Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/l18BzOOOqgNuMv_E8ch47hLn11M.roa
File: l18BzOOOqgNuMv_E8ch47hLn11M.roa (raw, json)
Hash identifier: hgOvkK6evcVN6YOS6GxtOP547RTXXMTLe6Jiuf+/I7k=
Subject key identifier: 97:5F:01:CC:E3:8E:AA:03:6E:32:FF:C4:F1:C8:78:EE:12:E7:D7:53
Certificate issuer: /CN=c24d5bd3ceeaab0786ce151a3178dadc107bf280
Certificate serial: 018B3289D5BF2FBFA79246BC5AB129A987B1
Authority key identifier: C2:4D:5B:D3:CE:EA:AB:07:86:CE:15:1A:31:78:DA:DC:10:7B:F2:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wk1b087qqweGzhUaMXja3BB78oA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/l18BzOOOqgNuMv_E8ch47hLn11M.roa
Signing time: Sun 15 Oct 2023 08:52:55 +0000
ROA not before: Sun 15 Oct 2023 08:52:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34594
IP address blocks: 151.252.224.0/19 maxlen: 19
89.201.128.0/17 maxlen: 17
151.252.224.0/20 maxlen: 20
185.10.40.0/22 maxlen: 22
89.17.0.0/19 maxlen: 19
151.252.208.0/21 maxlen: 21
80.80.48.0/20 maxlen: 24
176.222.32.0/20 maxlen: 20
5.43.160.0/19 maxlen: 19
37.60.128.0/21 maxlen: 21
37.205.96.0/20 maxlen: 20
5.39.128.0/19 maxlen: 19
95.178.128.0/17 maxlen: 17
89.201.175.0/24 maxlen: 24
85.114.32.0/20 maxlen: 20
85.114.33.0/24 maxlen: 24
85.114.32.0/19 maxlen: 19
185.18.60.0/22 maxlen: 22
2a02:ac8::/32 maxlen: 32
2a03:6100::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:32:89:d5:bf:2f:bf:a7:92:46:bc:5a:b1:29:a9:87:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c24d5bd3ceeaab0786ce151a3178dadc107bf280
Validity
Not Before: Oct 15 08:52:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=975f01cce38eaa036e32ffc4f1c878ee12e7d753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:60:66:05:6b:3d:43:b6:5a:ef:43:4c:5f:0a:
fa:88:05:bb:1f:49:b9:12:61:d1:f7:7c:ce:ad:42:
86:74:2e:ce:8a:6d:c5:d5:cd:b6:2f:c5:84:d0:35:
53:e1:ca:e3:c4:4b:fb:44:45:bf:3c:75:e0:08:dd:
36:ca:eb:96:bf:e8:f6:51:f0:79:b1:d0:50:0d:23:
83:41:e2:8d:17:b8:7d:2d:17:91:10:a0:45:5e:03:
0f:8f:e4:bb:32:30:54:19:96:9d:62:42:28:ab:72:
87:04:0f:98:31:1e:9d:91:f0:18:81:d3:46:60:11:
68:1a:44:16:8e:e3:43:0e:d0:a4:cc:31:d1:f4:4d:
9a:86:72:a5:14:56:7d:28:2e:9e:3e:3f:50:c3:bd:
7b:3c:2f:cd:08:1f:fb:13:c8:be:50:da:d2:a0:73:
6f:ee:a2:62:d0:c8:82:6a:5f:78:cb:64:14:68:b2:
96:45:8d:e7:a1:20:52:8a:a6:e6:fa:ba:d1:6a:21:
3a:89:ee:47:dc:72:54:f8:a0:09:ac:19:2d:b2:f6:
da:05:79:3c:b2:1f:aa:6e:e9:c8:99:c7:2f:2b:e2:
74:e7:d8:57:98:6a:87:53:63:94:4e:9f:45:9c:3a:
11:80:81:31:c7:dc:f2:3e:b8:7d:3d:eb:e2:be:9e:
12:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:5F:01:CC:E3:8E:AA:03:6E:32:FF:C4:F1:C8:78:EE:12:E7:D7:53
X509v3 Authority Key Identifier:
keyid:C2:4D:5B:D3:CE:EA:AB:07:86:CE:15:1A:31:78:DA:DC:10:7B:F2:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wk1b087qqweGzhUaMXja3BB78oA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/l18BzOOOqgNuMv_E8ch47hLn11M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/wk1b087qqweGzhUaMXja3BB78oA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.128.0/19
5.43.160.0/19
37.60.128.0/21
37.205.96.0/20
80.80.48.0/20
85.114.32.0/19
89.17.0.0/19
89.201.128.0/17
95.178.128.0/17
151.252.208.0/21
151.252.224.0/19
176.222.32.0/20
185.10.40.0/22
185.18.60.0/22
IPv6:
2a02:ac8::/32
2a03:6100::/32
Signature Algorithm: sha256WithRSAEncryption
1a:8a:18:f3:3f:de:05:a6:3e:13:a6:b2:eb:0d:64:e2:19:88:
58:c9:12:31:36:c2:af:0e:96:41:07:c0:68:f7:8d:00:1d:b1:
cd:bf:26:b6:2f:e0:38:e1:ca:ef:0f:05:01:8a:0f:bb:03:c3:
77:e6:35:b5:2b:39:c8:8b:83:f1:88:0c:40:a0:ce:10:1d:6f:
80:ce:ef:7f:56:6f:19:0e:c2:34:10:7b:c4:1c:ee:eb:84:23:
03:7f:6f:d7:10:a7:39:20:60:7d:62:ce:71:39:a9:08:68:f9:
be:f1:51:2b:b6:58:af:14:4a:a6:bd:d8:60:f2:95:34:fc:d1:
10:37:cc:ba:b3:f2:85:60:a1:a2:74:13:a2:8e:85:c8:b3:fb:
2e:09:a8:c1:04:bd:40:ea:01:a8:40:f1:d2:2e:43:7c:64:78:
38:84:88:a0:1b:75:02:22:56:c7:a2:a7:2f:7f:27:f8:f5:3d:
02:21:dd:0c:03:82:ff:99:aa:f4:ff:38:d2:01:00:df:9a:29:
b4:06:29:86:77:be:5e:ed:ca:55:8f:20:d9:d7:cb:08:0d:3c:
60:47:5a:b7:67:cf:a8:79:8d:a3:9b:19:bd:ec:8b:d8:31:67:
a9:50:eb:54:e1:f2:64:f4:3b:d4:f6:a2:2b:25:57:f4:9f:5f:
32:9e:cd:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:03 2024 by rpki-client on console-fra.rpki-client.org