Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/CFwH7Vr9oeHt9Zddr4q3f0l5ctE.roa
File: CFwH7Vr9oeHt9Zddr4q3f0l5ctE.roa (raw, json)
Hash identifier: f4+0tgrp1HUOC04/CHb09ysF2pDELrcTfuceqPcuGgY=
Subject key identifier: 08:5C:07:ED:5A:FD:A1:E1:ED:F5:97:5D:AF:8A:B7:7F:49:79:72:D1
Certificate issuer: /CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Certificate serial: 0191DD48E9D9D0011376B4725806A140F1E8
Authority key identifier: 24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/CFwH7Vr9oeHt9Zddr4q3f0l5ctE.roa
Signing time: Tue 10 Sep 2024 18:53:48 +0000
ROA not before: Tue 10 Sep 2024 18:53:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202
IP address blocks: 149.250.0.0/16 maxlen: 16
192.109.236.0/24 maxlen: 24
195.203.156.0/22 maxlen: 22
217.27.4.0/24 maxlen: 24
217.27.6.0/24 maxlen: 24
217.27.7.0/24 maxlen: 24
2a03:5000:1::/48 maxlen: 48
2a03:5000:2::/48 maxlen: 48
2a03:5000:11::/48 maxlen: 48
2a03:5000:12::/48 maxlen: 48
2a03:5000:20::/48 maxlen: 48
2a03:5000:21::/48 maxlen: 48
2a03:5000:22::/48 maxlen: 48
2a03:5000:30::/48 maxlen: 48
2a03:5000:31::/48 maxlen: 48
2a03:5000:32::/48 maxlen: 48
2a03:5000:41::/48 maxlen: 48
2a03:5000:42::/48 maxlen: 48
2a03:5000:51::/48 maxlen: 48
2a03:5000:52::/48 maxlen: 48
2a03:5000:61::/48 maxlen: 48
2a03:5000:62::/48 maxlen: 48
2a03:5000:71::/48 maxlen: 48
2a03:5000:72::/48 maxlen: 48
2a03:5000:81::/48 maxlen: 48
2a03:5000:82::/48 maxlen: 48
2a03:5000:91::/48 maxlen: 48
2a03:5000:92::/48 maxlen: 48
2a03:5000:101::/48 maxlen: 48
2a03:5000:102::/48 maxlen: 48
2a03:5000:111::/48 maxlen: 48
2a03:5000:112::/48 maxlen: 48
2a03:5000:121::/48 maxlen: 48
2a03:5000:122::/48 maxlen: 48
2a03:5000:131::/48 maxlen: 48
2a03:5000:132::/48 maxlen: 48
2a03:5000:141::/48 maxlen: 48
2a03:5000:142::/48 maxlen: 48
2a03:5000:151::/48 maxlen: 48
2a03:5000:152::/48 maxlen: 48
2a03:5000:161::/48 maxlen: 48
2a03:5000:162::/48 maxlen: 48
2a03:5000:171::/48 maxlen: 48
2a03:5000:172::/48 maxlen: 48
2a03:5000:181::/48 maxlen: 48
2a03:5000:182::/48 maxlen: 48
2a03:5000:191::/48 maxlen: 48
2a03:5000:192::/48 maxlen: 48
2a03:5000:201::/48 maxlen: 48
2a03:5000:202::/48 maxlen: 48
2a03:5000:211::/48 maxlen: 48
2a03:5000:212::/48 maxlen: 48
2a03:5000:221::/48 maxlen: 48
2a03:5000:222::/48 maxlen: 48
2a03:5000:231::/48 maxlen: 48
2a03:5000:232::/48 maxlen: 48
2a03:5000:241::/48 maxlen: 48
2a03:5000:242::/48 maxlen: 48
2a03:5000:251::/48 maxlen: 48
2a03:5000:252::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 11 Sep 2024 13:13:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:dd:48:e9:d9:d0:01:13:76:b4:72:58:06:a1:40:f1:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Validity
Not Before: Sep 10 18:53:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=085c07ed5afda1e1edf5975daf8ab77f497972d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e3:b4:df:b4:9c:72:b9:8f:45:3a:56:70:04:
db:9e:0c:0c:a7:bb:8d:0d:6a:9f:ee:de:c9:86:64:
3b:cd:fd:34:29:93:5f:cf:eb:5d:54:cf:fc:e8:47:
86:ca:a7:e8:01:b7:d1:e4:2a:24:e7:f6:6d:c8:98:
54:9a:7f:64:a0:e8:58:2c:83:c2:d9:0a:1f:1c:bd:
94:af:f3:6d:ee:72:b7:49:6d:6f:df:3f:71:70:2a:
be:81:e3:cd:91:6a:7d:b7:af:fd:3b:a1:b0:ad:3e:
