Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/1-0jEeuC-bA5VuuNT2Bkm-mZgIco.roa
File: 1-0jEeuC-bA5VuuNT2Bkm-mZgIco.roa (raw, json)
Hash identifier: EUhwf5m8g9Zb/8c5if/nYhCFIb7/SVFMS+ZlMLbwIqM=
Subject key identifier: FB:48:C4:7A:E0:BE:6C:0E:55:BA:E3:53:D8:19:26:FA:66:60:21:CA
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 018AFDEF602498D3BFC89C0F18EE241294A7
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/1-0jEeuC-bA5VuuNT2Bkm-mZgIco.roa
Signing time: Thu 05 Oct 2023 03:43:57 +0000
ROA not before: Thu 05 Oct 2023 03:43:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 37.153.132.0/24 maxlen: 24
188.240.83.0/24 maxlen: 24
84.247.20.0/24 maxlen: 24
89.37.106.0/24 maxlen: 24
91.250.244.0/24 maxlen: 24
62.112.30.0/24 maxlen: 24
89.34.171.0/24 maxlen: 24
77.81.1.0/24 maxlen: 24
89.44.210.0/24 maxlen: 24
89.42.215.0/24 maxlen: 24
46.102.174.0/24 maxlen: 24
89.37.128.0/24 maxlen: 24
176.223.181.0/24 maxlen: 24
89.40.43.0/24 maxlen: 24
176.223.190.0/24 maxlen: 24
94.177.113.0/24 maxlen: 24
94.177.118.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fd:ef:60:24:98:d3:bf:c8:9c:0f:18:ee:24:12:94:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Oct 5 03:43:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb48c47ae0be6c0e55bae353d81926fa666021ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:88:7d:33:30:50:be:9b:5f:b6:9c:42:97:c5:
5f:7e:04:3b:df:9c:cf:51:29:4f:e9:02:b7:76:84:
bd:01:e6:b8:83:e1:03:5d:0f:3e:77:db:95:79:51:
c3:da:df:49:4e:8c:93:00:7c:0f:6e:e6:68:7f:8c:
ea:59:ce:ab:38:5d:c5:49:e1:05:03:9c:c1:0c:3a:
86:e7:19:ca:31:8d:fa:69:b7:50:e0:53:47:78:37:
12:d4:6d:ad:49:45:c7:d6:24:38:f4:4f:41:60:5b:
c7:8d:70:d2:79:74:30:ef:1f:e3:7c:3c:58:c4:cb:
51:80:14:4d:d6:1a:56:6e:c1:96:3a:94:83:64:d3:
c5:13:16:77:4b:c2:fd:97:56:04:47:c3:b0:ad:d3:
c7:b1:1b:9b:8c:78:f7:4a:44:7b:70:5e:a0:7c:20:
d2:d1:8e:51:63:e1:3a:ec:6e:3f:68:11:4b:49:b2:
9a:c6:b3:0c:bb:13:08:b9:5a:e5:79:d1:89:dc:b7:
b5:76:64:8b:48:2f:a6:fe:28:d8:fb:1c:02:7e:14:
4e:a4:0b:bc:7e:b8:91:a7:49:a8:0d:d6:b7:09:0f:
dc:a0:f5:84:c8:a1:b1:4f:ff:1c:dc:1a:96:52:83:
63:4e:f9:fe:1e:5c:4a:a8:93:54:87:39:25:2f:20:
1d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:48:C4:7A:E0:BE:6C:0E:55:BA:E3:53:D8:19:26:FA:66:60:21:CA
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/1-0jEeuC-bA5VuuNT2Bkm-mZgIco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.132.0/24
46.102.174.0/24
62.112.30.0/24
77.81.1.0/24
84.247.20.0/24
89.34.171.0/24
89.37.106.0/24
89.37.128.0/24
89.40.43.0/24
89.42.215.0/24
89.44.210.0/24
91.250.244.0/24
94.177.113.0/24
94.177.118.0/24
176.223.181.0/24
176.223.190.0/24
188.240.83.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:4f:ee:b4:1a:6f:85:91:f0:cf:f4:14:4a:05:59:ea:9e:25:
02:89:1b:95:a9:24:a9:e2:6f:32:2e:5f:98:8a:fb:4f:fe:bd:
fa:bd:30:e4:7a:66:82:80:39:1f:7a:a9:6e:2b:8a:8e:84:bf:
b4:01:55:b8:be:a8:8f:dc:fd:1b:22:d3:c3:09:b6:58:c5:44:
5c:f7:76:82:db:23:84:3e:59:dc:3f:6c:9d:07:0c:ee:60:18:
64:1c:5c:e1:07:c2:ab:5b:f0:0c:b9:1e:62:5f:7b:bf:9e:a7:
ae:0b:fb:88:8f:9a:57:20:33:40:fc:39:88:7c:b3:38:97:4d:
64:84:96:71:86:69:cb:c6:83:8f:a3:44:40:95:72:b0:e1:fd:
b1:b1:82:da:aa:55:6e:53:0a:05:f8:78:da:ca:a1:bf:30:7e:
79:aa:66:fb:0e:10:aa:76:4c:e5:b1:dd:3d:2a:3b:15:b7:1f:
2c:14:f8:e5:1e:ad:a3:58:86:57:49:d5:92:b0:fd:7c:ad:9c:
0d:4c:a7:a9:a5:89:0a:cc:4b:e8:4e:c9:1b:39:cd:a2:83:8a:
44:5e:9c:22:b7:e2:cc:16:f3:7a:81:76:fa:b1:cf:a1:06:56:
d2:4d:af:6b:d3:72:5a:8c:26:2b:60:48:4e:ca:b6:25:67:34:
36:0b:66:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 12 21:10:36 2023 by rpki-client on console-fra.rpki-client.org