Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/133b52-7a66-41ab-aeee-c9b470dc240b/1/8Xhg_gKYynhOELHID520NEm6_rU.roa
File: 8Xhg_gKYynhOELHID520NEm6_rU.roa (raw, json)
Hash identifier: 1+bEGrjxg3CYED7NTFyaZIL58P2njSbvPEO7CLFV+RU=
Subject key identifier: F1:78:60:FE:02:98:CA:78:4E:10:B1:C8:0F:9D:B4:34:49:BA:FE:B5
Certificate issuer: /CN=b466ac0a49255283cd53066971cd7b3dfe2a3ce8
Certificate serial: 018C0626E65D88BFCA08695F5C412A344713
Authority key identifier: B4:66:AC:0A:49:25:52:83:CD:53:06:69:71:CD:7B:3D:FE:2A:3C:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tGasCkklUoPNUwZpcc17Pf4qPOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/133b52-7a66-41ab-aeee-c9b470dc240b/1/8Xhg_gKYynhOELHID520NEm6_rU.roa
Signing time: Sat 25 Nov 2023 11:04:21 +0000
ROA not before: Sat 25 Nov 2023 11:04:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48101
IP address blocks: 91.151.240.0/20 maxlen: 22
134.19.192.0/22 maxlen: 22
134.19.196.0/22 maxlen: 23
95.166.0.0/18 maxlen: 21
185.122.192.0/22 maxlen: 22
185.16.160.0/22 maxlen: 24
98.96.160.0/20 maxlen: 23
134.65.128.0/21 maxlen: 21
134.65.136.0/22 maxlen: 22
91.228.232.0/23 maxlen: 24
134.65.144.0/22 maxlen: 22
134.65.140.0/22 maxlen: 22
91.228.234.0/24 maxlen: 24
134.65.148.0/22 maxlen: 22
199.15.232.0/22 maxlen: 22
134.65.152.0/21 maxlen: 21
37.25.44.0/24 maxlen: 24
199.15.237.0/24 maxlen: 24
199.15.236.0/24 maxlen: 24
199.15.239.0/24 maxlen: 24
199.15.238.0/24 maxlen: 24
37.25.45.0/24 maxlen: 24
37.25.46.0/23 maxlen: 23
2a04:200::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:06:26:e6:5d:88:bf:ca:08:69:5f:5c:41:2a:34:47:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b466ac0a49255283cd53066971cd7b3dfe2a3ce8
Validity
Not Before: Nov 25 11:04:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f17860fe0298ca784e10b1c80f9db43449bafeb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f5:ec:1d:43:c0:07:42:31:f2:5a:9e:ae:7b:
57:6f:d3:79:eb:08:88:80:ed:2a:e8:51:5b:07:cc:
af:a9:70:bf:a4:76:a9:06:74:1e:30:de:c3:8a:ee:
ad:f2:e7:b2:4d:79:80:4a:2b:e3:b1:c8:12:d8:e6:
f7:2e:69:bb:94:1c:a8:24:3d:35:bc:13:08:d8:ce:
38:74:1f:fa:8e:41:60:e3:c1:2e:f7:29:f7:de:38:
52:94:38:80:03:4a:77:f1:4c:15:08:31:64:ae:2e:
5d:a1:ae:ff:99:58:7f:7a:c1:a1:46:9e:fa:74:ef:
36:5a:01:a7:09:96:02:9b:1e:2f:c0:57:e9:2b:73:
df:17:51:1a:3c:7f:a9:01:5e:19:0e:a3:17:8f:44:
33:9f:b3:29:cb:92:e1:7e:c8:55:46:56:e7:d4:90:
f5:7d:d8:10:d6:33:df:56:48:d1:7d:ac:f0:39:1f:
1c:a9:1b:77:20:a5:2c:fd:36:b2:e5:4d:f8:08:ad:
6d:e3:4a:45:8b:4e:24:65:24:4d:67:15:97:fc:35:
be:8c:2b:d5:35:e9:d2:93:b1:16:da:31:93:ef:bf:
16:01:1f:f3:fe:b5:f4:87:b2:01:29:aa:b1:73:0f:
9e:70:da:73:fa:f8:03:c7:3c:15:74:03:9d:3b:69:
7e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:78:60:FE:02:98:CA:78:4E:10:B1:C8:0F:9D:B4:34:49:BA:FE:B5
X509v3 Authority Key Identifier:
keyid:B4:66:AC:0A:49:25:52:83:CD:53:06:69:71:CD:7B:3D:FE:2A:3C:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tGasCkklUoPNUwZpcc17Pf4qPOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/133b52-7a66-41ab-aeee-c9b470dc240b/1/8Xhg_gKYynhOELHID520NEm6_rU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/133b52-7a66-41ab-aeee-c9b470dc240b/1/tGasCkklUoPNUwZpcc17Pf4qPOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.25.44.0/22
91.151.240.0/20
91.228.232.0-91.228.234.255
95.166.0.0/18
98.96.160.0/20
134.19.192.0/21
134.65.128.0/19
185.16.160.0/22
185.122.192.0/22
199.15.232.0/21
IPv6:
2a04:200::/29
Signature Algorithm: sha256WithRSAEncryption
08:61:d0:47:45:3d:88:cb:5c:f2:e8:cf:3f:86:a1:a3:68:87:
35:3f:cf:b7:97:07:11:35:6a:14:71:8f:d9:7b:4e:95:e5:cc:
25:3d:1e:24:90:e8:d0:5a:77:c5:dc:a3:0b:bb:22:dc:99:0e:
fa:f0:82:d8:19:b4:53:37:ca:79:db:9f:2f:4b:1a:e0:aa:0f:
8b:80:c8:73:e6:32:90:2f:41:8d:dc:99:b5:ba:31:f6:7c:40:
4c:e5:15:60:f5:50:13:42:be:2d:6f:52:dd:84:27:bc:39:a8:
50:d1:38:ab:a9:ad:26:d7:46:d9:60:c4:6a:51:63:ec:cb:96:
5b:6b:50:f6:79:97:72:80:bd:ca:db:46:4c:7b:f7:57:cd:a3:
d1:6a:72:cd:05:2b:75:d0:54:bc:33:9d:16:11:bd:8e:3e:38:
ad:14:e5:56:ed:cb:d9:c9:04:86:eb:11:d1:c3:78:d3:04:63:
9f:fa:a1:ec:d8:0a:32:b4:46:ca:46:c4:04:8a:b7:bd:c2:9c:
5a:b1:c6:b5:c6:7a:90:c7:18:8d:b7:9b:12:dc:7b:16:c0:af:
c3:ed:61:63:1f:9b:da:73:69:32:be:0c:53:a4:51:b1:c5:a6:
b6:c8:4b:7b:23:8b:39:88:af:3f:50:50:3a:18:7c:ca:2b:44:
e9:56:ea:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:35 2024 by rpki-client on console-ams.rpki-client.org