Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/iW3iZK6PfeBkfiB5xU9LtT2DlbQ.roa
File: iW3iZK6PfeBkfiB5xU9LtT2DlbQ.roa (raw, json)
Hash identifier: raZbGvY/Sp5nEzMs3dlvKfyMlY4RZkyESFj+pBg3oj0=
Subject key identifier: 89:6D:E2:64:AE:8F:7D:E0:64:7E:20:79:C5:4F:4B:B5:3D:83:95:B4
Certificate issuer: /CN=411dea53467b6c7143eb23d284569a8183b2e82f
Certificate serial: 018BF1A9D8791C3B838BC03110A7340B2DBF
Authority key identifier: 41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/iW3iZK6PfeBkfiB5xU9LtT2DlbQ.roa
Signing time: Tue 21 Nov 2023 11:35:21 +0000
ROA not before: Tue 21 Nov 2023 11:35:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44679
IP address blocks: 185.193.55.0/24 maxlen: 24
185.193.52.0/24 maxlen: 24
185.193.54.0/24 maxlen: 24
185.193.53.0/24 maxlen: 24
84.239.4.0/24 maxlen: 24
84.239.11.0/24 maxlen: 24
84.239.8.0/24 maxlen: 24
84.239.9.0/24 maxlen: 24
84.239.15.0/24 maxlen: 24
84.239.14.0/24 maxlen: 24
84.239.32.0/24 maxlen: 24
84.239.34.0/24 maxlen: 24
84.239.36.0/24 maxlen: 24
84.239.35.0/24 maxlen: 24
84.239.38.0/24 maxlen: 24
84.239.39.0/24 maxlen: 24
84.239.40.0/24 maxlen: 24
84.239.44.0/24 maxlen: 24
84.239.49.0/24 maxlen: 24
84.239.51.0/24 maxlen: 24
84.239.46.0/24 maxlen: 24
84.239.55.0/24 maxlen: 24
84.239.57.0/24 maxlen: 24
84.239.56.0/24 maxlen: 24
84.239.58.0/24 maxlen: 24
84.239.59.0/24 maxlen: 24
84.239.62.0/24 maxlen: 24
84.239.63.0/24 maxlen: 24
2a02:2160:8000::/36 maxlen: 36
Validation: Failed, certificate revoked on Tue 19 Dec 2023 10:46:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f1:a9:d8:79:1c:3b:83:8b:c0:31:10:a7:34:0b:2d:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411dea53467b6c7143eb23d284569a8183b2e82f
Validity
Not Before: Nov 21 11:35:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=896de264ae8f7de0647e2079c54f4bb53d8395b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:79:f0:21:08:ae:52:00:bd:b1:97:17:41:3e:
a5:c6:00:23:3e:88:1b:b3:2c:18:78:f2:00:fc:48:
02:47:a5:b9:f1:69:ed:ab:cd:77:fc:3c:5c:83:84:
dc:05:ca:10:45:0b:bf:ad:f8:f9:e6:e5:ea:31:b5:
41:e6:f4:4b:ed:13:b1:f3:58:c6:62:28:98:72:4a:
5a:c0:b3:a6:6c:c9:02:67:d0:b9:7c:80:96:19:f5:
6a:59:17:de:7a:a9:cc:69:52:fb:36:02:e9:49:22:
4a:bc:90:ff:3b:8b:f8:7a:c2:d3:9a:9d:86:a4:c8:
d9:e7:0a:89:61:25:07:8a:84:07:8a:50:6d:4c:04:
2c:9d:d5:cb:04:9e:7e:ad:5b:b8:5b:ec:84:04:b0:
30:93:7c:14:c7:29:ab:de:13:29:b9:fb:fa:aa:9b:
f0:bd:c6:7d:61:25:82:be:3d:cd:83:28:91:fe:42:
57:d1:0d:25:71:4f:5e:74:a4:89:b3:c2:6f:65:81:
82:7e:08:2c:ce:7e:b9:cb:77:fb:96:6f:37:bf:b2:
51:12:a6:96:a9:56:80:ad:e2:aa:2b:3b:13:da:25:
12:1d:15:21:01:0d:9c:ec:2f:35:21:2d:31:9d:a8:
ba:a3:87:6d:ff:15:b7:24:f0:31:60:bf:9b:ad:b6:
4f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:6D:E2:64:AE:8F:7D:E0:64:7E:20:79:C5:4F:4B:B5:3D:83:95:B4
X509v3 Authority Key Identifier:
keyid:41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/iW3iZK6PfeBkfiB5xU9LtT2DlbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.239.4.0/24
84.239.8.0/23
84.239.11.0/24
84.239.14.0/23
84.239.32.0/24
84.239.34.0-84.239.36.255
84.239.38.0-84.239.40.255
84.239.44.0/24
84.239.46.0/24
84.239.49.0/24
84.239.51.0/24
84.239.55.0-84.239.59.255
84.239.62.0/23
185.193.52.0/22
IPv6:
2a02:2160:8000::/36
Signature Algorithm: sha256WithRSAEncryption
82:ce:7a:e1:e0:cf:e7:14:f8:e2:3d:ec:5d:cf:5e:b6:7c:3e:
d0:dc:fe:8e:af:05:55:3c:23:e9:12:b8:14:d3:1d:f9:75:19:
9b:27:04:1e:6e:74:0f:33:6c:e7:c5:ef:05:ff:23:fa:77:e2:
d0:70:9e:b4:05:10:bb:88:0e:3a:e6:fc:a0:75:62:35:28:a2:
95:0a:40:a1:45:c0:19:f2:1e:18:f5:93:67:f6:c3:55:04:68:
d7:a1:84:32:f6:9b:ba:1d:a2:09:d4:f9:b5:78:42:90:ce:2c:
89:a4:05:11:31:fe:eb:2c:09:33:32:2a:4f:1f:a3:fc:42:96:
c7:27:c9:46:8c:3f:08:f2:3f:9d:6c:ef:bb:65:d3:bc:58:4d:
51:09:d4:e8:6a:61:d6:f3:f2:dd:d2:38:3b:d8:38:7b:f0:99:
03:28:7a:44:4f:7f:b0:3e:dd:69:71:1d:0c:17:4f:a2:4d:b8:
22:81:e7:8a:ff:c0:68:a7:b9:25:98:cf:6c:82:13:d1:af:1c:
b2:29:12:45:8f:b2:a8:9f:1b:ca:cd:b3:7b:ea:f5:0a:29:f3:
26:26:f5:3d:1f:0d:1e:63:7d:d3:3e:cd:48:ed:97:73:ac:a0:
8e:27:77:9d:c0:93:b2:e8:2f:ba:91:ec:dc:54:7c:0b:da:3d:
3d:4e:d3:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:54 2024 by rpki-client on console-ams.rpki-client.org