Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/8PgSJELs5RwBs7A8Z01j_QVURWA.roa
File: 8PgSJELs5RwBs7A8Z01j_QVURWA.roa (raw, json)
Hash identifier: HqARpEAKMReDyBYjIPp7+J3IXz53QCzALieYJKBcp6w=
Subject key identifier: F0:F8:12:24:42:EC:E5:1C:01:B3:B0:3C:67:4D:63:FD:05:54:45:60
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018A6FB20D558D53C819C09DCB38A2B23B2F
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/8PgSJELs5RwBs7A8Z01j_QVURWA.roa
Signing time: Thu 07 Sep 2023 12:50:54 +0000
ROA not before: Thu 07 Sep 2023 12:50:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42388
IP address blocks: 144.208.214.232/29 maxlen: 29
213.227.160.0/24 maxlen: 24
188.172.248.0/24 maxlen: 24
213.227.191.0/24 maxlen: 24
217.146.18.0/24 maxlen: 24
217.146.26.216/32 maxlen: 32
185.81.206.64/26 maxlen: 26
188.172.219.64/32 maxlen: 32
185.81.208.0/24 maxlen: 24
188.172.235.188/32 maxlen: 32
217.146.22.170/32 maxlen: 32
213.227.168.222/32 maxlen: 32
2a00:11c0:e:ffff:1::1000/128 maxlen: 128
2a00:11c0:d::1a/128 maxlen: 128
2a05:8900:aa1::/48 maxlen: 48
2a00:11c0:aa1::/48 maxlen: 48
2a00:11c0:48:13::/64 maxlen: 64
2a00:11c0:63:350::1000/128 maxlen: 128
2a00:11c0:11c0::/48 maxlen: 128
2a00:11c0:1010::/48 maxlen: 48
2a00:11c0:82:359::1000/128 maxlen: 128
2a00:11c0:5:613::1000/128 maxlen: 128
Validation: Failed, certificate revoked on Tue 12 Sep 2023 21:04:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6f:b2:0d:55:8d:53:c8:19:c0:9d:cb:38:a2:b2:3b:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Sep 7 12:50:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0f8122442ece51c01b3b03c674d63fd05544560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6a:43:e7:bc:c6:a9:0e:f3:ce:3c:e4:93:90:
f1:18:cf:33:7c:6f:65:cf:02:01:5b:31:a6:3c:0c:
e2:e2:e4:7a:fc:40:76:44:51:d1:47:d0:78:de:da:
30:a5:7f:6b:83:70:88:2c:5e:21:ce:e5:f8:4f:22:
77:f1:fe:e0:82:cc:6f:b5:8f:88:ec:19:49:24:17:
81:18:aa:bb:0f:94:ea:20:61:87:85:7f:ce:2d:6e:
93:b6:69:d7:e9:1f:14:c3:9a:4b:14:61:7c:38:25:
5d:c1:62:8f:ba:79:56:2f:80:52:94:3f:da:bb:45:
f8:18:ba:57:30:6b:a0:b9:ff:43:22:d6:1a:fc:75:
00:be:86:8b:0b:b4:d1:8d:e9:85:9e:ac:83:28:4e:
14:17:6e:da:27:11:00:3a:2d:59:e0:09:8c:87:65:
da:a7:06:f6:9f:0a:99:af:7a:05:63:f6:3d:67:56:
67:dd:e6:55:2b:fc:c2:af:70:04:ea:c8:1e:c5:54:
1e:ac:3f:d3:22:b1:4b:5a:be:32:ce:66:ae:39:1d:
76:f6:c7:64:54:26:83:ca:d0:32:31:dd:77:8e:dd:
2c:df:a2:0b:9d:3e:34:52:34:07:c4:fb:9a:e2:22:
36:ef:99:40:21:82:b6:ce:8b:b1:c5:05:58:5c:ba:
1b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:F8:12:24:42:EC:E5:1C:01:B3:B0:3C:67:4D:63:FD:05:54:45:60
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/8PgSJELs5RwBs7A8Z01j_QVURWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.208.214.232/29
185.81.206.64/26
185.81.208.0/24
188.172.219.64/32
188.172.235.188/32
188.172.248.0/24
213.227.160.0/24
213.227.168.222/32
213.227.191.0/24
217.146.18.0/24
217.146.22.170/32
217.146.26.216/32
IPv6:
2a00:11c0:5:613:0:0:0:1000/128
2a00:11c0:d:0:0:0:0:1a/128
2a00:11c0:e:ffff:1:0:0:1000/128
2a00:11c0:48:13::/64
2a00:11c0:63:350:0:0:0:1000/128
2a00:11c0:82:359:0:0:0:1000/128
2a00:11c0:aa1::/48
2a00:11c0:1010::/48
2a00:11c0:11c0::/48
2a05:8900:aa1::/48
Signature Algorithm: sha256WithRSAEncryption
2c:e1:17:5b:d1:64:ee:92:66:39:b8:9d:10:19:ac:eb:55:7c:
d2:e3:9b:02:2b:69:32:1e:94:d3:68:0b:ef:63:9e:b0:ea:02:
0d:72:d6:92:dc:1b:2a:0d:e2:20:09:79:e0:d0:10:5e:a0:82:
63:83:ba:b1:de:78:12:ab:52:9e:4e:a9:e7:4d:14:98:7f:22:
ad:5b:d0:79:ca:c6:b6:3d:57:5c:1c:67:c0:3f:af:c8:96:e8:
dd:3a:1a:d9:7f:c5:c8:33:0f:3f:96:5f:2a:25:0f:e4:59:3c:
54:c0:fd:99:32:cb:7c:76:f3:96:fb:72:76:3f:dd:a7:95:b4:
db:ed:20:ef:d6:bb:86:70:5d:fa:25:8e:61:0e:df:4e:b6:df:
99:e1:36:18:d8:bb:1e:2d:b3:d8:fe:fc:4b:56:74:61:89:99:
8e:07:ed:dd:10:6e:0b:5b:a5:ae:7c:75:a8:a9:d0:83:1b:14:
18:1e:60:3b:b0:7a:b1:b6:7d:fb:c7:70:c6:fb:70:52:5e:6d:
58:54:21:c7:bd:c4:60:41:f4:c0:b4:1a:c0:9c:7b:39:7a:92:
0d:14:5e:4b:c6:e6:0c:33:32:42:71:3c:8e:ac:13:c2:2d:b7:
87:a8:98:5a:3c:09:2c:62:0a:59:ec:8d:48:f3:34:c9:8f:a7:
23:cf:53:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:50 2024 by rpki-client on console-ams.rpki-client.org