Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/jZmuCmuftM3V0S_JI_KpG0dgYrI.roa
File: jZmuCmuftM3V0S_JI_KpG0dgYrI.roa (raw, json)
Hash identifier: pXYM1u3CyZeEoSi9pTVXzfoH/ZKOe+bw6eTqeppQy6A=
Subject key identifier: 8D:99:AE:0A:6B:9F:B4:CD:D5:D1:2F:C9:23:F2:A9:1B:47:60:62:B2
Certificate issuer: /CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Certificate serial: 018932049CD35B4945197E35C611AD173B0D
Authority key identifier: C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/jZmuCmuftM3V0S_JI_KpG0dgYrI.roa
Signing time: Fri 07 Jul 2023 20:21:50 +0000
ROA not before: Fri 07 Jul 2023 20:21:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50926
IP address blocks: 188.95.112.0/21 maxlen: 24
185.176.9.0/24 maxlen: 24
185.176.8.0/24 maxlen: 24
185.176.11.0/24 maxlen: 24
185.176.10.0/24 maxlen: 24
84.246.208.0/21 maxlen: 24
109.68.80.0/21 maxlen: 24
91.213.46.0/24 maxlen: 24
31.24.152.0/21 maxlen: 24
185.70.92.0/22 maxlen: 24
91.142.208.0/20 maxlen: 24
188.164.192.0/21 maxlen: 24
185.23.68.0/22 maxlen: 24
94.127.186.0/24 maxlen: 24
94.127.185.0/24 maxlen: 24
94.127.184.0/24 maxlen: 24
94.127.188.0/24 maxlen: 24
94.127.187.0/24 maxlen: 24
94.127.191.0/24 maxlen: 24
94.127.190.0/24 maxlen: 24
185.222.156.0/22 maxlen: 24
185.129.248.0/22 maxlen: 24
149.62.168.0/21 maxlen: 24
195.5.116.0/23 maxlen: 24
5.175.40.0/21 maxlen: 24
91.200.140.0/22 maxlen: 24
185.101.224.0/22 maxlen: 24
31.24.40.0/21 maxlen: 24
2a01:4b80::/32 maxlen: 32
2a00:5ac0:100::/48 maxlen: 48
2a00:5ac0::/44 maxlen: 44
Validation: Failed, certificate revoked on Tue 05 Sep 2023 16:43:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:32:04:9c:d3:5b:49:45:19:7e:35:c6:11:ad:17:3b:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Validity
Not Before: Jul 7 20:21:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d99ae0a6b9fb4cdd5d12fc923f2a91b476062b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2b:b0:ea:55:e6:50:ed:14:a8:b2:18:7a:39:
55:60:2d:9c:36:be:1a:fe:f9:22:39:8f:31:fa:6f:
8b:f6:cd:d0:4c:42:c9:66:33:99:40:77:db:38:78:
b5:7d:46:e6:3e:53:14:44:47:73:6f:d0:49:ae:ee:
b2:e4:78:d7:23:da:7f:05:db:5d:34:37:e6:87:88:
87:48:25:be:87:de:0e:8d:7e:65:cf:14:41:3c:db:
ae:0b:2b:88:39:22:b1:cc:9c:92:3d:e1:e6:97:23:
c5:0e:b5:de:94:4a:bd:2e:2d:40:96:03:09:f7:e7:
4d:dc:50:51:dc:20:e5:d1:66:5a:38:e3:21:fc:ad:
00:81:47:7b:97:52:89:96:b9:c9:90:5d:db:a2:fd:
64:48:b2:be:69:7b:9e:33:7f:2c:e1:b5:df:65:ea:
6a:c1:ef:d3:9a:0b:5e:11:23:e3:91:e3:24:98:f0:
93:ea:5c:3e:c0:13:0a:2a:dd:fe:36:20:48:27:01:
89:bd:f1:6c:3a:4e:9b:38:94:bd:ce:bb:81:35:25:
00:0e:68:8b:32:c3:04:ef:7d:73:2d:fc:c3:03:a2:
d4:63:c8:10:ff:cf:35:73:04:9c:04:55:c5:76:bf:
1b:72:4f:b1:48:d0:7a:ad:88:85:a1:ba:61:8a:f2:
0c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:99:AE:0A:6B:9F:B4:CD:D5:D1:2F:C9:23:F2:A9:1B:47:60:62:B2
X509v3 Authority Key Identifier:
keyid:C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/jZmuCmuftM3V0S_JI_KpG0dgYrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wtKiNOIkv4eZby8N9Vnq2IL55lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.40.0/21
31.24.40.0/21
31.24.152.0/21
84.246.208.0/21
91.142.208.0/20
91.200.140.0/22
91.213.46.0/24
94.127.184.0-94.127.188.255
94.127.190.0/23
109.68.80.0/21
149.62.168.0/21
185.23.68.0/22
185.70.92.0/22
185.101.224.0/22
185.129.248.0/22
185.176.8.0/22
185.222.156.0/22
188.95.112.0/21
188.164.192.0/21
195.5.116.0/23
IPv6:
2a00:5ac0::/44
2a00:5ac0:100::/48
2a01:4b80::/32
Signature Algorithm: sha256WithRSAEncryption
17:3a:24:4a:ca:4d:06:71:33:5d:76:b8:11:dc:a5:73:50:ab:
c3:57:fe:f2:a3:86:12:47:b8:14:70:84:b7:ea:f0:ec:7a:35:
57:f2:3e:a7:55:4b:72:28:de:bf:d7:5e:07:77:0d:63:ec:13:
32:d3:7d:82:93:54:22:63:cc:37:82:72:e1:69:c0:95:ad:c7:
65:4d:0c:4a:4a:73:a4:1f:bf:23:5c:e8:3d:a6:57:9a:11:80:
58:4e:25:a3:63:41:51:c6:7f:ed:33:fb:6a:34:bc:ec:ce:5b:
2d:64:75:28:87:ff:c3:20:90:51:aa:f0:89:01:07:17:e6:37:
2c:91:0b:dc:3b:98:ea:34:b1:69:52:6e:cd:0b:df:66:34:31:
0b:f9:c8:e8:53:5b:af:7d:72:05:0a:67:74:eb:08:ed:de:00:
05:a5:d5:03:21:46:14:ea:6b:1b:ac:f1:0d:3f:85:9b:ae:30:
c1:75:98:45:0e:eb:49:a0:4b:05:65:01:3f:22:39:07:51:ac:
ae:cd:ac:b0:d0:c8:4f:88:8a:29:eb:9d:7d:88:1f:c5:18:e1:
1e:7d:4a:48:60:7b:93:55:d0:ed:d5:b4:6c:af:94:b7:71:24:
ff:fc:ab:6a:1d:33:8f:30:46:79:99:91:c8:57:12:79:9c:5d:
62:c6:32:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:04 2024 by rpki-client on console-fra.rpki-client.org