Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/hguFIZdGb_jnNGlFEV3StZUjEVw.roa
File: hguFIZdGb_jnNGlFEV3StZUjEVw.roa (raw, json)
Hash identifier: QeO9hbkYLDZDWCAiasI+rEtf9CM5KfPJblfFQkb+pdo=
Subject key identifier: 86:0B:85:21:97:46:6F:F8:E7:34:69:45:11:5D:D2:B5:95:23:11:5C
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0191C0E169813B6993609D42486BBAF402E5
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/hguFIZdGb_jnNGlFEV3StZUjEVw.roa
Signing time: Thu 05 Sep 2024 06:31:23 +0000
ROA not before: Thu 05 Sep 2024 06:31:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 2.58.148.0/22 maxlen: 24
45.91.149.0/24 maxlen: 24
45.135.187.0/24 maxlen: 24
45.143.53.0/24 maxlen: 24
45.145.44.0/23 maxlen: 24
45.145.47.0/24 maxlen: 24
62.197.144.0/24 maxlen: 24
62.197.147.0/24 maxlen: 24
62.197.148.0/24 maxlen: 24
62.197.150.0/24 maxlen: 24
62.197.151.0/24 maxlen: 24
62.197.152.0/24 maxlen: 24
62.197.159.0/24 maxlen: 24
84.247.25.0/24 maxlen: 24
84.247.26.0/24 maxlen: 24
89.33.84.0/24 maxlen: 24
89.37.62.0/24 maxlen: 24
92.62.121.0/24 maxlen: 24
94.103.249.0/24 maxlen: 24
94.103.250.0/24 maxlen: 24
185.121.121.0/24 maxlen: 24
185.121.122.0/24 maxlen: 24
185.121.123.0/24 maxlen: 24
185.184.134.0/24 maxlen: 24
185.205.190.0/24 maxlen: 24
185.239.241.0/24 maxlen: 24
185.239.243.0/24 maxlen: 24
185.244.137.0/24 maxlen: 24
185.245.5.0/24 maxlen: 24
188.240.68.0/24 maxlen: 24
188.240.74.0/24 maxlen: 24
193.19.108.0/24 maxlen: 24
193.218.32.0/24 maxlen: 24
193.239.164.0/23 maxlen: 24
194.169.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 15 Oct 2024 09:20:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c0:e1:69:81:3b:69:93:60:9d:42:48:6b:ba:f4:02:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Sep 5 06:31:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=860b852197466ff8e7346945115dd2b59523115c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:92:38:18:0f:36:16:b0:73:75:5f:25:13:5b:
e1:d0:cc:1f:01:c7:bb:c3:b1:6e:d3:c3:10:2f:5a:
c6:fd:68:67:2b:46:00:55:89:8e:2a:f0:62:20:4a:
16:72:cc:91:27:0d:52:87:c7:b6:af:bb:dd:01:4b:
fa:b6:b3:8e:4c:ab:9c:37:a3:69:f2:47:e4:8a:a5:
01:32:a2:6c:1f:2d:14:91:69:4f:d4:d4:77:1e:da:
d1:e5:3f:c9:e0:7f:90:cd:e1:9f:8f:66:a9:2c:45:
31:6d:8a:a3:8d:6b:0e:98:f4:a4:9a:c9:4b:ba:51:
47:e0:80:18:f1:fe:ac:e4:8e:c4:01:3d:68:a9:c0:
09:c1:62:94:5f:7c:89:d9:33:0e:37:51:54:cf:5b:
ae:54:79:01:5e:6b:cb:4e:7a:20:cc:24:d6:f0:98:
19:8a:9b:0f:79:07:fb:8e:84:ae:83:42:b2:47:57:
58:f9:87:97:53:80:fe:5c:3d:1c:63:ad:2a:f9:ee:
f3:57:fe:4e:ea:89:e6:35:8d:39:a3:9c:60:92:c3:
da:e0:66:61:c3:60:8e:41:40:4f:47:0f:13:75:0d:
2e:99:68:ed:ee:0a:5e:7d:a7:8d:57:4e:bc:05:46:
dd:f4:f1:ea:ec:c8:2d:94:89:03:08:76:56:2e:5e:
9d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:0B:85:21:97:46:6F:F8:E7:34:69:45:11:5D:D2:B5:95:23:11:5C
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/hguFIZdGb_jnNGlFEV3StZUjEVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.148.0/22
45.91.149.0/24
45.135.187.0/24
45.143.53.0/24
45.145.44.0/23
45.145.47.0/24
62.197.144.0/24
62.197.147.0-62.197.148.255
62.197.150.0-62.197.152.255
62.197.159.0/24
84.247.25.0-84.247.26.255
89.33.84.0/24
89.37.62.0/24
92.62.121.0/24
94.103.249.0-94.103.250.255
185.121.121.0-185.121.123.255
185.184.134.0/24
185.205.190.0/24
185.239.241.0/24
185.239.243.0/24
185.244.137.0/24
185.245.5.0/24
188.240.68.0/24
188.240.74.0/24
193.19.108.0/24
193.218.32.0/24
193.239.164.0/23
194.169.169.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:6e:d2:eb:f8:a9:2d:91:38:c0:8f:64:47:85:d9:a0:ad:3e:
42:0b:2a:56:b5:ad:ee:c1:26:82:67:25:d5:11:f0:ab:60:b7:
e2:ad:f3:fa:09:99:87:84:01:79:84:58:8e:e5:97:8c:c7:57:
00:1d:7a:aa:61:9d:bd:9c:7b:73:5d:9e:3a:30:a9:c8:56:9f:
1c:2a:9a:43:64:dc:cd:6e:fc:1c:71:df:e2:fe:9d:ff:4a:73:
74:81:ac:b7:f1:92:58:f3:ba:7b:cd:b3:26:49:23:5f:69:74:
7b:f5:5f:de:01:2d:ad:94:54:4c:4d:12:01:0c:3e:7a:6c:e7:
7e:a3:d6:3f:86:d7:56:4d:5e:1d:ae:ad:1b:3c:a6:ee:9c:99:
f3:30:00:10:16:27:59:18:b7:6b:3f:5d:b4:02:5c:1b:ef:4b:
72:71:01:9e:31:4e:12:1c:ee:fd:1a:71:55:ba:67:a5:5f:30:
ac:f0:cd:35:f2:16:1b:e0:c4:8f:9f:68:c8:b3:11:d8:4d:4d:
2e:ae:6e:c9:35:34:5d:0a:61:fc:4b:e5:52:fe:f1:21:9f:f6:
8c:07:56:d5:3a:20:c3:48:33:15:ae:80:6f:8f:8a:0b:c4:a9:
92:64:a0:90:06:ae:ef:d9:18:15:c2:9b:16:3b:49:09:8a:51:
8a:0f:49:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 15 10:34:59 2024 by rpki-client on console-fra.rpki-client.org