Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/8Nbuvms9pvheWg9lPqgku3PkwPU.roa
File: 8Nbuvms9pvheWg9lPqgku3PkwPU.roa (raw, json)
Hash identifier: 9gt85mzHgvl6sNoGcyEYvl/OcIeZblPbxf9W+e4XTf0=
Subject key identifier: F0:D6:EE:BE:6B:3D:A6:F8:5E:5A:0F:65:3E:A8:24:BB:73:E4:C0:F5
Certificate issuer: /CN=07a6a589ee848a8052238191b98035e775122725
Certificate serial: 018CC493694975F25325D3EA43D8655ABE8F
Authority key identifier: 07:A6:A5:89:EE:84:8A:80:52:23:81:91:B9:80:35:E7:75:12:27:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6alie6EioBSI4GRuYA153USJyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/8Nbuvms9pvheWg9lPqgku3PkwPU.roa
Signing time: Mon 01 Jan 2024 10:30:44 +0000
ROA not before: Mon 01 Jan 2024 10:30:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210218
IP address blocks: 94.240.56.0/22 maxlen: 22
77.75.58.0/23 maxlen: 23
87.120.177.0/24 maxlen: 24
77.75.56.0/23 maxlen: 23
94.156.16.0/22 maxlen: 22
91.243.184.0/22 maxlen: 22
193.46.172.0/22 maxlen: 22
45.12.248.0/22 maxlen: 22
87.120.111.0/24 maxlen: 24
194.76.204.0/22 maxlen: 22
2.59.248.0/22 maxlen: 22
195.225.120.0/22 maxlen: 22
193.36.232.0/22 maxlen: 22
193.207.0.0/24 maxlen: 24
45.8.74.0/23 maxlen: 23
2.58.138.0/23 maxlen: 23
2.58.136.0/23 maxlen: 23
193.19.200.0/22 maxlen: 22
87.120.224.0/24 maxlen: 24
193.56.248.0/22 maxlen: 22
193.58.184.0/22 maxlen: 22
80.249.124.0/22 maxlen: 22
78.40.164.0/22 maxlen: 22
78.40.160.0/22 maxlen: 22
94.156.240.0/22 maxlen: 22
87.121.66.0/23 maxlen: 23
87.120.63.0/24 maxlen: 24
91.197.196.0/22 maxlen: 22
212.24.0.0/19 maxlen: 19
193.56.16.0/22 maxlen: 22
31.13.252.0/22 maxlen: 22
194.147.8.0/22 maxlen: 22
178.175.184.0/22 maxlen: 22
178.175.184.0/21 maxlen: 21
95.214.124.0/23 maxlen: 23
212.22.128.0/19 maxlen: 19
95.214.126.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 21 Mar 2024 11:48:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:69:49:75:f2:53:25:d3:ea:43:d8:65:5a:be:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a6a589ee848a8052238191b98035e775122725
Validity
Not Before: Jan 1 10:30:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f0d6eebe6b3da6f85e5a0f653ea824bb73e4c0f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ae:47:f4:ac:bc:28:f4:04:59:5f:c3:73:ba:
42:83:25:02:f8:bd:ab:a7:d8:1e:32:fa:94:26:f6:
f5:4b:02:6f:c9:22:68:d3:00:ee:e3:ab:ab:a5:1a:
16:31:e7:bd:35:b9:e6:b0:b7:f9:1e:52:f7:1e:12:
84:2d:55:0e:f4:5f:a3:50:13:7a:27:31:aa:ac:62:
c5:1b:8f:98:1c:d2:da:21:ca:b5:c6:57:cd:c7:77:
