Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/n8p-JfgSTzj_WE0f7btSIJblWig.roa
File: n8p-JfgSTzj_WE0f7btSIJblWig.roa (raw, json)
Hash identifier: qr8bb5PB0DRIoliA1vHZTs+0qdY0UrxUej2bwCq6DhU=
Subject key identifier: 9F:CA:7E:25:F8:12:4F:38:FF:58:4D:1F:ED:BB:52:20:96:E5:5A:28
Certificate issuer: /CN=f0521128cf634aa6afa7ef52d531f3fcd55628f9
Certificate serial: 0185732812E534203E1073F4C74CB30991C9
Authority key identifier: F0:52:11:28:CF:63:4A:A6:AF:A7:EF:52:D5:31:F3:FC:D5:56:28:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8FIRKM9jSqavp-9S1THz_NVWKPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/n8p-JfgSTzj_WE0f7btSIJblWig.roa
Signing time: Mon 02 Jan 2023 15:44:44 +0000
ROA not before: Mon 02 Jan 2023 15:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48095
IP address blocks: 194.38.28.0/23 maxlen: 23
194.38.30.0/23 maxlen: 23
171.22.36.0/23 maxlen: 23
171.22.38.0/23 maxlen: 23
193.168.182.0/23 maxlen: 23
193.168.180.0/23 maxlen: 23
45.67.178.0/23 maxlen: 23
45.67.176.0/23 maxlen: 23
5.253.162.0/23 maxlen: 23
5.253.160.0/23 maxlen: 23
83.150.239.0/24 maxlen: 24
83.150.238.0/24 maxlen: 24
141.98.92.0/23 maxlen: 23
85.209.136.0/23 maxlen: 23
141.98.94.0/23 maxlen: 23
85.209.138.0/23 maxlen: 23
2.56.44.0/23 maxlen: 23
152.89.8.0/23 maxlen: 23
188.119.88.0/23 maxlen: 23
152.89.10.0/23 maxlen: 23
188.119.90.0/23 maxlen: 23
2.56.46.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:28:12:e5:34:20:3e:10:73:f4:c7:4c:b3:09:91:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0521128cf634aa6afa7ef52d531f3fcd55628f9
Validity
Not Before: Jan 2 15:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fca7e25f8124f38ff584d1fedbb522096e55a28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:08:8c:d1:f7:b8:de:85:09:46:2b:59:ef:f3:
80:0f:9e:be:02:7b:9b:1a:fc:c8:0b:5f:ed:8f:9a:
ce:47:c3:b2:9b:4d:ff:5d:6e:a7:b7:97:c4:5b:a1:
57:ed:aa:6f:e4:8e:5b:5b:60:1a:b7:e1:77:e6:0c:
9c:08:41:46:19:c2:ce:dc:5d:bc:c3:e5:19:be:50:
72:2b:2b:15:11:5f:d4:08:c7:ea:76:d9:bf:c4:72:
aa:c3:02:58:32:4e:9e:0b:9d:65:9f:cb:36:ae:ca:
cc:e5:96:20:6b:cc:e3:3c:dc:11:b4:a6:0c:ea:5f:
9f:e8:73:c3:5c:fc:1f:64:5f:41:ea:1e:f8:49:04:
d1:1a:bf:3b:04:c6:88:77:d8:69:1e:09:e0:91:4c:
cd:4d:b5:99:c8:bf:00:7c:fe:11:9a:d3:21:3d:3e:
59:db:df:5e:69:76:cb:72:ea:03:25:a0:f8:d7:b6:
ea:cf:42:bf:ca:40:97:5b:dc:72:20:c6:88:3d:a4:
2c:97:41:e5:ed:df:1f:5d:53:57:de:fe:be:2a:e9:
a9:59:c5:1d:23:0f:70:d3:01:b7:2e:b4:8f:ba:ad:
6a:6a:71:fb:42:bb:f6:8a:02:52:bd:17:39:f8:76:
23:6b:6d:54:12:a9:6b:e8:ea:cc:2a:64:3b:c5:76:
94:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:CA:7E:25:F8:12:4F:38:FF:58:4D:1F:ED:BB:52:20:96:E5:5A:28
X509v3 Authority Key Identifier:
keyid:F0:52:11:28:CF:63:4A:A6:AF:A7:EF:52:D5:31:F3:FC:D5:56:28:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8FIRKM9jSqavp-9S1THz_NVWKPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/n8p-JfgSTzj_WE0f7btSIJblWig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4b150-dbb8-465f-8155-e4419b64212e/1/8FIRKM9jSqavp-9S1THz_NVWKPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.44.0/22
5.253.160.0/22
45.67.176.0/22
83.150.238.0/23
85.209.136.0/22
141.98.92.0/22
152.89.8.0/22
171.22.36.0/22
188.119.88.0/22
193.168.180.0/22
194.38.28.0/22
Signature Algorithm: sha256WithRSAEncryption
36:40:1c:6c:06:77:10:2f:21:92:80:61:6d:19:53:e6:03:4b:
62:0b:18:65:d9:f3:51:22:41:ff:ef:7e:a5:5f:72:53:e8:22:
b1:95:44:15:58:32:30:44:36:21:35:59:b6:f1:7b:fe:43:84:
da:24:9e:c3:d4:5a:2d:8d:c1:19:fa:d2:8b:38:34:10:c6:65:
49:ef:e5:d2:4c:83:05:e2:8c:fc:37:fa:7f:31:53:d8:f5:3c:
a1:cd:11:36:f4:9c:0e:6e:df:fa:c2:ee:5d:75:2d:60:9d:5e:
d8:8e:c5:47:21:f1:6f:d5:81:94:56:bf:62:70:53:eb:d9:c0:
14:3b:e3:ea:3d:92:77:c2:3f:91:6a:c6:38:23:59:c3:98:7c:
c5:a1:54:9d:24:13:10:51:d9:3f:c6:94:ea:cc:40:f9:1b:4c:
f2:00:8b:28:0d:81:d8:76:b4:a5:b7:8f:3f:3f:16:c9:83:cf:
d0:e4:be:21:33:27:89:c5:28:4d:1d:62:7d:f6:61:f5:57:4a:
45:66:cb:78:c9:61:09:93:70:bb:81:2a:b7:11:24:48:c1:ba:
2e:26:9e:55:17:aa:06:78:ba:ed:33:fe:aa:77:c7:53:52:72:
0f:2a:29:d0:11:d8:fa:ce:bb:96:6d:4b:c7:5f:63:9a:0d:59:
81:39:ac:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:58 2024 by rpki-client on console-ams.rpki-client.org