Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/OARX5I03os2qs2XaJUbtdo6w72Q.roa
File: OARX5I03os2qs2XaJUbtdo6w72Q.roa (raw, json)
Hash identifier: gWH4O/GMZ7yY5y1aoWYgQG8AffBfu4HyPEie47zch+M=
Subject key identifier: 38:04:57:E4:8D:37:A2:CD:AA:B3:65:DA:25:46:ED:76:8E:B0:EF:64
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018F3A7CEE5F70F74987891B27225098AB85
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/OARX5I03os2qs2XaJUbtdo6w72Q.roa
Signing time: Thu 02 May 2024 18:06:56 +0000
ROA not before: Thu 02 May 2024 18:06:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 89.34.224.0/23 maxlen: 24
89.34.228.0/24 maxlen: 24
89.34.231.0/24 maxlen: 24
89.40.82.0/24 maxlen: 24
89.42.81.0/24 maxlen: 24
89.42.82.0/24 maxlen: 24
89.42.86.0/24 maxlen: 24
89.42.95.0/24 maxlen: 24
89.42.143.0/24 maxlen: 24
89.43.140.0/24 maxlen: 24
89.43.143.0/24 maxlen: 24
89.46.0.0/24 maxlen: 24
89.47.99.0/24 maxlen: 24
89.47.115.0/24 maxlen: 24
89.47.117.0/24 maxlen: 24
89.47.119.0/24 maxlen: 24
89.47.125.0/24 maxlen: 24
89.47.126.0/24 maxlen: 24
89.47.127.0/24 maxlen: 24
93.113.181.0/24 maxlen: 24
185.101.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 May 2024 07:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3a:7c:ee:5f:70:f7:49:87:89:1b:27:22:50:98:ab:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: May 2 18:06:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=380457e48d37a2cdaab365da2546ed768eb0ef64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4b:6e:be:aa:25:a9:77:54:1e:cf:3e:99:e0:
8f:b4:22:fc:cc:25:3f:fc:a3:81:88:5d:9c:ae:df:
23:83:d8:70:aa:aa:a9:12:7e:95:83:34:36:a9:19:
20:8d:f0:d4:6a:c3:68:65:ae:51:0e:43:20:42:d3:
23:cd:d2:d1:d4:af:eb:e4:d2:83:78:b3:bf:f8:5c:
6d:e0:92:bf:a6:24:db:2d:26:47:45:7b:c5:92:a1:
d2:81:26:33:dd:30:39:87:2f:35:a6:a7:88:4c:55:
32:db:79:31:11:80:b8:13:2e:32:df:3b:bf:df:27:
a1:4b:4d:81:b7:c4:e8:a5:10:06:c0:e0:de:2a:af:
ea:e7:49:d2:a1:97:4e:ab:e6:ca:af:7d:79:15:98:
d4:78:ec:3a:14:4e:ca:22:f5:16:8e:d5:38:48:9f:
f1:39:9e:48:e5:d3:dd:40:5e:5a:58:7e:e2:b8:4d:
a5:2e:5c:19:50:26:d6:33:ad:46:ff:bf:da:e5:16:
5b:e9:da:da:22:9b:35:c4:59:d9:04:1f:f7:a0:16:
b9:2e:f8:85:c1:35:a2:b3:32:cd:b3:cd:51:2b:b2:
93:05:1d:e8:e6:ed:68:c8:cd:7e:bd:46:ee:1b:35:
bf:fa:c0:22:6d:2f:43:65:2b:f5:d5:84:a5:85:8f:
41:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:04:57:E4:8D:37:A2:CD:AA:B3:65:DA:25:46:ED:76:8E:B0:EF:64
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/OARX5I03os2qs2XaJUbtdo6w72Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.224.0/23
89.34.228.0/24
89.34.231.0/24
89.40.82.0/24
89.42.81.0-89.42.82.255
89.42.86.0/24
89.42.95.0/24
89.42.143.0/24
89.43.140.0/24
89.43.143.0/24
89.46.0.0/24
89.47.99.0/24
89.47.115.0/24
89.47.117.0/24
89.47.119.0/24
89.47.125.0-89.47.127.255
93.113.181.0/24
185.101.105.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:4c:4c:dd:24:e7:12:ed:28:7d:fa:f2:18:c4:c9:86:e5:27:
74:bd:c7:75:91:fb:ea:6c:b4:77:89:8b:d7:68:f9:be:74:d5:
80:9f:12:5f:8b:58:81:ac:b4:33:7b:a2:85:77:27:b9:47:5b:
23:cb:8b:80:86:f5:46:cf:99:e8:29:d0:f5:36:ed:f3:84:fa:
bb:df:f3:ef:2e:89:a7:b0:b7:fa:f6:b6:39:d1:3b:b0:69:98:
98:bb:65:6d:95:f3:c5:01:78:fc:73:95:27:49:54:0a:e5:83:
04:df:0a:31:b5:97:25:30:1e:a8:d9:ef:3e:cd:45:3a:19:ef:
40:f5:5e:95:73:40:2b:52:2d:9d:2b:1e:9b:d0:fd:20:39:51:
ec:d5:07:fb:9a:98:ac:bb:cf:43:dc:70:da:31:3d:64:88:4b:
be:a1:53:f6:2c:1c:df:a3:ee:1d:41:31:06:6a:8a:24:e1:74:
7f:82:0f:34:ea:ee:5e:ce:91:d8:e8:a8:e1:df:70:0a:d0:6d:
56:dd:b3:e2:ee:73:df:81:9c:51:36:33:4e:30:1d:b4:2e:48:
e5:f6:42:d7:51:fc:46:63:dc:04:58:4e:0b:59:61:f3:1d:c4:
d5:13:a8:30:73:f7:84:86:a8:7f:f3:b7:e2:e2:a7:e1:88:2f:
61:9b:d5:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:49 2024 by rpki-client on console-ams.rpki-client.org