Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/8pMwSKkyU6Ha1bXKdH_uYOX9oQ8.roa
File: 8pMwSKkyU6Ha1bXKdH_uYOX9oQ8.roa (raw, json)
Hash identifier: aQvrADpjU6fyZgtLFWFkEjGkdYo8TzmVpkzBkywyQFg=
Subject key identifier: F2:93:30:48:A9:32:53:A1:DA:D5:B5:CA:74:7F:EE:60:E5:FD:A1:0F
Certificate issuer: /CN=743e447edb8a5e0e1b1d7f5cdc287c364a5fb0b5
Certificate serial: 018FC4DE3B4FFA31F69C2F98DD9F319270AE
Authority key identifier: 74:3E:44:7E:DB:8A:5E:0E:1B:1D:7F:5C:DC:28:7C:36:4A:5F:B0:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dD5EftuKXg4bHX9c3Ch8NkpfsLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/8pMwSKkyU6Ha1bXKdH_uYOX9oQ8.roa
Signing time: Wed 29 May 2024 15:00:49 +0000
ROA not before: Wed 29 May 2024 15:00:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 151.145.128.0/19 maxlen: 19
158.120.48.0/24 maxlen: 24
158.120.50.0/24 maxlen: 24
158.120.52.0/24 maxlen: 24
158.120.54.0/24 maxlen: 24
158.120.56.0/24 maxlen: 24
158.120.58.0/24 maxlen: 24
158.120.60.0/24 maxlen: 24
158.120.62.0/24 maxlen: 24
192.6.64.0/22 maxlen: 22
192.6.172.0/22 maxlen: 22
192.6.252.0/22 maxlen: 22
192.25.180.0/22 maxlen: 22
192.25.200.0/22 maxlen: 22
192.25.208.0/22 maxlen: 22
192.25.232.0/22 maxlen: 22
192.25.244.0/22 maxlen: 22
192.137.24.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 08 Jul 2024 23:50:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c4:de:3b:4f:fa:31:f6:9c:2f:98:dd:9f:31:92:70:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=743e447edb8a5e0e1b1d7f5cdc287c364a5fb0b5
Validity
Not Before: May 29 15:00:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f2933048a93253a1dad5b5ca747fee60e5fda10f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ee:73:39:02:f0:5f:9c:41:ec:8c:fa:8a:39:
65:eb:1f:c2:83:df:c2:65:68:28:ac:5e:a9:da:d6:
80:31:fc:69:c1:a7:9c:1b:ea:4c:64:0a:2c:53:a3:
29:44:0c:74:52:05:bb:02:2e:c8:76:58:49:2f:03:
f9:68:48:82:5b:f0:f0:7b:9c:4d:80:a2:9d:de:74:
ae:28:96:b9:fc:fb:f0:39:21:7c:31:c0:40:74:30:
da:b5:94:31:cf:56:75:7c:5a:e7:fd:ca:ba:76:71:
f6:82:1b:dd:b8:7b:82:c0:61:4a:67:62:b7:9d:ae:
10:d5:25:eb:52:e7:73:53:bc:ae:25:73:9c:a8:ea:
bb:07:dd:8a:92:4b:1b:79:53:69:64:49:d2:03:cd:
66:9f:eb:84:3a:ef:6c:92:78:bd:c4:f4:b5:82:c0:
2c:38:58:cc:c7:2e:5e:89:28:83:6b:3c:bf:b4:8f:
78:e3:f5:20:1c:1a:60:97:0d:8d:ac:b7:65:df:4d:
53:c4:40:68:ce:f5:69:63:c1:71:81:e4:c8:b7:24:
2c:17:92:ff:06:5f:33:fa:da:25:95:a5:73:4c:ba:
77:35:07:5d:b6:4d:31:55:b7:0e:97:af:0f:02:25:
82:2f:a3:14:d6:3c:0d:0b:e2:7e:3b:86:1f:39:22:
ae:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:93:30:48:A9:32:53:A1:DA:D5:B5:CA:74:7F:EE:60:E5:FD:A1:0F
X509v3 Authority Key Identifier:
keyid:74:3E:44:7E:DB:8A:5E:0E:1B:1D:7F:5C:DC:28:7C:36:4A:5F:B0:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dD5EftuKXg4bHX9c3Ch8NkpfsLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/8pMwSKkyU6Ha1bXKdH_uYOX9oQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a1ae70-7996-4687-a0d7-5e0f4ab809bb/1/dD5EftuKXg4bHX9c3Ch8NkpfsLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.145.128.0/19
158.120.48.0/24
158.120.50.0/24
158.120.52.0/24
158.120.54.0/24
158.120.56.0/24
158.120.58.0/24
158.120.60.0/24
158.120.62.0/24
192.6.64.0/22
192.6.172.0/22
192.6.252.0/22
192.25.180.0/22
192.25.200.0/22
192.25.208.0/22
192.25.232.0/22
192.25.244.0/22
192.137.24.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:3c:ce:05:10:32:f1:96:8a:a6:b4:c3:f2:97:b0:2f:04:d7:
5d:44:7e:12:26:fe:ed:33:c2:ed:f1:9b:54:fc:3e:6f:d5:19:
94:01:4c:bb:92:ea:87:62:39:13:a0:bc:32:a8:30:2b:b9:53:
fc:6f:e7:6d:49:be:f1:af:82:5e:25:76:98:a8:96:ea:d4:80:
38:ae:70:bc:d2:d4:1d:91:86:f5:79:94:9d:26:8d:1e:20:0f:
96:d8:16:ce:19:a7:8d:f3:fa:be:9b:7c:1f:9f:df:13:cb:de:
2f:35:f1:56:11:6b:d4:65:2b:a2:3e:03:ea:ff:9f:2e:18:b5:
b2:24:15:79:b1:be:6c:7f:59:5c:79:46:9a:6a:e6:b2:9a:cc:
80:35:52:0a:03:23:cd:f4:09:f2:75:c3:e3:36:99:cf:51:89:
38:e4:11:09:c4:62:dc:2c:f2:f4:3e:de:0c:7f:f1:0d:ae:b2:
5d:0d:d6:a9:ea:c4:00:da:d6:b9:ab:4c:bd:dc:f1:cf:ef:d3:
41:55:04:5e:56:1f:a9:46:ab:03:5b:83:d0:3f:0c:ec:64:c7:
3e:e3:b5:c2:50:4f:8b:9e:2e:62:a5:32:cb:0d:a6:87:87:c7:
63:64:0d:3b:80:be:1b:d1:aa:a7:4a:83:09:a3:9f:41:d3:0d:
d5:05:73:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 9 00:55:43 2024 by rpki-client on console-fra.rpki-client.org