Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/lHqnl4jukriR2ubHdqgcGa3xEc4.roa
File: lHqnl4jukriR2ubHdqgcGa3xEc4.roa (raw, json)
Hash identifier: 86LaLwr6RoXfTCRFwzfaFvdAEFe0uMjrgGPi6DKVy40=
Subject key identifier: 94:7A:A7:97:88:EE:92:B8:91:DA:E6:C7:76:A8:1C:19:AD:F1:11:CE
Certificate issuer: /CN=c1098a1905bbd3381533828f6b7fd227170431ef
Certificate serial: 018D364730D7145D7C966849C78D15C624A8
Authority key identifier: C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wQmKGQW70zgVM4KPa3_SJxcEMe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/lHqnl4jukriR2ubHdqgcGa3xEc4.roa
Signing time: Tue 23 Jan 2024 12:24:11 +0000
ROA not before: Tue 23 Jan 2024 12:24:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57324
IP address blocks: 79.132.195.0/24 maxlen: 24
79.132.196.0/24 maxlen: 24
79.132.197.0/24 maxlen: 24
79.132.198.0/24 maxlen: 24
79.132.199.0/24 maxlen: 24
86.111.144.0/24 maxlen: 24
86.111.145.0/24 maxlen: 24
86.111.146.0/24 maxlen: 24
86.111.147.0/24 maxlen: 24
109.230.112.0/24 maxlen: 24
109.230.113.0/24 maxlen: 24
109.230.114.0/24 maxlen: 24
109.230.115.0/24 maxlen: 24
109.230.116.0/24 maxlen: 24
109.230.117.0/24 maxlen: 24
109.230.118.0/24 maxlen: 24
109.230.119.0/24 maxlen: 24
109.230.120.0/24 maxlen: 24
109.230.121.0/24 maxlen: 24
109.230.122.0/24 maxlen: 24
109.230.123.0/24 maxlen: 24
109.230.124.0/24 maxlen: 24
109.230.125.0/24 maxlen: 24
109.230.126.0/24 maxlen: 24
109.230.127.0/24 maxlen: 24
122.102.116.0/24 maxlen: 24
122.102.117.0/24 maxlen: 24
122.102.118.0/24 maxlen: 24
122.102.119.0/24 maxlen: 24
185.113.105.0/24 maxlen: 24
185.113.107.0/24 maxlen: 24
202.164.192.0/24 maxlen: 24
202.164.193.0/24 maxlen: 24
202.164.194.0/24 maxlen: 24
202.164.195.0/24 maxlen: 24
202.164.197.0/24 maxlen: 24
202.164.198.0/24 maxlen: 24
202.164.199.0/24 maxlen: 24
202.164.200.0/24 maxlen: 24
202.164.201.0/24 maxlen: 24
202.164.202.0/24 maxlen: 24
202.164.203.0/24 maxlen: 24
202.164.204.0/24 maxlen: 24
202.164.205.0/24 maxlen: 24
2a03:c340::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 26 Mar 2024 10:56:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:36:47:30:d7:14:5d:7c:96:68:49:c7:8d:15:c6:24:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1098a1905bbd3381533828f6b7fd227170431ef
Validity
Not Before: Jan 23 12:24:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=947aa79788ee92b891dae6c776a81c19adf111ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:66:56:7f:7c:4f:ac:9d:2f:2a:a9:1c:f3:27:
d9:0e:db:7e:18:82:6e:7e:be:b6:6c:46:25:c4:a1:
cb:8b:c4:92:96:63:c5:36:cf:45:51:04:b0:c4:37:
36:24:53:a8:04:1f:93:eb:ee:ba:c0:e2:57:de:15:
ea:0f:a1:49:2f:1b:e7:b3:79:fb:18:0c:86:39:a5:
1a:90:37:c9:5f:cb:ab:f0:81:9b:e0:8f:3b:f7:30:
c7:5f:9b:a3:d2:8b:e5:38:4e:e2:23:21:df:f3:92:
55:eb:a1:3f:9e:aa:53:05:d7:d8:4e:c6:09:a4:a1:
5b:fc:20:22:9f:02:a6:ca:4a:35:02:91:f3:87:f6:
85:dd:c7:92:00:dd:b5:5f:f0:80:a8:d2:1a:e4:bb:
ba:0e:21:0f:68:d9:ff:d4:6a:2d:f0:f4:70:ee:7a:
f4:cd:16:17:28:ba:4a:9f:fe:46:36:d4:7f:1e:87:
0c:e8:07:c4:fe:99:08:c7:65:73:e2:1c:10:e6:59:
a9:06:04:6c:ef:1a:1f:18:32:e3:c2:2a:94:fd:70:
39:1f:53:f4:fd:de:37:3f:f0:6f:64:5f:43:a4:14:
d6:a0:b9:3d:3d:ac:01:46:be:78:c8:87:78:4c:a0:
77:82:4d:10:54:b4:47:83:36:4f:dd:8c:8c:fd:76:
3b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:7A:A7:97:88:EE:92:B8:91:DA:E6:C7:76:A8:1C:19:AD:F1:11:CE
X509v3 Authority Key Identifier:
keyid:C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wQmKGQW70zgVM4KPa3_SJxcEMe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/lHqnl4jukriR2ubHdqgcGa3xEc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/wQmKGQW70zgVM4KPa3_SJxcEMe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.195.0-79.132.199.255
86.111.144.0/22
109.230.112.0/20
122.102.116.0/22
185.113.105.0/24
185.113.107.0/24
202.164.192.0/22
202.164.197.0-202.164.205.255
IPv6:
2a03:c340::/32
Signature Algorithm: sha256WithRSAEncryption
a3:e2:47:8e:ce:9b:8a:96:44:ad:a7:f5:6b:3d:14:47:05:87:
13:00:a8:29:12:97:69:a0:96:08:70:e3:42:b7:b7:71:a3:71:
6c:9e:37:78:7f:18:88:3a:7b:7b:00:bc:cd:88:98:ad:89:a9:
df:61:b6:13:0b:92:b5:97:66:86:0c:a5:91:fa:c4:cd:35:62:
3a:0d:12:c9:2a:6f:40:b7:4c:b7:80:37:8f:51:22:0a:04:f2:
76:57:cb:ee:4d:75:f5:79:24:2b:a3:0a:26:41:bb:f4:13:1d:
80:d3:9d:4a:51:e3:51:77:ce:35:8b:1d:83:b7:bc:4f:ff:ed:
76:5d:97:21:ef:86:1e:91:ff:60:29:28:be:c8:aa:7b:da:fa:
3e:97:07:b6:5c:f5:08:dd:2c:f1:05:3f:c6:0e:28:c8:42:fb:
95:63:c7:6f:3c:f5:cc:40:60:3c:e2:f1:2a:fb:3e:ec:0d:0d:
1e:b7:c3:b5:fb:a2:b3:e9:dc:d5:93:4f:33:1b:2b:49:2a:45:
53:1c:da:6f:e1:45:2f:16:74:ea:8f:bd:69:63:8c:70:41:06:
ae:25:c9:9b:46:33:30:f0:13:00:e0:0e:9f:55:25:96:f7:f1:
c1:74:35:01:4b:06:f3:79:5a:23:06:af:a6:d6:83:cd:79:92:
ed:90:d1:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:50 2024 by rpki-client on console-ams.rpki-client.org