Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/E4v9qwoSHTMfQ-DdMwY1lK3zfAk.roa
File: E4v9qwoSHTMfQ-DdMwY1lK3zfAk.roa (raw, json)
Hash identifier: pjdTLfbRGgQkUXm4Z03lLi477fy7da3ZYDdvsM4Mjyo=
Subject key identifier: 13:8B:FD:AB:0A:12:1D:33:1F:43:E0:DD:33:06:35:94:AD:F3:7C:09
Certificate issuer: /CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
Certificate serial: 018D65A65700A6EB7946F0B0077AD6662DDE
Authority key identifier: AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/E4v9qwoSHTMfQ-DdMwY1lK3zfAk.roa
Signing time: Thu 01 Feb 2024 17:10:16 +0000
ROA not before: Thu 01 Feb 2024 17:10:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206509
IP address blocks: 91.85.0.0/17 maxlen: 17
91.85.128.0/19 maxlen: 19
91.85.192.0/18 maxlen: 18
194.46.32.0/19 maxlen: 19
194.46.64.0/19 maxlen: 19
194.46.80.0/20 maxlen: 20
212.104.129.0/24 maxlen: 24
212.104.130.0/24 maxlen: 24
212.104.132.0/24 maxlen: 24
212.104.136.0/24 maxlen: 24
212.104.143.0/24 maxlen: 24
212.104.149.0/24 maxlen: 24
212.104.150.0/24 maxlen: 24
212.104.152.0/24 maxlen: 24
212.104.155.0/24 maxlen: 24
212.104.156.0/24 maxlen: 24
212.104.159.0/24 maxlen: 24
212.108.80.0/21 maxlen: 21
212.108.88.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 23 Feb 2024 09:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:65:a6:57:00:a6:eb:79:46:f0:b0:07:7a:d6:66:2d:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
Validity
Not Before: Feb 1 17:10:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=138bfdab0a121d331f43e0dd33063594adf37c09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a1:91:11:cb:dd:d8:e0:5e:f2:fe:5d:55:83:
e8:d2:7c:dd:d9:46:21:dd:b3:10:10:00:b5:51:51:
83:6b:d5:4a:5f:06:e5:46:1f:dc:ac:2e:f2:d7:76:
13:69:3f:7a:a8:91:76:d4:49:90:61:68:85:7c:3e:
f2:6a:45:fa:9a:66:8c:58:a0:27:30:61:0f:82:b6:
88:1a:b4:c5:24:fc:9c:45:83:e9:39:2e:47:d3:f2:
82:60:1a:98:fa:b3:2b:67:33:58:f0:fe:f6:85:1f:
d6:e9:f5:22:74:c9:0c:75:48:62:5c:91:e5:25:c2:
0e:a0:cc:50:19:97:f2:dd:d7:7f:a6:08:6b:8d:ac:
7f:b5:b5:cb:4c:17:e5:31:c4:df:50:a3:cc:e4:2d:
d5:43:1e:5f:b9:a4:12:90:53:85:cf:d6:39:a9:39:
61:0d:2d:c1:3b:1a:01:9d:d6:a9:a2:34:ab:9c:0b:
1a:64:c5:99:ce:c1:22:59:9f:f7:bd:46:17:83:52:
e1:a5:6e:fb:87:19:d3:cb:e9:1f:47:35:89:40:fb:
7d:ca:dd:ec:64:06:db:a3:56:f6:32:3c:9f:5c:73:
d1:ef:47:cb:e3:5a:41:f0:71:fe:d3:de:08:96:72:
09:fb:23:45:c9:08:97:cc:ac:a8:fb:c4:2e:83:85:
5b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8B:FD:AB:0A:12:1D:33:1F:43:E0:DD:33:06:35:94:AD:F3:7C:09
X509v3 Authority Key Identifier:
keyid:AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/E4v9qwoSHTMfQ-DdMwY1lK3zfAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.85.0.0-91.85.159.255
91.85.192.0/18
194.46.32.0-194.46.95.255
212.104.129.0-212.104.130.255
212.104.132.0/24
212.104.136.0/24
212.104.143.0/24
212.104.149.0-212.104.150.255
212.104.152.0/24
212.104.155.0-212.104.156.255
212.104.159.0/24
212.108.80.0-212.108.89.255
Signature Algorithm: sha256WithRSAEncryption
44:66:c2:a7:20:c9:e5:d5:d3:b4:cd:cf:5d:33:a1:12:6a:35:
c8:72:b6:29:8d:7a:7d:ba:97:81:f5:76:e0:d6:88:63:bd:7d:
1a:f1:e6:97:de:40:40:36:8b:a4:36:5e:71:37:20:f6:5b:b4:
95:3a:ce:c2:07:5b:42:45:db:bc:df:97:86:28:a7:ba:60:d4:
af:8e:a3:78:7d:0b:ce:5c:d9:5f:ca:2e:30:01:53:ff:e4:e1:
33:85:57:d1:54:d2:b8:c4:d1:82:97:d7:c9:a4:c6:34:7f:61:
6f:5e:04:22:76:dd:aa:e7:96:57:8c:95:b6:7d:c7:22:59:49:
95:b8:71:b6:bb:b0:9c:78:ff:79:1b:e6:d2:67:2d:bd:cc:b0:
bf:35:60:07:aa:25:04:4d:a8:de:6f:8b:ce:68:23:48:02:be:
12:b7:3c:68:13:94:ed:ec:19:92:f6:42:ee:3f:6d:3a:f1:ef:
f6:e4:1c:7e:a6:78:10:aa:69:00:b4:f9:86:b0:7c:5f:88:29:
7e:c0:b7:cf:40:0b:db:70:02:fa:af:34:93:eb:d6:12:02:bb:
5b:b5:ea:aa:25:b6:94:e5:a8:35:a8:25:9e:52:e6:57:67:4d:
77:f0:9f:a4:4f:41:3d:c2:4d:c0:1a:ec:4e:90:50:d3:db:c7:
04:bf:7c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:14 2024 by rpki-client on console-fra.rpki-client.org