Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/DbuaOQAViZv9WbYch7KDLeBdH5k.roa
File: DbuaOQAViZv9WbYch7KDLeBdH5k.roa (raw, json)
Hash identifier: lhDAYHAcsAZ/exY+g3nUZItvpywdpdrNoLrEpplk67Q=
Subject key identifier: 0D:BB:9A:39:00:15:89:9B:FD:59:B6:1C:87:B2:83:2D:E0:5D:1F:99
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 018C3E7F8A2F0AD1E0051476136F13BF3A77
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/DbuaOQAViZv9WbYch7KDLeBdH5k.roa
Signing time: Wed 06 Dec 2023 09:39:54 +0000
ROA not before: Wed 06 Dec 2023 09:39:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29684
IP address blocks: 46.235.88.0/21 maxlen: 24
212.12.160.0/19 maxlen: 24
176.241.184.0/21 maxlen: 24
193.242.127.0/24 maxlen: 24
88.85.224.0/19 maxlen: 24
79.110.229.0/24 maxlen: 24
185.10.112.0/22 maxlen: 24
178.20.144.0/21 maxlen: 24
62.204.48.0/24 maxlen: 24
77.75.224.0/24 maxlen: 24
176.97.216.0/24 maxlen: 24
146.19.71.0/24 maxlen: 24
176.98.32.0/24 maxlen: 24
176.98.32.0/22 maxlen: 22
176.98.33.0/24 maxlen: 24
176.98.34.0/24 maxlen: 24
176.98.34.0/23 maxlen: 23
176.98.35.0/24 maxlen: 24
194.104.226.0/24 maxlen: 24
2a00:1560:18::/48 maxlen: 48
2a00:1560:1111::/48 maxlen: 48
2a00:1560:c::/48 maxlen: 48
2a00:1560:10::/48 maxlen: 48
2a00:1560:4::/47 maxlen: 47
2a00:1560:17::/48 maxlen: 48
2a00:1560:5::/48 maxlen: 48
2a00:1560::/32 maxlen: 32
2a00:1560:60::/48 maxlen: 48
2a00:1560:16::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 06 Dec 2023 09:53:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3e:7f:8a:2f:0a:d1:e0:05:14:76:13:6f:13:bf:3a:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: Dec 6 09:39:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0dbb9a390015899bfd59b61c87b2832de05d1f99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b3:55:8b:5a:aa:57:3e:dd:9d:3d:b8:f9:87:
57:a7:77:15:5a:0f:c1:d7:7f:6c:7e:96:fb:02:ef:
3a:fb:51:86:85:19:7c:20:52:e6:24:ce:9f:7b:2a:
f1:c7:df:ec:8e:5d:e1:f5:cd:d1:4a:03:60:38:6c:
2e:65:cb:4d:14:c7:db:ad:b1:90:c3:80:25:43:81:
52:cb:51:a9:75:ed:28:95:68:30:b6:53:2b:9c:61:
89:f3:53:b7:e3:f5:1e:0d:ea:a6:e1:fc:cf:79:b9:
ed:de:dd:be:20:ab:b5:4e:51:85:0e:9e:0e:e1:78:
d4:cf:f6:ba:f1:ae:72:07:ca:e4:bb:97:f1:90:4b:
31:b3:4b:2d:1b:d9:f9:78:79:77:f0:34:7b:33:35:
3b:00:aa:f0:c6:d8:a7:37:d9:ce:12:99:02:c4:7a:
15:20:45:51:f7:52:e5:8b:a9:84:1c:99:3e:89:81:
6a:27:5e:b0:1a:9e:3a:33:b8:b3:97:d4:5d:a2:51:
a2:ea:86:ac:fe:42:f5:5d:5e:47:2c:0c:00:ee:84:
ee:86:90:3e:5e:7b:f0:98:ad:d3:a9:9e:ee:02:ca:
de:f1:db:25:15:fe:45:06:89:1b:eb:19:4d:0d:8c:
91:20:ee:90:26:21:c9:c9:94:d2:ce:75:9a:bd:e6:
63:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:BB:9A:39:00:15:89:9B:FD:59:B6:1C:87:B2:83:2D:E0:5D:1F:99
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/DbuaOQAViZv9WbYch7KDLeBdH5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.235.88.0/21
62.204.48.0/24
77.75.224.0/24
79.110.229.0/24
88.85.224.0/19
146.19.71.0/24
176.97.216.0/24
176.98.32.0/22
176.241.184.0/21
178.20.144.0/21
185.10.112.0/22
193.242.127.0/24
194.104.226.0/24
212.12.160.0/19
IPv6:
2a00:1560::/32
Signature Algorithm: sha256WithRSAEncryption
3d:ad:ce:5b:5e:65:f1:34:70:9e:a1:6d:98:a6:b9:68:89:3e:
4d:c0:a0:2b:6f:19:6d:38:06:14:08:4a:c5:3f:78:94:26:c2:
a1:fd:ea:32:65:7a:a7:25:8e:65:67:59:23:38:21:98:78:ca:
99:ae:82:87:1d:f5:09:c7:a2:55:7f:ab:63:b6:c4:47:da:31:
bf:8d:5e:af:b7:c8:17:b7:0e:e0:2c:af:17:4e:be:50:91:10:
77:d5:de:9e:2b:0b:e7:41:0b:a5:ae:de:00:45:aa:ef:69:d2:
d2:31:a6:d1:e8:c6:fe:4e:74:ad:65:41:83:19:bf:65:cb:8f:
8c:62:63:74:b4:87:45:b3:1d:87:4e:dd:53:d4:f0:51:75:f5:
87:ea:01:07:f7:c9:a6:55:9e:15:ff:82:19:9c:d1:f7:df:08:
08:fa:8a:96:67:b9:e2:c6:c7:3e:29:7d:58:d5:00:b2:14:e3:
c0:38:3e:3d:eb:b9:08:c1:c1:a8:9b:5b:a0:e3:9d:a6:d4:91:
d3:a0:fa:3d:51:44:9f:ad:6d:4e:3c:d9:85:87:72:79:bf:7b:
b2:46:4a:14:60:c7:f5:60:8f:d7:5c:b3:c3:d9:41:33:09:a1:
db:60:08:2c:5d:77:52:44:83:13:20:cb:46:df:28:a3:76:c8:
04:f9:6a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:35 2024 by rpki-client on console-fra.rpki-client.org