86:0a:24:c8:9c:e4:6b:b2:40:bf:e8:0a:95:11:3c:
65:63:12:8e:7a:ab:ec:6c:f2:ed:f1:89:9e:c7:89:
d7:c5:b8:04:04:60:fc:4c:33:c3:96:68:24:40:d8:
da:91:f7:f8:34:7e:74:5f:68:a3:e7:7f:02:76:43:
fc:3f:ef:64:01:f3:45:fa:58:67:e7:10:18:7d:81:
65:db:f6:69:e1:0b:72:fb:b2:c7:36:23:1b:b1:c9:
b7:0e:8a:dd:75:94:1a:c7:16:9b:8d:53:ba:51:af:
1b:ff:98:fe:6a:10:04:63:37:2b:ad:db:11:e4:6e:
d5:ab:3e:29:8f:18:7d:c5:f7:7f:dd:c3:74:ca:6a:
b4:41:b8:51:c3:e9:c6:d7:de:b9:08:55:07:6e:2a:
be:a0:70:09:60:d6:72:4f:eb:b2:49:3f:61:04:db:
c6:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:D6:EE:BE:6B:3D:A6:F8:5E:5A:0F:65:3E:A8:24:BB:73:E4:C0:F5
X509v3 Authority Key Identifier:
keyid:07:A6:A5:89:EE:84:8A:80:52:23:81:91:B9:80:35:E7:75:12:27:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6alie6EioBSI4GRuYA153USJyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/8Nbuvms9pvheWg9lPqgku3PkwPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/B6alie6EioBSI4GRuYA153USJyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.136.0/22
2.59.248.0/22
31.13.252.0/22
45.8.74.0/23
45.12.248.0/22
77.75.56.0/22
78.40.160.0/21
80.249.124.0/22
87.120.63.0/24
87.120.111.0/24
87.120.177.0/24
87.120.224.0/24
87.121.66.0/23
91.197.196.0/22
91.243.184.0/22
94.156.16.0/22
94.156.240.0/22
94.240.56.0/22
95.214.124.0/22
178.175.184.0/21
193.19.200.0/22
193.36.232.0/22
193.46.172.0/22
193.56.16.0/22
193.56.248.0/22
193.58.184.0/22
193.207.0.0/24
194.76.204.0/22
194.147.8.0/22
195.225.120.0/22
212.22.128.0/19
212.24.0.0/19
Signature Algorithm: sha256WithRSAEncryption
73:55:b7:e5:9d:b5:90:81:e1:0e:29:75:23:d2:0d:64:17:e4:
29:a0:a9:ff:32:9b:08:fd:a0:44:51:14:15:d3:cd:47:06:45:
98:0b:dd:2c:20:78:0b:7d:20:7f:a3:c2:b4:c9:d4:dc:08:4b:
54:99:36:ca:35:ff:80:8c:48:a8:5f:33:e9:b2:f1:f2:87:73:
f7:9e:11:8e:d4:45:24:2b:c6:e7:62:4e:09:bf:49:21:83:6a:
23:c1:43:5e:01:a2:2f:81:60:23:6a:2d:0f:0e:7e:57:85:d0:
b7:d7:88:a9:03:7e:45:4d:02:1d:87:00:bb:12:e7:3d:77:31:
f7:28:5d:06:f8:e5:23:15:ca:78:1e:28:98:ca:f5:9a:db:87:
10:b0:d3:7a:3f:8d:22:70:7b:fd:df:44:a3:04:3f:c4:e5:b4:
94:e4:60:4f:fa:00:d6:a4:3b:6a:a7:0e:11:40:2d:cb:c1:97:
4e:8c:ef:6f:4d:a9:84:ee:78:e9:37:5a:3a:47:f5:a5:34:8a:
a5:a5:e0:ac:68:ce:e0:52:75:71:d1:9b:c5:49:7b:07:4d:4f:
82:31:20:f6:bb:b4:e6:3f:79:bb:8a:7a:0e:15:cc:9a:a6:db:
99:02:86:53:15:a5:9e:59:6d:e9:b5:ed:32:43:17:74:7a:69:
c5:d0:58:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 21 15:37:23 2024 by rpki-client on console-ams.rpki-client.org