Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/DzGiMUNEpJ38W8q_Q8_LFrpAie8.roa
File: DzGiMUNEpJ38W8q_Q8_LFrpAie8.roa (raw, json)
Hash identifier: IGNFkWRilKq+fB22NACPPd9cuHdA7iKFePG9fSBN/os=
Subject key identifier: 0F:31:A2:31:43:44:A4:9D:FC:5B:CA:BF:43:CF:CB:16:BA:40:89:EF
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 0188073D2C3133555B0EAF519E3F18FC9E02
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/DzGiMUNEpJ38W8q_Q8_LFrpAie8.roa
Signing time: Wed 10 May 2023 19:57:09 +0000
ROA not before: Wed 10 May 2023 19:57:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209854
IP address blocks: 146.66.210.0/24 maxlen: 24
178.157.109.0/24 maxlen: 24
188.74.131.0/24 maxlen: 24
188.74.130.0/24 maxlen: 24
188.119.161.0/24 maxlen: 24
188.119.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:07:3d:2c:31:33:55:5b:0e:af:51:9e:3f:18:fc:9e:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: May 10 19:57:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f31a2314344a49dfc5bcabf43cfcb16ba4089ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:66:44:b0:c5:7c:c4:d8:43:0b:08:99:e3:49:
33:62:63:d4:3e:f4:09:1c:09:e9:0e:94:5c:6c:db:
3a:21:25:b7:20:8e:62:f7:d9:4b:00:83:7c:96:50:
c8:ed:21:df:ea:9f:46:01:a1:3d:80:3b:8b:00:77:
1b:7a:65:bd:28:4c:65:97:63:3a:f3:f6:88:0a:58:
c6:f5:e9:f6:89:da:58:11:d5:0e:5b:fe:1e:c7:00:
f5:2c:78:0b:45:7b:a4:0a:84:3e:e9:5b:9d:e6:68:
e2:90:73:08:87:50:81:85:12:13:18:3e:d6:27:d6:
c7:27:66:9d:2c:e7:19:0e:eb:ca:15:7c:ca:b3:f7:
29:ee:44:a3:ef:df:92:a8:ca:0d:32:04:56:cd:ca:
61:1a:ca:04:69:a6:7c:ef:1d:97:4e:ab:99:3b:02:
c7:41:79:6e:f5:cc:a0:f1:d4:ed:6f:5d:7e:c8:c8:
be:31:01:90:8a:a1:07:35:a5:52:32:2f:55:19:ae:
6a:2e:8a:53:3d:3a:71:56:38:07:ab:ee:4f:7f:2d:
79:a2:44:1a:ca:10:44:36:1c:f5:62:fc:25:42:ab:
96:a7:f3:36:52:db:bf:3b:d0:dd:73:25:0c:6b:19:
11:6c:70:83:53:97:3c:9e:46:39:69:0a:90:b7:e8:
f8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:31:A2:31:43:44:A4:9D:FC:5B:CA:BF:43:CF:CB:16:BA:40:89:EF
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/DzGiMUNEpJ38W8q_Q8_LFrpAie8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.66.210.0/24
178.157.109.0/24
188.74.130.0/23
188.119.160.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:1d:79:fd:52:ae:d7:38:db:e9:bc:70:bc:25:12:b8:9d:80:
46:d4:7e:56:7b:db:86:71:3f:d2:9d:81:18:9c:bd:c9:18:f3:
78:2e:3b:51:98:fe:fb:4c:ac:8e:0d:ac:14:81:03:55:6c:23:
95:01:99:4e:a2:07:0e:f8:65:28:61:52:66:4c:1f:50:b4:0b:
48:5a:b8:06:96:ef:e9:25:08:14:cc:47:9f:d0:88:e9:db:73:
54:0d:51:60:6d:96:b9:72:ce:d0:12:c6:d3:5b:51:01:18:e8:
b3:15:c8:b7:e4:7c:9f:19:69:5d:29:10:6e:05:fb:45:dd:ff:
5d:84:1e:86:7f:1c:d4:42:a8:ab:4b:e7:df:29:f5:d9:ba:33:
f9:d5:1a:cc:c8:cd:00:fd:9f:99:2f:c6:c6:8d:28:91:1d:fa:
18:19:14:bc:ca:52:11:fe:3c:85:96:47:8c:73:5d:aa:47:b4:
3c:db:5a:4d:30:9a:c3:8d:0b:1d:99:f2:81:63:3a:0b:55:7d:
b0:34:4f:66:a5:67:09:f9:0d:a7:56:a7:7c:2a:0e:50:34:ea:
c8:de:8d:b1:fe:0c:aa:a9:91:16:43:d3:0b:16:d4:87:69:74:
ac:4b:39:b0:b4:d7:af:df:60:4d:93:bd:d1:1e:a1:f7:0a:1e:
cf:1b:df:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:16 2024 by rpki-client on console-fra.rpki-client.org