82:05:70:32:06:60:1c:64:cc:aa:4e:44:62:86:7b:
72:5a:d1:06:e5:58:2e:c8:6b:4c:d7:97:9a:cc:fd:
ee:95:c0:03:a8:ff:19:2d:8b:14:57:92:a5:bb:8b:
66:ce:12:d5:ed:7a:45:e1:ff:ec:59:11:c8:ab:db:
3b:69:b3:ce:e7:5c:90:e7:bd:47:ab:de:82:02:99:
a1:10:97:75:91:cc:92:ef:de:bd:7c:ff:d6:0e:b4:
19:81:f2:33:11:17:0e:9c:bb:bf:83:7b:4d:5f:e3:
7d:de:6a:d6:dc:7a:d9:68:ce:d0:a4:38:8f:e4:38:
77:4e:8f:96:be:08:0b:e5:8e:21:d6:b6:a3:d4:bf:
c7:62:82:b6:92:8b:08:cf:bb:fc:14:12:3a:13:69:
f8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:5C:07:ED:5A:FD:A1:E1:ED:F5:97:5D:AF:8A:B7:7F:49:79:72:D1
X509v3 Authority Key Identifier:
keyid:24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/CFwH7Vr9oeHt9Zddr4q3f0l5ctE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.250.0.0/16
192.109.236.0/24
195.203.156.0/22
217.27.4.0/24
217.27.6.0/23
IPv6:
2a03:5000:1::-2a03:5000:2:ffff:ffff:ffff:ffff:ffff
2a03:5000:11::-2a03:5000:12:ffff:ffff:ffff:ffff:ffff
2a03:5000:20::-2a03:5000:22:ffff:ffff:ffff:ffff:ffff
2a03:5000:30::-2a03:5000:32:ffff:ffff:ffff:ffff:ffff
2a03:5000:41::-2a03:5000:42:ffff:ffff:ffff:ffff:ffff
2a03:5000:51::-2a03:5000:52:ffff:ffff:ffff:ffff:ffff
2a03:5000:61::-2a03:5000:62:ffff:ffff:ffff:ffff:ffff
2a03:5000:71::-2a03:5000:72:ffff:ffff:ffff:ffff:ffff
2a03:5000:81::-2a03:5000:82:ffff:ffff:ffff:ffff:ffff
2a03:5000:91::-2a03:5000:92:ffff:ffff:ffff:ffff:ffff
2a03:5000:101::-2a03:5000:102:ffff:ffff:ffff:ffff:ffff
2a03:5000:111::-2a03:5000:112:ffff:ffff:ffff:ffff:ffff
2a03:5000:121::-2a03:5000:122:ffff:ffff:ffff:ffff:ffff
2a03:5000:131::-2a03:5000:132:ffff:ffff:ffff:ffff:ffff
2a03:5000:141::-2a03:5000:142:ffff:ffff:ffff:ffff:ffff
2a03:5000:151::-2a03:5000:152:ffff:ffff:ffff:ffff:ffff
2a03:5000:161::-2a03:5000:162:ffff:ffff:ffff:ffff:ffff
2a03:5000:171::-2a03:5000:172:ffff:ffff:ffff:ffff:ffff
2a03:5000:181::-2a03:5000:182:ffff:ffff:ffff:ffff:ffff
2a03:5000:191::-2a03:5000:192:ffff:ffff:ffff:ffff:ffff
2a03:5000:201::-2a03:5000:202:ffff:ffff:ffff:ffff:ffff
2a03:5000:211::-2a03:5000:212:ffff:ffff:ffff:ffff:ffff
2a03:5000:221::-2a03:5000:222:ffff:ffff:ffff:ffff:ffff
2a03:5000:231::-2a03:5000:232:ffff:ffff:ffff:ffff:ffff
2a03:5000:241::-2a03:5000:242:ffff:ffff:ffff:ffff:ffff
2a03:5000:251::-2a03:5000:252:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
2f:1c:4c:8f:92:e7:2a:57:15:03:28:16:6f:e0:84:5b:59:97:
d8:57:5a:fc:31:d7:13:21:53:35:da:36:94:ee:ce:5b:3f:3f:
41:d6:3b:38:7b:77:8e:e2:12:2d:41:05:f6:c2:f6:16:c1:92:
4b:6e:b0:1f:4c:cf:58:26:5e:16:4d:f1:72:97:d2:fb:9c:0b:
5b:58:3b:6f:25:24:fe:b0:1b:e9:13:f3:89:43:c9:50:1d:80:
1f:90:42:08:5d:7f:89:87:59:b5:65:45:f0:86:4b:01:7e:86:
4b:c0:96:ea:b8:de:aa:a3:13:6c:4b:b4:0e:f7:5a:7f:f5:e7:
4c:57:1e:51:9c:c1:18:32:43:4b:1c:40:79:6e:58:17:f3:8e:
c3:ce:b6:40:13:4c:bf:e1:fb:4c:2f:38:67:f0:86:09:b3:9c:
79:06:09:d8:7f:1d:d6:94:db:66:f7:00:4f:86:74:0c:02:fe:
26:0b:c1:b3:10:f7:dd:60:73:26:2a:cd:bc:22:37:de:35:cd:
f4:6a:04:f7:51:4d:96:1a:06:97:05:80:3e:53:00:b0:35:de:
cd:ce:c4:d2:aa:98:0e:62:e8:e4:45:c1:76:29:32:bd:40:25:
cd:1f:cb:14:26:30:10:20:af:05:26:3d:f2:04:01:26:25:8f:
23:9f:bb:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 16:18:57 2024 by rpki-client on console-ams.rpki-client.org