Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/SLglPrTd0GVO24TsDRgi5bVMin8.roa
File: SLglPrTd0GVO24TsDRgi5bVMin8.roa (raw, json)
Hash identifier: lTru+9/fpwSt839RVpWaaOipDkN+3uk8Cm0yRizMe/w=
Subject key identifier: 48:B8:25:3E:B4:DD:D0:65:4E:DB:84:EC:0D:18:22:E5:B5:4C:8A:7F
Certificate issuer: /CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Certificate serial: 01859BAA2DF89CE86A5E7AF8FD5205A1FC92
Authority key identifier: A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/SLglPrTd0GVO24TsDRgi5bVMin8.roa
Signing time: Tue 10 Jan 2023 12:31:39 +0000
ROA not before: Tue 10 Jan 2023 12:31:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41704
IP address blocks: 84.39.252.0/22 maxlen: 22
84.39.248.0/22 maxlen: 22
46.191.240.0/22 maxlen: 22
46.191.244.0/22 maxlen: 22
46.191.240.0/20 maxlen: 20
46.191.252.0/22 maxlen: 22
46.191.248.0/22 maxlen: 22
46.191.186.0/23 maxlen: 23
46.191.186.0/24 maxlen: 24
46.191.184.0/21 maxlen: 21
46.191.185.0/24 maxlen: 24
46.191.184.0/23 maxlen: 23
46.191.184.0/24 maxlen: 24
46.191.189.0/24 maxlen: 24
46.191.191.0/24 maxlen: 24
46.191.188.0/23 maxlen: 23
46.191.188.0/24 maxlen: 24
46.191.190.0/24 maxlen: 24
46.191.187.0/24 maxlen: 24
79.140.16.0/20 maxlen: 20
79.140.16.0/22 maxlen: 22
79.140.24.0/22 maxlen: 22
79.140.20.0/22 maxlen: 22
79.140.28.0/22 maxlen: 22
145.255.16.0/21 maxlen: 21
145.255.16.0/22 maxlen: 22
145.255.20.0/22 maxlen: 22
95.105.120.0/22 maxlen: 22
95.105.124.0/22 maxlen: 22
94.41.128.0/20 maxlen: 20
94.41.128.0/22 maxlen: 22
94.41.132.0/22 maxlen: 22
94.41.136.0/22 maxlen: 22
94.41.140.0/22 maxlen: 22
94.41.160.0/19 maxlen: 19
94.41.160.0/22 maxlen: 22
94.41.160.0/21 maxlen: 21
94.41.164.0/22 maxlen: 22
94.41.168.0/22 maxlen: 22
94.41.172.0/22 maxlen: 22
95.105.96.0/19 maxlen: 19
95.105.96.0/22 maxlen: 22
95.105.104.0/22 maxlen: 22
95.105.100.0/22 maxlen: 22
95.105.112.0/22 maxlen: 22
95.105.108.0/22 maxlen: 22
95.105.116.0/22 maxlen: 22
136.169.240.0/22 maxlen: 22
136.169.244.0/22 maxlen: 22
136.169.240.0/20 maxlen: 20
136.169.252.0/22 maxlen: 22
136.169.248.0/22 maxlen: 22
94.41.176.0/22 maxlen: 22
94.41.184.0/22 maxlen: 22
94.41.180.0/22 maxlen: 22
94.41.188.0/22 maxlen: 22
2a02:1c8:7::/48 maxlen: 48
2a02:1c8:700::/40 maxlen: 40
Validation: Failed, certificate revoked on Wed 11 Jan 2023 10:35:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9b:aa:2d:f8:9c:e8:6a:5e:7a:f8:fd:52:05:a1:fc:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Validity
