Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/dbIn--ZY0B4-LS1f3CFGgWXKteE.roa
File: dbIn--ZY0B4-LS1f3CFGgWXKteE.roa (raw, json)
Hash identifier: m7OV7YVq18RwhhVqRoM348ByHO20JWcElgEXWdgGiOg=
Subject key identifier: 75:B2:27:FB:E6:58:D0:1E:3E:2D:2D:5F:DC:21:46:81:65:CA:B5:E1
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 018BA424CA0558F825F3CC35C6B2D1F3B82D
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/dbIn--ZY0B4-LS1f3CFGgWXKteE.roa
Signing time: Mon 06 Nov 2023 10:19:16 +0000
ROA not before: Mon 06 Nov 2023 10:19:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206119
IP address blocks: 193.36.62.0/24 maxlen: 24
185.237.81.0/24 maxlen: 24
185.237.80.0/24 maxlen: 24
185.205.16.0/24 maxlen: 24
185.205.18.0/24 maxlen: 24
185.254.93.0/24 maxlen: 24
194.145.136.0/24 maxlen: 24
185.86.82.0/24 maxlen: 24
2a0d:d386::/32 maxlen: 32
2a0c:586::/32 maxlen: 32
2a0c:4a40::/32 maxlen: 32
2a0d:d387::/32 maxlen: 32
2a0c:587::/32 maxlen: 32
2a0c:584::/32 maxlen: 32
2a0a:fa42::/32 maxlen: 32
2a0c:4a46::/32 maxlen: 32
2a0c:4a42::/32 maxlen: 32
2a0a:fa46::/32 maxlen: 32
2a0c:4a43::/32 maxlen: 32
2a0d:d385::/32 maxlen: 32
2a0c:585::/32 maxlen: 32
2a0c:582::/32 maxlen: 32
2a0a:fa44::/32 maxlen: 32
2a0c:4a44::/32 maxlen: 32
2a0d:d382::/32 maxlen: 32
2a0d:d383::/32 maxlen: 32
2a0c:4a45::/32 maxlen: 32
2a0a:fa43::/32 maxlen: 32
2a0c:581::/32 maxlen: 32
2a0a:fa45::/32 maxlen: 32
2a0d:d381::/32 maxlen: 32
2a0c:580::/32 maxlen: 32
2a0d:d384::/32 maxlen: 32
2a0d:d380::/32 maxlen: 32
2a0c:4a47::/32 maxlen: 32
2a0a:fa47::/32 maxlen: 32
2a0c:583::/32 maxlen: 32
2a0c:4a41::/32 maxlen: 32
2a0a:fa41::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a4:24:ca:05:58:f8:25:f3:cc:35:c6:b2:d1:f3:b8:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Nov 6 10:19:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75b227fbe658d01e3e2d2d5fdc21468165cab5e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:da:d1:7c:26:30:5b:e8:85:6d:04:b6:73:18:
68:f3:68:89:54:88:ee:47:be:d3:32:76:b2:3f:e0:
eb:88:24:5e:3f:9a:33:5f:92:68:88:05:e8:b1:98:
8d:ca:c6:9a:8b:2c:42:ef:4a:7b:da:f7:5e:19:4e:
0c:18:94:67:22:fd:3d:b2:9e:a9:6c:39:e3:14:86:
1c:72:d2:63:26:cb:c2:69:d4:09:66:01:d3:3a:3c:
a0:a6:72:f5:fb:c4:4a:91:33:e2:7b:a6:55:ba:21:
9b:0b:4d:ec:d1:0f:04:71:94:ad:d7:cb:40:88:90:
5d:ec:7e:a2:af:dd:e6:18:3f:cc:60:b4:bc:1e:b3:
41:ac:ee:b8:4b:bc:54:da:3f:f5:05:e4:03:d9:f4:
50:11:cb:e3:1c:fe:59:4b:df:4c:39:4f:d7:e0:d7:
a3:31:ab:d7:56:8a:5e:22:e2:83:84:e4:ba:98:de:
ee:a7:94:33:55:3d:b5:5e:da:b9:9f:56:24:e8:63:
cf:6e:60:4c:72:19:ea:06:c2:38:f6:0a:70:17:08:
e2:94:91:46:05:56:f8:7a:16:24:d7:78:96:3c:fb:
ae:a7:f8:43:bc:1a:46:5e:a9:d3:40:53:d2:c3:f0:
be:11:1f:eb:28:53:59:e9:08:e4:73:f6:a4:4d:80:
dc:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:B2:27:FB:E6:58:D0:1E:3E:2D:2D:5F:DC:21:46:81:65:CA:B5:E1
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/dbIn--ZY0B4-LS1f3CFGgWXKteE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.82.0/24
185.205.16.0/24
185.205.18.0/24
185.237.80.0/23
185.254.93.0/24
193.36.62.0/24
194.145.136.0/24
IPv6:
2a0a:fa41::-2a0a:fa47:ffff:ffff:ffff:ffff:ffff:ffff
2a0c:580::/29
2a0c:4a40::/29
2a0d:d380::/29
Signature Algorithm: sha256WithRSAEncryption
10:f8:34:ee:ec:f5:85:7e:6e:13:5b:12:50:f8:a2:7e:38:d4:
2f:0f:f5:c6:d8:09:be:fc:0c:0a:ff:a6:c1:c6:7f:2e:17:a8:
70:2d:5f:66:1b:21:e2:84:fc:29:cb:63:d6:fe:f4:93:91:e4:
02:82:30:4c:2e:65:22:9e:21:34:77:82:bf:38:e5:6a:8b:12:
70:c9:e5:61:31:bd:3b:f4:14:ef:ec:89:4c:e8:b1:fd:4b:7e:
ff:58:e8:18:05:5a:3c:8a:da:e7:85:5c:80:7e:12:e2:24:6b:
20:25:2d:ae:cc:29:6e:08:31:a9:23:d8:ad:12:00:96:e8:4a:
06:4f:ef:b8:c1:10:39:5a:c4:f6:5e:91:ce:bc:84:3d:b3:d3:
a6:74:5c:bf:ad:a0:7b:f1:cc:d1:84:a7:3e:f5:93:f1:83:b3:
6f:12:ee:62:fe:7d:4f:f3:dd:0d:7d:c4:d2:20:26:22:35:d7:
3b:5e:ae:a9:60:81:d2:2f:d7:2e:05:bc:3d:41:34:97:5e:04:
26:70:d4:b6:a7:61:32:d0:fb:27:5d:40:40:34:9e:11:5b:99:
43:7d:0b:a2:18:97:da:55:15:ef:26:78:4c:be:24:08:d3:ac:
90:8c:cd:86:a9:0b:2b:e5:61:8c:76:73:7a:e2:2e:1e:13:c7:
11:26:d0:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:52 2024 by rpki-client on console-ams.rpki-client.org