Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/8fbc7e-1f47-487c-8292-e5a77f7a7aa2/1/7A4GBL9k6pI9VPI1lhhS_koE2wA.roa
File: 7A4GBL9k6pI9VPI1lhhS_koE2wA.roa (raw, json)
Hash identifier: SfzYhCTLNc0gDOSg5dv4Aqijh2eL/2EmsKVE4BfizJs=
Subject key identifier: EC:0E:06:04:BF:64:EA:92:3D:54:F2:35:96:18:52:FE:4A:04:DB:00
Certificate issuer: /CN=b09fff8e8ffd8f8e7d9a7b66d1cc73dc39281ef6
Certificate serial: 018CCA998998BA3EFB21541298F99C7B7B2E
Authority key identifier: B0:9F:FF:8E:8F:FD:8F:8E:7D:9A:7B:66:D1:CC:73:DC:39:28:1E:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sJ__jo_9j459mntm0cxz3DkoHvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/8fbc7e-1f47-487c-8292-e5a77f7a7aa2/1/7A4GBL9k6pI9VPI1lhhS_koE2wA.roa
Signing time: Tue 02 Jan 2024 14:35:09 +0000
ROA not before: Tue 02 Jan 2024 14:35:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200590
IP address blocks: 188.94.152.0/23 maxlen: 24
91.147.100.0/22 maxlen: 24
77.240.44.0/22 maxlen: 24
87.255.200.0/23 maxlen: 24
89.223.2.0/24 maxlen: 24
194.76.124.0/22 maxlen: 24
89.223.0.0/24 maxlen: 24
79.143.20.0/22 maxlen: 24
5.188.152.0/22 maxlen: 24
178.238.78.0/23 maxlen: 24
84.252.156.0/22 maxlen: 24
5.188.64.0/22 maxlen: 24
94.126.201.0/24 maxlen: 24
185.97.112.0/22 maxlen: 24
87.255.196.0/22 maxlen: 24
87.255.194.0/23 maxlen: 24
93.190.240.0/22 maxlen: 24
2a06:580::/29 maxlen: 40
Validation: Failed, certificate revoked on Thu 11 Apr 2024 10:28:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:89:98:ba:3e:fb:21:54:12:98:f9:9c:7b:7b:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b09fff8e8ffd8f8e7d9a7b66d1cc73dc39281ef6
Validity
Not Before: Jan 2 14:35:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec0e0604bf64ea923d54f235961852fe4a04db00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:10:68:b3:7e:2c:8e:d0:fa:63:53:8e:ca:ea:
50:20:34:f6:a2:c3:c3:fb:ae:7f:39:d8:99:90:fb:
31:fe:34:e5:de:86:8b:2b:e8:cd:a6:81:16:eb:e7:
39:c3:30:6a:45:20:8d:f8:ca:87:72:df:fa:e0:6a:
80:e5:29:78:a6:99:b9:ac:48:56:60:23:88:da:06:
64:7e:77:9d:00:bf:7e:df:91:95:3e:56:ec:69:28:
c0:4f:3c:51:a5:d8:a6:9e:87:65:39:96:a0:0c:95:
5e:b3:e0:ef:c6:12:97:c1:11:65:03:9d:8d:70:c7:
fd:ac:48:cb:60:ec:c7:0a:9d:65:1a:f3:43:fc:5a:
83:e1:fb:c6:e0:9d:99:08:cd:07:3b:c5:81:a3:7f:
a7:f1:23:3e:52:55:c2:e0:6a:16:82:08:d5:16:d6:
11:ff:ac:1a:e5:dd:48:fb:f0:83:5c:0d:2b:df:7f:
1e:72:38:66:b9:5d:df:69:c2:d3:48:43:f9:92:b2:
f9:de:28:f4:68:cf:2a:5b:de:c7:6a:af:d8:f1:2a:
46:9a:7d:e8:95:53:3c:eb:aa:0c:2a:eb:4f:01:e0:
5e:5e:2d:af:b8:51:27:b3:34:17:4b:a3:a1:7d:1e:
3b:92:41:5e:5f:53:d1:06:9d:3f:3c:fc:da:89:5a:
37:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:0E:06:04:BF:64:EA:92:3D:54:F2:35:96:18:52:FE:4A:04:DB:00
X509v3 Authority Key Identifier:
keyid:B0:9F:FF:8E:8F:FD:8F:8E:7D:9A:7B:66:D1:CC:73:DC:39:28:1E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sJ__jo_9j459mntm0cxz3DkoHvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/8fbc7e-1f47-487c-8292-e5a77f7a7aa2/1/7A4GBL9k6pI9VPI1lhhS_koE2wA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/8fbc7e-1f47-487c-8292-e5a77f7a7aa2/1/sJ__jo_9j459mntm0cxz3DkoHvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.188.64.0/22
5.188.152.0/22
77.240.44.0/22
79.143.20.0/22
84.252.156.0/22
87.255.194.0-87.255.201.255
89.223.0.0/24
89.223.2.0/24
91.147.100.0/22
93.190.240.0/22
94.126.201.0/24
178.238.78.0/23
185.97.112.0/22
188.94.152.0/23
194.76.124.0/22
IPv6:
2a06:580::/29
Signature Algorithm: sha256WithRSAEncryption
9d:ac:5e:da:84:fb:2c:e7:75:0f:2d:7b:73:fe:c4:8f:bb:27:
a9:7a:1b:52:0e:c7:64:18:9c:de:82:a7:ff:ce:89:d4:c8:84:
78:70:be:f8:ac:63:4a:93:5a:9c:9b:50:bf:af:03:51:ea:58:
83:41:40:69:45:21:7f:8a:d0:07:f7:e6:b2:2b:14:87:ae:2f:
5c:76:d5:0f:92:4c:c0:64:a5:f8:3b:99:9f:e5:1e:ec:99:ec:
8c:a9:ce:25:91:f9:00:e6:7e:8f:2e:6a:58:71:6e:45:a4:19:
68:eb:6a:bc:9e:51:80:05:7e:57:6e:9a:ff:22:63:a5:82:e8:
7e:eb:44:7d:c3:77:14:1b:0c:8a:d0:c8:5f:3c:2e:96:f5:33:
b8:80:3f:9d:c9:f7:f7:d4:3d:5f:19:b9:e3:d8:40:bd:33:1e:
76:eb:e5:32:fa:cf:f3:ca:03:f2:93:6a:81:03:36:8a:e5:cc:
69:47:81:75:aa:e1:fc:5a:81:9c:fd:e8:bd:57:50:06:ec:2f:
a5:d9:e1:a2:74:a9:da:62:6e:b3:3b:af:c1:98:ce:bf:e2:1c:
6e:78:ca:81:e7:4d:72:0c:9e:eb:4a:7a:2b:a7:51:f0:eb:bf:
06:e3:b8:7f:5b:dc:29:9d:f2:51:ec:76:cd:0e:ab:55:3f:51:
04:82:f8:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:25 2024 by rpki-client on console-ams.rpki-client.org