Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/834e82-f863-4ca8-8061-f616d9318087/1/8Q1WZ1arddv-fhzolUjrac0WNEE.roa
File: 8Q1WZ1arddv-fhzolUjrac0WNEE.roa (raw, json)
Hash identifier: xU2XMuVoxCSvga+9TlOpqlBvBL6CsHgcNXC1S5DB+18=
Subject key identifier: F1:0D:56:67:56:AB:75:DB:FE:7E:1C:E8:95:48:EB:69:CD:16:34:41
Certificate issuer: /CN=f69c7eb86224adb38408847dee4cfc4c4003ad5d
Certificate serial: 018ED30A2AB5135112261A0C39B51025C7D3
Authority key identifier: F6:9C:7E:B8:62:24:AD:B3:84:08:84:7D:EE:4C:FC:4C:40:03:AD:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9px-uGIkrbOECIR97kz8TEADrV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/834e82-f863-4ca8-8061-f616d9318087/1/8Q1WZ1arddv-fhzolUjrac0WNEE.roa
Signing time: Fri 12 Apr 2024 16:00:42 +0000
ROA not before: Fri 12 Apr 2024 16:00:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199478
IP address blocks: 37.130.144.0/24 maxlen: 24
37.130.145.0/24 maxlen: 24
37.130.146.0/24 maxlen: 24
37.130.147.0/24 maxlen: 24
37.130.148.0/24 maxlen: 24
37.130.149.0/24 maxlen: 24
37.130.150.0/24 maxlen: 24
37.130.151.0/24 maxlen: 24
91.193.152.0/24 maxlen: 24
91.193.153.0/24 maxlen: 24
91.193.154.0/24 maxlen: 24
91.193.155.0/24 maxlen: 24
185.16.208.0/24 maxlen: 24
185.16.209.0/24 maxlen: 24
185.16.210.0/24 maxlen: 24
185.16.211.0/24 maxlen: 24
185.157.152.0/24 maxlen: 24
185.157.153.0/24 maxlen: 24
185.157.154.0/24 maxlen: 24
185.157.155.0/24 maxlen: 24
185.251.104.0/24 maxlen: 24
185.251.105.0/24 maxlen: 24
185.251.106.0/24 maxlen: 24
185.251.107.0/24 maxlen: 24
193.84.19.0/24 maxlen: 24
193.84.30.0/24 maxlen: 24
193.84.70.0/24 maxlen: 24
193.84.74.0/24 maxlen: 24
194.62.158.0/24 maxlen: 24
194.62.159.0/24 maxlen: 24
194.62.190.0/24 maxlen: 24
194.62.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 13:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d3:0a:2a:b5:13:51:12:26:1a:0c:39:b5:10:25:c7:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f69c7eb86224adb38408847dee4cfc4c4003ad5d
Validity
Not Before: Apr 12 16:00:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f10d566756ab75dbfe7e1ce89548eb69cd163441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a2:7f:96:2b:10:1b:96:7f:34:9c:04:a4:0a:
07:91:d0:32:f6:73:25:68:1e:1d:71:0b:66:38:aa:
07:29:b3:cf:c9:27:54:a5:ef:3f:17:ce:7a:fd:f2:
f0:9b:40:35:20:46:09:7f:62:ce:36:63:2e:83:9c:
0d:55:fb:b1:ca:95:1b:89:a0:7d:79:a1:ba:17:8a:
3d:96:29:4a:e9:af:c5:07:dd:37:4c:ef:ff:a2:6f:
08:7b:13:f3:ea:c3:10:db:69:f3:ac:d9:b1:6a:c9:
aa:6f:b8:bf:9f:ae:b4:da:43:39:4d:98:f3:fa:a8:
1d:c0:c0:97:da:e6:57:fa:30:a4:d0:b5:26:99:31:
a7:56:91:ab:c7:8a:7d:2f:75:ee:75:0a:05:06:49:
e1:f1:f4:c8:51:60:85:b1:5d:36:5c:d7:05:b1:43:
96:3a:31:46:eb:7d:19:8d:96:f1:41:e2:1f:fc:ab:
b0:40:40:76:af:6f:6d:a0:05:11:d0:c1:be:14:fe:
fd:c1:51:c8:ec:a9:d2:73:49:8c:7e:57:91:02:67:
e2:95:81:e6:5f:25:c8:63:ea:73:34:a7:62:76:ab:
8f:45:25:64:83:22:ae:84:8b:ee:07:5b:4e:2c:ef:
eb:8a:1e:a3:bc:02:e0:5f:8b:64:d3:1c:5d:74:77:
6d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:0D:56:67:56:AB:75:DB:FE:7E:1C:E8:95:48:EB:69:CD:16:34:41
X509v3 Authority Key Identifier:
keyid:F6:9C:7E:B8:62:24:AD:B3:84:08:84:7D:EE:4C:FC:4C:40:03:AD:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9px-uGIkrbOECIR97kz8TEADrV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/834e82-f863-4ca8-8061-f616d9318087/1/8Q1WZ1arddv-fhzolUjrac0WNEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/834e82-f863-4ca8-8061-f616d9318087/1/9px-uGIkrbOECIR97kz8TEADrV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.130.144.0/21
91.193.152.0/22
185.16.208.0/22
185.157.152.0/22
185.251.104.0/22
193.84.19.0/24
193.84.30.0/24
193.84.70.0/24
193.84.74.0/24
194.62.158.0/23
194.62.190.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:31:fe:30:9f:29:7b:a2:b7:f1:3a:2c:2d:59:62:68:e0:6d:
0a:ed:40:ab:a2:74:ba:23:64:04:45:f1:49:a8:08:85:c0:45:
e2:50:a0:25:03:b9:33:01:97:ee:26:de:11:dd:7c:0a:f4:f1:
98:53:03:b8:e4:fa:73:42:d6:23:4a:92:ba:45:a9:fa:16:b3:
47:cd:6c:0d:07:48:54:29:de:8b:18:2b:20:53:ff:70:c5:08:
ec:c8:f7:16:0b:e9:fc:75:40:33:49:33:35:7f:6d:da:31:a4:
5d:8a:9d:eb:b3:c6:5b:20:49:2d:05:ac:4b:04:41:0c:ad:3f:
00:d2:1c:ac:48:99:ef:b6:c5:ec:7f:10:36:ad:1a:ad:21:00:
ef:32:83:5e:c8:77:10:9e:cf:4a:a3:cf:b8:06:de:98:f9:41:
71:23:b0:7f:41:50:3a:05:d6:41:81:6f:b5:d7:f9:9f:38:7b:
9e:52:c4:b6:36:32:e5:e5:60:24:fe:e1:e7:17:29:26:06:bc:
ee:f6:9b:72:9f:62:66:8f:e0:4d:c2:9a:6b:ae:30:30:dc:46:
f3:7d:0d:5b:fd:55:54:1b:fc:9c:9c:24:08:df:6c:9e:75:b2:
b3:0f:b0:b8:68:21:a6:a8:6c:19:b5:f2:c6:88:40:f7:d4:9f:
dd:32:dc:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 16:37:50 2024 by rpki-client on console-fra.rpki-client.org