Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/rj1vLdU2eb7bOVxFmVsOqNgMbZo.roa
File: rj1vLdU2eb7bOVxFmVsOqNgMbZo.roa (raw, json)
Hash identifier: olXtOydH7olwM4nX3BND2witOG4w7ENP8f8A3S/InQY=
Subject key identifier: AE:3D:6F:2D:D5:36:79:BE:DB:39:5C:45:99:5B:0E:A8:D8:0C:6D:9A
Certificate issuer: /CN=29c2103fd2417c8869145617de94fcc913b085ef
Certificate serial: 01856B6E890955CD675B7C11D86D5251259E
Authority key identifier: 29:C2:10:3F:D2:41:7C:88:69:14:56:17:DE:94:FC:C9:13:B0:85:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KcIQP9JBfIhpFFYX3pT8yROwhe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/rj1vLdU2eb7bOVxFmVsOqNgMbZo.roa
Signing time: Sun 01 Jan 2023 03:44:44 +0000
ROA not before: Sun 01 Jan 2023 03:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48504
IP address blocks: 193.243.150.0/23 maxlen: 24
45.134.192.0/22 maxlen: 24
46.247.160.0/19 maxlen: 24
94.247.160.0/21 maxlen: 24
94.143.80.0/21 maxlen: 24
185.48.48.0/22 maxlen: 24
194.105.58.0/23 maxlen: 24
194.105.62.0/23 maxlen: 24
176.53.128.0/22 maxlen: 24
185.12.96.0/22 maxlen: 24
193.239.190.0/23 maxlen: 24
37.26.176.0/21 maxlen: 24
185.50.76.0/22 maxlen: 24
2a03:bd00::/32 maxlen: 48
2a01:aa60::/32 maxlen: 48
2a01:9720::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 09 Jan 2023 13:06:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:6e:89:09:55:cd:67:5b:7c:11:d8:6d:52:51:25:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29c2103fd2417c8869145617de94fcc913b085ef
Validity
Not Before: Jan 1 03:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae3d6f2dd53679bedb395c45995b0ea8d80c6d9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:8a:3b:2f:57:05:54:20:7c:e7:5a:ed:83:a6:
5b:b4:44:f0:ef:f2:03:d3:50:4f:d7:6f:2d:e4:84:
8d:af:9e:36:4a:08:89:2d:b9:64:97:13:b6:b7:36:
25:f2:c7:9a:73:31:b0:a7:2c:d4:e6:e3:9e:37:a4:
63:1b:88:15:3b:ed:d7:5f:4a:ff:83:ea:51:30:bb:
45:5b:35:0e:ae:e4:2e:b5:8e:7a:e6:7d:9d:0a:bc:
ce:90:ca:07:c1:28:f8:24:65:e2:f1:8e:6e:78:cd:
98:68:b4:ba:a2:76:de:70:2c:29:1a:1f:11:48:84:
d3:5a:bc:d2:a4:36:ab:30:20:ec:45:a9:69:a5:e9:
c4:d9:1c:88:d7:f7:35:d6:ad:6e:8c:63:f3:40:a4:
28:1b:8d:cb:c5:a5:1c:1f:6a:b4:9a:ff:64:62:d1:
6b:55:c8:81:6e:56:b7:c3:d9:d1:02:74:45:88:62:
f9:97:9f:e2:72:1a:b9:75:27:57:69:b5:06:ee:87:
05:af:b5:5e:75:8e:98:46:3e:ea:71:84:a4:74:9e:
97:fc:70:bf:bf:2b:94:ee:c6:07:6c:e9:cb:d6:0c:
03:e9:71:d8:69:e9:fd:22:bf:47:bd:61:56:f8:f1:
9c:f0:1d:7d:51:83:4e:e4:a2:c1:8b:1f:0e:fc:c1:
b1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:3D:6F:2D:D5:36:79:BE:DB:39:5C:45:99:5B:0E:A8:D8:0C:6D:9A
X509v3 Authority Key Identifier:
keyid:29:C2:10:3F:D2:41:7C:88:69:14:56:17:DE:94:FC:C9:13:B0:85:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KcIQP9JBfIhpFFYX3pT8yROwhe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/rj1vLdU2eb7bOVxFmVsOqNgMbZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/KcIQP9JBfIhpFFYX3pT8yROwhe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.176.0/21
45.134.192.0/22
46.247.160.0/19
94.143.80.0/21
94.247.160.0/21
176.53.128.0/22
185.12.96.0/22
185.48.48.0/22
185.50.76.0/22
193.239.190.0/23
193.243.150.0/23
194.105.58.0/23
194.105.62.0/23
IPv6:
2a01:9720::/32
2a01:aa60::/32
2a03:bd00::/32
Signature Algorithm: sha256WithRSAEncryption
39:85:d8:22:fd:02:2b:a9:f6:bd:37:6b:47:e2:02:50:39:52:
1a:c2:39:bf:b2:a9:a4:89:0f:73:e8:17:14:78:83:50:d9:c8:
e1:6e:d2:94:f4:ce:06:72:3e:4b:75:ba:df:10:4c:19:e7:3b:
a4:91:af:83:d9:36:e2:72:58:f4:0f:f0:b0:09:f8:cf:a8:4d:
d7:25:f1:b1:03:de:2e:8b:ea:67:f0:82:a6:9b:17:fd:f6:d8:
52:85:da:84:b8:90:3b:33:6b:3a:a6:da:c1:8f:4c:a2:0c:1c:
bc:32:af:84:d5:cd:35:df:ec:09:bf:73:7c:e8:02:80:72:af:
d7:96:2d:08:f4:73:c0:88:6d:12:30:96:ab:ad:18:b4:4f:cf:
b7:96:22:95:e7:79:51:10:f8:9c:08:8a:99:6c:c7:b2:72:2f:
49:b1:3f:a1:fe:bf:4a:bd:20:e1:d9:f6:6b:52:2d:48:5e:b1:
1e:4a:02:88:d7:ca:5b:3c:7c:e0:42:da:7c:8b:6f:bb:e8:2a:
93:d6:28:82:11:f8:01:90:32:27:27:56:97:e1:96:3d:13:a2:
f2:1c:63:36:b7:22:ff:0a:25:d3:5b:61:a5:80:56:41:d0:86:
94:78:09:ce:63:96:af:bd:a8:f1:58:3c:bb:94:db:60:f9:91:
01:f2:f3:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:19 2024 by rpki-client on console-fra.rpki-client.org