Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/_Deh9DTLMq4U9gpy8BJJUbxnJaU.roa
File: _Deh9DTLMq4U9gpy8BJJUbxnJaU.roa (raw, json)
Hash identifier: Sh799dg450FmqJdorIfSKUHpnEzPSSv/UAEplWzFbuI=
Subject key identifier: FC:37:A1:F4:34:CB:32:AE:14:F6:0A:72:F0:12:49:51:BC:67:25:A5
Certificate issuer: /CN=3b230442feae9fc26b8bd887faa0ed0275827a58
Certificate serial: 0186931050DD315A0360B7C9530CF89EA219
Authority key identifier: 3B:23:04:42:FE:AE:9F:C2:6B:8B:D8:87:FA:A0:ED:02:75:82:7A:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OyMEQv6un8Jri9iH-qDtAnWCelg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/_Deh9DTLMq4U9gpy8BJJUbxnJaU.roa
Signing time: Mon 27 Feb 2023 13:29:25 +0000
ROA not before: Mon 27 Feb 2023 13:29:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48951
IP address blocks: 93.122.84.0/22 maxlen: 22
93.122.80.0/22 maxlen: 22
93.122.88.0/22 maxlen: 22
93.122.92.0/22 maxlen: 22
93.122.28.0/22 maxlen: 22
93.122.32.0/22 maxlen: 22
93.122.36.0/22 maxlen: 22
93.122.44.0/22 maxlen: 22
93.122.40.0/22 maxlen: 22
93.122.48.0/22 maxlen: 22
93.122.52.0/22 maxlen: 22
93.122.56.0/22 maxlen: 22
93.122.60.0/22 maxlen: 22
93.122.64.0/22 maxlen: 22
93.122.68.0/22 maxlen: 22
93.122.72.0/21 maxlen: 21
82.210.192.0/18 maxlen: 18
82.210.224.0/19 maxlen: 19
93.122.16.0/22 maxlen: 22
93.122.20.0/22 maxlen: 22
93.122.24.0/22 maxlen: 22
78.140.64.0/24 maxlen: 24
78.140.64.0/21 maxlen: 21
78.140.67.0/24 maxlen: 24
82.210.255.0/24 maxlen: 24
78.140.66.0/24 maxlen: 24
78.140.68.0/24 maxlen: 24
82.210.254.0/24 maxlen: 24
78.140.65.0/24 maxlen: 24
78.140.64.0/18 maxlen: 18
78.140.72.0/22 maxlen: 22
78.140.72.0/24 maxlen: 24
78.140.76.0/24 maxlen: 24
78.140.76.0/22 maxlen: 22
78.140.81.0/24 maxlen: 24
78.140.80.0/23 maxlen: 23
78.140.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Feb 2023 09:09:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:93:10:50:dd:31:5a:03:60:b7:c9:53:0c:f8:9e:a2:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b230442feae9fc26b8bd887faa0ed0275827a58
Validity
Not Before: Feb 27 13:29:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc37a1f434cb32ae14f60a72f0124951bc6725a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6c:a8:d5:44:3f:8d:db:12:f7:8d:10:6d:f3:
e2:9a:32:c8:f5:0f:9f:d8:be:3d:57:4d:35:99:02:
c9:5a:fa:de:ed:10:53:bd:6d:dc:c0:cb:df:97:a7:
5d:99:93:29:2b:0d:9c:b3:d0:48:4d:ad:69:0f:5b:
ee:57:3d:f5:2e:17:ca:8c:69:e9:8e:8e:9d:5b:55:
4b:73:a8:48:4a:ec:96:08:50:23:dd:1c:35:93:2a:
c6:3f:f3:5e:48:81:0d:b4:1d:55:28:b2:de:6d:22:
c5:15:e4:0f:64:94:cc:c7:1f:ba:32:9d:e0:36:ae:
00:a8:e2:5a:1b:17:23:0a:6f:0f:20:c9:fd:ba:d8:
1c:96:22:7d:7b:2a:f9:9a:41:91:e9:d9:61:26:c0:
3e:5a:c5:2f:31:4d:9d:ed:c7:67:ab:e2:0c:5f:3b:
3a:15:4c:f8:85:57:68:49:6e:66:d4:0d:f1:59:74:
4d:08:91:a2:60:2e:38:cf:7f:6d:2b:8e:9a:77:7a:
8a:7e:41:4d:c6:08:ad:82:09:87:8a:0e:38:fa:e3:
19:ef:7c:ee:68:2f:28:5d:b6:d5:2d:9b:ce:25:65:
eb:57:a7:0c:a7:f8:f1:24:31:88:0d:ae:2f:6e:55:
64:dc:79:a9:2d:24:d0:4d:45:55:a2:04:f0:cb:d5:
a0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:37:A1:F4:34:CB:32:AE:14:F6:0A:72:F0:12:49:51:BC:67:25:A5
X509v3 Authority Key Identifier:
keyid:3B:23:04:42:FE:AE:9F:C2:6B:8B:D8:87:FA:A0:ED:02:75:82:7A:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyMEQv6un8Jri9iH-qDtAnWCelg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/_Deh9DTLMq4U9gpy8BJJUbxnJaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/OyMEQv6un8Jri9iH-qDtAnWCelg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.140.64.0/18
82.210.192.0/18
93.122.16.0-93.122.95.255
Signature Algorithm: sha256WithRSAEncryption
75:75:9b:4a:a9:80:24:86:79:57:57:49:33:6f:c0:71:8f:0e:
81:28:74:88:5e:6f:ed:89:81:7d:cb:23:31:dc:e5:ef:2b:d2:
bf:8e:6b:29:ea:83:e8:99:b9:4c:4f:22:e9:06:dc:c6:ba:e2:
7e:dc:fd:f9:62:33:84:3a:f7:2a:99:e0:9f:cc:4b:a0:05:08:
e7:40:3b:46:97:28:02:0a:10:46:1c:05:86:9f:b2:fd:4d:fb:
f2:76:bd:ee:2d:fc:51:f3:8f:47:19:97:27:dd:fe:a6:f7:73:
28:a1:ba:1c:cd:00:b7:55:ff:fc:22:6d:13:e3:4c:c8:ae:36:
47:83:e4:57:c7:d1:e5:2e:95:0a:c8:59:b4:35:d7:13:01:0c:
f6:ee:3a:91:d0:95:7c:d6:71:79:29:1c:9c:5b:5c:6a:b1:97:
e0:c3:4e:bb:0e:7f:1d:82:82:1d:82:f4:c1:cc:eb:0d:fc:7e:
74:16:01:4a:3b:3c:e3:a9:54:fb:47:94:90:31:84:1c:54:af:
a8:0c:02:24:42:dc:0d:fc:89:89:13:ab:c1:88:18:8c:2f:5d:
3b:dd:ab:c2:22:27:e6:d6:fd:f8:3d:c3:fb:d0:84:9e:d6:71:
98:6a:51:91:e0:35:cb:7d:2a:c6:72:bc:5f:df:75:e0:9c:b0:
da:06:14:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:39 2024 by rpki-client on console-ams.rpki-client.org