Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/h7RVZETEMuy9qBxLx9X5a2mDBu8.roa
File: h7RVZETEMuy9qBxLx9X5a2mDBu8.roa (raw, json)
Hash identifier: StqDUoiBz2483qPtZSinKln1toy28Iq6PJN2Fx9Eps4=
Subject key identifier: 87:B4:55:64:44:C4:32:EC:BD:A8:1C:4B:C7:D5:F9:6B:69:83:06:EF
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 018DA99B4565C1449836C898B63FC9ECD620
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/h7RVZETEMuy9qBxLx9X5a2mDBu8.roa
Signing time: Wed 14 Feb 2024 21:52:21 +0000
ROA not before: Wed 14 Feb 2024 21:52:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62005
IP address blocks: 45.86.228.0/24 maxlen: 24
45.86.229.0/24 maxlen: 24
45.86.231.0/24 maxlen: 24
45.129.199.0/24 maxlen: 24
77.72.85.0/24 maxlen: 24
91.235.234.0/24 maxlen: 24
146.19.143.0/24 maxlen: 24
146.19.254.0/24 maxlen: 24
176.124.32.0/24 maxlen: 24
176.124.33.0/24 maxlen: 24
185.39.18.0/24 maxlen: 24
185.123.53.0/24 maxlen: 24
193.109.120.0/24 maxlen: 24
193.200.16.0/24 maxlen: 24
193.200.17.0/24 maxlen: 24
194.61.120.0/24 maxlen: 24
194.61.121.0/24 maxlen: 24
195.54.160.0/24 maxlen: 24
2a10:1fc0:1::/48 maxlen: 48
2a10:1fc0:2::/48 maxlen: 48
2a10:1fc0:3::/48 maxlen: 48
2a10:1fc0:4::/48 maxlen: 48
2a10:1fc0:5::/48 maxlen: 48
2a10:1fc0:6::/48 maxlen: 48
2a10:1fc0:8::/48 maxlen: 48
2a10:1fc0:b::/48 maxlen: 48
2a10:1fc0:c::/48 maxlen: 48
2a10:1fc0:d::/48 maxlen: 48
2a10:1fc0:e::/48 maxlen: 48
2a10:1fc0:f::/48 maxlen: 48
2a10:1fc0:10::/48 maxlen: 48
2a10:1fc0:11::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 25 Mar 2024 17:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a9:9b:45:65:c1:44:98:36:c8:98:b6:3f:c9:ec:d6:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Feb 14 21:52:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=87b4556444c432ecbda81c4bc7d5f96b698306ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9e:d2:d4:87:77:46:15:c1:c3:02:61:95:58:
8c:db:04:b0:5b:38:49:a5:bd:46:89:b6:6e:71:66:
9b:90:d4:be:65:82:ea:f7:82:43:52:3f:4f:8a:75:
0a:16:b1:1f:c8:b2:be:eb:99:58:50:60:f0:99:51:
f5:ff:95:3e:0c:21:b3:37:64:f1:58:b4:bc:a7:df:
1e:f4:2d:17:ea:11:4d:86:b1:74:66:24:ce:d3:8d:
6b:61:b9:de:e4:2e:a4:aa:f6:19:0d:df:db:3e:91:
53:96:b5:eb:ac:d0:24:a1:3c:61:66:6a:c3:47:1f:
ea:23:ad:60:09:95:b1:c9:6c:e2:1a:27:f2:6e:e5:
b8:67:70:d8:1b:52:6e:83:71:e8:e6:dc:e2:88:06:
3c:ea:53:32:c1:17:dc:fc:66:4c:7c:5a:0a:5b:84:
9c:ba:30:c5:13:3a:80:b3:30:6f:68:96:04:f3:7d:
a8:5a:53:ab:58:d6:98:b8:bf:32:d8:a8:02:1a:4a:
bf:4a:fd:8c:94:47:05:e1:48:26:ab:8c:05:12:44:
f3:96:81:df:3d:39:7e:a9:a1:8b:54:a5:cf:e7:3a:
92:4b:36:0c:df:00:15:99:86:c3:38:34:4a:bf:51:
4c:a4:0f:3a:1e:a7:9a:f0:79:12:c5:d4:bc:08:ad:
23:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B4:55:64:44:C4:32:EC:BD:A8:1C:4B:C7:D5:F9:6B:69:83:06:EF
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/h7RVZETEMuy9qBxLx9X5a2mDBu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.228.0/23
45.86.231.0/24
45.129.199.0/24
77.72.85.0/24
91.235.234.0/24
146.19.143.0/24
146.19.254.0/24
176.124.32.0/23
185.39.18.0/24
185.123.53.0/24
193.109.120.0/24
193.200.16.0/23
194.61.120.0/23
195.54.160.0/24
IPv6:
2a10:1fc0:1::-2a10:1fc0:6:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:8::/48
2a10:1fc0:b::-2a10:1fc0:11:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
56:dd:5d:a7:5b:3d:5a:13:c6:57:14:70:64:05:9a:4c:f0:25:
72:53:e5:ff:e5:68:63:ee:16:6c:15:71:d8:2b:a1:92:ee:12:
cf:fb:5a:23:ff:fa:f9:30:df:2b:43:e0:b5:ba:ba:a0:70:2d:
ea:4c:20:3b:2a:16:57:8f:6c:22:11:cc:b7:ad:3e:c0:9f:d7:
fc:12:a6:39:5e:f9:17:cb:0d:88:37:66:2e:c7:6f:5c:67:f2:
03:75:56:72:e0:07:bc:b1:7d:ae:86:bf:00:3d:b5:32:e6:3f:
7f:fc:d5:72:a3:8c:01:53:14:15:ff:cf:85:b2:76:a2:7f:f4:
ec:97:ff:86:05:d0:87:18:d9:ff:43:db:99:c1:e0:51:44:78:
a6:dd:3c:1d:be:d6:08:95:a3:9d:50:2f:c1:bb:49:d4:aa:3b:
2e:77:ff:c6:40:b6:36:4d:e3:1f:28:72:60:62:95:47:dd:bf:
aa:30:68:d7:c7:5f:e8:f2:ee:7b:8b:c0:34:ba:75:9e:1b:f7:
30:e8:45:c2:4e:55:8b:47:d2:44:3a:19:77:d2:4c:22:e6:78:
ce:36:57:8c:a8:52:01:a1:7d:63:0d:e2:bd:75:8a:98:c4:6b:
49:04:0a:f9:2f:4f:cb:12:86:5c:57:3e:8c:f5:12:e7:65:50:
4d:76:00:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:23 2024 by rpki-client on console-fra.rpki-client.org