Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/0uYnzgDLE7xt1qyROr81pSVChkY.roa
File: 0uYnzgDLE7xt1qyROr81pSVChkY.roa (raw, json)
Hash identifier: 4IiOnnH6Nd/yomD8zdR0R3kSEN0qAwO3RsohWz6N0yU=
Subject key identifier: D2:E6:27:CE:00:CB:13:BC:6D:D6:AC:91:3A:BF:35:A5:25:42:86:46
Certificate issuer: /CN=1003cd25315330350d73f2a3579aa95e052b718d
Certificate serial: 0192FBAB9EB95E646DA3832FCEAE1A5C8C4B
Authority key identifier: 10:03:CD:25:31:53:30:35:0D:73:F2:A3:57:9A:A9:5E:05:2B:71:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EAPNJTFTMDUNc_KjV5qpXgUrcY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/0uYnzgDLE7xt1qyROr81pSVChkY.roa
Signing time: Tue 05 Nov 2024 09:33:01 +0000
ROA not before: Tue 05 Nov 2024 09:33:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16116
IP address blocks: 46.19.80.0/21 maxlen: 24
46.19.83.0/24 maxlen: 24
46.19.84.0/24 maxlen: 24
85.159.161.0/24 maxlen: 24
85.159.162.0/24 maxlen: 24
85.159.163.0/24 maxlen: 24
85.159.164.0/24 maxlen: 24
85.159.165.0/24 maxlen: 24
85.159.166.0/24 maxlen: 24
85.159.167.0/24 maxlen: 24
89.37.236.0/22 maxlen: 24
91.135.96.0/20 maxlen: 24
130.185.96.0/21 maxlen: 24
141.226.88.0/21 maxlen: 24
141.226.90.0/24 maxlen: 24
147.189.144.0/22 maxlen: 24
147.189.148.0/23 maxlen: 24
185.80.108.0/22 maxlen: 24
185.196.126.0/23 maxlen: 24
185.246.252.0/23 maxlen: 24
185.246.254.0/24 maxlen: 24
185.246.255.0/24 maxlen: 24
188.64.200.0/24 maxlen: 24
188.64.201.0/24 maxlen: 24
188.64.202.0/24 maxlen: 24
188.64.203.0/24 maxlen: 24
188.64.204.0/24 maxlen: 24
188.64.205.0/24 maxlen: 24
212.90.108.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Nov 2024 06:26:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:fb:ab:9e:b9:5e:64:6d:a3:83:2f:ce:ae:1a:5c:8c:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1003cd25315330350d73f2a3579aa95e052b718d
Validity
Not Before: Nov 5 09:33:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2e627ce00cb13bc6dd6ac913abf35a525428646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:18:ec:25:c2:32:e4:0e:9f:2d:3d:2d:ff:2c:
da:75:f6:57:f1:f4:b0:9d:56:cf:26:56:3e:65:80:
46:3b:b8:8d:17:3f:6c:eb:7b:a4:cf:ba:73:29:8a:
58:1d:fe:c5:f6:80:6c:26:7c:f7:4e:ce:56:3e:fa:
08:8c:70:c0:ad:2a:47:ee:3c:b2:f2:2e:9b:c1:b9:
2c:2a:54:bd:2a:35:5c:3c:c2:99:77:07:17:b1:68:
5a:42:9f:d0:d1:8a:18:9d:27:59:9e:b0:4b:4c:41:
d9:5e:fc:3e:76:89:43:92:e0:38:2a:d7:52:8f:fe:
c9:30:3c:14:8b:16:e8:9a:77:0b:4c:9c:1c:18:38:
0e:8c:9f:65:6b:29:79:ab:03:b9:ae:4a:cd:dd:2b:
8d:9a:ea:68:c9:52:da:ea:17:fd:bd:cd:e7:67:26:
5e:38:49:a0:74:35:45:c5:24:98:c3:e3:c6:ec:bf:
b9:0f:af:a6:03:75:1c:69:c3:1b:f2:dc:3d:42:a3:
29:41:8b:86:e7:38:41:43:24:bc:71:15:41:37:47:
6c:6f:1b:30:fb:98:a3:ab:79:73:fd:d5:b1:d3:fe:
4b:72:a1:e9:93:37:87:fa:72:e1:8c:68:93:f6:e1:
a2:01:b2:b1:6b:a3:00:86:11:95:82:49:d8:78:22:
80:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E6:27:CE:00:CB:13:BC:6D:D6:AC:91:3A:BF:35:A5:25:42:86:46
X509v3 Authority Key Identifier:
keyid:10:03:CD:25:31:53:30:35:0D:73:F2:A3:57:9A:A9:5E:05:2B:71:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EAPNJTFTMDUNc_KjV5qpXgUrcY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/0uYnzgDLE7xt1qyROr81pSVChkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/EAPNJTFTMDUNc_KjV5qpXgUrcY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.80.0/21
85.159.161.0-85.159.167.255
89.37.236.0/22
91.135.96.0/20
130.185.96.0/21
141.226.88.0/21
147.189.144.0-147.189.149.255
185.80.108.0/22
185.196.126.0/23
185.246.252.0/22
188.64.200.0-188.64.205.255
212.90.108.0/22
Signature Algorithm: sha256WithRSAEncryption
29:c4:f1:07:9c:8d:9f:09:6f:6a:d0:a7:19:38:37:85:2f:7b:
3c:fd:98:f5:ea:b2:0d:21:8f:07:de:ea:71:10:7e:c8:27:1e:
92:90:d3:82:62:ac:5f:6d:c5:65:b4:86:a4:26:b9:15:8d:fc:
16:d3:2b:6d:b8:5c:f0:b2:fc:c5:e4:53:bf:d8:92:32:ce:e1:
36:80:ce:07:fd:de:46:bc:e4:9b:47:48:98:5c:40:82:23:73:
c7:0e:e2:2b:85:24:8c:b6:83:81:89:f6:64:92:95:5b:9f:a4:
39:0d:61:87:3e:80:62:08:62:d2:eb:a8:e6:c4:7f:37:9b:3b:
fc:c7:89:25:01:5b:a4:41:27:79:34:4e:e3:19:6b:b0:ea:71:
b0:84:aa:62:2e:36:79:15:42:86:0c:dd:a3:83:3b:43:c1:1b:
b9:8d:f5:da:2e:ad:72:49:fa:e5:28:6b:af:90:dd:92:3a:c5:
4a:de:3e:55:8a:fa:d1:f1:71:0a:67:ac:b7:19:be:7b:93:63:
6c:e1:39:49:68:90:82:83:87:d5:c9:21:c2:75:9c:09:e5:5e:
a7:a9:85:0f:23:b0:9b:97:85:6d:2c:9a:4c:a2:d7:19:48:21:
b2:1b:a4:f9:b1:61:c1:1c:b1:1d:8f:62:92:fd:3d:0e:e5:e9:
07:42:c5:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 7 08:10:31 2024 by rpki-client on console-fra.rpki-client.org