Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/rPdnleC_hdVJq06Rt3ClCoKJ_Ms.roa
File: rPdnleC_hdVJq06Rt3ClCoKJ_Ms.roa (raw, json)
Hash identifier: 3PcX3ZVw0ztD9PDJ6z/b8xuNzxaK1bA/qvZp2P/JSDg=
Subject key identifier: AC:F7:67:95:E0:BF:85:D5:49:AB:4E:91:B7:70:A5:0A:82:89:FC:CB
Certificate issuer: /CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Certificate serial: 0190EA1B20F92CDFEF156043814268CB6228
Authority key identifier: 5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/rPdnleC_hdVJq06Rt3ClCoKJ_Ms.roa
Signing time: Thu 25 Jul 2024 13:36:04 +0000
ROA not before: Thu 25 Jul 2024 13:36:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13037
IP address blocks: 51.148.0.0/16 maxlen: 16
51.155.0.0/16 maxlen: 16
62.3.64.0/18 maxlen: 18
77.104.128.0/18 maxlen: 18
82.68.0.0/15 maxlen: 15
82.71.0.0/16 maxlen: 16
82.71.240.0/20 maxlen: 20
88.97.0.0/18 maxlen: 18
88.97.64.0/19 maxlen: 19
88.97.96.0/20 maxlen: 20
88.97.168.0/24 maxlen: 24
88.97.169.0/24 maxlen: 24
88.97.170.0/24 maxlen: 24
88.97.171.0/24 maxlen: 24
88.97.172.0/24 maxlen: 24
88.97.173.0/24 maxlen: 24
88.97.174.0/24 maxlen: 24
88.97.175.0/24 maxlen: 24
88.97.176.0/20 maxlen: 20
88.98.0.0/20 maxlen: 20
88.98.16.0/23 maxlen: 23
88.98.18.0/24 maxlen: 24
88.98.21.0/24 maxlen: 24
88.98.22.0/23 maxlen: 23
88.98.24.0/21 maxlen: 21
88.98.32.0/19 maxlen: 19
88.98.64.0/19 maxlen: 19
88.98.128.0/19 maxlen: 19
88.98.160.0/21 maxlen: 21
88.98.170.0/23 maxlen: 23
88.98.172.0/22 maxlen: 22
88.98.176.0/20 maxlen: 20
146.66.64.0/18 maxlen: 18
212.23.0.0/19 maxlen: 19
212.23.0.0/23 maxlen: 23
217.155.0.0/16 maxlen: 16
2a02:8010::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 07 Oct 2024 08:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ea:1b:20:f9:2c:df:ef:15:60:43:81:42:68:cb:62:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Validity
Not Before: Jul 25 13:36:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=acf76795e0bf85d549ab4e91b770a50a8289fccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e7:52:3d:2c:74:06:61:35:74:c9:a2:e6:3c:
f7:7f:8a:46:28:a1:58:c1:01:8b:8e:bd:6c:8e:1d:
16:76:ff:8f:a9:9a:1c:96:43:7a:bb:51:14:01:77:
66:76:ae:83:a6:8f:96:63:ce:22:9d:46:2f:1f:6c:
59:33:33:51:77:e4:2d:e9:a5:c1:b5:d2:ad:b3:98:
99:1c:8c:22:d1:e0:7b:40:13:56:d7:fd:29:90:49:
59:a7:01:56:44:47:de:ec:7d:e1:67:37:84:09:6e:
f1:86:3d:54:5d:e7:96:1f:a8:fe:8a:f5:c8:1b:c2:
22:fd:06:06:a5:a0:ea:fc:51:f9:59:c0:3d:31:cf:
59:13:13:46:ca:ad:21:8d:7a:23:84:d9:39:75:df:
72:12:f1:34:8c:b9:6d:aa:91:9d:a8:42:f3:d6:c6:
a8:52:ea:a6:22:5d:39:1b:8d:59:03:18:4d:ad:01:
c2:f6:3b:36:4d:3b:9b:e5:6d:9b:21:9a:ba:07:fe:
ff:9c:29:2d:96:3b:e4:e8:e5:4d:0c:2c:e5:b3:32:
a0:31:02:6c:cc:5f:10:bf:c2:67:d4:ac:41:fb:30:
cd:a2:9c:fa:bb:57:b9:a8:88:86:ec:f1:df:51:b6:
c5:a0:a0:ad:e3:90:3a:31:0f:32:ef:4c:93:33:0e:
c4:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F7:67:95:E0:BF:85:D5:49:AB:4E:91:B7:70:A5:0A:82:89:FC:CB
X509v3 Authority Key Identifier:
keyid:5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/rPdnleC_hdVJq06Rt3ClCoKJ_Ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/XPRQG3VQAtkUPo-mc2gV6fD5NpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.148.0.0/16
51.155.0.0/16
62.3.64.0/18
77.104.128.0/18
82.68.0.0/15
82.71.0.0/16
88.97.0.0-88.97.111.255
88.97.168.0-88.97.191.255
88.98.0.0-88.98.18.255
88.98.21.0-88.98.95.255
88.98.128.0-88.98.167.255
88.98.170.0-88.98.191.255
146.66.64.0/18
212.23.0.0/19
217.155.0.0/16
IPv6:
2a02:8010::/29
Signature Algorithm: sha256WithRSAEncryption
71:02:3c:9b:d6:44:ec:14:21:fd:fd:ab:79:ad:c8:da:c9:d2:
0d:86:c9:cb:95:2a:58:cb:f3:f6:48:02:8f:00:47:8c:ed:59:
af:8c:30:a6:a2:2e:e2:ce:c5:3f:b1:b8:40:ff:d6:d8:4a:d4:
06:7e:15:d7:23:ab:d1:3c:59:87:ef:a4:21:66:79:91:65:f9:
96:2e:9b:f4:4b:7e:91:9e:b3:04:7c:d0:5a:97:45:1d:f4:2f:
18:d2:5f:66:6e:38:d9:9c:5b:b8:40:d7:4b:03:ff:d6:34:ce:
7b:12:24:59:1e:db:9f:7a:8f:0b:87:56:95:42:02:3d:25:98:
63:52:2a:ec:6f:10:ee:31:32:15:ea:74:a2:8b:07:b3:c5:65:
cb:e5:d8:1f:d4:04:8d:84:74:e5:8c:a9:ec:94:8e:54:0c:2e:
9d:5f:87:d1:5a:c1:1c:1d:d5:0c:29:45:bb:6c:36:8b:97:f6:
fd:99:58:c4:34:b4:44:46:d8:7f:ac:9b:1d:04:7d:0e:6a:ff:
5c:43:49:cf:83:a9:21:4f:80:57:10:92:ab:7f:ee:a5:fe:3f:
17:8e:9a:c1:d7:3e:42:33:8b:50:2c:8c:09:35:f1:dd:84:1d:
c8:09:4d:16:81:4c:a2:7e:34:d7:a6:b7:0c:c1:5c:e6:1d:0e:
af:4d:99:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 7 10:52:31 2024 by rpki-client on console-ams.rpki-client.org