Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/fUFw0AJ5EEQS8qtbXQX45KTZaRk.roa
File: fUFw0AJ5EEQS8qtbXQX45KTZaRk.roa (raw, json)
Hash identifier: GVxTx+bAG+fnZhEm1CoXxXrgyrwVIw1JTq1NxzUw5zU=
Subject key identifier: 7D:41:70:D0:02:79:10:44:12:F2:AB:5B:5D:05:F8:E4:A4:D9:69:19
Certificate issuer: /CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Certificate serial: 018ACB4C1B65BE7BD857BF233BFDC8FA7398
Authority key identifier: C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/fUFw0AJ5EEQS8qtbXQX45KTZaRk.roa
Signing time: Mon 25 Sep 2023 07:44:37 +0000
ROA not before: Mon 25 Sep 2023 07:44:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50926
IP address blocks: 188.95.112.0/21 maxlen: 24
185.176.9.0/24 maxlen: 24
185.176.8.0/24 maxlen: 24
185.176.11.0/24 maxlen: 24
185.176.10.0/24 maxlen: 24
212.34.156.0/22 maxlen: 24
84.246.208.0/21 maxlen: 24
109.68.80.0/21 maxlen: 24
91.213.46.0/24 maxlen: 24
31.24.152.0/21 maxlen: 24
185.70.92.0/22 maxlen: 24
91.142.208.0/20 maxlen: 24
188.164.192.0/21 maxlen: 24
185.23.68.0/22 maxlen: 24
94.127.184.0/21 maxlen: 24
185.222.156.0/22 maxlen: 24
185.129.248.0/22 maxlen: 24
149.62.168.0/21 maxlen: 24
195.5.116.0/23 maxlen: 24
5.175.40.0/21 maxlen: 24
91.200.140.0/22 maxlen: 24
185.101.224.0/22 maxlen: 24
31.24.40.0/21 maxlen: 24
2a01:4b80::/32 maxlen: 32
2a00:5ac0:100::/48 maxlen: 48
2a00:5ac0::/44 maxlen: 44
Validation: Failed, certificate revoked on Sun 24 Dec 2023 16:20:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cb:4c:1b:65:be:7b:d8:57:bf:23:3b:fd:c8:fa:73:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Validity
Not Before: Sep 25 07:44:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d4170d00279104412f2ab5b5d05f8e4a4d96919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cf:0b:06:18:08:a5:5b:6e:47:24:3f:2f:6b:
24:d5:ea:8f:70:96:15:00:58:ce:e3:12:f8:fe:5c:
b7:d5:38:7e:72:db:56:bd:e7:d9:e0:18:82:7a:25:
90:2f:64:e9:ba:36:9d:d9:48:4a:7c:cf:63:67:94:
c7:2d:3e:f8:2b:8b:32:74:8b:b2:58:cc:de:02:3f:
23:0e:8d:c8:bd:9f:c1:7c:82:86:94:7c:5d:55:ef:
ad:58:e4:62:b3:5a:49:03:ed:83:0b:83:96:ec:b0:
19:d1:34:04:18:34:44:24:2d:97:b1:44:02:e5:7a:
bf:26:57:9b:12:07:95:48:bc:d9:06:4c:c7:aa:36:
65:d6:07:e7:fc:b9:89:be:67:5b:a1:48:9d:c6:a0:
23:10:1b:ad:f1:25:98:02:1b:e1:da:34:07:88:b6:
3b:62:ec:70:b4:01:17:85:d9:cf:45:dd:9a:f6:a8:
1a:4b:36:be:fb:75:1d:5f:e3:01:ea:ba:ef:6f:2a:
6e:22:05:7a:a8:bc:db:81:0b:20:b9:af:b8:f4:9e:
0c:9e:ef:f9:b6:93:12:e1:02:65:69:b2:f2:27:9f:
44:c3:84:60:bb:a2:52:2a:a2:54:c0:ca:41:51:69:
c7:db:e4:dc:ce:14:6f:d5:c5:4f:29:a0:98:19:cb:
34:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:41:70:D0:02:79:10:44:12:F2:AB:5B:5D:05:F8:E4:A4:D9:69:19
X509v3 Authority Key Identifier:
keyid:C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/fUFw0AJ5EEQS8qtbXQX45KTZaRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wtKiNOIkv4eZby8N9Vnq2IL55lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.40.0/21
31.24.40.0/21
31.24.152.0/21
84.246.208.0/21
91.142.208.0/20
91.200.140.0/22
91.213.46.0/24
94.127.184.0/21
109.68.80.0/21
149.62.168.0/21
185.23.68.0/22
185.70.92.0/22
185.101.224.0/22
185.129.248.0/22
185.176.8.0/22
185.222.156.0/22
188.95.112.0/21
188.164.192.0/21
195.5.116.0/23
212.34.156.0/22
IPv6:
2a00:5ac0::/44
2a00:5ac0:100::/48
2a01:4b80::/32
Signature Algorithm: sha256WithRSAEncryption
16:15:bd:e0:44:31:ff:26:09:04:4a:65:71:48:f5:67:55:92:
5e:94:c3:d2:d1:7c:22:73:49:92:ed:29:fb:9b:19:62:0c:db:
5d:f4:58:68:6a:4a:98:12:b5:95:ea:ab:69:96:b8:c7:f0:b8:
dd:fe:8b:19:89:6f:28:9f:74:89:2d:e4:18:0d:86:fd:6e:13:
df:b0:ff:f0:08:b1:47:93:cd:ce:2e:fd:ab:f5:c5:b4:5a:84:
8e:0c:f9:aa:a7:54:cc:5c:29:c8:47:78:da:87:5b:1e:73:56:
dc:53:a1:d9:d7:c0:73:db:09:1b:ce:4a:16:89:dd:76:17:c6:
d3:53:66:4c:65:43:76:70:45:bb:17:ae:44:16:2d:6f:24:47:
dc:99:90:8a:da:19:33:90:af:c4:89:63:87:31:55:a4:35:ab:
f5:20:2d:1f:c0:c0:4b:aa:ad:d2:ff:3e:a7:12:bc:de:f6:1b:
57:13:fb:a5:1a:86:cc:db:48:b1:34:a5:1f:ad:ee:9d:1b:6a:
53:2b:9f:6d:56:4c:b1:f4:4f:0a:09:41:8a:7d:b9:15:92:28:
3d:10:de:f8:1b:5d:87:d3:58:b5:35:9a:5b:0c:4c:4c:73:73:
0a:24:72:93:ca:a6:08:70:bc:21:24:d9:92:08:dc:4e:9b:db:
f6:68:05:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:04 2024 by rpki-client on console-fra.rpki-client.org