Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/kbPUBnObaReraVUM_wytMNsazes.roa
File: kbPUBnObaReraVUM_wytMNsazes.roa (raw, json)
Hash identifier: X5CnFB1ambef6zznGVpkQQuUljsbAT5i2yre6e1vbZc=
Subject key identifier: 91:B3:D4:06:73:9B:69:17:AB:69:55:0C:FF:0C:AD:30:DB:1A:CD:EB
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 0190ED8A08ADA1F697B5EA4C71437287C5D3
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/kbPUBnObaReraVUM_wytMNsazes.roa
Signing time: Fri 26 Jul 2024 05:36:04 +0000
ROA not before: Fri 26 Jul 2024 05:36:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39543
IP address blocks: 86.106.81.0/24 maxlen: 24
89.34.27.0/24 maxlen: 24
89.35.158.0/24 maxlen: 24
89.39.111.0/24 maxlen: 24
89.40.67.0/24 maxlen: 24
89.45.164.0/24 maxlen: 24
89.47.96.0/24 maxlen: 24
89.47.97.0/24 maxlen: 24
89.47.98.0/24 maxlen: 24
89.47.101.0/24 maxlen: 24
89.47.102.0/24 maxlen: 24
89.47.103.0/24 maxlen: 24
89.47.104.0/24 maxlen: 24
89.47.105.0/24 maxlen: 24
89.47.106.0/24 maxlen: 24
89.47.107.0/24 maxlen: 24
89.47.108.0/24 maxlen: 24
89.47.109.0/24 maxlen: 24
89.47.110.0/24 maxlen: 24
89.47.111.0/24 maxlen: 24
89.47.120.0/24 maxlen: 24
89.47.122.0/24 maxlen: 24
93.113.204.0/24 maxlen: 24
93.114.72.0/22 maxlen: 22
93.114.76.0/23 maxlen: 23
93.114.78.0/24 maxlen: 24
93.114.79.0/24 maxlen: 24
93.114.88.0/22 maxlen: 22
93.114.194.0/24 maxlen: 24
188.241.3.0/24 maxlen: 24
193.19.192.0/22 maxlen: 22
193.19.192.0/24 maxlen: 24
193.19.193.0/24 maxlen: 24
193.19.194.0/24 maxlen: 24
193.19.195.0/24 maxlen: 24
195.28.2.0/23 maxlen: 23
2001:4d18::/32 maxlen: 32
2001:4d18::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 27 Jul 2024 11:49:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ed:8a:08:ad:a1:f6:97:b5:ea:4c:71:43:72:87:c5:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jul 26 05:36:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=91b3d406739b6917ab69550cff0cad30db1acdeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a3:c6:7e:f9:2b:c7:2f:9f:85:d5:78:97:2e:
48:4d:bd:9e:70:2a:be:b5:12:ef:25:c2:c7:a6:94:
69:b9:b8:5c:09:bc:55:3c:81:c9:80:03:d4:e3:fa:
81:d2:53:70:02:a6:a0:ba:85:e9:f5:c3:af:18:48:
20:7d:25:89:a0:2b:aa:6f:14:96:bb:6d:2a:96:2b:
d5:95:9d:b6:34:1e:a4:b1:68:23:30:1b:9c:be:2c:
be:6c:2b:ef:b2:72:31:ef:ae:b6:44:9b:15:2b:1e:
26:28:ca:fc:fe:5a:cd:af:5f:8c:13:8d:a4:9a:09:
be:26:b8:ef:6e:3d:f0:b8:9a:07:13:d0:76:32:2f:
91:9f:73:8d:97:f7:d6:65:63:32:1e:59:29:de:a9:
b9:a3:b7:5b:8e:1b:81:47:3e:4a:94:7a:42:4f:64:
bc:71:b7:47:5c:8f:46:6c:6c:3b:22:e8:31:fb:29:
3b:5e:79:d5:6e:28:84:6a:79:e3:ad:48:ed:a4:5f:
a9:bd:b6:94:b1:27:b4:87:94:2f:61:2f:c0:74:5c:
ed:c0:ff:5a:d1:fc:35:d9:c9:8e:bd:42:01:a0:71:
70:d6:1f:00:eb:64:33:7f:cb:cd:9c:46:b6:14:52:
b3:d4:ea:16:2b:2c:0a:ee:c4:8a:1e:40:de:d6:82:
cc:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:B3:D4:06:73:9B:69:17:AB:69:55:0C:FF:0C:AD:30:DB:1A:CD:EB
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/kbPUBnObaReraVUM_wytMNsazes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.81.0/24
89.34.27.0/24
89.35.158.0/24
89.39.111.0/24
89.40.67.0/24
89.45.164.0/24
89.47.96.0-89.47.98.255
89.47.101.0-89.47.111.255
89.47.120.0/24
89.47.122.0/24
93.113.204.0/24
93.114.72.0/21
93.114.88.0/22
93.114.194.0/24
188.241.3.0/24
193.19.192.0/22
195.28.2.0/23
IPv6:
2001:4d18::/32
Signature Algorithm: sha256WithRSAEncryption
56:61:d6:f8:5e:08:00:ee:e3:d7:e8:72:e4:a7:12:90:5f:ab:
fa:1a:02:36:b5:a8:aa:1f:ff:ad:88:46:5c:b2:40:c6:92:c4:
5c:7e:d5:d4:91:4e:0a:b7:86:ec:f1:75:e8:d9:c8:c6:41:88:
c0:12:33:79:f8:b3:cd:18:54:2b:0f:5c:7f:c1:a4:a2:e0:01:
6a:68:4b:79:f0:7b:ec:68:53:35:45:ec:99:69:eb:81:02:4d:
ab:d9:0c:77:af:26:16:62:78:7a:96:d8:a4:7c:21:13:6e:ea:
39:ca:8b:0d:00:03:45:65:80:15:4c:f6:26:79:51:75:0a:1f:
66:00:12:0b:31:b8:d7:3e:08:eb:4b:0c:62:62:a7:a1:8d:83:
58:df:d9:c3:ff:c6:b0:65:cc:40:ba:df:3b:be:75:d1:35:67:
85:2f:32:1c:78:43:f9:f3:f1:1e:1b:f1:15:d0:48:22:fc:05:
16:88:fa:66:5e:6e:1f:0c:fb:af:53:50:5b:b5:a9:d6:f3:8f:
40:ff:96:d5:e4:58:83:cf:27:72:db:9f:80:ec:22:0e:a3:1b:
15:10:bc:8f:95:dc:ef:96:c2:e3:63:77:7e:2c:93:1e:f9:4c:
2a:7c:f4:f4:78:18:91:48:e5:1a:32:e7:15:6c:ae:c5:65:41:
0b:ea:bd:a3
-----BEGIN CERTIFICATE-----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Generated at Sat Jul 27 14:03:41 2024 by rpki-client on console-ams.rpki-client.org