Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/vXnlxDsN81sxUFM0_NM5QTIADqg.roa
File: vXnlxDsN81sxUFM0_NM5QTIADqg.roa (raw, json)
Hash identifier: sQH6+80TeJ5zP+U1WKTbwgJXcdwRt4tuvOIr/UTs+0s=
Subject key identifier: BD:79:E5:C4:3B:0D:F3:5B:31:50:53:34:FC:D3:39:41:32:00:0E:A8
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 0189D51E47A7D6D8687DBEDC07A4B9C39EDA
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/vXnlxDsN81sxUFM0_NM5QTIADqg.roa
Signing time: Tue 08 Aug 2023 12:27:58 +0000
ROA not before: Tue 08 Aug 2023 12:27:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 45.120.176.0/22 maxlen: 24
195.149.87.0/24 maxlen: 24
185.242.84.0/24 maxlen: 24
185.242.85.0/24 maxlen: 24
185.242.87.0/24 maxlen: 24
185.242.86.0/24 maxlen: 24
185.250.150.0/24 maxlen: 24
185.250.149.0/24 maxlen: 24
185.250.148.0/24 maxlen: 24
185.250.151.0/24 maxlen: 24
193.203.202.0/24 maxlen: 24
80.92.205.0/24 maxlen: 24
80.92.204.0/24 maxlen: 24
74.119.192.0/24 maxlen: 24
80.92.206.0/24 maxlen: 24
74.119.195.0/24 maxlen: 24
74.119.194.0/24 maxlen: 24
74.119.193.0/24 maxlen: 24
176.120.64.0/24 maxlen: 24
176.120.64.0/22 maxlen: 24
103.113.68.0/24 maxlen: 24
45.67.231.0/24 maxlen: 24
45.67.230.0/24 maxlen: 24
45.67.229.0/24 maxlen: 24
45.67.228.0/24 maxlen: 24
2a09:7c44::/32 maxlen: 32
2a09:7c45::/32 maxlen: 32
2a09:7c47::/32 maxlen: 32
2a09:7c41::/32 maxlen: 32
2a09:7c42::/32 maxlen: 32
2a09:7c43::/32 maxlen: 32
2a09:7c40::/32 maxlen: 32
2a09:7c46::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 09 Aug 2023 14:09:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d5:1e:47:a7:d6:d8:68:7d:be:dc:07:a4:b9:c3:9e:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Aug 8 12:27:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd79e5c43b0df35b31505334fcd3394132000ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:c1:7f:88:13:a5:5a:93:d0:3b:f0:13:b3:d5:
ee:68:31:75:93:a0:bb:a3:6e:0f:cf:70:6b:94:f0:
1a:3b:c1:0c:74:58:ca:62:94:cc:0d:4b:db:3a:5f:
fd:7d:fa:d5:2e:43:7e:02:e0:af:e9:a6:72:56:63:
0b:a2:6e:d9:db:98:1f:dd:e6:70:7a:1d:70:2f:47:
19:74:52:65:22:2a:d0:d1:15:f6:61:9a:e6:88:c6:
2f:01:f7:44:c7:16:d2:5d:63:36:78:e9:7e:d8:e0:
c1:98:88:00:3d:76:24:60:34:34:f3:37:9c:c6:b6:
f9:44:7a:06:32:c8:02:00:f2:f6:07:24:5a:24:47:
ec:9e:57:41:60:3c:17:1b:95:9f:76:41:c9:8d:be:
57:99:e2:62:6c:dd:46:8e:65:aa:0f:c3:66:4f:e5:
55:e4:b8:1b:93:63:67:2f:f5:b5:6d:87:08:38:1c:
f7:35:b3:3d:34:9f:cf:a6:32:13:ec:27:ee:a5:dd:
59:50:8b:85:16:50:98:a1:db:fe:56:0a:a6:82:a9:
d0:aa:e2:14:a2:5b:e9:e0:79:e1:4d:fa:eb:ad:12:
05:61:5f:81:56:a7:5f:f4:18:f3:5e:aa:c9:04:a4:
39:1e:a5:68:59:73:e6:b4:c0:62:fb:f2:4a:33:4c:
d6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:79:E5:C4:3B:0D:F3:5B:31:50:53:34:FC:D3:39:41:32:00:0E:A8
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/vXnlxDsN81sxUFM0_NM5QTIADqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.228.0/22
45.120.176.0/22
74.119.192.0/22
80.92.204.0-80.92.206.255
103.113.68.0/24
176.120.64.0/22
185.242.84.0/22
185.250.148.0/22
193.203.202.0/24
195.149.87.0/24
IPv6:
2a09:7c40::/29
Signature Algorithm: sha256WithRSAEncryption
2a:e3:7e:ff:6a:e7:cc:1a:78:fb:f7:15:fe:8c:23:cd:88:63:
62:7f:d3:ba:84:fc:1f:16:46:dc:f3:18:12:4e:44:0c:36:d4:
e8:b4:bc:09:1c:0e:d8:c9:2b:e7:7d:a4:2b:d3:29:7d:71:ee:
bd:a3:3b:d1:0c:34:5d:8b:32:46:ba:eb:4f:cb:32:4f:1e:95:
26:6b:8e:f5:40:05:e4:e1:5b:ec:07:ee:b8:55:80:9e:38:79:
f1:c6:2f:c5:dc:fd:a7:4c:c6:7d:e1:71:db:8b:5c:10:5c:e7:
79:48:18:4a:ae:28:7f:90:d2:e0:95:d0:a7:00:0d:71:6b:63:
86:03:71:5f:19:b5:33:b2:b9:ea:d3:34:66:15:6b:fd:3c:e6:
4c:03:62:6b:65:b3:1c:da:99:4a:cf:9c:fe:60:9b:d7:74:41:
ed:8f:47:19:25:b6:18:10:6a:c0:3c:da:7f:55:f9:41:aa:cb:
d9:f4:4f:a0:25:8f:d2:c8:23:cb:21:0b:62:0c:6f:b7:b6:f6:
15:83:b4:0d:9f:21:56:0f:9a:74:e8:6e:5d:63:93:5b:95:be:
f8:c9:b1:c4:75:7f:12:b0:ed:26:30:ed:3b:da:11:47:50:c3:
8c:10:29:dc:71:b5:22:17:1b:d3:6c:a9:13:d9:89:93:91:dd:
57:44:27:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:28 2024 by rpki-client on console-ams.rpki-client.org