Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/IeMyenHFltF8l78_YkukdBfh-4Q.roa
File: IeMyenHFltF8l78_YkukdBfh-4Q.roa (raw, json)
Hash identifier: nuU0hfAZx1hS7/hppt4qhdfLqGSiZMu3mM3YBTfrXQo=
Subject key identifier: 21:E3:32:7A:71:C5:96:D1:7C:97:BF:3F:62:4B:A4:74:17:E1:FB:84
Certificate issuer: /CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
Certificate serial: 018DD566501B3197DE96DCB0F4AF7611E6CA
Authority key identifier: AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/IeMyenHFltF8l78_YkukdBfh-4Q.roa
Signing time: Fri 23 Feb 2024 09:57:48 +0000
ROA not before: Fri 23 Feb 2024 09:57:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206509
IP address blocks: 91.85.0.0/17 maxlen: 17
91.85.128.0/19 maxlen: 19
91.85.192.0/18 maxlen: 18
194.46.32.0/19 maxlen: 19
212.104.129.0/24 maxlen: 24
212.104.130.0/24 maxlen: 24
212.104.132.0/24 maxlen: 24
212.104.136.0/24 maxlen: 24
212.104.143.0/24 maxlen: 24
212.104.149.0/24 maxlen: 24
212.104.150.0/24 maxlen: 24
212.104.152.0/24 maxlen: 24
212.104.155.0/24 maxlen: 24
212.104.156.0/24 maxlen: 24
212.104.159.0/24 maxlen: 24
212.108.80.0/21 maxlen: 21
212.108.88.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 27 Feb 2024 09:35:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d5:66:50:1b:31:97:de:96:dc:b0:f4:af:76:11:e6:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
Validity
Not Before: Feb 23 09:57:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21e3327a71c596d17c97bf3f624ba47417e1fb84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:33:56:d6:25:4e:1b:8f:36:17:9b:2b:4f:6e:
40:75:a3:96:5f:e5:06:1c:7d:6d:b3:dc:b9:44:db:
33:e6:5f:6c:85:31:b0:9c:87:60:de:05:5d:ea:03:
c0:90:10:12:00:00:56:9f:ca:e1:c6:1b:50:87:96:
da:9a:b7:db:8e:11:19:97:22:ac:b5:8b:c0:e3:ac:
f2:e9:df:96:b4:f2:8f:b5:e0:40:b8:38:6a:40:25:
5c:85:aa:bb:c8:26:d7:de:14:a8:e6:32:51:22:30:
f8:e6:fa:f8:48:50:80:fa:8d:49:ac:8b:e0:8f:a7:
ce:e3:c5:7c:ec:f9:0e:a5:44:e7:a8:34:62:5c:37:
c9:9e:29:bf:30:62:75:12:6b:a7:c4:0b:0f:3a:3a:
18:cb:90:e1:86:61:9d:5b:ce:7a:05:0d:9d:5c:e7:
2a:c6:3d:8d:94:f7:0e:ac:2b:33:46:33:95:1b:12:
14:28:26:47:de:61:7a:be:38:a5:e8:b8:5b:d3:43:
86:00:7d:45:b6:9b:7e:ea:7f:d4:7e:a2:b1:3c:56:
84:49:17:69:3a:26:b0:2a:cb:49:3d:9c:88:4d:9c:
53:5c:ac:f8:5a:a3:ec:e6:a0:9d:bc:0a:20:72:3b:
79:25:44:88:50:c7:7c:18:8c:8a:f0:c9:3e:3d:40:
d5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E3:32:7A:71:C5:96:D1:7C:97:BF:3F:62:4B:A4:74:17:E1:FB:84
X509v3 Authority Key Identifier:
keyid:AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/IeMyenHFltF8l78_YkukdBfh-4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.85.0.0-91.85.159.255
91.85.192.0/18
194.46.32.0/19
212.104.129.0-212.104.130.255
212.104.132.0/24
212.104.136.0/24
212.104.143.0/24
212.104.149.0-212.104.150.255
212.104.152.0/24
212.104.155.0-212.104.156.255
212.104.159.0/24
212.108.80.0-212.108.89.255
Signature Algorithm: sha256WithRSAEncryption
21:4d:0e:6b:17:22:3d:c7:ce:08:48:ce:6a:56:af:d6:d0:6e:
6c:39:a7:e7:da:59:ca:3a:9e:61:98:d0:37:df:ec:c9:8d:2e:
9c:be:2c:a9:2f:28:c1:2d:44:15:e8:0b:4b:9b:41:86:82:9d:
ab:ab:55:18:bd:13:ee:f7:af:35:74:e6:ce:dc:28:03:fb:29:
61:d8:ce:2b:43:4c:e9:a8:2d:6e:a0:b0:23:1d:82:52:91:f9:
56:7b:36:64:36:ee:e8:de:53:8d:be:78:71:97:96:a2:db:11:
08:06:81:41:a2:7f:32:c3:7c:24:6b:15:f2:92:e2:8f:16:e6:
ac:16:db:a8:1e:67:00:da:b7:c8:88:99:d7:27:99:2f:52:4c:
10:61:5b:2d:f1:e4:0c:f7:5d:0b:57:6e:8e:d7:b5:93:b1:0c:
2e:23:9e:9d:5c:73:46:cc:ff:97:d4:ac:c2:96:3f:df:b2:03:
ba:c1:8d:63:98:bf:cc:e5:56:af:be:33:aa:db:7d:0b:da:31:
3e:27:8a:45:c5:d2:ba:c6:99:8f:2e:d0:99:e1:a2:b0:aa:41:
dc:9b:04:e2:d6:85:83:ea:10:55:63:45:8f:0e:7b:ce:5b:ac:
1a:41:b7:cd:54:07:a8:04:48:1f:ee:f4:0b:0b:10:ea:23:ed:
67:92:b1:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 12:42:35 2024 by rpki-client on console-fra.rpki-client.org