Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/Jy6TBbRKSWYDXADS8NZBMjy72V0.roa
File: Jy6TBbRKSWYDXADS8NZBMjy72V0.roa (raw, json)
Hash identifier: E1rhmo+QPGLAOmr1DT7ucKh77xh5SS8/HKyhgoKFw5Y=
Subject key identifier: 27:2E:93:05:B4:4A:49:66:03:5C:00:D2:F0:D6:41:32:3C:BB:D9:5D
Certificate issuer: /CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Certificate serial: 0191D090E5D5DF052745BA0D37E249C7A3F2
Authority key identifier: 83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/Jy6TBbRKSWYDXADS8NZBMjy72V0.roa
Signing time: Sun 08 Sep 2024 07:37:22 +0000
ROA not before: Sun 08 Sep 2024 07:37:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203020
IP address blocks: 2.58.76.0/22 maxlen: 32
45.67.4.0/22 maxlen: 32
46.16.32.0/24 maxlen: 32
46.254.105.0/24 maxlen: 32
80.73.243.0/24 maxlen: 32
87.236.144.0/24 maxlen: 32
92.119.168.0/22 maxlen: 32
93.157.108.0/24 maxlen: 32
103.110.160.0/22 maxlen: 32
103.113.29.0/24 maxlen: 24
103.195.144.0/22 maxlen: 32
137.59.4.0/22 maxlen: 32
146.255.187.0/24 maxlen: 32
178.212.226.0/24 maxlen: 32
185.72.240.0/22 maxlen: 32
213.173.60.0/22 maxlen: 32
Validation: Failed, certificate revoked on Wed 25 Sep 2024 06:31:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d0:90:e5:d5:df:05:27:45:ba:0d:37:e2:49:c7:a3:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Validity
Not Before: Sep 8 07:37:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=272e9305b44a4966035c00d2f0d641323cbbd95d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:79:3e:22:33:7d:3e:26:d6:68:0f:54:e8:ae:
c3:fe:d5:ed:f2:e5:5e:83:88:8b:06:31:0e:79:09:
52:f8:92:c4:88:2e:59:e6:90:ba:98:cb:f5:53:e6:
e3:78:da:9f:9b:53:ce:89:b5:55:09:2d:c0:0a:11:
03:d0:15:59:47:40:81:86:e8:25:ac:d7:96:07:e5:
8b:e7:ef:ff:eb:be:48:c7:e2:15:bd:ef:a4:c4:b4:
50:f2:d8:30:31:a7:71:6b:c9:cb:f8:7c:67:b9:aa:
36:29:9d:d8:8c:f3:17:3b:0f:b7:e7:07:dc:59:55:
70:4b:08:39:b1:c1:ae:9c:75:ab:fc:91:ed:d2:14:
83:0e:85:16:2a:40:06:70:a3:e5:62:7e:e5:52:a3:
31:33:05:2f:83:7b:dc:af:56:88:d3:cc:3f:96:e8:
1f:f7:fd:03:dc:13:e9:31:68:fb:6e:94:48:87:67:
18:63:c8:1a:55:10:bc:f8:2a:8b:93:10:01:b7:cb:
f8:b7:33:25:e6:d3:cc:19:1f:8c:9e:4c:78:c3:a1:
04:48:b1:f0:80:f2:c8:2c:bc:f2:ab:db:7c:b8:15:
76:02:17:f9:5b:59:2c:72:c1:ea:a6:46:78:52:95:
6c:98:7b:1f:b6:e4:c1:ed:a8:dc:eb:9f:0a:9a:ad:
50:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:2E:93:05:B4:4A:49:66:03:5C:00:D2:F0:D6:41:32:3C:BB:D9:5D
X509v3 Authority Key Identifier:
keyid:83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/Jy6TBbRKSWYDXADS8NZBMjy72V0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/g5ka_NRV6xsXT8-J-OEOr39ws1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.76.0/22
45.67.4.0/22
46.16.32.0/24
46.254.105.0/24
80.73.243.0/24
87.236.144.0/24
92.119.168.0/22
93.157.108.0/24
103.110.160.0/22
103.113.29.0/24
103.195.144.0/22
137.59.4.0/22
146.255.187.0/24
178.212.226.0/24
185.72.240.0/22
213.173.60.0/22
Signature Algorithm: sha256WithRSAEncryption
98:fc:74:9f:fe:63:18:8f:1a:71:e7:25:ee:b1:75:bc:81:1e:
4c:10:60:18:fc:b7:be:6e:97:7e:9a:87:c8:13:d5:0c:3f:46:
9a:c4:93:e0:da:80:8a:d3:34:04:57:ec:c9:90:c0:3b:55:33:
70:98:3c:f7:23:c4:68:30:61:51:fb:56:ea:01:68:6d:28:fe:
5e:78:24:50:40:1a:ff:1e:6b:b7:8b:53:0e:40:10:26:f7:a2:
70:57:47:3a:cd:61:41:c4:92:bf:f2:90:83:94:2f:dc:dc:0b:
b3:b5:ae:b9:49:94:04:ef:5d:44:11:ce:e2:f8:70:7a:ea:32:
be:28:d7:13:97:95:72:ae:66:eb:2b:cc:a3:df:7e:52:38:3f:
e7:c8:d0:e6:be:51:a5:e7:90:14:ff:8f:84:c7:c0:37:be:bf:
1e:af:a5:ad:c9:b7:5b:31:94:c8:37:72:c1:ba:47:f6:5c:4c:
46:d7:04:a1:51:12:b7:bd:7d:4e:08:5d:da:c2:26:4a:51:87:
cd:6e:f9:9c:6d:eb:d0:ef:8a:dd:c3:eb:5a:1c:cd:5d:b8:d4:
cf:40:2f:48:8e:af:40:28:2b:ec:da:c5:5d:1b:9a:6b:e5:b0:
b2:f2:98:1b:96:0d:e6:a4:5e:a6:26:b6:48:80:3a:8f:a3:85:
cf:11:e7:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 25 08:13:21 2024 by rpki-client on console-fra.rpki-client.org