Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/K0ZDc9Vuz1W5D0wD38wJxyMt54M.roa
File: K0ZDc9Vuz1W5D0wD38wJxyMt54M.roa (raw, json)
Hash identifier: ujgFpsOlaZByLzlrgd8GLQ4+Zbc6jxuxFCPQgXQ5Rcc=
Subject key identifier: 2B:46:43:73:D5:6E:CF:55:B9:0F:4C:03:DF:CC:09:C7:23:2D:E7:83
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018BF76F80CC1F7C19E899051D4EDC842B00
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/K0ZDc9Vuz1W5D0wD38wJxyMt54M.roa
Signing time: Wed 22 Nov 2023 14:29:21 +0000
ROA not before: Wed 22 Nov 2023 14:29:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39543
IP address blocks: 195.28.2.0/23 maxlen: 23
193.19.192.0/22 maxlen: 22
193.19.192.0/24 maxlen: 24
193.19.193.0/24 maxlen: 24
193.19.195.0/24 maxlen: 24
193.19.194.0/24 maxlen: 24
93.113.204.0/24 maxlen: 24
93.114.79.0/24 maxlen: 24
89.40.67.0/24 maxlen: 24
89.47.96.0/24 maxlen: 24
89.47.96.0/20 maxlen: 20
89.47.97.0/24 maxlen: 24
89.47.98.0/24 maxlen: 24
89.47.99.0/24 maxlen: 24
89.47.101.0/24 maxlen: 24
93.114.194.0/24 maxlen: 24
89.47.100.0/24 maxlen: 24
89.47.103.0/24 maxlen: 24
89.47.102.0/24 maxlen: 24
89.47.104.0/24 maxlen: 24
89.47.105.0/24 maxlen: 24
89.35.158.0/24 maxlen: 24
89.47.106.0/24 maxlen: 24
89.47.108.0/24 maxlen: 24
89.47.107.0/24 maxlen: 24
89.47.110.0/24 maxlen: 24
89.47.109.0/24 maxlen: 24
89.47.111.0/24 maxlen: 24
89.47.112.0/24 maxlen: 24
89.47.112.0/20 maxlen: 20
89.47.113.0/24 maxlen: 24
89.47.115.0/24 maxlen: 24
89.47.114.0/24 maxlen: 24
89.47.118.0/24 maxlen: 24
89.47.122.0/24 maxlen: 24
89.47.121.0/24 maxlen: 24
89.47.125.0/24 maxlen: 24
89.47.120.0/24 maxlen: 24
89.47.119.0/24 maxlen: 24
89.47.127.0/24 maxlen: 24
89.47.126.0/24 maxlen: 24
89.45.164.0/24 maxlen: 24
89.39.111.0/24 maxlen: 24
89.34.27.0/24 maxlen: 24
2001:4d18::/32 maxlen: 32
2001:4d18::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 Nov 2023 07:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f7:6f:80:cc:1f:7c:19:e8:99:05:1d:4e:dc:84:2b:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Nov 22 14:29:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b464373d56ecf55b90f4c03dfcc09c7232de783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:41:29:96:5d:a8:6c:59:be:0a:66:5a:b8:3b:
df:30:24:4e:2a:c4:e4:1c:61:8e:9e:da:ed:e0:43:
a3:3c:65:37:ab:82:42:54:d0:f3:6b:32:5f:98:09:
f4:cf:fa:36:0c:2e:31:08:bf:37:d0:e4:32:80:13:
8a:48:3a:f2:17:bb:38:3f:92:d8:b3:f7:65:f8:a3:
3e:f9:46:f7:e5:7a:19:21:91:27:e6:13:1d:90:0c:
74:71:ce:94:88:9f:a0:e5:43:b3:f8:97:d9:33:e8:
1d:c4:91:71:f2:66:c6:09:a3:af:ef:28:de:6e:c7:
53:d3:57:3d:c1:1c:c1:cc:65:6c:2b:ec:d2:d6:ab:
d1:29:df:ea:3e:a4:a8:07:d2:46:f2:11:62:d7:47:
91:39:da:0c:e5:cc:7c:ec:20:4b:80:be:4d:4f:fe:
e0:43:96:93:c5:3f:43:6a:f4:0a:24:7a:b7:ec:11:
55:b6:56:60:7c:61:0e:48:07:bf:b6:a7:cb:84:e4:
cb:4d:a0:68:8c:67:77:2f:7c:83:68:38:86:12:76:
da:f8:31:35:09:9f:b3:c0:8b:dc:e8:62:36:04:fe:
03:e2:98:89:02:b9:15:37:67:32:23:3f:ca:18:d1:
c4:93:f1:e9:73:1c:01:4e:21:09:10:50:28:7c:59:
db:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:46:43:73:D5:6E:CF:55:B9:0F:4C:03:DF:CC:09:C7:23:2D:E7:83
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/K0ZDc9Vuz1W5D0wD38wJxyMt54M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.27.0/24
89.35.158.0/24
89.39.111.0/24
89.40.67.0/24
89.45.164.0/24
89.47.96.0/19
93.113.204.0/24
93.114.79.0/24
93.114.194.0/24
193.19.192.0/22
195.28.2.0/23
IPv6:
2001:4d18::/32
Signature Algorithm: sha256WithRSAEncryption
70:37:f2:71:06:ed:1b:b0:52:d6:2f:aa:3a:cd:d1:ce:12:d2:
3c:66:e7:36:be:b0:48:e7:8f:70:a0:cf:cb:fd:77:69:95:2b:
7b:6f:4b:c3:18:e0:ae:f6:3c:2d:3b:83:db:75:17:b9:9c:08:
c8:39:5b:dd:35:79:4c:1d:d9:e7:9b:63:7c:33:bc:94:e9:ce:
13:17:3a:0d:b1:82:b0:ef:81:07:50:e2:c0:61:f3:c4:fa:21:
67:91:25:01:66:1c:48:90:42:f9:8f:e9:ef:6f:f0:27:a3:f1:
f7:b9:e1:cf:2b:41:9e:48:56:49:4e:ba:d2:6d:96:9e:52:bb:
f8:89:a5:64:9e:cb:f7:5f:6a:b0:2f:06:51:08:d3:8a:7e:82:
90:62:14:c3:f0:41:b3:65:f4:ee:d6:1a:89:b1:1c:d5:80:47:
75:6a:71:d8:d8:e8:49:27:6d:df:9e:bf:e0:48:6b:c1:66:9d:
76:12:cb:46:f9:15:ae:a0:4a:12:5a:a0:e0:60:0b:b4:95:e1:
b9:c1:07:06:6f:1c:b0:17:6f:12:28:75:4b:24:bf:e1:9d:c6:
69:77:d6:66:4f:5f:88:b7:6e:b2:f7:93:77:98:f0:1e:62:3c:
09:ad:48:99:c0:7a:e1:2b:62:b9:50:4d:46:07:b1:b5:55:5f:
47:ce:16:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:19 2024 by rpki-client on console-fra.rpki-client.org