Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/jME9m4StsXyKHYbqQ-8LqLlfB4s.roa
File: jME9m4StsXyKHYbqQ-8LqLlfB4s.roa (raw, json)
Hash identifier: R1Cy4lZZRzaeK5+3G8xcV9V+DmU6f71gnhvsWxYsu/s=
Subject key identifier: 8C:C1:3D:9B:84:AD:B1:7C:8A:1D:86:EA:43:EF:0B:A8:B9:5F:07:8B
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 018B3DBAAF0BF67EA29C8678ECD7CA0AAC36
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/jME9m4StsXyKHYbqQ-8LqLlfB4s.roa
Signing time: Tue 17 Oct 2023 13:02:06 +0000
ROA not before: Tue 17 Oct 2023 13:02:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 213.145.72.0/21 maxlen: 24
85.115.208.0/23 maxlen: 24
85.115.208.0/24 maxlen: 24
213.145.91.0/24 maxlen: 24
213.145.88.0/21 maxlen: 24
213.145.88.0/24 maxlen: 24
213.145.89.0/24 maxlen: 24
213.145.90.0/24 maxlen: 24
213.145.92.0/24 maxlen: 24
213.145.93.0/24 maxlen: 24
213.145.94.0/24 maxlen: 24
213.145.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Oct 2023 06:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3d:ba:af:0b:f6:7e:a2:9c:86:78:ec:d7:ca:0a:ac:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Oct 17 13:02:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8cc13d9b84adb17c8a1d86ea43ef0ba8b95f078b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f9:f6:76:e1:2b:54:da:73:db:5d:fb:82:35:
15:be:f1:98:32:60:65:89:d6:89:76:6b:40:2b:b9:
ef:e3:99:92:c2:a9:20:71:85:a4:37:ad:45:d4:10:
9f:bd:ea:ed:10:bc:16:8f:fe:7f:94:df:ac:f8:b2:
cd:ef:ff:5a:c0:7f:c6:6e:24:75:11:32:cd:67:f8:
e0:8f:3a:da:ca:a6:40:74:71:db:f9:6c:1a:f2:4c:
47:15:ea:78:07:07:fc:bf:ab:8a:02:6f:bc:3b:fb:
87:30:4b:39:c3:18:d1:87:19:94:4e:66:e1:49:2f:
5f:8b:b2:54:c8:bc:ee:fe:6d:a2:14:12:b2:53:32:
57:f7:ea:1a:d7:61:41:95:0c:28:b4:d6:9e:e4:b8:
83:7d:fc:11:35:31:dd:ce:3b:58:22:36:6f:f3:4d:
92:7e:38:ec:6e:b1:ae:e7:4e:cc:00:8b:a2:85:94:
c6:ca:20:10:0e:b3:62:25:0f:e8:5e:9f:2e:e0:d9:
fa:3c:b2:17:1b:6b:7c:ae:10:2f:98:aa:8a:bb:16:
e4:3f:2d:49:9b:27:00:e8:f5:62:37:7f:5f:7d:d0:
f3:32:79:aa:9e:3e:01:c5:cd:6b:99:bc:17:f7:50:
f2:76:4c:06:de:31:4d:19:c6:dd:d2:d9:9e:4b:bc:
18:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:C1:3D:9B:84:AD:B1:7C:8A:1D:86:EA:43:EF:0B:A8:B9:5F:07:8B
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/jME9m4StsXyKHYbqQ-8LqLlfB4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.208.0/23
213.145.72.0/21
213.145.88.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:5a:24:39:9b:25:07:e0:fb:04:1e:3b:db:ff:7f:21:f8:1f:
60:9d:12:80:2b:ed:45:3a:c7:e6:6d:6b:43:01:38:3d:73:30:
d4:64:c8:b8:33:12:16:66:00:86:45:9c:8e:b9:e2:78:34:ee:
6a:61:d6:85:56:33:9d:d1:32:aa:59:3e:c0:89:4c:e2:cd:92:
92:f8:1a:0f:3e:fb:de:6a:a9:1e:62:a2:f6:3c:af:40:61:3d:
b3:f6:e9:76:a8:74:14:46:8a:38:32:b4:15:58:ef:da:fb:21:
3c:fe:fd:0f:68:40:80:63:74:ad:91:9f:72:4a:cb:4e:ed:3e:
a4:56:c7:ea:c0:3f:51:eb:41:f7:0a:38:bd:6d:c1:17:fa:dd:
ae:69:67:8c:f4:13:b1:11:90:b3:d5:65:d6:99:75:75:0d:21:
27:d4:da:1b:03:af:83:d7:d3:f3:2a:5a:6f:30:b7:ea:79:27:
25:30:5f:33:0c:11:f7:6c:03:a6:2d:7d:1f:f3:c2:e4:67:9a:
00:af:57:0b:8b:7d:16:25:97:5e:e6:23:78:72:31:a8:cd:ec:
22:a3:89:60:09:53:78:bc:df:74:49:54:31:b0:5f:b0:68:78:
de:62:d4:08:30:d6:f3:2a:f3:78:5c:1e:d0:ac:1b:17:70:81:
7e:6b:c3:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:06 2024 by rpki-client on console-fra.rpki-client.org