Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/spsN7Lc63DYG4wdLIETw-1iOnYE.roa
File: spsN7Lc63DYG4wdLIETw-1iOnYE.roa (raw, json)
Hash identifier: xNYc39EgNsV4DeMUOqIQ5EixlV2mp8mwnLZoFzKGBW0=
Subject key identifier: B2:9B:0D:EC:B7:3A:DC:36:06:E3:07:4B:20:44:F0:FB:58:8E:9D:81
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 01896635D6B2F74CB7D9B95545814FFA4993
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/spsN7Lc63DYG4wdLIETw-1iOnYE.roa
Signing time: Mon 17 Jul 2023 23:35:51 +0000
ROA not before: Mon 17 Jul 2023 23:35:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136258
IP address blocks: 185.213.23.0/24 maxlen: 24
109.104.152.0/24 maxlen: 24
109.104.155.0/24 maxlen: 24
109.104.153.0/24 maxlen: 24
147.78.3.0/24 maxlen: 24
147.78.0.0/24 maxlen: 24
147.78.1.0/24 maxlen: 24
185.126.239.0/24 maxlen: 24
2a11:840:18::/48 maxlen: 48
2a11:840:13::/48 maxlen: 48
2a11:840:11::/48 maxlen: 48
2a11:840:47::/48 maxlen: 48
2a11:840:7::/48 maxlen: 48
2a11:840:10::/48 maxlen: 48
2a11:840:24::/48 maxlen: 48
2a11:840:12::/48 maxlen: 48
2a11:840:8::/48 maxlen: 48
2a11:840:26::/48 maxlen: 48
2a11:840:6::/48 maxlen: 48
2a11:840:41::/48 maxlen: 48
2a11:840:17::/48 maxlen: 48
2a11:840:25::/48 maxlen: 48
2a11:840:40::/48 maxlen: 48
2a11:840:19::/48 maxlen: 48
2a11:840:14::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 15 Sep 2023 21:53:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:66:35:d6:b2:f7:4c:b7:d9:b9:55:45:81:4f:fa:49:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Jul 17 23:35:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b29b0decb73adc3606e3074b2044f0fb588e9d81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8e:4c:9f:26:5c:ea:68:5c:3f:ac:ef:95:bb:
22:3e:ce:be:e9:39:f6:d0:0e:ce:21:27:33:7b:7c:
17:97:f8:02:45:62:85:6f:72:89:86:40:e9:82:53:
58:eb:80:6d:7a:38:a1:4b:1d:e3:d1:86:ed:7e:65:
1d:82:b5:08:02:a4:f5:21:23:58:7b:f3:7f:7f:f7:
af:4d:31:16:7a:61:81:62:28:81:10:8a:26:00:25:
99:c2:e6:94:7e:c4:7f:b8:8d:fe:1f:b3:99:3a:33:
af:50:e2:97:5e:90:c2:e3:81:9b:14:bd:38:af:4c:
d0:b4:e4:7e:71:d5:a5:a4:c1:9a:c0:2f:d8:83:ec:
57:79:3e:78:8f:ed:16:bc:15:76:24:de:ac:bc:cd:
d2:47:88:3f:ca:43:a9:1b:ee:1d:a7:ca:a7:aa:e0:
6b:89:9b:76:43:a1:fc:5f:82:05:ed:9a:cf:9f:77:
91:ed:dc:43:78:45:48:26:d9:37:75:e3:15:65:61:
b9:de:e8:b7:6c:f8:c7:f4:61:1f:7d:46:90:bc:17:
62:84:9a:ab:31:78:5c:7e:19:5b:ed:fb:17:40:9c:
1b:e0:12:4d:9c:e2:74:6d:62:23:10:72:c8:04:cc:
02:bc:1f:43:60:4a:74:b8:f6:de:fd:a2:3a:85:2d:
88:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:9B:0D:EC:B7:3A:DC:36:06:E3:07:4B:20:44:F0:FB:58:8E:9D:81
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/spsN7Lc63DYG4wdLIETw-1iOnYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.104.152.0/23
109.104.155.0/24
147.78.0.0/23
147.78.3.0/24
185.126.239.0/24
185.213.23.0/24
IPv6:
2a11:840:6::-2a11:840:8:ffff:ffff:ffff:ffff:ffff
2a11:840:10::-2a11:840:14:ffff:ffff:ffff:ffff:ffff
2a11:840:17::-2a11:840:19:ffff:ffff:ffff:ffff:ffff
2a11:840:24::-2a11:840:26:ffff:ffff:ffff:ffff:ffff
2a11:840:40::/47
2a11:840:47::/48
Signature Algorithm: sha256WithRSAEncryption
5f:67:9b:23:bc:e8:b2:89:ed:19:58:9f:46:97:dc:5b:8c:1c:
9b:90:b1:47:a0:22:a4:34:3e:3e:74:b8:da:27:8e:67:23:f1:
f4:e1:e8:1b:4e:fb:74:51:c4:91:68:1f:8c:16:0e:f0:20:96:
35:60:c7:c0:db:2e:5f:71:da:bc:05:59:e0:30:3a:ac:0c:81:
89:76:d1:d3:29:ac:cf:a7:4c:a7:1b:74:5f:ff:0e:1f:83:d6:
f1:fe:cd:8e:5d:94:8d:cf:77:97:35:82:e9:23:21:f1:ab:83:
6a:c4:e5:0b:d2:22:18:67:04:a1:ca:3e:50:1f:e8:ab:a1:48:
73:4b:47:d7:d4:fb:d1:51:d8:b6:0d:1a:c2:2d:3e:2c:85:6c:
10:c7:99:49:ac:1c:53:9d:db:0c:c0:33:7b:15:27:1d:bb:23:
f3:96:1c:c7:34:b6:de:47:53:79:fa:d8:c1:c1:75:a0:20:a0:
2e:b2:d3:e1:ec:b3:87:8b:22:46:b2:9f:5c:0e:60:b9:c7:45:
97:be:89:d9:47:30:bc:52:e4:2f:1b:71:c0:23:82:c8:1a:5a:
bd:f9:b9:81:d0:72:65:09:6d:29:e8:aa:8a:f6:54:3d:57:eb:
88:cd:9d:17:90:c1:2a:0f:95:3a:dc:23:6e:ee:d0:cf:31:69:
f0:1a:bf:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:51 2024 by rpki-client on console-ams.rpki-client.org