Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/_dHWQmv13bmdOagnQwnqzs0PfTQ.roa
File: _dHWQmv13bmdOagnQwnqzs0PfTQ.roa (raw, json)
Hash identifier: e6mhxB1yLX8a8jgKZdC9AuovXOzCGpOWJr4TGSEr4OU=
Subject key identifier: FD:D1:D6:42:6B:F5:DD:B9:9D:39:A8:27:43:09:EA:CE:CD:0F:7D:34
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 018CC2DABA8EEA286A140CF864A41807B424
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/_dHWQmv13bmdOagnQwnqzs0PfTQ.roa
Signing time: Mon 01 Jan 2024 02:29:23 +0000
ROA not before: Mon 01 Jan 2024 02:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209854
IP address blocks: 89.37.93.0/24 maxlen: 24
89.37.94.0/24 maxlen: 24
86.106.116.0/24 maxlen: 24
86.104.213.0/24 maxlen: 24
86.104.212.0/24 maxlen: 24
188.208.221.0/24 maxlen: 24
188.208.220.0/24 maxlen: 24
188.208.223.0/24 maxlen: 24
188.209.125.0/24 maxlen: 24
188.209.124.0/24 maxlen: 24
193.30.255.0/24 maxlen: 24
89.41.27.0/24 maxlen: 24
93.119.125.0/24 maxlen: 24
46.102.178.0/24 maxlen: 24
46.102.177.0/24 maxlen: 24
46.102.179.0/24 maxlen: 24
86.104.2.0/24 maxlen: 24
86.104.1.0/24 maxlen: 24
86.104.0.0/24 maxlen: 24
176.223.160.0/24 maxlen: 24
77.81.91.0/24 maxlen: 24
77.81.90.0/24 maxlen: 24
89.42.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 09:21:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:ba:8e:ea:28:6a:14:0c:f8:64:a4:18:07:b4:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: Jan 1 02:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fdd1d6426bf5ddb99d39a8274309eacecd0f7d34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:58:a5:a9:06:d2:25:c3:73:98:4f:ce:03:8a:
e2:d0:74:5b:57:f9:2a:89:20:6d:c4:99:d7:3d:6b:
0f:00:4e:25:7c:3a:32:a8:c9:32:fa:11:ad:ba:35:
5a:f1:89:3d:f3:55:9e:21:cb:f3:f8:75:bc:af:ab:
2f:39:dd:52:41:f5:c1:73:7d:70:b3:0b:fe:e0:90:
d9:99:79:de:13:f6:09:22:10:b8:38:4f:9a:9f:51:
19:34:73:9c:9e:0b:5a:77:50:0a:62:bf:c4:ef:a0:
77:d5:c6:17:34:19:6c:94:50:bb:19:92:70:68:94:
e1:39:f4:a8:a2:b5:32:af:d6:75:35:5d:19:6d:9a:
b6:8a:43:e5:49:c9:a5:3c:a9:c8:91:78:ee:76:65:
2a:0d:aa:fc:42:ce:07:f0:30:9e:27:7f:15:fb:61:
cb:6e:83:3d:8e:ee:32:ea:cc:36:8d:6e:a6:ef:a6:
b8:37:67:dd:f9:ed:62:4e:37:ef:ce:10:3c:5d:11:
f3:19:a9:6c:f7:af:f4:5e:bb:48:19:fd:d1:5e:fe:
63:93:ca:0d:bf:e2:a7:b7:14:2f:dc:84:d8:e1:3f:
e5:36:41:8d:93:6c:c8:26:67:f7:81:4e:03:d2:57:
6e:74:4a:39:f5:0f:a3:5d:90:cb:bd:d3:29:e6:ba:
da:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D1:D6:42:6B:F5:DD:B9:9D:39:A8:27:43:09:EA:CE:CD:0F:7D:34
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/_dHWQmv13bmdOagnQwnqzs0PfTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.177.0-46.102.179.255
77.81.90.0/23
86.104.0.0-86.104.2.255
86.104.212.0/23
86.106.116.0/24
89.37.93.0-89.37.94.255
89.41.27.0/24
89.42.154.0/24
93.119.125.0/24
176.223.160.0/24
188.208.220.0/23
188.208.223.0/24
188.209.124.0/23
193.30.255.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:a7:16:e6:45:2f:68:11:bc:b8:3a:4b:5a:38:a9:5e:90:93:
34:fe:b9:4a:4c:81:71:2f:39:d8:1c:19:2e:9b:95:72:05:2b:
db:05:1d:9a:cb:01:68:90:9f:70:f5:5b:d1:e6:92:07:e1:5e:
1e:ca:5a:78:0f:03:3f:7e:87:85:de:87:15:bc:84:0c:ce:5f:
2a:1a:a9:02:d6:9f:69:af:11:a0:cd:08:d4:c7:0f:17:48:2e:
73:3e:8b:15:39:0b:b5:54:2e:01:08:9c:4a:17:07:c9:38:5a:
10:b1:6a:d4:a1:a1:c2:02:c3:ee:d0:bc:4d:c2:17:98:9c:79:
21:ca:1c:18:08:54:98:79:6b:8b:39:f6:24:41:0a:22:13:21:
45:80:b8:bc:be:39:61:6c:06:b8:29:70:e2:5a:3a:17:c4:4c:
92:93:67:1a:fa:5f:b8:af:3f:b1:57:f0:cf:27:c8:36:98:91:
54:66:ef:e1:de:ad:48:5b:06:ba:8b:19:09:c4:d1:4b:52:20:
33:36:94:c1:ac:4c:c0:c3:f0:98:1e:a4:ef:57:91:c4:31:86:
6d:e5:65:37:a2:05:ed:78:9c:58:ea:6c:7a:8c:f4:34:76:2e:
ed:ec:05:27:ea:b3:64:f0:06:1e:f7:7c:3f:8d:e0:72:a4:62:
95:5d:5d:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 12 14:28:10 2024 by rpki-client on console-ams.rpki-client.org