Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/866599-3fa0-4230-ba9a-19c4ff1877bb/1/S-pd_GyUMyz3Ol8KmEJXDruQvZ0.roa
File: S-pd_GyUMyz3Ol8KmEJXDruQvZ0.roa (raw, json)
Hash identifier: FEfokJucLkpveM3Gs1ovj6aO2PruwHh6U2b3V1QsOH8=
Subject key identifier: 4B:EA:5D:FC:6C:94:33:2C:F7:3A:5F:0A:98:42:57:0E:BB:90:BD:9D
Certificate issuer: /CN=8e3875a80ad233e9c28715988371f77eec3f620c
Certificate serial: 018CC6B843BD9549D87B750729430161E14D
Authority key identifier: 8E:38:75:A8:0A:D2:33:E9:C2:87:15:98:83:71:F7:7E:EC:3F:62:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jjh1qArSM-nChxWYg3H3fuw_Ygw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/866599-3fa0-4230-ba9a-19c4ff1877bb/1/S-pd_GyUMyz3Ol8KmEJXDruQvZ0.roa
Signing time: Mon 01 Jan 2024 20:30:13 +0000
ROA not before: Mon 01 Jan 2024 20:30:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39120
IP address blocks: 185.105.128.0/22 maxlen: 22
213.167.232.0/21 maxlen: 21
185.105.92.0/22 maxlen: 22
185.105.104.0/22 maxlen: 22
45.80.172.0/23 maxlen: 23
89.21.192.0/23 maxlen: 23
89.21.198.0/23 maxlen: 23
89.21.196.0/23 maxlen: 23
89.21.194.0/23 maxlen: 23
89.21.200.0/21 maxlen: 21
89.21.208.0/20 maxlen: 20
83.229.8.0/22 maxlen: 22
217.28.68.0/22 maxlen: 22
185.195.8.0/22 maxlen: 22
185.105.212.0/22 maxlen: 22
185.9.208.0/22 maxlen: 22
78.138.32.0/22 maxlen: 24
185.104.124.0/22 maxlen: 22
195.60.190.0/23 maxlen: 23
94.101.48.0/22 maxlen: 22
94.101.56.0/22 maxlen: 22
94.101.52.0/22 maxlen: 22
94.101.60.0/22 maxlen: 22
185.217.228.0/22 maxlen: 22
93.88.96.0/20 maxlen: 20
2a01:9a81::/32 maxlen: 32
2a01:9a80::/32 maxlen: 32
2a01:9a82::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 22 Oct 2024 05:49:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:43:bd:95:49:d8:7b:75:07:29:43:01:61:e1:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e3875a80ad233e9c28715988371f77eec3f620c
Validity
Not Before: Jan 1 20:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4bea5dfc6c94332cf73a5f0a9842570ebb90bd9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:db:72:6e:93:e7:3b:17:5d:f9:5a:21:46:16:
f3:63:dd:13:09:ed:b5:cb:03:b7:ed:15:68:75:ca:
ea:43:15:7a:d2:63:46:de:54:b5:c9:11:90:fb:21:
d4:38:49:e4:73:f8:1f:c4:cc:43:f7:da:89:5b:c3:
fb:d8:77:e2:a7:34:b7:34:79:7f:f4:30:30:18:92:
41:bf:88:2d:8d:18:9f:54:1f:0f:b5:5d:bd:c5:02:
13:65:d6:0d:3c:10:ca:2a:47:fd:d4:4e:09:b5:f6:
86:86:e9:8f:38:48:45:9b:5e:38:e2:e9:71:6b:a2:
4d:54:d2:c9:18:27:a6:31:56:b8:36:0d:fa:5d:86:
22:ee:d0:d3:93:a9:31:16:19:24:af:c6:4a:36:53:
ed:96:67:c2:6c:3b:f5:c7:ee:64:40:0a:ef:5c:19:
c4:0d:12:45:1e:e9:84:5e:94:7a:91:35:51:80:9a:
35:b3:05:af:3f:2a:1b:75:fc:61:42:2a:e1:a9:72:
d5:91:e2:86:8e:59:72:80:cd:3e:70:e0:60:40:4b:
a1:63:3b:43:e9:34:f6:0e:a7:20:f7:d2:62:4b:0f:
ec:9f:38:ac:b5:7e:a9:13:cf:2e:5b:ec:29:c5:d6:
a0:09:e6:b2:92:05:28:1c:fe:1e:26:eb:2f:d9:4b:
4c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:EA:5D:FC:6C:94:33:2C:F7:3A:5F:0A:98:42:57:0E:BB:90:BD:9D
X509v3 Authority Key Identifier:
keyid:8E:38:75:A8:0A:D2:33:E9:C2:87:15:98:83:71:F7:7E:EC:3F:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jjh1qArSM-nChxWYg3H3fuw_Ygw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/866599-3fa0-4230-ba9a-19c4ff1877bb/1/S-pd_GyUMyz3Ol8KmEJXDruQvZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/866599-3fa0-4230-ba9a-19c4ff1877bb/1/jjh1qArSM-nChxWYg3H3fuw_Ygw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.172.0/23
78.138.32.0/22
83.229.8.0/22
89.21.192.0/19
93.88.96.0/20
94.101.48.0/20
185.9.208.0/22
185.104.124.0/22
185.105.92.0/22
185.105.104.0/22
185.105.128.0/22
185.105.212.0/22
185.195.8.0/22
185.217.228.0/22
195.60.190.0/23
213.167.232.0/21
217.28.68.0/22
IPv6:
2a01:9a80::-2a01:9a82:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
03:02:16:4b:7f:92:12:82:03:00:47:d8:9f:c4:a8:ae:30:ea:
7c:e7:83:4b:1f:f1:29:08:00:0c:55:9a:38:ec:03:e1:94:f9:
90:0a:4a:ac:72:f1:74:be:41:c3:24:16:f8:33:9a:d1:47:b9:
42:64:b2:39:97:f1:7b:19:a7:67:72:0c:64:54:b5:1f:d9:99:
34:39:d7:de:3b:9f:47:4f:bb:0d:05:7b:c9:da:23:6b:a0:61:
58:dc:74:1d:ec:1f:3e:fc:e7:6b:39:8b:1c:93:7b:08:2b:8e:
2e:19:e1:70:5c:4b:78:e4:67:16:9b:63:12:c0:a5:31:73:42:
26:b8:0b:51:7b:3f:37:a1:86:0c:d0:da:68:10:8b:28:f2:d0:
82:b3:15:f6:f0:2d:00:24:3f:0a:e5:b3:8c:8b:96:c1:cd:42:
c8:fe:61:e9:dc:41:f1:89:6a:cf:50:e2:1e:cb:e9:8b:40:6a:
80:33:33:ab:de:9c:39:c2:12:ee:38:27:50:0c:b5:fe:4b:ae:
19:58:6b:69:69:c2:55:22:89:7f:8d:20:1b:62:91:b4:04:34:
8c:b5:af:78:da:af:b2:e0:dd:d7:8b:6f:11:cf:31:26:02:e9:
ee:a4:fa:9e:74:ab:41:e8:5e:4d:cf:e2:70:bb:00:d2:23:15:
dc:b6:45:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 06:53:28 2024 by rpki-client on console-fra.rpki-client.org