Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/hKiBoe-RQyyc4ANNlTdLuyml9y4.roa
File: hKiBoe-RQyyc4ANNlTdLuyml9y4.roa (raw, json)
Hash identifier: jQWlLV0oO4yPYX02fr5sE/ACYerd45tu7Ug9FZskLlU=
Subject key identifier: 84:A8:81:A1:EF:91:43:2C:9C:E0:03:4D:95:37:4B:BB:29:A5:F7:2E
Certificate issuer: /CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Certificate serial: 01856C813C5F5E3582092BA24807888D4A11
Authority key identifier: F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/hKiBoe-RQyyc4ANNlTdLuyml9y4.roa
Signing time: Sun 01 Jan 2023 08:44:47 +0000
ROA not before: Sun 01 Jan 2023 08:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 212.103.0.0/19 maxlen: 24
195.167.224.0/20 maxlen: 24
185.204.172.0/22 maxlen: 24
89.224.0.0/14 maxlen: 24
195.167.192.0/20 maxlen: 24
92.102.0.0/15 maxlen: 24
213.30.128.0/18 maxlen: 24
213.244.0.0/19 maxlen: 24
46.218.0.0/16 maxlen: 24
217.66.112.0/20 maxlen: 24
82.101.0.0/18 maxlen: 24
83.145.64.0/18 maxlen: 24
195.248.0.0/19 maxlen: 24
77.104.0.0/18 maxlen: 24
212.99.0.0/17 maxlen: 24
2a02:e000::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:3c:5f:5e:35:82:09:2b:a2:48:07:88:8d:4a:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Validity
Not Before: Jan 1 08:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84a881a1ef91432c9ce0034d95374bbb29a5f72e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b5:31:26:08:59:3c:0f:10:6b:58:01:b4:e9:
fc:40:30:7c:7d:fc:b7:81:14:78:6b:84:d4:47:ea:
74:9e:c1:1a:66:cc:4e:de:4c:42:d6:4c:5a:fc:41:
c2:d4:a3:70:c0:fb:63:e6:60:a3:d5:30:da:88:d3:
0c:7d:dc:ce:12:a2:16:d2:dc:9b:aa:88:a3:6f:b4:
ac:24:a8:f7:69:fa:a7:84:a4:e2:b0:aa:89:3f:01:
46:e2:47:3b:e9:dd:6f:9b:e7:7f:63:00:56:9e:0d:
da:6f:0c:05:ea:d1:40:28:3f:a8:f5:75:a3:aa:05:
51:de:27:54:e5:ac:09:cd:8c:93:2e:10:d1:a1:d2:
1d:67:48:2d:b4:a6:e5:f4:81:d4:2a:14:2d:5d:2e:
ba:31:cb:ce:93:33:5c:e5:c3:5e:b0:8c:39:27:af:
80:93:4e:d3:22:ab:98:68:0a:7b:65:b9:bd:d5:ed:
47:83:ac:8d:78:79:6e:ec:e3:ac:a2:19:d7:9f:c6:
3f:85:43:1b:d2:3d:2a:2b:0b:4c:74:d5:0c:4b:d0:
90:16:c5:54:f5:f4:c1:fc:0f:ac:f3:27:88:38:b9:
07:a9:81:02:35:07:48:f1:c3:36:a5:62:ba:25:50:
ee:68:43:84:93:d2:76:d6:13:3e:51:93:52:e1:39:
53:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:A8:81:A1:EF:91:43:2C:9C:E0:03:4D:95:37:4B:BB:29:A5:F7:2E
X509v3 Authority Key Identifier:
keyid:F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/hKiBoe-RQyyc4ANNlTdLuyml9y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/8uKBD0mzb91kHDJr0d5OQtEosEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.218.0.0/16
77.104.0.0/18
82.101.0.0/18
83.145.64.0/18
89.224.0.0/14
92.102.0.0/15
185.204.172.0/22
195.167.192.0/20
195.167.224.0/20
195.248.0.0/19
212.99.0.0/17
212.103.0.0/19
213.30.128.0/18
213.244.0.0/19
217.66.112.0/20
IPv6:
2a02:e000::/29
Signature Algorithm: sha256WithRSAEncryption
60:b6:b3:0b:74:f2:60:af:33:e5:77:fc:23:cf:80:e7:f0:62:
85:8a:88:42:36:4b:00:1c:49:57:40:8e:96:86:e7:68:4b:a0:
65:34:c4:3c:e9:7d:08:2a:0a:57:d9:29:4a:f6:f2:8e:6c:bb:
74:3f:a3:63:0b:95:3a:3c:fd:48:5c:c1:4f:d7:f2:45:79:39:
3d:64:45:d6:a3:65:96:50:80:eb:45:33:43:ee:31:d7:cb:c4:
86:4c:89:35:68:50:71:f8:6e:e0:60:76:68:81:de:d0:bb:89:
e7:3b:a8:e3:f1:5c:87:ed:a1:e5:5c:81:52:37:14:5e:72:22:
a8:58:4c:6c:95:ee:c3:4f:b4:1c:7a:c3:6f:48:50:6c:46:80:
53:fb:a6:6c:e6:c6:ed:07:22:99:b7:f0:04:66:8c:9f:b6:e3:
9b:dc:db:f2:ff:c3:b0:b5:f8:2c:71:7d:a1:12:b6:81:be:34:
f8:c5:28:5e:1f:84:29:a1:e0:f2:12:7a:0a:0a:98:7e:2d:1e:
53:6a:a0:27:e2:7c:c8:41:55:e1:e4:18:bf:1c:d1:bb:2e:47:
4c:80:3b:d3:ef:9d:da:a2:18:af:1f:57:11:59:ce:63:5c:be:
88:5e:90:4a:51:fb:06:83:a2:45:25:7e:57:2e:92:a9:7e:c8:
d8:ed:73:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:59 2024 by rpki-client on console-ams.rpki-client.org