Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/TsZGQxAuJmAU-lxMWLaZbL-QjNk.roa
File: TsZGQxAuJmAU-lxMWLaZbL-QjNk.roa (raw, json)
Hash identifier: gBxdEvf9maeCGB6Jm2yzeEXbUpoycTKPOYcitjgZ/k4=
Subject key identifier: 4E:C6:46:43:10:2E:26:60:14:FA:5C:4C:58:B6:99:6C:BF:90:8C:D9
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 01903E8DBC16C7F9F767C89D6992EE2C85B4
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/TsZGQxAuJmAU-lxMWLaZbL-QjNk.roa
Signing time: Sat 22 Jun 2024 06:06:34 +0000
ROA not before: Sat 22 Jun 2024 06:06:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39543
IP address blocks: 86.106.81.0/24 maxlen: 24
89.34.27.0/24 maxlen: 24
89.35.158.0/24 maxlen: 24
89.39.111.0/24 maxlen: 24
89.40.67.0/24 maxlen: 24
89.45.164.0/24 maxlen: 24
89.47.96.0/24 maxlen: 24
89.47.97.0/24 maxlen: 24
89.47.98.0/24 maxlen: 24
89.47.101.0/24 maxlen: 24
89.47.102.0/24 maxlen: 24
89.47.103.0/24 maxlen: 24
89.47.104.0/24 maxlen: 24
89.47.105.0/24 maxlen: 24
89.47.106.0/24 maxlen: 24
89.47.107.0/24 maxlen: 24
89.47.108.0/24 maxlen: 24
89.47.109.0/24 maxlen: 24
89.47.110.0/24 maxlen: 24
89.47.111.0/24 maxlen: 24
89.47.120.0/24 maxlen: 24
89.47.122.0/24 maxlen: 24
93.113.204.0/24 maxlen: 24
93.114.79.0/24 maxlen: 24
93.114.194.0/24 maxlen: 24
188.241.3.0/24 maxlen: 24
193.19.192.0/22 maxlen: 22
193.19.192.0/24 maxlen: 24
193.19.193.0/24 maxlen: 24
193.19.194.0/24 maxlen: 24
193.19.195.0/24 maxlen: 24
195.28.2.0/23 maxlen: 23
2001:4d18::/32 maxlen: 32
2001:4d18::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 26 Jul 2024 05:36:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3e:8d:bc:16:c7:f9:f7:67:c8:9d:69:92:ee:2c:85:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jun 22 06:06:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4ec64643102e266014fa5c4c58b6996cbf908cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:31:40:7b:bf:e1:f0:9e:0a:a8:97:00:58:7f:
74:17:02:31:8e:cf:04:58:36:3b:a4:f3:23:7c:3d:
a1:9d:c7:98:d3:4c:e4:a6:50:96:a9:e5:5f:c9:3a:
ef:46:f2:e8:13:74:7e:f2:b7:0a:fa:03:e8:b4:bb:
d9:87:67:e4:24:87:e1:13:45:3b:d4:d9:25:3d:c0:
5a:e7:0e:8f:26:bb:54:0c:81:a3:ad:6f:fc:bf:fe:
17:97:d9:2d:99:d4:ac:c6:d4:86:9a:d2:55:41:13:
8a:08:9b:75:83:e7:6c:e8:70:1f:c2:e6:51:4d:fd:
59:44:48:75:8d:0d:21:cc:4d:00:f4:05:f2:a4:32:
88:14:2b:20:25:bb:cd:e6:f2:87:37:32:82:d9:97:
73:98:9f:8e:5a:2d:7f:9d:54:24:28:ca:9d:77:fc:
36:67:1d:10:79:a4:ae:50:97:db:8e:63:d5:da:fc:
1d:ac:83:2a:ab:97:7e:d2:11:da:74:b4:e5:3c:0a:
61:93:d6:dc:fd:20:60:8f:66:c4:1c:17:ff:b4:0a:
08:3d:bb:d4:ff:5c:a4:64:ed:51:d2:f3:54:96:a9:
24:0d:da:31:e5:22:2e:d7:9b:1f:56:9e:00:36:1a:
a5:a3:d5:cf:ac:14:4d:33:fd:b6:3d:00:af:29:ac:
dd:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:C6:46:43:10:2E:26:60:14:FA:5C:4C:58:B6:99:6C:BF:90:8C:D9
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/TsZGQxAuJmAU-lxMWLaZbL-QjNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.81.0/24
89.34.27.0/24
89.35.158.0/24
89.39.111.0/24
89.40.67.0/24
89.45.164.0/24
89.47.96.0-89.47.98.255
89.47.101.0-89.47.111.255
89.47.120.0/24
89.47.122.0/24
93.113.204.0/24
93.114.79.0/24
93.114.194.0/24
188.241.3.0/24
193.19.192.0/22
195.28.2.0/23
IPv6:
2001:4d18::/32
Signature Algorithm: sha256WithRSAEncryption
03:b4:ef:1c:55:46:d9:a3:f1:30:50:da:9d:ae:05:85:53:7b:
40:94:fd:7e:1a:40:ae:52:94:e1:56:ba:96:4f:e6:cc:33:8d:
e5:8b:84:97:b4:72:91:d2:04:db:a3:ad:db:59:d8:e4:80:f7:
e4:77:72:71:61:16:45:02:78:c6:8a:99:e3:4e:1e:f1:c8:f7:
bb:0a:33:97:f2:7e:09:fb:5d:c0:3b:52:90:34:83:09:07:f6:
b3:de:2f:5e:82:8c:41:d4:88:1c:a9:cf:1e:94:a8:29:8c:74:
d9:63:61:10:31:f0:88:a9:3e:6c:d2:a0:6f:ec:02:07:8a:6b:
8e:35:30:78:fa:02:6f:51:d2:d7:77:f5:5f:fe:99:a2:47:d8:
a7:75:14:66:76:89:aa:66:9f:1c:15:fd:ca:0b:a6:ba:11:4a:
3c:01:08:40:54:59:86:81:2b:44:79:8b:3f:11:b8:d9:ab:6a:
f7:10:1b:b7:08:96:73:96:d1:39:73:e4:99:23:0e:c3:2b:9f:
85:5c:f9:57:e6:cc:11:e9:48:b1:e3:56:a3:82:10:3c:ae:3b:
47:ff:a9:74:a6:6f:a5:47:47:bc:9e:2f:48:fb:59:03:41:14:
8a:74:10:05:ba:e2:6b:7d:6a:1c:46:b9:36:aa:bb:6c:62:84:
6f:1b:3a:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 07:01:29 2024 by rpki-client on console-fra.rpki-client.org