Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Fnmp-otyqDUmBb1cQCDWr20_9Qo.roa
File: Fnmp-otyqDUmBb1cQCDWr20_9Qo.roa (raw, json)
Hash identifier: vZCAuesBpIggaAjcuIXttXYrNONC+mQ0DASsv9nTiYI=
Subject key identifier: 16:79:A9:FA:8B:72:A8:35:26:05:BD:5C:40:20:D6:AF:6D:3F:F5:0A
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018CF398B752EA1AA195D942DF7DC07CAC79
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Fnmp-otyqDUmBb1cQCDWr20_9Qo.roa
Signing time: Wed 10 Jan 2024 13:38:41 +0000
ROA not before: Wed 10 Jan 2024 13:38:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48806
IP address blocks: 37.46.149.0/24 maxlen: 24
193.84.132.0/24 maxlen: 24
185.244.137.0/24 maxlen: 24
188.212.155.0/24 maxlen: 24
188.241.182.0/24 maxlen: 24
193.218.32.0/24 maxlen: 24
45.146.186.0/24 maxlen: 24
91.217.236.0/24 maxlen: 24
185.228.225.0/24 maxlen: 24
89.31.216.0/24 maxlen: 24
185.239.241.0/24 maxlen: 24
185.239.242.0/24 maxlen: 24
185.245.5.0/24 maxlen: 24
185.245.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Mar 2024 08:36:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f3:98:b7:52:ea:1a:a1:95:d9:42:df:7d:c0:7c:ac:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 10 13:38:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1679a9fa8b72a8352605bd5c4020d6af6d3ff50a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:83:66:f4:d0:03:bc:59:f2:b6:7c:de:b1:43:
11:75:85:93:25:13:74:53:c3:89:2c:2a:b5:79:dd:
69:f8:28:e4:c2:ea:b8:ff:a2:56:07:89:86:70:f0:
84:a8:c1:5e:09:46:e9:eb:1a:b3:1e:06:b8:e5:bc:
41:c4:cf:82:af:dd:28:b6:5f:57:57:13:24:de:d8:
9d:c2:a4:cb:67:da:c0:44:9b:8d:be:8e:59:d2:25:
d1:36:a4:dc:03:23:98:0d:ac:97:27:20:1d:08:de:
f0:10:42:02:00:6b:c3:2a:db:93:7b:e4:26:71:5e:
b5:ed:89:88:ce:f2:a2:49:bd:1f:6a:67:3f:61:fe:
66:d2:7f:4b:85:ef:a4:0a:d6:15:2d:15:09:0d:fe:
51:d9:2f:f8:ac:65:7f:6d:c5:f3:c8:d9:c2:7d:f2:
32:d7:a3:46:28:22:a6:77:aa:03:fd:0d:c6:1e:ae:
f5:95:f2:b2:74:84:4c:f5:e7:17:84:1f:2c:b3:76:
63:ba:6f:34:cc:5f:b3:d0:95:94:bf:2e:43:c7:b1:
b6:c0:24:ac:50:e2:38:1a:47:14:01:4c:81:ae:9d:
2b:c6:ec:29:3f:c6:de:da:b3:f2:10:52:d6:ef:9f:
f1:26:c6:0c:86:e1:df:87:6e:aa:73:43:99:c4:11:
bc:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:79:A9:FA:8B:72:A8:35:26:05:BD:5C:40:20:D6:AF:6D:3F:F5:0A
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Fnmp-otyqDUmBb1cQCDWr20_9Qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.46.149.0/24
45.146.186.0/24
89.31.216.0/24
91.217.236.0/24
185.228.225.0/24
185.239.241.0-185.239.242.255
185.244.137.0/24
185.245.5.0/24
185.245.7.0/24
188.212.155.0/24
188.241.182.0/24
193.84.132.0/24
193.218.32.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:ee:2f:30:21:5b:f6:ec:79:2b:3e:2b:34:5b:f9:2a:8c:08:
f6:bf:c4:16:ce:2b:c8:c1:c1:8a:94:ab:43:42:8e:26:d0:cd:
bf:8f:d3:59:36:f4:0e:65:83:08:d5:25:8e:b9:c3:4c:6e:1b:
93:62:de:05:86:62:2c:5d:6b:85:63:aa:a2:69:53:5d:8f:b1:
c6:d2:a1:90:67:81:34:28:ce:99:27:2f:e7:66:0a:54:7b:f6:
64:18:26:e7:96:38:ef:24:c7:e6:e4:cf:a3:ea:de:5e:75:07:
40:58:c1:b0:d3:a5:6c:56:30:12:d2:7d:cf:e4:72:39:eb:77:
0b:b4:98:04:52:ee:4e:f5:68:cd:60:ed:9f:78:ca:ce:f3:e4:
30:b1:7d:50:7c:22:e3:ad:64:ef:f9:29:e4:5c:6e:bc:14:be:
d4:67:28:3b:df:3f:32:1d:40:03:fa:e6:de:2c:8b:e4:c4:73:
38:da:3c:d3:4c:4c:e8:47:c7:9f:06:b5:f6:23:4b:84:d4:68:
ba:a2:40:e5:0d:fe:ba:ac:7d:b5:c2:bf:60:5e:3f:78:c1:7e:
20:a4:7b:fb:2c:22:9c:08:a7:a3:24:70:85:aa:bd:63:10:76:
be:c8:7e:2c:9c:36:b4:30:d8:97:f7:80:74:e6:cf:d8:33:1c:
e9:bb:29:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 1 11:11:45 2024 by rpki-client on console-ams.rpki-client.org