Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/iTpaSanXcLDoVFpflSXzHfVJEkQ.roa
File: iTpaSanXcLDoVFpflSXzHfVJEkQ.roa (raw, json)
Hash identifier: iyOhul/ogX1N6aeZzlWiQPoChAtvBMh9xEJgJqrrdRw=
Subject key identifier: 89:3A:5A:49:A9:D7:70:B0:E8:54:5A:5F:95:25:F3:1D:F5:49:12:44
Certificate issuer: /CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Certificate serial: 01856D53BB01D5C3F9EA61F89BE74E29FB1E
Authority key identifier: CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/iTpaSanXcLDoVFpflSXzHfVJEkQ.roa
Signing time: Sun 01 Jan 2023 12:34:41 +0000
ROA not before: Sun 01 Jan 2023 12:34:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56503
IP address blocks: 185.103.244.0/22 maxlen: 22
185.103.248.0/22 maxlen: 22
185.108.164.0/22 maxlen: 22
185.107.28.0/24 maxlen: 24
185.107.29.0/24 maxlen: 24
185.107.30.0/23 maxlen: 23
185.26.232.0/23 maxlen: 23
185.26.234.0/23 maxlen: 23
91.106.82.0/24 maxlen: 24
91.106.81.0/24 maxlen: 24
91.106.84.0/24 maxlen: 24
91.106.83.0/24 maxlen: 24
91.106.85.0/24 maxlen: 24
91.106.79.0/24 maxlen: 24
91.106.80.0/24 maxlen: 24
91.106.86.0/24 maxlen: 24
91.106.87.0/24 maxlen: 24
91.106.89.0/24 maxlen: 24
91.106.88.0/24 maxlen: 24
91.106.91.0/24 maxlen: 24
91.106.90.0/24 maxlen: 24
91.106.95.0/24 maxlen: 24
91.106.92.0/24 maxlen: 24
91.106.94.0/24 maxlen: 24
91.106.93.0/24 maxlen: 24
91.106.64.0/24 maxlen: 24
91.106.68.0/24 maxlen: 24
91.106.67.0/24 maxlen: 24
91.106.70.0/24 maxlen: 24
91.106.69.0/24 maxlen: 24
91.106.71.0/24 maxlen: 24
91.106.65.0/24 maxlen: 24
91.106.66.0/24 maxlen: 24
91.106.72.0/24 maxlen: 24
91.106.73.0/24 maxlen: 24
91.106.75.0/24 maxlen: 24
91.106.74.0/24 maxlen: 24
91.106.77.0/24 maxlen: 24
91.106.76.0/24 maxlen: 24
91.106.78.0/24 maxlen: 24
185.106.136.0/22 maxlen: 22
185.106.144.0/22 maxlen: 22
185.104.232.0/22 maxlen: 22
185.104.240.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:53:bb:01:d5:c3:f9:ea:61:f8:9b:e7:4e:29:fb:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Validity
Not Before: Jan 1 12:34:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=893a5a49a9d770b0e8545a5f9525f31df5491244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:18:5a:46:90:ad:e4:1f:52:fd:29:5b:48:7e:
7e:32:26:bd:1e:63:98:d2:fd:34:65:08:6a:da:e3:
dc:7d:a4:3a:9c:04:df:cf:02:28:ec:a6:c3:95:fc:
71:aa:06:2c:b4:fe:df:b8:65:c7:d6:1c:46:35:ff:
c7:a4:70:a8:11:14:43:b2:80:9e:f0:12:9a:ec:4d:
e9:15:6a:9d:ed:c7:e1:2a:e3:5a:74:80:95:98:c5:
e8:53:c1:40:b8:07:4d:11:88:e5:ca:ac:d3:72:d7:
dc:1d:ab:3e:3f:fa:1a:1c:b3:b0:e8:60:47:09:20:
bb:12:68:dc:41:b3:13:ce:b3:1d:d4:f6:1c:7b:de:
57:5a:5e:5e:8c:53:1f:26:98:54:e1:99:5a:80:29:
81:a0:ef:8c:92:83:51:2f:ba:bf:23:93:f6:3c:60:
c1:2a:60:a9:05:bc:0f:da:87:65:d4:88:53:b1:5d:
9c:4e:2a:2a:46:52:15:45:5b:8c:80:24:ce:1a:4b:
82:18:70:7f:24:2d:b0:b4:df:f8:79:8d:d3:87:d3:
c9:91:db:bc:36:74:f1:52:1b:e0:58:3c:fc:88:9b:
11:28:4d:53:b2:f8:d0:d1:50:f0:5d:8e:0a:4a:b4:
0b:93:94:13:cd:65:e8:11:d2:cb:70:77:be:e9:79:
80:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:3A:5A:49:A9:D7:70:B0:E8:54:5A:5F:95:25:F3:1D:F5:49:12:44
X509v3 Authority Key Identifier:
keyid:CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/iTpaSanXcLDoVFpflSXzHfVJEkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.106.64.0/19
185.26.232.0/22
185.103.244.0-185.103.251.255
185.104.232.0/22
185.104.240.0/22
185.106.136.0/22
185.106.144.0/22
185.107.28.0/22
185.108.164.0/22
Signature Algorithm: sha256WithRSAEncryption
de:88:13:e4:62:98:1c:d8:7f:d3:b0:68:c6:45:d4:e0:53:d7:
b1:b4:33:6c:c8:cf:06:34:12:05:46:41:3c:6a:ae:2e:1f:5c:
ab:0f:f4:29:b5:c3:57:eb:ef:8a:01:1e:82:55:7a:b5:a4:f2:
ab:35:07:bc:71:2b:a0:73:89:e4:bd:dc:93:1c:fa:e6:cc:81:
4a:38:d3:ad:ff:37:a1:d4:08:c3:0a:33:67:64:35:98:4f:bb:
4f:cf:1b:06:3d:a6:60:bc:0e:52:b7:f5:18:79:db:1a:b6:ac:
20:4f:58:d0:f6:c7:78:52:07:91:40:93:0d:1c:d2:fd:48:9e:
a1:57:de:f1:28:75:b4:4e:ec:40:94:3f:7b:90:98:29:7d:5b:
cb:03:62:c8:71:15:52:fc:e5:c3:e2:0c:6f:3a:ca:90:64:5b:
e2:cc:50:7e:2b:f0:55:23:d5:f1:c8:3f:9c:af:b6:e9:ba:69:
f9:cb:ef:36:d3:f0:7c:5b:74:74:43:91:25:df:20:fb:a8:31:
21:39:7c:7b:f4:36:6d:96:a6:56:d2:4a:92:45:3c:f4:98:19:
1a:cd:f1:2a:24:de:01:25:51:34:a1:5a:09:2f:f7:56:96:76:
fa:9f:84:f7:b1:62:2f:f5:27:1e:55:c9:7b:ee:24:55:3f:01:
ac:0c:94:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:36 2024 by rpki-client on console-fra.rpki-client.org