Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/6CgQeAU-hJVpbu8VYEJC9zT-OAM.roa
File: 6CgQeAU-hJVpbu8VYEJC9zT-OAM.roa (raw, json)
Hash identifier: mwM4yUBtvvISalbRBlxYupqYjAEkEO/TIQL3B7cxNUo=
Subject key identifier: E8:28:10:78:05:3E:84:95:69:6E:EF:15:60:42:42:F7:34:FE:38:03
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018F381870CE69D4F388328E98D8E97BD04B
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/6CgQeAU-hJVpbu8VYEJC9zT-OAM.roa
Signing time: Thu 02 May 2024 06:57:56 +0000
ROA not before: Thu 02 May 2024 06:57:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 89.34.224.0/23 maxlen: 24
89.34.228.0/24 maxlen: 24
89.34.231.0/24 maxlen: 24
89.40.82.0/24 maxlen: 24
89.42.81.0/24 maxlen: 24
89.42.82.0/24 maxlen: 24
89.42.86.0/24 maxlen: 24
89.42.95.0/24 maxlen: 24
89.42.143.0/24 maxlen: 24
89.43.140.0/24 maxlen: 24
89.43.143.0/24 maxlen: 24
89.46.0.0/24 maxlen: 24
89.47.99.0/24 maxlen: 24
89.47.115.0/24 maxlen: 24
89.47.117.0/24 maxlen: 24
89.47.119.0/24 maxlen: 24
89.47.125.0/24 maxlen: 24
89.47.127.0/24 maxlen: 24
93.113.181.0/24 maxlen: 24
185.101.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 May 2024 18:06:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:38:18:70:ce:69:d4:f3:88:32:8e:98:d8:e9:7b:d0:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: May 2 06:57:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e8281078053e8495696eef15604242f734fe3803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:34:c0:bf:49:c1:ba:54:f1:a3:12:6c:d6:5c:
ec:c4:b6:0d:94:7f:e5:f4:c4:2e:98:9b:54:9b:b1:
69:79:47:d1:91:40:fa:6f:4c:7b:84:b3:7d:10:b5:
71:e0:8c:18:20:21:1a:28:08:83:9f:5f:1c:10:93:
f3:59:43:c8:ff:a5:54:8b:af:9b:c4:cb:00:03:1d:
36:e8:bf:db:f9:20:87:7d:cd:6d:3c:9f:72:b5:7f:
ed:7b:48:3c:4e:c4:07:8e:84:cc:41:bb:78:f0:1f:
a1:1a:58:d8:29:05:b9:94:17:5e:d9:2d:79:06:54:
f0:88:3e:7c:cf:86:f4:b2:c2:74:82:94:09:81:8a:
fd:db:43:ca:50:aa:6a:cb:1b:b0:6a:ac:98:60:e0:
73:b2:99:d8:34:41:47:f2:a9:ff:dd:25:38:2d:93:
2c:18:49:64:a1:cd:c3:2d:32:f2:c5:37:1d:e2:a9:
1f:49:68:00:64:55:16:4b:f6:f2:54:54:46:04:8a:
45:51:5d:83:00:e7:7c:c1:c1:d3:cf:e0:2c:bf:50:
df:5d:f2:ed:6b:35:71:8d:31:32:63:0a:05:ae:6a:
58:f4:0e:82:95:88:e1:25:d9:2b:88:ea:f2:0d:7c:
a7:40:5a:2c:1f:5c:6b:a4:0e:83:1c:ec:80:de:c7:
3f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:28:10:78:05:3E:84:95:69:6E:EF:15:60:42:42:F7:34:FE:38:03
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/6CgQeAU-hJVpbu8VYEJC9zT-OAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.224.0/23
89.34.228.0/24
89.34.231.0/24
89.40.82.0/24
89.42.81.0-89.42.82.255
89.42.86.0/24
89.42.95.0/24
89.42.143.0/24
89.43.140.0/24
89.43.143.0/24
89.46.0.0/24
89.47.99.0/24
89.47.115.0/24
89.47.117.0/24
89.47.119.0/24
89.47.125.0/24
89.47.127.0/24
93.113.181.0/24
185.101.105.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:16:1d:d1:02:b0:31:0d:41:a7:df:84:ca:6c:a8:09:b4:5a:
60:c0:2c:f8:20:8a:06:37:90:75:ea:3d:36:ba:28:f5:8c:6b:
4f:71:ee:55:1e:00:ed:f1:ea:16:5c:21:8b:6b:3f:c0:77:a3:
f6:bc:a6:55:4b:bf:25:92:23:a0:94:b8:5c:48:a8:b5:de:eb:
47:d7:66:9c:99:68:27:15:a9:9c:39:22:1b:4a:3f:11:ee:c7:
b6:bc:08:15:49:33:16:81:e5:b5:9f:3e:39:67:7a:b9:73:f0:
5a:d6:95:7c:f9:37:1d:10:f6:0e:67:99:1b:af:db:1b:63:50:
e1:a8:31:cd:a0:2b:4c:28:95:ff:87:03:82:0f:7a:a5:d4:85:
16:f7:60:87:45:6f:94:c5:bd:5e:30:ce:ca:f4:03:a9:bb:db:
ec:57:8a:1a:8a:a4:e8:24:9f:e0:a9:6e:06:ad:2f:7c:4b:6e:
ec:12:f4:c4:63:e8:e2:ed:71:88:a6:fa:84:68:47:ba:8a:f4:
a2:63:61:fe:ed:b9:22:be:9d:0d:b5:b2:85:dd:08:00:68:e1:
64:c0:a9:5b:a7:17:e6:7e:68:f5:a5:90:26:59:f4:e7:07:c1:
38:8f:85:20:97:ed:33:c7:a7:c4:ba:08:1e:f1:5b:01:a1:0a:
76:31:bc:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 21:31:57 2024 by rpki-client on console-fra.rpki-client.org