Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/8pLNSNdFGnJRG4e4QhpyfEuyrMs.roa
File: 8pLNSNdFGnJRG4e4QhpyfEuyrMs.roa (raw, json)
Hash identifier: kWK+2+tQ1OLob2gNo5WFdPN0Q05DHjylOM8YuzGbF14=
Subject key identifier: F2:92:CD:48:D7:45:1A:72:51:1B:87:B8:42:1A:72:7C:4B:B2:AC:CB
Certificate issuer: /CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Certificate serial: 018A26FCB6B497B274A55BF64F8A3BEB3521
Authority key identifier: 5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/8pLNSNdFGnJRG4e4QhpyfEuyrMs.roa
Signing time: Thu 24 Aug 2023 10:00:10 +0000
ROA not before: Thu 24 Aug 2023 10:00:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13037
IP address blocks: 212.23.0.0/19 maxlen: 19
82.71.240.0/20 maxlen: 20
88.97.64.0/19 maxlen: 19
88.98.160.0/21 maxlen: 21
88.98.172.0/22 maxlen: 22
88.98.170.0/23 maxlen: 23
88.98.176.0/20 maxlen: 20
88.97.0.0/18 maxlen: 18
51.148.0.0/16 maxlen: 16
88.97.128.0/17 maxlen: 17
62.3.64.0/18 maxlen: 18
51.170.0.0/16 maxlen: 18
88.97.96.0/20 maxlen: 20
88.97.112.0/20 maxlen: 20
88.98.0.0/20 maxlen: 20
88.98.16.0/23 maxlen: 23
88.98.24.0/21 maxlen: 21
88.98.22.0/23 maxlen: 23
88.98.21.0/24 maxlen: 24
88.98.18.0/24 maxlen: 24
88.96.0.0/16 maxlen: 16
51.155.0.0/16 maxlen: 16
217.155.0.0/16 maxlen: 16
82.68.0.0/14 maxlen: 14
88.98.128.0/19 maxlen: 19
88.98.32.0/19 maxlen: 19
88.98.64.0/19 maxlen: 19
2a02:8010::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 24 Aug 2023 10:53:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:26:fc:b6:b4:97:b2:74:a5:5b:f6:4f:8a:3b:eb:35:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Validity
Not Before: Aug 24 10:00:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f292cd48d7451a72511b87b8421a727c4bb2accb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:78:90:a3:69:db:85:9d:77:2d:59:96:ee:8d:
8a:92:81:e5:5e:6b:9e:4c:83:3f:82:fe:02:c8:2d:
41:79:ce:ec:02:a7:45:50:6b:25:9c:93:57:88:a3:
b4:8d:44:0e:57:3f:c4:b4:a0:83:70:2d:e4:23:af:
e6:81:c5:c6:b6:98:6a:aa:4e:e3:0d:8a:59:3f:68:
ab:4b:0a:21:05:e2:c6:0c:5f:e4:70:28:4b:15:b7:
fd:59:9a:90:61:8c:e6:11:74:3a:9b:23:86:85:08:
c3:40:74:96:fb:74:ce:d3:74:8d:c2:fc:6d:d3:db:
78:c5:4a:36:b2:c2:21:96:88:6b:f2:f7:2a:73:47:
d3:72:1b:61:fc:e7:1f:90:11:2d:75:4a:11:ab:06:
81:16:91:77:bb:4e:08:1b:7a:4c:64:a3:79:d3:ff:
f9:e5:36:6b:f1:93:a9:e5:08:28:d3:e4:e7:5e:27:
2d:25:43:f7:b0:41:b1:e9:87:6b:45:40:e7:b4:c9:
a3:af:f7:91:d4:a5:82:56:31:07:9e:e5:f9:6f:70:
a4:f5:1f:40:64:73:69:47:9e:13:d8:ee:77:72:cf:
6a:b4:75:7c:5a:23:2b:b0:de:01:c9:e4:6a:53:cb:
5d:d5:7a:07:01:5e:a6:27:d8:1c:7e:fd:8c:b1:83:
03:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:92:CD:48:D7:45:1A:72:51:1B:87:B8:42:1A:72:7C:4B:B2:AC:CB
X509v3 Authority Key Identifier:
keyid:5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/8pLNSNdFGnJRG4e4QhpyfEuyrMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/XPRQG3VQAtkUPo-mc2gV6fD5NpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.148.0.0/16
51.155.0.0/16
51.170.0.0/16
62.3.64.0/18
82.68.0.0/14
88.96.0.0-88.98.18.255
88.98.21.0-88.98.95.255
88.98.128.0-88.98.167.255
88.98.170.0-88.98.191.255
212.23.0.0/19
217.155.0.0/16
IPv6:
2a02:8010::/29
Signature Algorithm: sha256WithRSAEncryption
5a:ed:f1:93:d0:19:3d:7e:61:ab:82:25:a6:48:09:a0:81:93:
c2:c1:10:a9:f3:f4:15:88:c6:f7:6a:5a:5e:da:83:43:ca:8b:
5a:1e:1c:72:1e:16:db:b2:ac:95:b3:0a:93:a8:1c:fc:a5:ef:
9f:11:bd:05:fe:1b:3a:0d:4e:2c:97:10:8d:6a:f3:9d:c9:3f:
e9:11:59:1a:85:2a:92:ac:dd:fa:8d:25:fc:2f:e0:7a:c5:87:
38:20:cc:e3:c5:2a:22:98:49:85:61:bf:c9:06:e7:9c:5e:b1:
3a:8d:07:da:62:42:5f:8a:f3:ab:ed:b0:ce:7b:54:2b:af:2a:
11:3a:0b:2a:2f:2d:4d:fa:e5:e6:38:fc:02:27:10:55:0c:6a:
f2:a3:a1:5e:f4:93:67:42:c0:82:43:f1:61:fd:fd:53:bc:2f:
a9:be:29:83:80:82:b5:39:91:3b:af:e0:20:f9:76:cd:51:d9:
38:bf:d7:58:03:a4:a0:da:b8:d8:bd:17:58:2b:fe:6b:ae:57:
90:78:83:4c:8e:47:a4:d6:96:07:3f:38:00:46:b3:a6:4c:8f:
8c:9c:90:10:c3:b5:82:c0:5c:e9:6a:1f:f1:6c:f3:b6:68:db:
18:7a:d1:ab:61:b1:f7:a2:00:e2:d5:a8:82:ea:53:12:a8:3c:
88:0e:47:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:53 2024 by rpki-client on console-ams.rpki-client.org