Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/8MseZhHNtL2ugtAImrNOom68TVs.roa
File: 8MseZhHNtL2ugtAImrNOom68TVs.roa (raw, json)
Hash identifier: sBAPKz9XcFv254wdaVAciH6c9bIGI0zuJEc0OGjuZzQ=
Subject key identifier: F0:CB:1E:66:11:CD:B4:BD:AE:82:D0:08:9A:B3:4E:A2:6E:BC:4D:5B
Certificate issuer: /CN=fae16b493d2a12897caf4757bb18a02eec2cde17
Certificate serial: 018C95FFCC0E7568B4F4F49E2EE602535AE2
Authority key identifier: FA:E1:6B:49:3D:2A:12:89:7C:AF:47:57:BB:18:A0:2E:EC:2C:DE:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-uFrST0qEol8r0dXuxigLuws3hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/8MseZhHNtL2ugtAImrNOom68TVs.roa
Signing time: Sat 23 Dec 2023 09:26:58 +0000
ROA not before: Sat 23 Dec 2023 09:26:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12322
IP address blocks: 83.152.0.0/13 maxlen: 15
88.120.0.0/13 maxlen: 13
213.36.0.0/16 maxlen: 18
91.160.0.0/12 maxlen: 12
82.142.0.0/18 maxlen: 18
83.214.0.0/16 maxlen: 16
212.62.128.0/18 maxlen: 18
212.62.128.0/19 maxlen: 19
Validation: Failed, certificate revoked on Sat 23 Dec 2023 10:03:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:95:ff:cc:0e:75:68:b4:f4:f4:9e:2e:e6:02:53:5a:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fae16b493d2a12897caf4757bb18a02eec2cde17
Validity
Not Before: Dec 23 09:26:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0cb1e6611cdb4bdae82d0089ab34ea26ebc4d5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b7:9a:40:e4:a7:00:19:4b:7e:10:2b:86:ca:
f3:f8:88:a6:82:fa:b8:b8:15:8f:20:de:6e:6d:0f:
0e:5f:60:1e:69:c5:9c:b7:27:2f:cb:7e:9c:b7:ed:
2d:ae:c6:90:57:b2:f0:7e:d6:5b:ca:25:a4:72:45:
23:86:74:1d:00:f4:ef:4e:e6:92:ae:5b:e4:d7:7f:
9e:f4:fb:58:88:fe:e6:fe:69:e2:f2:67:d9:16:09:
cb:4b:96:b1:15:04:d4:72:c5:a2:79:1f:6e:b8:40:
33:aa:f7:9c:a9:29:f6:58:3b:c4:d6:14:35:89:b6:
4c:56:53:54:83:d1:eb:00:fe:66:38:18:f4:cd:63:
4a:10:21:c4:f2:b1:5b:20:b3:9b:4a:58:aa:6f:7e:
8a:dd:3a:14:e9:94:9c:02:ae:99:02:bb:8e:96:26:
37:0c:b6:42:1c:ab:48:13:a4:43:29:c5:ab:a7:7c:
13:c1:b3:35:64:eb:b2:0f:80:e7:74:ee:97:63:4b:
1e:22:63:c8:67:82:cc:47:7c:b8:2f:78:c8:0a:01:
58:7b:60:92:1f:a2:8e:04:15:9b:de:a2:67:b6:83:
b8:09:eb:69:95:ec:16:b0:35:bb:23:b7:f2:a5:1b:
ab:1b:b4:99:3d:51:2f:d3:60:c5:d1:8a:dd:a5:b3:
4a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:CB:1E:66:11:CD:B4:BD:AE:82:D0:08:9A:B3:4E:A2:6E:BC:4D:5B
X509v3 Authority Key Identifier:
keyid:FA:E1:6B:49:3D:2A:12:89:7C:AF:47:57:BB:18:A0:2E:EC:2C:DE:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-uFrST0qEol8r0dXuxigLuws3hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/8MseZhHNtL2ugtAImrNOom68TVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/1-uFrST0qEol8r0dXuxigLuws3hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.142.0.0/18
83.152.0.0/13
83.214.0.0/16
88.120.0.0/13
91.160.0.0/12
212.62.128.0/18
213.36.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5e:e3:3a:13:ce:19:0f:c4:e7:fd:06:82:b7:62:b4:3f:3c:5c:
f2:61:5d:d5:06:c5:9a:c4:28:4c:9d:57:98:c0:af:07:96:e5:
29:dc:44:0f:a0:ee:75:d7:ae:30:f1:8a:df:5a:b7:bd:08:03:
6e:5e:16:58:f2:9e:16:2e:ee:3b:95:12:9b:75:bf:ce:c3:b6:
3d:19:a3:f6:70:64:59:52:9a:94:fb:ec:df:82:12:0c:0d:b8:
51:d7:cf:39:8f:d7:b2:e5:79:12:06:23:eb:81:2c:f5:da:8e:
25:e6:f5:e0:b7:e4:89:be:98:81:19:44:72:89:5b:8e:37:5a:
5a:9a:61:c8:de:bc:d7:0e:2d:05:45:86:b1:c9:e5:07:26:b6:
3b:0c:e6:1d:61:02:59:1c:b0:ea:81:5d:a8:55:40:1e:fd:4b:
e6:f3:aa:c5:62:f2:99:97:5f:17:f9:7b:37:84:54:de:53:a8:
45:a5:d8:e4:c2:23:71:08:19:14:bd:f2:97:e5:c0:ad:3c:23:
93:19:b8:ce:5e:b9:30:b1:6c:ac:1c:5f:20:97:1d:b2:9a:27:
3a:76:02:be:d0:3c:e6:94:00:d7:7c:ee:d2:34:8c:c9:bc:5c:
2d:e2:83:05:3e:7b:2f:30:5a:b3:03:a3:6f:9c:29:c6:fe:57:
2e:4c:6a:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:15 2024 by rpki-client on console-fra.rpki-client.org