Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/r8CsW6TQLtZCx2nIOKTGSgaMYKU.roa
File: r8CsW6TQLtZCx2nIOKTGSgaMYKU.roa (raw, json)
Hash identifier: mUJl5MqMVpBbpuF/LsjkA7XDdtRurn0uL3TJljpdSew=
Subject key identifier: AF:C0:AC:5B:A4:D0:2E:D6:42:C7:69:C8:38:A4:C6:4A:06:8C:60:A5
Certificate issuer: /CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Certificate serial: 0189AB051D507119D797A424684095B36C56
Authority key identifier: 50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/r8CsW6TQLtZCx2nIOKTGSgaMYKU.roa
Signing time: Mon 31 Jul 2023 08:16:26 +0000
ROA not before: Mon 31 Jul 2023 08:16:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204035
IP address blocks: 193.56.173.0/24 maxlen: 24
37.228.132.0/24 maxlen: 24
37.228.134.0/24 maxlen: 24
37.228.151.0/24 maxlen: 24
37.228.148.0/24 maxlen: 24
193.56.126.0/24 maxlen: 24
193.56.156.0/24 maxlen: 24
185.107.192.0/23 maxlen: 23
185.107.192.0/22 maxlen: 22
185.107.192.0/24 maxlen: 24
185.107.193.0/24 maxlen: 24
185.107.194.0/24 maxlen: 24
194.125.251.0/24 maxlen: 24
194.125.248.0/22 maxlen: 22
194.125.250.0/24 maxlen: 24
185.245.168.0/22 maxlen: 22
185.101.92.0/22 maxlen: 22
185.116.156.0/22 maxlen: 22
185.116.156.0/24 maxlen: 24
185.116.157.0/24 maxlen: 24
185.116.158.0/24 maxlen: 24
185.116.159.0/24 maxlen: 24
193.46.24.0/22 maxlen: 22
2a06:7f80::/29 maxlen: 29
2a06:7f80:3::/48 maxlen: 48
2a06:1c40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 26 Sep 2023 06:32:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ab:05:1d:50:71:19:d7:97:a4:24:68:40:95:b3:6c:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Validity
Not Before: Jul 31 08:16:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=afc0ac5ba4d02ed642c769c838a4c64a068c60a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:54:f8:12:25:5f:88:8e:d7:f4:0d:e8:17:6e:
4e:c2:bb:a8:92:f0:d9:ba:e6:bc:61:56:47:cc:db:
d0:e6:4c:30:61:b7:73:df:63:45:9a:bf:a6:dc:1f:
fc:a6:97:3f:37:f8:10:ba:8b:29:30:cc:e5:a6:05:
89:4d:e3:72:65:40:ce:96:47:16:7e:3a:a5:96:f2:
2f:2b:3c:09:7c:b9:50:72:22:3f:61:42:3d:71:91:
c2:65:f1:08:27:f3:ae:5e:de:3c:e8:3d:20:d6:fb:
fc:e6:d3:c8:24:ea:35:f9:6d:7d:83:6c:14:2b:dc:
40:85:73:97:22:10:7c:cd:8f:aa:22:2c:a5:11:d8:
6e:25:a7:2b:69:bf:5f:4a:ea:34:58:bb:b1:7a:3b:
68:7a:93:90:e3:23:a9:48:00:08:33:bb:f4:ca:bf:
c8:89:17:00:4c:d9:99:c5:e5:af:80:1e:d2:c2:d2:
46:1c:72:a5:9a:2c:8c:4d:e7:99:c7:d6:df:43:de:
8c:89:65:78:b4:ff:2c:19:36:1a:af:cf:aa:84:b5:
cd:d6:f3:25:0f:ac:f0:9b:de:8b:8d:40:54:85:83:
32:b0:eb:2a:be:c1:6a:58:3a:ad:7d:6b:bd:2e:e6:
af:60:e3:20:b8:9c:9b:e8:fd:0b:2a:57:85:0d:bd:
ca:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:C0:AC:5B:A4:D0:2E:D6:42:C7:69:C8:38:A4:C6:4A:06:8C:60:A5
X509v3 Authority Key Identifier:
keyid:50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/r8CsW6TQLtZCx2nIOKTGSgaMYKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/UNGBlrKfYOhdhxLeQDmlMc_BqzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.228.132.0/24
37.228.134.0/24
37.228.148.0/24
37.228.151.0/24
185.101.92.0/22
185.107.192.0/22
185.116.156.0/22
185.245.168.0/22
193.46.24.0/22
193.56.126.0/24
193.56.156.0/24
193.56.173.0/24
194.125.248.0/22
IPv6:
2a06:1c40::/29
2a06:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
24:84:95:54:4f:08:12:61:83:5f:37:30:c0:30:b8:a2:4d:6f:
d9:83:90:ca:64:d7:a9:e3:aa:ff:d6:1a:dd:fa:3c:50:7a:42:
7d:ce:ab:23:50:10:2b:70:94:e3:da:c4:ce:ba:e8:a2:a2:67:
ce:5a:90:f6:f2:e0:ec:0e:c5:a7:63:85:81:b2:05:56:eb:01:
98:f6:bd:81:08:80:54:f7:73:88:9c:db:0c:f2:aa:48:9d:89:
25:94:50:e1:ae:25:fb:0b:34:40:e9:15:ce:2c:90:55:7f:b9:
34:c9:6c:8f:2c:21:e1:ae:fc:7e:a4:52:6a:5d:a9:24:c0:a0:
24:0e:b6:ab:1e:7a:cb:b1:f7:7c:ad:32:53:e5:8a:a0:c3:15:
fb:22:4c:eb:85:60:3f:98:ed:7b:e9:7d:0d:d1:a3:90:c2:e2:
5f:62:bb:a7:db:4f:56:4c:4a:b4:c3:e4:4b:25:94:9a:1a:34:
34:b1:63:f1:15:bf:7f:9e:96:7f:54:c8:1f:ea:2c:63:0f:d1:
25:ad:d6:e0:71:24:10:32:83:f6:f5:80:51:52:77:32:4d:cd:
95:e2:4b:5d:cf:e9:35:be:1d:83:fc:2c:66:9a:3a:1b:50:d7:
05:fe:d4:c7:58:e3:6f:ef:09:db:e3:d8:03:48:98:a1:48:62:
ef:0b:8b:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:42 2024 by rpki-client on console-ams.rpki-client.org