Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/8Ihm_r8NPAnE8dz9Cvu9EKUwjcI.roa
File: 8Ihm_r8NPAnE8dz9Cvu9EKUwjcI.roa (raw, json)
Hash identifier: kuNtlzkSLm5OBokXEIdq7wbtn7j4xWD8MXg+WubPQeg=
Subject key identifier: F0:88:66:FE:BF:0D:3C:09:C4:F1:DC:FD:0A:FB:BD:10:A5:30:8D:C2
Certificate issuer: /CN=c24d5bd3ceeaab0786ce151a3178dadc107bf280
Certificate serial: 01857321F921684C25CA65DC6B3B7D273770
Authority key identifier: C2:4D:5B:D3:CE:EA:AB:07:86:CE:15:1A:31:78:DA:DC:10:7B:F2:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wk1b087qqweGzhUaMXja3BB78oA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/8Ihm_r8NPAnE8dz9Cvu9EKUwjcI.roa
Signing time: Mon 02 Jan 2023 15:38:04 +0000
ROA not before: Mon 02 Jan 2023 15:38:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34594
IP address blocks: 151.252.224.0/19 maxlen: 19
89.201.128.0/17 maxlen: 17
185.10.40.0/22 maxlen: 22
89.17.0.0/19 maxlen: 19
80.80.48.0/20 maxlen: 20
151.252.208.0/21 maxlen: 21
176.222.32.0/20 maxlen: 20
5.43.160.0/19 maxlen: 19
37.60.128.0/21 maxlen: 21
37.205.96.0/20 maxlen: 20
5.39.128.0/19 maxlen: 19
95.178.128.0/17 maxlen: 17
89.201.175.0/24 maxlen: 24
85.114.32.0/20 maxlen: 20
85.114.32.0/19 maxlen: 19
185.18.60.0/22 maxlen: 22
2a02:ac8::/32 maxlen: 32
2a03:6100::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 17 Jan 2023 11:41:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:21:f9:21:68:4c:25:ca:65:dc:6b:3b:7d:27:37:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c24d5bd3ceeaab0786ce151a3178dadc107bf280
Validity
Not Before: Jan 2 15:38:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f08866febf0d3c09c4f1dcfd0afbbd10a5308dc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4b:98:32:ba:06:a8:14:90:e6:35:b9:35:3c:
e5:29:b9:6c:14:d4:c0:e8:80:6a:f5:df:0b:39:0f:
13:9c:01:54:a6:dc:c2:fb:1a:7a:62:0c:ad:4d:03:
10:38:b7:c8:30:a7:79:b6:1b:c3:cd:bc:35:28:40:
6a:06:3c:80:b7:41:be:ae:82:f6:f4:74:b2:51:8e:
c8:d7:1d:49:c5:be:19:66:38:e9:d4:ae:c9:09:dd:
42:b0:5b:9c:f0:ea:6d:28:0e:f9:2c:92:da:2d:a3:
94:82:94:cd:5b:c5:15:ae:f5:ef:be:70:a7:ff:01:
45:ec:6c:d2:ea:41:44:26:a3:f7:23:ff:3c:7d:f8:
f2:fc:f8:23:cb:28:3d:48:1d:48:74:88:bb:a1:5b:
12:28:28:7d:d7:ff:da:03:2d:41:7c:21:c3:09:94:
a2:de:56:c6:7a:16:ac:a1:bb:a7:cd:f4:c4:7e:54:
2e:f7:09:ee:27:5f:25:be:ab:71:5f:46:91:de:03:
dd:86:a9:5c:f1:1a:c4:9f:5f:d7:e9:e5:f2:cc:be:
f3:7d:f0:18:66:c3:b8:11:a5:72:ce:62:74:2e:a6:
b9:c8:c3:13:a5:74:ce:87:35:9b:fb:d9:d8:43:63:
1c:8e:f3:91:ec:c2:fc:5a:8a:1f:c9:83:fd:8a:86:
c2:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:88:66:FE:BF:0D:3C:09:C4:F1:DC:FD:0A:FB:BD:10:A5:30:8D:C2
X509v3 Authority Key Identifier:
keyid:C2:4D:5B:D3:CE:EA:AB:07:86:CE:15:1A:31:78:DA:DC:10:7B:F2:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wk1b087qqweGzhUaMXja3BB78oA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/8Ihm_r8NPAnE8dz9Cvu9EKUwjcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/wk1b087qqweGzhUaMXja3BB78oA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.128.0/19
5.43.160.0/19
37.60.128.0/21
37.205.96.0/20
80.80.48.0/20
85.114.32.0/19
89.17.0.0/19
89.201.128.0/17
95.178.128.0/17
151.252.208.0/21
151.252.224.0/19
176.222.32.0/20
185.10.40.0/22
185.18.60.0/22
IPv6:
2a02:ac8::/32
2a03:6100::/32
Signature Algorithm: sha256WithRSAEncryption
b2:c6:38:41:57:b2:70:a1:e5:08:63:03:91:4c:28:a1:61:e1:
50:41:90:16:de:b2:5c:c8:5f:07:42:8e:c5:55:3c:44:97:6d:
41:9b:f2:5a:29:b2:00:b5:b0:9f:d0:2a:d6:b5:43:d2:cd:0c:
93:63:ac:52:a5:91:24:15:6d:c1:f2:89:7a:63:7d:87:19:9f:
1a:cd:17:2c:b3:fd:0b:e8:01:a6:0a:5a:25:9f:a9:d2:6b:24:
51:e9:74:9b:32:79:1e:4b:96:63:33:5b:4d:12:53:e4:e4:e3:
e3:84:6a:76:e9:60:39:53:b7:8c:d3:2f:cc:45:4e:a8:80:37:
6a:57:4a:2b:6a:69:6f:6f:8d:82:d8:e6:39:f5:d0:ec:19:17:
95:53:dd:2d:5a:2a:00:4c:af:b3:3e:dc:ea:3e:28:8a:7a:9d:
5d:2b:a9:dd:6c:87:bf:b3:d5:c6:25:a8:f9:81:89:63:66:9e:
33:7a:d1:55:f1:d5:d3:9f:31:42:59:b7:b7:08:9e:4d:c2:bc:
60:56:84:98:82:59:0f:4b:d1:43:42:83:24:99:08:91:82:94:
55:16:14:80:3f:1f:4e:bc:53:86:54:4b:54:2d:bb:fc:f5:b4:
cd:30:f9:43:ea:da:36:12:95:cf:fe:a5:9c:78:70:5c:d8:a0:
8d:1e:bb:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:03 2024 by rpki-client on console-fra.rpki-client.org