Not Before: Jan 10 12:31:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48b8253eb4ddd0654edb84ec0d1822e5b54c8a7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:16:a9:38:04:20:e2:36:78:b1:54:a6:ff:cc:
9a:88:79:36:d1:9a:e8:7a:e9:44:9f:a6:ff:a5:e7:
47:d9:e5:a5:ee:59:20:2d:77:7a:fc:88:2d:9b:61:
a2:1e:90:04:11:58:e4:6a:38:1c:0c:71:09:f6:b9:
3c:2f:63:59:ee:ab:c3:95:4a:bf:51:b4:52:d3:94:
5c:a6:e7:94:a1:eb:9a:df:a4:a9:1f:3a:43:12:f5:
5c:4b:5f:75:32:1a:a7:1b:8c:3c:d2:2b:41:cf:e7:
9e:dc:6e:24:5b:0e:28:da:8d:f9:62:d8:67:08:67:
a0:14:41:c8:34:37:87:9a:27:9d:c3:3f:60:ec:7e:
3c:db:94:00:6e:99:d2:f1:18:75:e5:00:9c:19:15:
50:32:94:79:ce:6e:11:1b:d7:30:47:e6:27:d3:57:
a8:ab:b9:89:8d:cd:08:82:21:19:5c:8d:d6:6e:35:
7f:6d:33:13:f2:c8:aa:d2:58:2a:ce:19:1c:81:6b:
c6:d3:99:43:d6:bf:22:5a:46:53:4e:87:80:91:20:
6f:b4:cf:09:7d:75:01:ee:76:d2:e5:06:0f:59:2b:
f4:bb:7a:9d:74:af:91:a5:10:7d:15:c8:56:84:8b:
f1:d8:bc:8d:d1:26:c7:c9:7b:c2:97:bf:a8:9e:8a:
b9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B8:25:3E:B4:DD:D0:65:4E:DB:84:EC:0D:18:22:E5:B5:4C:8A:7F
X509v3 Authority Key Identifier:
keyid:A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/SLglPrTd0GVO24TsDRgi5bVMin8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/o20K5eL7_8zgh3Drwgwha5-_lIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.191.184.0/21
46.191.240.0/20
79.140.16.0/20
84.39.248.0/21
94.41.128.0/20
94.41.160.0/19
95.105.96.0/19
136.169.240.0/20
145.255.16.0/21
IPv6:
2a02:1c8:7::/48
2a02:1c8:700::/40
Signature Algorithm: sha256WithRSAEncryption
89:9b:15:f8:c3:8c:f4:19:e4:9a:e1:ea:8a:c1:8e:28:ac:35:
cd:c9:8e:42:2b:d8:fd:fd:14:14:48:f0:3f:cf:e1:a5:22:be:
fb:1f:cb:cf:38:9e:b1:61:34:0c:9f:ab:f0:82:d1:d6:59:35:
b2:96:78:42:fd:bf:7e:4b:f7:7b:40:af:25:8d:d2:14:df:9e:
1d:7c:b3:6d:41:2b:9e:25:e3:2f:9c:88:17:31:ad:c9:8b:12:
16:b3:bf:b7:95:2d:6c:07:c9:8f:ce:99:ee:b0:cb:ac:d7:1d:
b7:e3:67:ee:2b:8c:87:15:1c:56:86:2a:f3:c8:86:d8:e0:d9:
ef:38:d8:a7:0b:e6:76:3a:71:47:b7:b9:4f:95:65:94:7d:63:
99:bf:02:32:eb:fc:53:2d:76:1b:59:6a:59:05:3b:f2:10:72:
56:bc:9e:2a:01:69:80:bc:6c:c8:6f:82:8f:ce:c1:a8:0b:49:
54:d6:f3:04:38:d1:11:d8:95:b5:ae:2c:82:45:e9:eb:14:6b:
76:5f:c4:da:85:62:eb:14:c7:66:10:63:50:39:c4:1a:6f:95:
6b:4d:c7:c0:ce:1b:b6:9c:2a:d1:6e:3d:87:0e:b7:46:67:5b:
18:d6:95:c5:41:31:2c:64:f6:30:e7:4c:5c:fe:4b:f2:8d:50:
35:3e:b6:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:53 2024 by rpki-client on console-fra.rpki-client.org