Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/bFtRwqk1uWrwHMSwvugpAN5SbGI.roa
File: bFtRwqk1uWrwHMSwvugpAN5SbGI.roa (raw, json)
Hash identifier: K/VvChf2hNy2dYSGBvQ1BSJ0To7cABPl3JHiO1CNcRk=
Subject key identifier: 6C:5B:51:C2:A9:35:B9:6A:F0:1C:C4:B0:BE:E8:29:00:DE:52:6C:62
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018AFF86923AB6C0C01347D81F7F330E11AB
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/bFtRwqk1uWrwHMSwvugpAN5SbGI.roa
Signing time: Thu 05 Oct 2023 11:08:43 +0000
ROA not before: Thu 05 Oct 2023 11:08:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9123
IP address blocks: 195.80.50.0/24 maxlen: 24
195.80.51.0/24 maxlen: 24
85.92.110.0/24 maxlen: 24
85.92.111.0/24 maxlen: 24
45.95.234.0/24 maxlen: 24
45.8.96.0/24 maxlen: 24
45.8.97.0/24 maxlen: 24
45.8.99.0/24 maxlen: 24
37.220.80.0/24 maxlen: 24
94.198.217.0/24 maxlen: 24
94.198.218.0/24 maxlen: 24
94.198.219.0/24 maxlen: 24
94.198.216.0/24 maxlen: 24
81.200.144.0/24 maxlen: 24
81.200.145.0/24 maxlen: 24
81.200.150.0/24 maxlen: 24
81.200.151.0/24 maxlen: 24
81.200.152.0/24 maxlen: 24
81.200.146.0/24 maxlen: 24
81.200.147.0/24 maxlen: 24
81.200.148.0/24 maxlen: 24
81.200.149.0/24 maxlen: 24
81.200.153.0/24 maxlen: 24
46.19.64.0/24 maxlen: 24
46.19.67.0/24 maxlen: 24
46.19.65.0/24 maxlen: 24
46.19.66.0/24 maxlen: 24
45.89.190.0/24 maxlen: 24
92.118.113.0/24 maxlen: 24
92.118.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Oct 2023 11:34:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ff:86:92:3a:b6:c0:c0:13:47:d8:1f:7f:33:0e:11:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Oct 5 11:08:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c5b51c2a935b96af01cc4b0bee82900de526c62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a5:66:e6:1b:2a:96:a6:78:c5:c8:50:85:27:
34:3f:ee:6d:2f:87:90:67:6d:ab:b9:11:e5:3a:f0:
25:0a:5b:ed:0a:58:db:7a:26:7a:6e:ab:8f:3a:e3:
20:a9:0d:0b:a1:52:1d:9b:96:8d:cd:42:76:4b:19:
69:94:30:6a:b2:60:13:be:56:01:b3:b1:6c:22:38:
ff:6c:e2:5a:80:07:76:1b:62:4a:e6:13:8b:91:2a:
b6:60:ba:90:a0:5e:a1:36:4c:bd:85:ff:fd:7a:bc:
6c:18:9c:b2:ca:30:a5:25:70:91:d3:8d:e1:52:1a:
d5:19:0c:aa:cf:bc:79:76:de:c5:04:9a:87:30:3b:
57:9d:c4:22:64:31:3b:9c:13:4d:aa:76:3d:db:b5:
e0:84:86:2d:c8:35:c6:65:48:6b:b4:74:43:65:57:
45:d7:b8:58:86:43:a3:10:d2:e6:e7:e2:43:31:fd:
8d:75:5a:bd:be:e6:c7:3b:9a:1f:6b:72:a6:72:bf:
9d:56:4b:bf:78:16:c7:f5:67:3d:3e:36:3b:fc:89:
f7:c3:1e:1e:3c:e9:1e:1d:2e:08:ce:a4:f6:ef:a0:
4e:0b:3a:35:d8:11:0c:18:46:f2:2d:1b:b0:f4:29:
30:b9:b0:fc:29:75:1d:69:be:dc:2f:f6:66:a3:7b:
3c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:5B:51:C2:A9:35:B9:6A:F0:1C:C4:B0:BE:E8:29:00:DE:52:6C:62
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/bFtRwqk1uWrwHMSwvugpAN5SbGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.220.80.0/24
45.8.96.0/23
45.8.99.0/24
45.89.190.0/24
45.95.234.0/24
46.19.64.0/22
81.200.144.0-81.200.153.255
85.92.110.0/23
92.118.113.0-92.118.114.255
94.198.216.0/22
195.80.50.0/23
Signature Algorithm: sha256WithRSAEncryption
28:5f:de:9b:87:5e:f2:c2:55:01:2d:93:6c:ae:c8:6a:ca:a3:
85:3b:b4:70:a5:26:92:46:5e:5d:99:a4:f8:eb:fd:0f:0e:07:
c0:39:ec:bf:01:8b:c8:dd:bf:b2:d0:13:2b:45:71:8a:da:c1:
c5:e7:91:16:b8:13:78:99:b7:c9:06:24:6b:e5:34:da:c6:3f:
3f:cc:b1:b7:1e:2f:42:6f:33:09:19:35:58:41:7f:b9:08:c3:
6b:02:c9:a0:eb:a4:b7:ab:43:d2:4c:07:9e:e8:59:30:8e:34:
4c:16:ec:b3:c0:b3:cf:7a:ae:95:53:2f:42:0c:67:04:1e:15:
ef:fe:7d:9f:71:09:0c:9a:9c:e1:1f:7e:94:16:d8:67:08:7c:
37:b4:2c:1a:46:c5:8f:92:1c:f2:63:d5:c9:78:e1:4e:f2:e7:
37:7b:95:ac:0e:74:14:fb:4a:ff:bb:40:48:f4:4c:f8:8e:b2:
97:d2:ec:6a:94:e2:28:14:fc:26:73:0c:dd:01:42:6d:44:0d:
1b:e0:2f:ef:2e:e3:c3:fd:30:a9:03:f3:df:6d:e7:08:35:a8:
d9:ff:f9:ca:08:92:31:f2:56:be:ab:53:88:b8:69:10:33:9c:
8f:fb:0d:81:dd:cf:79:dd:bf:f6:54:bd:0d:01:29:1b:a0:1b:
75:35:38:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:54 2024 by rpki-client on console-fra.rpki-client.org