Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/9mGFfc33noKA6SvvyUCQaRaBcrA.roa
File: 9mGFfc33noKA6SvvyUCQaRaBcrA.roa (raw, json)
Hash identifier: oEep12Ipu7A06Qi8pVDJ5NJ9EhkNaZPy6pthoq0oUWg=
Subject key identifier: F6:61:85:7D:CD:F7:9E:82:80:E9:2B:EF:C9:40:90:69:16:81:72:B0
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 018A9AD5FE9E5BE54362C3FCABAFDC599721
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/9mGFfc33noKA6SvvyUCQaRaBcrA.roa
Signing time: Fri 15 Sep 2023 21:53:50 +0000
ROA not before: Fri 15 Sep 2023 21:53:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136258
IP address blocks: 185.213.23.0/24 maxlen: 24
109.104.152.0/24 maxlen: 24
109.104.155.0/24 maxlen: 24
109.104.153.0/24 maxlen: 24
147.78.3.0/24 maxlen: 24
147.78.0.0/24 maxlen: 24
147.78.1.0/24 maxlen: 24
185.126.239.0/24 maxlen: 24
2a11:840:18::/48 maxlen: 48
2a11:840:13::/48 maxlen: 48
2a11:840:11::/48 maxlen: 48
2a11:840:47::/48 maxlen: 48
2a11:840:7::/48 maxlen: 48
2a11:840:10::/48 maxlen: 48
2a11:840:24::/48 maxlen: 48
2a11:840:12::/48 maxlen: 48
2a11:840:8::/48 maxlen: 48
2a11:840:26::/48 maxlen: 48
2a11:840:6::/48 maxlen: 48
2a11:840:41::/48 maxlen: 48
2a11:840:17::/48 maxlen: 48
2a11:840:25::/48 maxlen: 48
2a11:840:40::/48 maxlen: 48
2a11:840:19::/48 maxlen: 48
2a11:840:14::/48 maxlen: 48
2a11:840:54::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 15 Nov 2023 22:37:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:9a:d5:fe:9e:5b:e5:43:62:c3:fc:ab:af:dc:59:97:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Sep 15 21:53:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f661857dcdf79e8280e92befc9409069168172b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bb:3a:98:d1:42:63:74:ca:67:8f:52:cf:7c:
e9:34:8d:61:4c:d0:92:c2:3f:dc:52:9d:19:1d:ee:
11:70:3f:d9:08:fa:89:1c:83:79:79:af:46:fa:88:
87:79:de:6d:e3:f8:41:44:45:5f:08:24:c7:00:86:
49:5d:4d:80:72:18:3e:78:ad:0d:56:63:a5:58:82:
3e:23:7b:dd:06:8e:94:b6:73:e6:72:65:6a:d5:b6:
ea:b1:80:0f:c1:59:f8:80:eb:34:da:8a:53:f1:5d:
21:c9:df:a2:dc:8d:a2:91:d8:f7:09:02:4d:30:8e:
8a:07:1d:50:71:ba:e4:b2:a6:d4:00:e0:4f:dd:55:
5c:73:d6:3a:54:b8:f2:bc:83:a0:4e:14:e0:81:76:
33:e8:b6:0d:2e:c4:dc:a9:79:53:d3:1b:30:62:96:
8d:f1:7a:01:c8:e9:1c:5b:c3:7d:78:a9:37:78:d6:
2a:4d:13:26:0a:77:16:90:9c:7c:18:81:a2:7e:f4:
41:65:f0:b8:55:af:4a:78:79:9b:07:38:8d:96:21:
fd:64:c3:99:f5:b1:f2:eb:62:44:66:c1:80:1b:9f:
f5:16:75:30:90:c7:27:5a:b0:98:94:54:37:3c:2a:
95:b5:d4:b2:30:e0:a6:20:2d:1c:e9:03:e5:9c:9e:
13:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:61:85:7D:CD:F7:9E:82:80:E9:2B:EF:C9:40:90:69:16:81:72:B0
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/9mGFfc33noKA6SvvyUCQaRaBcrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.104.152.0/23
109.104.155.0/24
147.78.0.0/23
147.78.3.0/24
185.126.239.0/24
185.213.23.0/24
IPv6:
2a11:840:6::-2a11:840:8:ffff:ffff:ffff:ffff:ffff
2a11:840:10::-2a11:840:14:ffff:ffff:ffff:ffff:ffff
2a11:840:17::-2a11:840:19:ffff:ffff:ffff:ffff:ffff
2a11:840:24::-2a11:840:26:ffff:ffff:ffff:ffff:ffff
2a11:840:40::/47
2a11:840:47::/48
2a11:840:54::/48
Signature Algorithm: sha256WithRSAEncryption
6e:ea:b1:f2:63:d7:22:46:19:6c:80:98:3f:d1:69:22:42:1c:
e0:fe:40:a1:c3:c6:0a:78:24:2e:51:b5:10:9b:c4:a6:ea:36:
74:7b:8a:1b:c9:87:6e:5a:01:0e:7b:48:38:35:26:81:2c:08:
fe:14:e9:80:e1:c6:f7:70:fe:f7:3a:a6:46:b9:08:68:16:0e:
92:b2:b8:cb:df:26:e8:64:09:64:6c:06:73:a8:f7:ed:50:03:
45:a4:3a:0d:dc:2f:95:8c:f0:b2:8f:95:ad:cb:98:14:60:04:
15:83:c9:59:be:98:c2:de:25:45:a7:b3:31:58:5b:04:51:df:
cc:8b:f8:75:cb:d2:bc:a9:f4:50:e7:94:db:b4:b9:f7:05:c0:
11:6a:36:73:07:ce:bd:c6:7e:7c:c5:21:f2:a4:90:8f:58:0b:
b2:9d:75:05:d6:e8:1c:0f:3e:e9:7b:c7:73:09:06:47:25:6b:
de:94:5d:9f:6c:44:d7:40:3f:c4:0c:d4:fc:02:57:8a:ed:35:
62:14:25:72:19:7f:37:3c:5d:8e:69:d9:18:c2:9c:2b:b1:8b:
d0:47:55:66:74:c6:27:aa:3f:a5:bb:9d:2c:38:1d:43:80:87:
3f:c1:b7:e1:92:5b:c8:91:3f:dc:71:d4:20:bd:b6:03:a0:13:
e8:23:73:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:20 2024 by rpki-client on console-fra.rpki-client.org