Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/GIuNk3p-_vepw4EFNlFgAK6fHyA.roa
File: GIuNk3p-_vepw4EFNlFgAK6fHyA.roa (raw, json)
Hash identifier: YW6jcsAXodDn+g4lZrEZmriINaWZ8j9nDZyB4bt7gho=
Subject key identifier: 18:8B:8D:93:7A:7E:FE:F7:A9:C3:81:05:36:51:60:00:AE:9F:1F:20
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018AD17C6729B423A7FF17834F1DF18BD709
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/GIuNk3p-_vepw4EFNlFgAK6fHyA.roa
Signing time: Tue 26 Sep 2023 12:35:05 +0000
ROA not before: Tue 26 Sep 2023 12:35:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 94.26.90.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.208.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
45.141.234.0/24 maxlen: 24
45.141.235.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
94.190.195.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Sep 2023 16:53:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d1:7c:67:29:b4:23:a7:ff:17:83:4f:1d:f1:8b:d7:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Sep 26 12:35:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=188b8d937a7efef7a9c3810536516000ae9f1f20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:83:7e:5c:60:94:3c:26:66:9b:6b:ef:79:51:
9a:4a:60:3f:46:66:9f:75:6d:17:11:43:ac:2e:ae:
9b:58:6f:5a:4f:0a:da:c9:9a:dc:57:85:40:7e:b4:
1d:0e:36:3d:22:84:41:a5:33:cd:e7:aa:8a:2d:cf:
d8:41:86:24:5c:65:3c:30:83:63:d1:00:5c:8c:5c:
04:c0:a7:56:f2:83:44:5a:44:91:a3:a0:e3:c0:3a:
3a:a2:07:a5:a2:35:46:a0:08:04:06:f5:e1:d7:33:
51:5b:fe:0c:4c:ad:42:eb:8e:92:bd:6d:86:8b:ce:
46:3e:af:55:e5:aa:9d:c2:86:9d:d3:d4:cd:93:87:
42:f1:fe:f2:19:0c:eb:7d:47:cc:cf:8e:87:6b:a5:
23:f5:e4:5f:35:dd:4a:06:81:64:17:d5:26:ca:05:
b9:a5:ca:bf:a3:62:7e:a9:3b:f4:da:df:f6:ad:3a:
7e:ce:90:9e:e3:c5:5f:42:ff:94:24:99:b4:41:61:
39:89:fd:7a:fd:5f:e8:ad:43:6c:61:c5:09:86:d8:
04:0c:60:9c:b4:ae:07:7b:4b:ce:a5:44:56:53:17:
26:8f:8a:d4:08:ab:e9:71:18:c7:36:bf:62:ed:fd:
bf:10:c8:55:56:d6:b4:22:ae:5f:e5:2f:04:10:ae:
56:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:8B:8D:93:7A:7E:FE:F7:A9:C3:81:05:36:51:60:00:AE:9F:1F:20
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/GIuNk3p-_vepw4EFNlFgAK6fHyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.234.0/23
78.159.131.0/24
93.152.205.0/24
93.152.208.0/24
93.152.211.0/24
93.152.214.0-93.152.216.255
93.152.220.0/23
93.152.225.0/24
93.152.230.0/24
94.26.90.0/24
94.190.195.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:25:5f:48:c6:5f:2f:0c:18:13:47:0f:8b:41:ce:6c:95:28:
5c:67:0b:14:5b:19:19:5a:e2:d1:f9:3f:66:53:14:5a:09:02:
af:bd:c6:cc:df:9c:84:d8:b6:eb:15:0d:79:e1:c0:04:4c:be:
0e:a9:ad:b5:4a:03:5b:fb:1b:8e:ec:ec:d2:33:90:19:03:95:
62:63:63:24:c6:9d:f0:4d:54:a3:c3:08:6a:23:30:58:13:4a:
f6:ee:69:07:f5:85:23:c0:7a:85:04:46:73:5a:e3:8f:32:cc:
b6:81:ac:41:28:c0:45:0a:68:c4:5e:e1:bf:21:b3:fe:1e:6a:
22:5f:27:a6:6d:ba:f5:b3:47:4d:83:d2:75:b8:15:7e:5e:d8:
b5:7f:41:1f:f0:6d:39:dd:fe:d1:1e:c1:a8:76:00:b1:7a:32:
b5:cc:88:e1:3d:b4:91:b9:f0:13:64:8a:23:1a:c0:a0:29:00:
91:41:fd:87:a6:27:24:19:b5:02:29:11:54:70:41:40:27:26:
80:98:86:a9:47:a3:dc:d6:80:15:04:ec:71:f2:50:69:be:2c:
28:ba:3f:21:df:ca:25:7c:ad:f1:37:ff:26:e9:7a:c1:33:5e:
65:73:e6:78:9c:8d:8b:5d:0f:80:d1:9b:33:9a:3c:b8:9f:b3:
f4:3b:7a:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:26 2024 by rpki-client on console-ams.rpki-client.org