Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/o3kPPEWAcN__cn62UsYhKDbWomY.roa
File: o3kPPEWAcN__cn62UsYhKDbWomY.roa (raw, json)
Hash identifier: fUsObhnwR3JkDp0vcU7bc3PJKbkp7TrSTrsrheE5OAE=
Subject key identifier: A3:79:0F:3C:45:80:70:DF:FF:72:7E:B6:52:C6:21:28:36:D6:A2:66
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018BF6CAB4A28A58CCD932EBB3AE434DD27E
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/o3kPPEWAcN__cn62UsYhKDbWomY.roa
Signing time: Wed 22 Nov 2023 11:29:21 +0000
ROA not before: Wed 22 Nov 2023 11:29:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39543
IP address blocks: 193.19.192.0/22 maxlen: 22
193.19.192.0/24 maxlen: 24
193.19.193.0/24 maxlen: 24
193.19.195.0/24 maxlen: 24
193.19.194.0/24 maxlen: 24
93.113.204.0/24 maxlen: 24
93.114.79.0/24 maxlen: 24
89.40.67.0/24 maxlen: 24
89.35.158.0/24 maxlen: 24
89.45.164.0/24 maxlen: 24
89.39.111.0/24 maxlen: 24
195.28.2.0/23 maxlen: 23
89.34.225.0/24 maxlen: 24
89.34.224.0/24 maxlen: 24
89.34.224.0/23 maxlen: 23
89.47.96.0/24 maxlen: 24
89.47.96.0/20 maxlen: 20
89.47.97.0/24 maxlen: 24
89.47.98.0/24 maxlen: 24
89.47.99.0/24 maxlen: 24
89.47.101.0/24 maxlen: 24
93.114.194.0/24 maxlen: 24
89.47.100.0/24 maxlen: 24
89.47.103.0/24 maxlen: 24
89.47.102.0/24 maxlen: 24
89.47.104.0/24 maxlen: 24
89.47.105.0/24 maxlen: 24
89.47.106.0/24 maxlen: 24
89.47.108.0/24 maxlen: 24
89.47.107.0/24 maxlen: 24
89.47.110.0/24 maxlen: 24
89.47.109.0/24 maxlen: 24
89.47.111.0/24 maxlen: 24
89.47.112.0/24 maxlen: 24
89.47.112.0/20 maxlen: 20
89.47.113.0/24 maxlen: 24
89.47.115.0/24 maxlen: 24
89.47.114.0/24 maxlen: 24
89.47.116.0/24 maxlen: 24
89.47.118.0/24 maxlen: 24
89.47.122.0/24 maxlen: 24
89.47.121.0/24 maxlen: 24
89.47.123.0/24 maxlen: 24
89.47.125.0/24 maxlen: 24
89.47.124.0/24 maxlen: 24
89.47.120.0/24 maxlen: 24
89.47.119.0/24 maxlen: 24
89.47.127.0/24 maxlen: 24
89.47.126.0/24 maxlen: 24
89.34.27.0/24 maxlen: 24
2001:4d18::/32 maxlen: 32
2001:4d18::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 22 Nov 2023 12:22:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f6:ca:b4:a2:8a:58:cc:d9:32:eb:b3:ae:43:4d:d2:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Nov 22 11:29:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3790f3c458070dfff727eb652c6212836d6a266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:03:a0:e1:cd:ea:e0:9d:d7:93:7f:4f:b7:0b:
e3:52:ec:47:6b:37:a4:6a:20:df:af:a7:27:73:11:
cc:1a:91:40:5e:fc:4e:90:00:e7:28:73:8b:e6:c3:
a8:5b:d6:9e:be:2d:3a:83:1a:ce:c7:4b:d7:79:09:
45:fd:93:b2:f7:ad:e3:79:5a:d3:76:56:08:33:c7:
87:c8:73:14:30:7c:2b:6e:4b:5f:3c:b9:5f:ec:4c:
93:a8:69:c1:11:2d:20:1e:d9:89:51:09:af:f9:e9:
b4:b6:66:e1:24:71:ed:b4:92:d8:a3:56:ea:00:bf:
1a:14:a2:b8:62:89:d5:0f:cf:bb:98:ae:a3:0d:06:
31:60:f8:51:e8:a7:f0:ed:2c:c1:a2:91:d2:56:7c:
41:b5:96:85:14:0c:cf:bc:93:45:6f:ba:38:58:b2:
c5:03:93:da:70:3c:0e:92:df:52:49:e6:87:6b:ed:
7c:7f:d6:be:3e:36:09:23:a1:ee:e0:98:0f:66:ac:
98:f6:5c:44:60:55:94:54:a2:a4:cf:25:36:5d:b4:
95:22:6f:aa:61:99:ba:ee:0e:69:90:35:00:73:24:
6e:30:71:a4:0e:d2:77:64:67:c2:8e:78:bc:07:72:
01:69:04:d8:53:a5:30:54:f9:68:a6:02:c1:24:64:
26:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:79:0F:3C:45:80:70:DF:FF:72:7E:B6:52:C6:21:28:36:D6:A2:66
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/o3kPPEWAcN__cn62UsYhKDbWomY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.27.0/24
89.34.224.0/23
89.35.158.0/24
89.39.111.0/24
89.40.67.0/24
89.45.164.0/24
89.47.96.0/19
93.113.204.0/24
93.114.79.0/24
93.114.194.0/24
193.19.192.0/22
195.28.2.0/23
IPv6:
2001:4d18::/32
Signature Algorithm: sha256WithRSAEncryption
4f:6f:ae:1f:71:b6:de:eb:21:ae:93:dd:79:62:4a:a0:a0:83:
10:23:a4:d6:89:87:82:50:24:ec:5c:a9:1d:6c:e8:30:31:4f:
b7:f9:97:fe:28:74:18:92:da:19:b7:95:c2:b7:a3:f5:bb:bc:
9e:1a:aa:95:82:b8:79:6d:fb:16:3a:cb:22:6b:e1:8a:a9:73:
b9:23:52:3f:f2:49:59:4e:b7:1b:92:8c:45:c1:3f:b1:7a:b4:
06:76:8c:67:88:d0:19:b8:dd:74:ed:66:5a:6f:1e:e9:2d:a3:
ee:a1:12:ca:93:1c:e3:6b:27:36:19:56:e2:fb:b9:2e:aa:61:
9f:78:31:7c:46:de:6a:ad:df:91:30:cd:f1:bb:a6:fb:35:9a:
dc:e7:4e:26:9e:d1:37:f2:7d:e7:b2:78:fd:c0:19:4e:ad:a5:
34:7d:04:bd:03:e3:2b:54:b8:38:c0:2f:4a:34:d5:c7:29:fd:
89:e5:87:a0:dc:4f:de:2d:fe:c2:8d:dd:86:64:ea:4d:5c:fe:
f2:a3:c8:d9:2b:45:6c:60:4a:87:60:55:cf:6d:c7:06:cd:9a:
90:1a:a5:75:18:85:b7:4e:95:cf:18:2d:77:d9:30:8e:d8:b6:
f5:f8:63:ae:10:d2:c0:98:ee:a5:d2:c6:dc:20:78:e1:eb:db:
9f:fd:88:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:50 2024 by rpki-client on console-ams.rpki-client.org