Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/F4PVauUAp6E_IPYBRWgLNPKS3Tc.roa
File: F4PVauUAp6E_IPYBRWgLNPKS3Tc.roa (raw, json)
Hash identifier: 1LTntcj+KUX8dEm5R+tjbk09Z/l61G/wVtOKTFaZQOI=
Subject key identifier: 17:83:D5:6A:E5:00:A7:A1:3F:20:F6:01:45:68:0B:34:F2:92:DD:37
Certificate issuer: /CN=9f26ac9eeb3a2cfa2f6ca3f413efb9cdffe9724e
Certificate serial: 018DEB65B70C57FC73B2891F1D383FC87B42
Authority key identifier: 9F:26:AC:9E:EB:3A:2C:FA:2F:6C:A3:F4:13:EF:B9:CD:FF:E9:72:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyasnus6LPovbKP0E--5zf_pck4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/F4PVauUAp6E_IPYBRWgLNPKS3Tc.roa
Signing time: Tue 27 Feb 2024 16:28:48 +0000
ROA not before: Tue 27 Feb 2024 16:28:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43915
IP address blocks: 45.66.36.0/22 maxlen: 22
62.169.148.0/23 maxlen: 23
79.135.122.0/23 maxlen: 24
87.117.64.0/22 maxlen: 22
87.117.68.0/23 maxlen: 23
91.239.57.0/24 maxlen: 24
94.154.184.0/22 maxlen: 24
109.224.224.0/22 maxlen: 24
109.224.224.0/23 maxlen: 23
109.224.226.0/23 maxlen: 24
109.224.234.0/23 maxlen: 24
109.224.240.0/23 maxlen: 24
144.178.104.0/23 maxlen: 23
144.178.118.0/23 maxlen: 23
144.178.252.0/23 maxlen: 23
147.189.156.0/22 maxlen: 24
147.189.214.0/24 maxlen: 24
176.116.116.0/22 maxlen: 22
178.248.128.0/21 maxlen: 21
185.23.254.0/23 maxlen: 24
185.147.184.0/22 maxlen: 22
185.161.4.0/22 maxlen: 22
185.231.136.0/21 maxlen: 21
193.35.146.0/23 maxlen: 23
194.105.134.0/23 maxlen: 24
194.145.242.0/23 maxlen: 24
194.146.160.0/22 maxlen: 24
195.206.172.0/22 maxlen: 24
212.59.72.0/21 maxlen: 24
213.225.224.0/22 maxlen: 24
217.14.184.0/21 maxlen: 21
217.20.244.0/22 maxlen: 24
2a07:5940::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 03 Apr 2024 14:46:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:eb:65:b7:0c:57:fc:73:b2:89:1f:1d:38:3f:c8:7b:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f26ac9eeb3a2cfa2f6ca3f413efb9cdffe9724e
Validity
Not Before: Feb 27 16:28:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1783d56ae500a7a13f20f60145680b34f292dd37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c2:0d:6e:a0:45:ec:a9:3a:09:5a:18:39:f9:
fb:b1:99:ca:86:3c:08:c4:de:d3:a2:28:74:61:04:
1c:78:6a:4b:ef:73:29:1f:22:f5:d6:03:c4:8f:04:
c7:81:d8:d7:e1:69:f2:58:9f:5c:9e:6e:cf:ce:b2:
f3:fa:81:28:02:6c:4c:4c:0a:18:a6:d6:7f:c2:8e:
b2:6e:7f:22:b9:43:fa:f2:f3:f4:f1:26:b6:ff:4d:
6b:d4:eb:19:d0:82:1f:85:80:a4:55:c1:77:dc:a4:
e9:16:e6:fb:47:d1:04:4a:76:e8:aa:ef:fc:bb:bc:
57:fb:b3:5d:aa:20:69:dc:2a:7c:62:ad:6f:89:bd:
ba:51:3f:f2:10:e5:ec:2a:d6:1d:07:fe:ef:c0:e3:
53:94:00:cb:38:13:62:66:de:d7:16:83:16:5e:29:
be:b2:82:e1:bc:95:06:e8:5a:38:a9:5b:e5:04:59:
c5:46:97:20:f4:c2:54:a9:47:aa:2d:47:b8:0a:7b:
9d:fb:32:8b:f1:b2:0f:2d:c1:b5:49:05:31:60:24:
ce:de:6b:40:cf:02:df:31:a2:36:91:8a:e7:09:7b:
55:bb:99:5b:04:ad:d4:4c:10:b0:b3:68:0d:2e:e5:
ee:0d:a4:29:7f:ba:34:55:50:43:f9:6c:14:d5:f4:
84:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:83:D5:6A:E5:00:A7:A1:3F:20:F6:01:45:68:0B:34:F2:92:DD:37
X509v3 Authority Key Identifier:
keyid:9F:26:AC:9E:EB:3A:2C:FA:2F:6C:A3:F4:13:EF:B9:CD:FF:E9:72:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyasnus6LPovbKP0E--5zf_pck4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/F4PVauUAp6E_IPYBRWgLNPKS3Tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/nyasnus6LPovbKP0E--5zf_pck4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.36.0/22
62.169.148.0/23
79.135.122.0/23
87.117.64.0-87.117.69.255
91.239.57.0/24
94.154.184.0/22
109.224.224.0/22
109.224.234.0/23
109.224.240.0/23
144.178.104.0/23
144.178.118.0/23
144.178.252.0/23
147.189.156.0/22
147.189.214.0/24
176.116.116.0/22
178.248.128.0/21
185.23.254.0/23
185.147.184.0/22
185.161.4.0/22
185.231.136.0/21
193.35.146.0/23
194.105.134.0/23
194.145.242.0/23
194.146.160.0/22
195.206.172.0/22
212.59.72.0/21
213.225.224.0/22
217.14.184.0/21
217.20.244.0/22
IPv6:
2a07:5940::/32
Signature Algorithm: sha256WithRSAEncryption
43:eb:09:f3:da:c0:21:33:80:4f:d0:8f:8a:bb:99:19:d5:f7:
f9:5e:87:37:7d:ce:8e:76:e7:f9:3d:7b:96:af:af:3c:51:74:
fd:7e:4f:c0:a8:56:43:cf:92:bb:db:9c:3c:20:c8:00:d9:c5:
13:ab:8c:c4:3a:20:25:ee:8a:58:68:6b:a0:f6:79:b3:b3:d7:
75:a3:c4:c7:c3:13:4a:26:f1:8a:f3:17:d9:9d:8a:d1:7f:30:
fe:5d:be:95:cc:95:3c:c8:93:78:df:c1:7e:1f:bb:cf:3c:da:
0a:31:3a:2f:e6:f0:14:a9:08:d4:59:df:43:bd:5c:8e:4a:11:
dc:13:aa:f8:46:fd:a0:06:77:37:b3:01:75:65:af:e9:f8:bf:
6b:f0:2f:5f:8f:d3:51:7b:9b:c6:7c:18:c6:2c:46:99:7c:c0:
3c:8d:05:40:59:ec:21:4c:d5:4b:04:69:62:79:8b:2a:77:b0:
c5:ed:b5:98:88:6a:22:d8:93:5a:88:63:bb:86:47:01:55:07:
e4:e9:17:85:63:16:b6:b7:7e:16:49:81:f2:17:f7:79:18:83:
8f:3f:eb:ec:a8:04:85:9f:4a:c3:38:80:fd:da:73:50:e6:3c:
c4:49:7d:39:0d:f2:da:8f:b4:44:d8:ce:1e:b7:b9:02:07:7d:
cb:5f:d1:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:39 2025 by rpki-client