Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/9KvPu_dcmVLUDeeGTQfPAAWB-Zw.roa
File: 9KvPu_dcmVLUDeeGTQfPAAWB-Zw.roa (raw, json)
Hash identifier: z60T8wrgh+uOoz4hOwlaGvaK5q3OEtun28mc5FoDET4=
Subject key identifier: F4:AB:CF:BB:F7:5C:99:52:D4:0D:E7:86:4D:07:CF:00:05:81:F9:9C
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0188C54751C8C9211867088D6666B96C8790
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/9KvPu_dcmVLUDeeGTQfPAAWB-Zw.roa
Signing time: Fri 16 Jun 2023 17:36:05 +0000
ROA not before: Fri 16 Jun 2023 17:36:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.186.194.0/23 maxlen: 24
94.241.136.0/21 maxlen: 24
91.186.216.0/22 maxlen: 24
94.241.168.0/21 maxlen: 24
83.147.240.0/22 maxlen: 24
83.147.244.0/22 maxlen: 24
83.147.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 Jun 2023 08:04:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c5:47:51:c8:c9:21:18:67:08:8d:66:66:b9:6c:87:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jun 16 17:36:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4abcfbbf75c9952d40de7864d07cf000581f99c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e7:ff:b2:7e:99:c2:16:c2:dd:27:d6:1f:78:
72:04:f5:1c:d6:a5:80:b1:bb:f3:14:c0:b0:ed:67:
09:12:69:38:ca:f0:6b:ac:ac:79:3f:17:78:4c:bb:
15:60:d9:02:55:8c:0a:b1:38:01:91:a2:3e:00:4f:
d9:16:2e:b2:88:cd:fe:ea:a4:f7:01:32:fa:dc:39:
93:dc:18:9b:bf:82:1b:cc:91:5c:c9:b9:8c:6e:e0:
d0:6f:db:c6:a7:7d:0b:ca:08:37:39:5e:5e:21:dd:
e7:fa:c8:99:b8:e8:cb:67:ee:d1:d9:27:a4:b4:90:
71:22:b9:8c:02:95:e3:ac:3d:21:20:da:42:7d:22:
74:79:30:3d:bd:a6:c9:c9:f4:f7:94:19:b0:27:f2:
82:23:f7:1b:c3:65:6c:bb:e1:a4:f2:2d:9b:61:48:
f4:44:3a:a7:cb:f6:60:9b:ff:25:fa:42:3a:73:43:
7a:44:bf:e2:63:6b:3f:60:0c:71:a8:4a:84:2d:94:
08:28:03:ab:eb:b1:f3:a7:21:e3:12:3e:0e:ee:3d:
4a:ad:17:73:96:b0:0b:49:f1:c2:87:de:29:ac:f7:
cb:6d:11:71:7a:03:7e:01:dc:32:9f:b9:03:d3:4d:
af:f7:0c:f5:e0:5b:02:28:2d:6a:a6:14:40:0b:42:
9c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:AB:CF:BB:F7:5C:99:52:D4:0D:E7:86:4D:07:CF:00:05:81:F9:9C
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/9KvPu_dcmVLUDeeGTQfPAAWB-Zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.240.0/21
83.147.252.0/22
91.186.194.0/23
91.186.216.0/22
94.241.136.0/21
94.241.168.0/21
Signature Algorithm: sha256WithRSAEncryption
99:d6:77:36:8c:37:41:76:06:c8:a1:11:39:39:c5:25:35:48:
fc:c2:58:04:36:eb:12:44:c1:41:b4:8f:e7:e2:58:3e:a2:30:
d1:92:eb:3e:c1:a0:e1:c3:dc:b4:8b:3c:90:41:44:3c:f0:c8:
3a:3c:dc:b9:92:8d:47:a5:bc:97:80:7d:d2:b6:92:27:31:14:
6e:18:5a:9a:90:a0:29:dd:41:9d:8a:e8:2f:ef:36:72:67:e6:
0e:d1:46:81:35:b8:ea:63:f4:b8:d6:09:54:c2:d8:0a:16:82:
d3:6c:9e:e2:be:24:b5:27:07:bc:24:e7:a1:02:8c:13:9b:d1:
03:49:e6:e8:72:d5:b9:b4:20:e7:bd:7e:fd:fa:3f:6f:2c:70:
e3:8f:1f:d3:9c:06:31:ac:ac:02:e7:9a:38:e8:2c:cc:0e:46:
11:c6:47:d9:f5:1a:89:42:65:9f:ee:b2:43:2f:c7:e8:d2:9a:
f4:11:94:0e:a0:43:63:ec:13:99:63:fb:8d:53:e0:fe:f1:d8:
51:86:fb:8d:53:71:64:35:32:13:54:55:84:a1:e2:c1:ba:f1:
0a:1f:0f:f5:b2:f8:ae:03:59:08:ee:98:da:3c:86:53:ed:cb:
31:1b:0a:a2:f2:e3:a4:f6:49:72:23:d0:e2:58:41:90:32:c8:
f7:41:44:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org