Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/DD-ArcysIHUM2RjXfBG_f6M9XM8.roa
File: DD-ArcysIHUM2RjXfBG_f6M9XM8.roa (raw, json)
Hash identifier: taTF+n9wc6Wl3t1hkPf5rdAQf2NIJTDTWOFKMy7238g=
Subject key identifier: 0C:3F:80:AD:CC:AC:20:75:0C:D9:18:D7:7C:11:BF:7F:A3:3D:5C:CF
Certificate issuer: /CN=f5fb32d2266b1f9bce57cac98bc0247f2c9197f2
Certificate serial: 018635524015F2BC4335C05ABC8DD5BEE648
Authority key identifier: F5:FB:32:D2:26:6B:1F:9B:CE:57:CA:C9:8B:C0:24:7F:2C:91:97:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9fsy0iZrH5vOV8rJi8AkfyyRl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/DD-ArcysIHUM2RjXfBG_f6M9XM8.roa
Signing time: Thu 09 Feb 2023 08:37:08 +0000
ROA not before: Thu 09 Feb 2023 08:37:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210906
IP address blocks: 45.113.238.0/24 maxlen: 24
209.35.99.0/24 maxlen: 24
193.36.76.0/24 maxlen: 24
193.36.86.0/24 maxlen: 24
194.29.67.0/24 maxlen: 24
194.29.70.0/24 maxlen: 24
194.29.80.0/24 maxlen: 24
147.185.250.0/24 maxlen: 24
193.200.96.0/23 maxlen: 23
89.32.204.0/24 maxlen: 24
89.47.34.0/24 maxlen: 24
43.245.119.0/24 maxlen: 24
86.104.215.0/24 maxlen: 24
193.36.172.0/24 maxlen: 24
89.33.83.0/24 maxlen: 24
194.26.149.0/24 maxlen: 24
86.104.227.0/24 maxlen: 24
162.218.158.0/24 maxlen: 24
162.218.157.0/24 maxlen: 24
212.102.116.0/24 maxlen: 24
147.185.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jul 2023 07:34:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:35:52:40:15:f2:bc:43:35:c0:5a:bc:8d:d5:be:e6:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5fb32d2266b1f9bce57cac98bc0247f2c9197f2
Validity
Not Before: Feb 9 08:37:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c3f80adccac20750cd918d77c11bf7fa33d5ccf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e1:94:d8:73:85:c0:9b:2b:eb:2c:b2:36:2a:
8d:d6:46:23:33:55:a5:1c:eb:ba:90:39:85:fb:65:
bb:c2:4f:70:79:f8:50:2a:2b:14:75:0b:44:25:c9:
cb:ba:46:76:98:7f:4a:81:dd:f3:2f:89:5d:1a:79:
a5:d5:80:33:38:9d:9d:d2:eb:1d:dd:83:fd:a3:b3:
7c:a1:47:27:4a:38:11:4c:da:01:25:98:f2:06:10:
5b:34:f6:1c:df:95:68:e6:3d:b9:b7:a1:53:20:bf:
8e:49:dc:16:13:b4:cb:cd:b8:95:59:6e:b3:80:5e:
c1:13:54:46:42:43:fa:07:61:a0:7a:5f:12:1a:eb:
b8:15:1d:97:aa:2d:36:9f:b3:59:6f:20:10:e3:3f:
9e:fc:18:09:50:07:45:0a:7c:2a:94:a6:f8:34:b8:
02:27:ee:0e:19:87:5e:4c:20:9e:f3:de:89:c3:8c:
30:ec:31:08:14:eb:41:78:1d:c7:22:9e:32:ee:a2:
67:5f:82:82:64:7c:db:2e:6a:60:5e:04:f3:46:32:
65:97:9e:6d:18:8c:ee:16:c4:4e:41:66:87:a0:3f:
67:72:5c:96:83:44:db:71:7f:b5:bd:d8:b4:4a:95:
9f:39:b2:3e:4e:89:98:d9:6c:72:03:94:cf:0d:95:
f4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:3F:80:AD:CC:AC:20:75:0C:D9:18:D7:7C:11:BF:7F:A3:3D:5C:CF
X509v3 Authority Key Identifier:
keyid:F5:FB:32:D2:26:6B:1F:9B:CE:57:CA:C9:8B:C0:24:7F:2C:91:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9fsy0iZrH5vOV8rJi8AkfyyRl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/DD-ArcysIHUM2RjXfBG_f6M9XM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/9fsy0iZrH5vOV8rJi8AkfyyRl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.245.119.0/24
45.113.238.0/24
86.104.215.0/24
86.104.227.0/24
89.32.204.0/24
89.33.83.0/24
89.47.34.0/24
147.185.217.0/24
147.185.250.0/24
162.218.157.0-162.218.158.255
193.36.76.0/24
193.36.86.0/24
193.36.172.0/24
193.200.96.0/23
194.26.149.0/24
194.29.67.0/24
194.29.70.0/24
194.29.80.0/24
209.35.99.0/24
212.102.116.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:5b:d5:7e:74:f6:9b:05:78:e7:4a:01:de:0e:19:a4:d9:15:
8d:83:88:3b:cc:24:4b:e4:5d:a3:88:33:75:0d:9b:a8:69:10:
11:d7:24:40:e1:f6:a7:b7:3c:ab:17:f1:eb:3f:0d:32:66:e4:
96:78:1c:c0:68:04:c5:0d:c7:0f:09:fd:14:cd:1a:f9:d6:5d:
6d:49:01:cb:70:37:8e:52:28:90:83:f2:87:06:54:21:cc:36:
4d:e3:22:a2:07:80:8f:2e:a9:15:e0:ef:a1:0d:11:d0:e2:45:
6d:7d:6d:65:2b:30:b7:bc:4e:11:89:58:8b:b5:46:4e:8a:3d:
dc:64:17:5e:46:8d:e3:86:41:99:6f:df:3d:d9:81:13:f6:6d:
2c:1b:64:27:ab:a4:62:fd:8c:bd:7c:d0:40:54:73:7d:85:19:
da:39:66:4a:83:b2:42:b9:bd:32:ed:a2:60:37:83:54:bf:38:
75:53:f8:f9:dc:cd:61:bb:ce:33:f1:18:45:c1:27:9d:64:b1:
44:e0:b9:0f:f2:bf:d7:f7:c5:7f:b5:2a:73:70:ef:9b:33:76:
19:c7:d4:b9:16:a7:9f:74:4c:9a:98:38:27:96:84:fa:9e:ab:
50:c4:c7:8a:78:ed:79:52:79:c2:f5:79:1a:2d:7d:20:36:3b:
7f:63:d9:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:35 2024 by rpki-client on console-ams.rpki-client.org