:4c:d0:30:e6:97:
ce:d1:9e:9b:a6:2e:df:ed:29:07:43:bf:bd:75:18:4b:dd:96:
e7:ef:7b:29:b5:2f:4d:8c:7f:82:ad:4b:48:7f:32:37:6d:a3:
61:38:c1:1d:61:9d:cf:7d:2e:b9:a1:93:4b:ce:83:66:ca:ed:
aa:2a:57:8e:4c:de:8f:b0:5a:08:e7:94:30:a4:3f:6d:7b:24:
0f:4b:50:b9:be:9b:68:bd:cd:ab:82:31:df:ad:e3:48:b2:ec:
bf:92:43:cc:8c:d1:bd:0f:7e:c2:a5:76:9b:72:0e:87:83:80:
29:a7:1d:ce:f9:6b:50:4c:6a:98:43:a7:53:c5:e0:05:c8:77:
54:06:6d:7e:f8:e3:2b:7d:ce:6f:9c:ec:13:7a:c4:7d:08:81:
da:ea:8c:88:c0:f8:5b:66:0d:11:ac:33:aa:b6:f4:85:24:b5:
7a:2b:81:0a:99:cb:8c:44:14:ab:5b:1e:e2:d2:06:ec:ff:a0:
d7:e8:bd:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:49 2024 by rpki-client on console-fra.rpki-client.org