Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/c-RpHtNbqPJ3-B9E7BLMxEHw0Yg.roa
File: c-RpHtNbqPJ3-B9E7BLMxEHw0Yg.roa (raw, json)
Hash identifier: U2muMVHl+k389o32ZAueJZCbaCt8bHsSM7PcMwKniRY=
Subject key identifier: 73:E4:69:1E:D3:5B:A8:F2:77:F8:1F:44:EC:12:CC:C4:41:F0:D1:88
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 018E95DD3344918F5F29764F8B6F37C476FC
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/c-RpHtNbqPJ3-B9E7BLMxEHw0Yg.roa
Signing time: Sun 31 Mar 2024 18:54:45 +0000
ROA not before: Sun 31 Mar 2024 18:54:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 80.240.88.0/21 maxlen: 24
82.152.174.0/23 maxlen: 23
82.153.208.0/22 maxlen: 22
82.163.19.0/24 maxlen: 24
82.163.24.0/21 maxlen: 24
89.213.108.0/23 maxlen: 24
89.213.110.0/24 maxlen: 24
89.213.122.0/24 maxlen: 24
89.213.126.0/24 maxlen: 24
89.213.143.0/24 maxlen: 24
89.213.147.0/24 maxlen: 24
89.213.181.0/24 maxlen: 24
89.213.194.0/23 maxlen: 24
89.213.240.0/23 maxlen: 24
89.213.250.0/24 maxlen: 24
194.105.80.0/20 maxlen: 20
213.210.16.0/24 maxlen: 24
213.210.18.0/24 maxlen: 24
213.210.33.0/24 maxlen: 24
213.210.51.0/24 maxlen: 24
213.218.220.0/24 maxlen: 24
217.144.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Apr 2024 07:11:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:95:dd:33:44:91:8f:5f:29:76:4f:8b:6f:37:c4:76:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Mar 31 18:54:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73e4691ed35ba8f277f81f44ec12ccc441f0d188
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9e:78:53:0f:ed:72:5a:7f:6d:49:1f:79:64:
62:9d:77:a2:08:74:cc:34:29:65:1f:c8:6f:c5:e5:
b9:e3:ea:e2:43:c6:78:07:58:e4:50:35:42:5e:54:
dd:7c:ea:5b:da:df:0b:f0:04:c3:26:76:b6:61:60:
d1:a5:47:a1:08:1f:a5:98:eb:46:d5:86:5d:c9:67:
16:72:fc:b3:92:b6:39:3e:81:f7:bf:53:f6:0f:9c:
c5:1d:93:cc:95:eb:d2:18:dd:e2:56:58:7e:a9:7f:
11:73:83:39:74:50:c7:8d:6f:7d:3c:59:fb:2c:98:
b1:87:fc:3e:6d:a3:2a:51:5f:97:bc:91:00:b9:37:
74:95:65:47:93:30:d3:48:d7:e2:14:2a:a9:e9:70:
a0:d5:87:7c:70:36:da:b5:b7:50:86:fa:ff:91:15:
69:68:9f:a2:66:1b:e8:e3:ee:e5:d2:40:fe:bb:a5:
16:ed:90:29:1f:b5:89:b1:39:13:66:25:95:4a:42:
40:9b:5a:8f:75:3e:16:ca:d1:90:45:a2:43:a8:3d:
b7:08:12:76:0a:84:58:f5:35:15:01:0c:6e:e2:ea:
d7:62:9a:f7:6b:07:d2:2e:5b:f5:90:3f:9b:2e:9c:
a3:5d:77:12:71:75:41:5e:61:86:4c:fd:cc:75:cf:
1e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:E4:69:1E:D3:5B:A8:F2:77:F8:1F:44:EC:12:CC:C4:41:F0:D1:88
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/c-RpHtNbqPJ3-B9E7BLMxEHw0Yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.240.88.0/21
82.152.174.0/23
82.153.208.0/22
82.163.19.0/24
82.163.24.0/21
89.213.108.0-89.213.110.255
89.213.122.0/24
89.213.126.0/24
89.213.143.0/24
89.213.147.0/24
89.213.181.0/24
89.213.194.0/23
89.213.240.0/23
89.213.250.0/24
194.105.80.0/20
213.210.16.0/24
213.210.18.0/24
213.210.33.0/24
213.210.51.0/24
213.218.220.0/24
217.144.151.0/24
Signature Algorithm: sha256WithRSAEncryption
79:ad:f5:cf:41:5b:90:a4:63:98:fa:51:c3:80:a9:4c:9c:b3:
04:e9:f0:b4:f1:f2:3b:3f:bf:f8:87:d9:60:74:8a:0d:05:98:
29:85:1f:83:08:17:b7:01:22:36:b4:4f:82:b5:24:f1:16:aa:
1e:4e:16:3d:35:ec:31:cc:97:ab:cb:ce:8b:a3:8d:c8:56:57:
42:0e:52:a4:43:ce:fc:1e:b1:ee:79:90:aa:9f:e0:67:f8:05:
30:a3:18:eb:f5:26:55:90:78:b1:88:da:29:f8:77:97:3e:14:
96:5f:f3:5a:e4:b5:3d:c2:c0:82:ed:b5:c0:64:69:c6:92:10:
e1:cb:18:ac:f8:c3:41:73:a4:0b:46:90:a7:4e:75:c6:9d:bc:
6c:29:75:7e:3c:16:2b:4a:23:95:a5:71:79:07:3e:66:8a:21:
97:af:93:51:56:6c:f6:a2:99:a8:49:74:95:7b:3b:92:47:6d:
b5:22:c5:c4:cf:24:0c:76:31:54:9e:1a:fb:ab:80:a9:ee:af:
20:8f:b2:1b:c6:9b:72:60:67:12:8a:fb:62:c0:67:d2:2e:14:
7b:bc:b8:24:01:f0:c1:ab:e9:67:01:4a:cc:93:7f:fb:8e:7a:
d1:a4:6e:61:f5:d2:25:b7:44:68:52:78:70:e9:9f:11:e2:14:
fb:23:dd:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 11:06:52 2024 by rpki-client on console-fra.rpki-client.org