Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/4mAmPkZ9KixGCZBvaWZkatwsAU4.roa
File: 4mAmPkZ9KixGCZBvaWZkatwsAU4.roa (raw, json)
Hash identifier: y/LWLOErKugS6QI+M93/pSA9gE4IRCwwLaNPMLmi+D4=
Subject key identifier: E2:60:26:3E:46:7D:2A:2C:46:09:90:6F:69:66:64:6A:DC:2C:01:4E
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 018CDECFC823E7FB6E7439A42A7A8EDDDEC4
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/4mAmPkZ9KixGCZBvaWZkatwsAU4.roa
Signing time: Sat 06 Jan 2024 12:46:48 +0000
ROA not before: Sat 06 Jan 2024 12:46:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8708
IP address blocks: 89.43.53.0/24 maxlen: 24
89.43.63.0/24 maxlen: 24
85.204.241.0/24 maxlen: 24
85.204.242.0/24 maxlen: 24
89.36.137.0/24 maxlen: 24
86.106.113.0/24 maxlen: 24
89.46.93.0/24 maxlen: 24
89.34.178.0/24 maxlen: 24
89.38.236.0/24 maxlen: 24
86.105.233.0/24 maxlen: 24
89.40.65.0/24 maxlen: 24
46.102.175.0/24 maxlen: 24
93.114.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Mar 2024 19:59:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:de:cf:c8:23:e7:fb:6e:74:39:a4:2a:7a:8e:dd:de:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 6 12:46:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e260263e467d2a2c4609906f6966646adc2c014e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:01:3b:8a:68:9a:9c:2c:1a:0e:ef:5c:71:ac:
2d:c7:58:14:d6:90:98:bf:41:c0:26:29:f4:76:f3:
14:cd:4a:68:69:bf:f7:e8:48:3e:d4:3d:2a:0a:83:
9d:c8:ac:a0:b9:b9:8d:a3:07:ef:31:2b:19:ea:db:
c9:53:96:47:e4:4d:d7:e1:c5:bc:6f:3c:8c:88:9f:
a9:53:af:b8:01:d1:bb:95:11:95:89:f0:ff:1f:f2:
e0:a9:c5:49:be:7c:e7:97:bf:ab:76:bb:54:3a:e6:
5e:35:da:4a:a6:9f:b6:15:cb:4b:2c:3f:c2:80:2b:
31:65:39:74:84:22:7c:21:bc:61:6c:65:ca:e0:d8:
05:5c:2d:5c:6f:59:a6:65:85:e1:bd:7c:3f:38:2b:
f6:e3:9d:54:2d:c3:e3:d8:2e:42:91:5a:1e:86:3a:
82:ec:db:92:64:07:82:09:c6:25:f6:92:91:11:af:
42:be:c2:ba:26:5e:0b:cc:39:e5:15:2e:41:30:a7:
f1:3d:93:44:26:90:04:13:95:57:20:c8:96:55:6b:
b0:6a:78:91:83:24:e8:01:e1:30:1f:26:9f:74:35:
c0:2a:45:01:ca:2f:51:5b:3a:52:15:fb:07:24:52:
42:25:88:df:33:ed:ba:df:0c:89:44:8e:a1:b0:e0:
6e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:60:26:3E:46:7D:2A:2C:46:09:90:6F:69:66:64:6A:DC:2C:01:4E
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/4mAmPkZ9KixGCZBvaWZkatwsAU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.175.0/24
85.204.241.0-85.204.242.255
86.105.233.0/24
86.106.113.0/24
89.34.178.0/24
89.36.137.0/24
89.38.236.0/24
89.40.65.0/24
89.43.53.0/24
89.43.63.0/24
89.46.93.0/24
93.114.57.0/24
Signature Algorithm: sha256WithRSAEncryption
eb:11:44:64:22:73:0b:f1:85:7a:aa:f5:16:a3:87:1d:28:fe:
a9:2f:38:82:fa:11:fc:2c:eb:1c:fa:1f:c8:32:19:e0:87:0a:
b0:90:5c:63:31:c1:db:a0:cc:49:bf:33:60:e7:80:10:15:4d:
f0:f6:9a:e2:15:38:44:3e:68:90:07:0a:16:13:4f:a9:c3:c9:
e3:c4:76:d5:64:5b:74:81:d0:3a:6f:2e:0f:94:07:85:4c:ec:
e9:b8:73:c5:ce:bc:4a:16:1f:fb:4b:8f:cc:aa:48:bd:99:f4:
8e:5b:fc:91:ca:d7:0d:43:55:e5:9c:63:22:b6:30:dc:63:b7:
97:3e:5c:44:cc:b6:7c:39:42:53:87:3a:cf:7c:c5:be:d8:cf:
42:21:26:a4:cc:1f:e6:81:95:49:5b:7f:db:55:57:4a:cd:37:
19:cd:ec:cf:0f:74:6b:85:7a:f8:e4:a2:11:eb:fe:70:4d:a4:
ec:73:12:73:b8:d2:91:b3:a3:c3:86:fc:f5:0f:78:ed:dd:95:
c8:ff:7b:5a:b4:24:92:81:65:02:2f:ea:c6:94:06:0b:09:bf:
ea:bc:06:3e:3f:c6:cb:07:06:f7:73:37:07:11:22:4c:b7:7f:
58:41:cf:9f:a5:0e:99:84:9b:ff:26:38:83:6c:8b:4f:14:b4:
19:96:8c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 16 00:16:32 2024 by rpki-client on console-fra.rpki-client.org