Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/7bd729-98e5-43ff-afe6-187b1f77c1a5/1/CsNh6Kp4CWE0sUWAZw9sUfiWuNo.roa
File: CsNh6Kp4CWE0sUWAZw9sUfiWuNo.roa (raw, json)
Hash identifier: uHOGgZn81RccYPJhsjk82FCmfOwfRnlfA5o94rkqAns=
Subject key identifier: 0A:C3:61:E8:AA:78:09:61:34:B1:45:80:67:0F:6C:51:F8:96:B8:DA
Certificate issuer: /CN=4c93029c5b2639cd29b9f9dd5294cc94ef52d6af
Certificate serial: 018C36A5F4749161CC0CD6256B360EF76292
Authority key identifier: 4C:93:02:9C:5B:26:39:CD:29:B9:F9:DD:52:94:CC:94:EF:52:D6:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TJMCnFsmOc0pufndUpTMlO9S1q8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/7bd729-98e5-43ff-afe6-187b1f77c1a5/1/CsNh6Kp4CWE0sUWAZw9sUfiWuNo.roa
Signing time: Mon 04 Dec 2023 21:04:54 +0000
ROA not before: Mon 04 Dec 2023 21:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48707
IP address blocks: 185.238.137.0/24 maxlen: 24
195.2.208.0/24 maxlen: 24
195.2.209.0/24 maxlen: 24
185.253.212.0/24 maxlen: 24
185.253.213.0/24 maxlen: 24
185.253.214.0/24 maxlen: 24
185.253.215.0/24 maxlen: 24
91.230.202.0/24 maxlen: 24
91.230.203.0/24 maxlen: 24
91.230.204.0/24 maxlen: 24
91.230.205.0/24 maxlen: 24
91.230.200.0/24 maxlen: 24
91.230.201.0/24 maxlen: 24
185.237.30.0/24 maxlen: 24
185.237.31.0/24 maxlen: 24
185.237.28.0/24 maxlen: 24
185.237.29.0/24 maxlen: 24
2a0c:b40::/32 maxlen: 48
2a0c:b41::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:36:a5:f4:74:91:61:cc:0c:d6:25:6b:36:0e:f7:62:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c93029c5b2639cd29b9f9dd5294cc94ef52d6af
Validity
Not Before: Dec 4 21:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ac361e8aa78096134b14580670f6c51f896b8da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:76:99:31:e5:83:46:d6:c8:8f:89:31:73:4f:
54:45:eb:38:48:35:1e:5f:63:d3:6b:19:8f:c7:06:
fd:2a:83:ab:11:e0:60:58:fa:f9:60:26:1c:64:a4:
2a:0b:ef:97:32:ef:c4:d6:94:cc:1f:1c:bf:4b:fc:
f4:3d:6c:f0:e6:40:e5:5e:2c:b9:59:e3:ef:95:8f:
9e:15:34:6f:12:7a:39:9e:ad:1f:b7:22:87:1c:03:
7b:64:53:1b:8b:3c:91:bf:a7:2b:1b:ad:e8:e6:0b:
e5:15:de:d7:a7:ca:27:1e:8e:9b:3e:32:e5:a9:38:
b6:d9:d9:0c:0f:7f:8d:b5:97:7a:b6:de:3f:d5:df:
07:90:86:eb:de:96:11:dd:20:22:2d:42:b5:02:6f:
34:a4:91:bc:80:57:c8:61:1b:6c:5a:34:08:a5:ca:
ce:ce:fd:d2:5a:38:d7:8b:0c:df:a1:87:33:ab:bc:
ca:85:97:1b:3c:ac:2c:9b:fe:30:16:3b:0c:1f:17:
b4:f0:f9:8a:54:8b:04:20:70:07:ac:aa:71:21:a0:
b3:8a:94:64:a2:8d:d6:9c:ac:5a:2e:d1:14:e7:e7:
75:b4:e7:d0:41:ac:79:0d:46:04:91:f4:f8:85:4c:
94:2c:49:a7:f1:45:a9:16:76:56:b0:50:f2:6e:00:
db:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:C3:61:E8:AA:78:09:61:34:B1:45:80:67:0F:6C:51:F8:96:B8:DA
X509v3 Authority Key Identifier:
keyid:4C:93:02:9C:5B:26:39:CD:29:B9:F9:DD:52:94:CC:94:EF:52:D6:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TJMCnFsmOc0pufndUpTMlO9S1q8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/7bd729-98e5-43ff-afe6-187b1f77c1a5/1/CsNh6Kp4CWE0sUWAZw9sUfiWuNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/7bd729-98e5-43ff-afe6-187b1f77c1a5/1/TJMCnFsmOc0pufndUpTMlO9S1q8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.200.0-91.230.205.255
185.237.28.0/22
185.238.137.0/24
185.253.212.0/22
195.2.208.0/23
IPv6:
2a0c:b40::/31
Signature Algorithm: sha256WithRSAEncryption
6a:b3:56:c7:78:cb:1b:c7:f3:b4:f6:2a:b3:f0:dc:19:c6:16:
bc:42:b7:8d:e7:18:e6:3d:10:b1:90:13:49:c5:d3:51:52:1d:
5e:f6:6b:a6:3d:19:d7:ee:a0:21:df:bd:0b:88:6f:32:a8:d6:
88:44:b8:d6:4f:8c:19:6d:88:b9:8f:90:85:fd:c9:81:a8:06:
69:42:ca:e5:05:52:b1:4c:0c:d9:61:61:1f:ae:ac:6e:f4:6c:
eb:3b:34:db:ff:d4:6f:b1:94:11:28:8a:2a:06:0c:02:a5:ad:
fe:97:ce:18:98:34:5d:a1:08:65:67:a5:ff:05:d3:c4:9f:3a:
92:c9:4c:51:e8:c0:8c:52:dd:e6:3b:5d:78:0d:4f:58:cf:b5:
4e:8e:79:75:8c:d6:51:79:20:f2:d0:42:3b:cb:5b:05:58:da:
82:c9:cf:c5:9a:b7:e0:59:7e:11:f4:eb:ee:41:b8:4a:0b:9d:
a4:8e:d6:27:e3:33:e6:ec:ec:c1:02:48:1b:7d:27:41:4a:f2:
c8:d9:bd:0e:72:2a:ce:12:83:1c:ec:c3:1e:66:f8:f7:d2:5f:
1a:ea:ea:50:61:2e:ce:36:2c:99:99:c9:f6:c3:60:e2:51:23:
93:9c:92:7f:d3:82:56:09:a7:24:fe:31:2c:b9:23:0f:2a:7e:
42:75:e9:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:35 2024 by rpki-client on console-fra.rpki-client.org