Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/zDIWjBVtGQiGQEcmeroYzo8fdDk.roa
File: zDIWjBVtGQiGQEcmeroYzo8fdDk.roa (raw, json)
Hash identifier: 6iOVfVEXRrS5lx4eX0ufArKSdWCIyVqoHNRbXVaeXGs=
Subject key identifier: CC:32:16:8C:15:6D:19:08:86:40:47:26:7A:BA:18:CE:8F:1F:74:39
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01918D9E3B3B813498BEA15DA084E4BF267C
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/zDIWjBVtGQiGQEcmeroYzo8fdDk.roa
Signing time: Mon 26 Aug 2024 07:37:22 +0000
ROA not before: Mon 26 Aug 2024 07:37:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 2.58.148.0/22 maxlen: 24
45.91.149.0/24 maxlen: 24
45.143.53.0/24 maxlen: 24
45.145.44.0/23 maxlen: 24
45.145.47.0/24 maxlen: 24
62.197.144.0/24 maxlen: 24
62.197.147.0/24 maxlen: 24
62.197.148.0/24 maxlen: 24
62.197.150.0/24 maxlen: 24
62.197.152.0/24 maxlen: 24
84.247.25.0/24 maxlen: 24
84.247.26.0/24 maxlen: 24
89.33.84.0/24 maxlen: 24
89.37.62.0/24 maxlen: 24
92.62.121.0/24 maxlen: 24
94.103.249.0/24 maxlen: 24
94.103.250.0/24 maxlen: 24
185.184.134.0/24 maxlen: 24
185.205.190.0/24 maxlen: 24
185.239.241.0/24 maxlen: 24
185.244.137.0/24 maxlen: 24
185.245.5.0/24 maxlen: 24
188.240.68.0/24 maxlen: 24
188.240.74.0/24 maxlen: 24
193.19.108.0/24 maxlen: 24
193.218.32.0/24 maxlen: 24
193.239.164.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Aug 2024 18:23:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8d:9e:3b:3b:81:34:98:be:a1:5d:a0:84:e4:bf:26:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Aug 26 07:37:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc32168c156d1908864047267aba18ce8f1f7439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4d:31:7f:94:a1:53:4f:b3:76:2b:ea:70:2e:
c8:3d:dd:83:d2:ba:2c:8e:61:7b:85:37:db:db:90:
02:d4:c9:cd:83:08:69:bd:68:fd:98:ed:a0:61:8b:
b8:60:53:3b:a4:33:24:3d:76:5d:16:eb:6b:d9:57:
a4:85:97:69:f6:7b:1e:8f:72:0a:d3:b2:4f:ee:05:
af:4d:3c:36:08:f7:30:b1:5f:78:2b:3b:8a:7e:ed:
ac:4b:af:00:30:aa:2e:cc:3d:a4:4c:40:9c:2d:6f:
20:72:70:8e:f3:c3:41:64:8e:a5:eb:73:2d:de:06:
04:07:fd:d1:51:d2:2e:33:2f:bb:7c:f4:08:13:79:
34:af:f4:bf:3b:ef:b8:7b:33:52:3d:8f:4a:f8:8b:
b3:e1:7a:f9:58:ca:44:e8:99:4f:b0:43:be:43:c5:
48:fe:9e:f1:af:b6:92:dc:a3:76:d8:95:d9:7a:13:
b6:82:ae:6c:7c:55:7c:e9:f4:b2:24:07:db:32:74:
0b:77:c4:50:f3:5f:ba:8b:8a:bc:0a:a5:58:ce:4a:
45:bd:2f:92:e0:4f:00:8e:17:0c:61:b8:36:60:e1:
d5:f9:ad:09:9b:dc:75:99:cb:e8:aa:7c:79:3b:61:
1b:47:3c:cb:47:a9:60:8c:26:03:73:e4:83:35:24:
13:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:32:16:8C:15:6D:19:08:86:40:47:26:7A:BA:18:CE:8F:1F:74:39
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/zDIWjBVtGQiGQEcmeroYzo8fdDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.148.0/22
45.91.149.0/24
45.143.53.0/24
45.145.44.0/23
45.145.47.0/24
62.197.144.0/24
62.197.147.0-62.197.148.255
62.197.150.0/24
62.197.152.0/24
84.247.25.0-84.247.26.255
89.33.84.0/24
89.37.62.0/24
92.62.121.0/24
94.103.249.0-94.103.250.255
185.184.134.0/24
185.205.190.0/24
185.239.241.0/24
185.244.137.0/24
185.245.5.0/24
188.240.68.0/24
188.240.74.0/24
193.19.108.0/24
193.218.32.0/24
193.239.164.0/23
Signature Algorithm: sha256WithRSAEncryption
13:23:89:f4:7f:d5:33:a3:71:e5:cf:af:93:32:27:f3:b8:ca:
d7:be:d4:d6:42:84:dd:0f:3e:a8:61:2a:36:0d:d2:cc:83:04:
25:9f:1e:75:32:ce:a4:88:47:9e:e1:ba:dd:a8:db:11:7c:7e:
e1:77:cc:2c:5b:ac:b2:6c:07:b9:e5:f7:04:25:25:d9:e1:b9:
4b:4d:14:3e:f2:b4:25:e2:f9:f6:0e:cf:61:89:e1:84:0a:3a:
ab:c9:53:1c:ca:c2:e5:7a:0a:54:2e:6e:00:48:29:77:25:17:
b3:68:55:96:83:eb:11:96:8b:be:46:05:dc:c7:d1:2d:24:45:
43:24:5f:22:1a:07:85:bc:da:2d:7f:04:dc:80:28:55:73:f1:
b7:70:c4:d6:d0:6b:c5:81:c1:75:ab:9c:82:6f:e7:04:22:33:
cd:a5:22:eb:40:18:60:ff:69:fa:d2:3c:26:89:0c:ab:7f:78:
53:37:d1:00:5a:92:d2:c1:c3:15:2c:db:2e:b4:32:80:30:33:
c9:ee:4b:5f:66:ae:a3:f0:a3:72:cf:1c:45:0f:6a:59:4d:9f:
af:59:43:ef:96:fc:83:5b:d2:9d:30:a4:89:3b:02:5e:5a:6f:
3a:b6:57:c0:3d:42:00:69:33:f2:01:67:2f:d3:59:f0:e1:68:
5c:da:e1:59
-----BEGIN CERTIFICATE-----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Generated at Thu Aug 29 19:08:46 2024 by rpki-client on console-fra.rpki-client.org