Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/YF2tLrZ_eAFcL-l9gK4bbJWMz0o.roa
File: YF2tLrZ_eAFcL-l9gK4bbJWMz0o.roa (raw, json)
Hash identifier: UqXvHkWMQR40M6Bj0w4aw7c+ipzdXyEOOMU2rOAahM8=
Subject key identifier: 60:5D:AD:2E:B6:7F:78:01:5C:2F:E9:7D:80:AE:1B:6C:95:8C:CF:4A
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018BE28DBCA3C058B199A3AE699B9DF39EFF
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/YF2tLrZ_eAFcL-l9gK4bbJWMz0o.roa
Signing time: Sat 18 Nov 2023 13:10:21 +0000
ROA not before: Sat 18 Nov 2023 13:10:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62206
IP address blocks: 5.181.87.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
195.211.190.0/24 maxlen: 24
45.88.138.0/24 maxlen: 24
45.88.136.0/24 maxlen: 24
185.200.63.0/24 maxlen: 24
185.200.62.0/24 maxlen: 24
194.242.96.0/22 maxlen: 22
194.242.97.0/24 maxlen: 24
193.57.43.0/24 maxlen: 24
45.144.212.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
45.132.181.0/24 maxlen: 24
45.94.168.0/22 maxlen: 22
45.94.170.0/24 maxlen: 24
185.43.248.0/24 maxlen: 24
185.43.251.0/24 maxlen: 24
185.43.249.0/24 maxlen: 24
193.30.243.0/24 maxlen: 24
193.30.242.0/24 maxlen: 24
77.83.39.0/24 maxlen: 24
85.209.120.0/22 maxlen: 24
85.209.120.0/23 maxlen: 24
85.209.123.0/24 maxlen: 24
85.209.122.0/24 maxlen: 24
45.9.29.0/24 maxlen: 24
195.177.92.0/24 maxlen: 24
195.177.94.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
193.30.240.0/24 maxlen: 24
2a10:dfc0::/29 maxlen: 29
2a07:9200::/29 maxlen: 29
2a11:580::/29 maxlen: 29
2a0c:a580::/29 maxlen: 29
2a01:7120::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 20 Nov 2023 10:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e2:8d:bc:a3:c0:58:b1:99:a3:ae:69:9b:9d:f3:9e:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Nov 18 13:10:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=605dad2eb67f78015c2fe97d80ae1b6c958ccf4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b8:df:a0:2a:3d:d7:0f:9e:ef:71:48:9e:f1:
ae:58:3e:8c:c4:a4:eb:8e:21:84:e8:45:be:fa:c5:
96:9e:89:5f:0e:6f:3a:3f:fe:cc:60:2c:59:09:c9:
3d:ad:dd:0a:a5:55:3d:ef:67:52:be:b3:b9:90:2c:
ee:e2:85:2c:78:7c:e5:65:d8:00:76:57:ee:d2:cc:
fb:ba:3c:bb:48:51:20:5e:ae:aa:37:36:63:7d:c8:
d9:89:69:81:af:e1:e1:6a:5e:34:ff:7a:ab:87:1a:
9f:5c:b4:78:49:06:0a:85:b6:62:bb:0b:c3:f1:fe:
6f:32:6d:66:0a:2c:d5:35:84:e3:8b:da:32:06:12:
1f:a8:f2:73:1d:f5:4c:0b:c2:76:5c:39:0a:5b:95:
9f:a3:c0:3f:c9:28:96:cb:d5:40:78:6f:a1:c7:bf:
f7:6f:6b:4e:80:11:25:da:38:ff:4d:65:d2:6f:6d:
47:d0:ed:43:90:78:02:b6:90:c6:cd:eb:cb:cf:b3:
b6:d3:d4:03:30:71:8b:17:6b:e6:00:f9:ce:c1:7d:
a2:87:66:53:ba:4a:0d:4f:7d:a1:3b:bc:92:e3:f9:
8f:19:36:e8:99:23:8f:c4:18:27:e1:58:5d:75:6e:
b9:b2:63:be:c3:e1:90:35:fb:25:8b:91:b1:e2:2b:
7e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:5D:AD:2E:B6:7F:78:01:5C:2F:E9:7D:80:AE:1B:6C:95:8C:CF:4A
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/YF2tLrZ_eAFcL-l9gK4bbJWMz0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.87.0/24
45.9.29.0/24
45.88.136.0/24
45.88.138.0/24
45.94.168.0/22
45.132.181.0-45.132.183.255
45.144.212.0/24
77.83.37.0/24
77.83.39.0/24
85.209.120.0/22
185.43.248.0/23
185.43.251.0/24
185.200.62.0/23
193.30.240.0/24
193.30.242.0/23
193.57.43.0/24
194.242.96.0/22
195.177.92.0-195.177.94.255
195.211.188.0/22
IPv6:
2a01:7120::/32
2a07:9200::/29
2a0c:a580::/29
2a10:dfc0::/29
2a11:580::/29
Signature Algorithm: sha256WithRSAEncryption
75:2e:6f:0b:73:fc:95:ca:f2:49:66:b0:58:35:8d:bb:e8:2e:
a2:67:93:ab:67:50:92:9a:a6:d8:1b:46:ee:98:da:de:22:f6:
af:72:8b:44:84:1c:79:cf:9b:eb:20:f6:35:b1:80:c4:5c:49:
72:c4:7e:21:8e:8d:68:a5:18:17:0a:41:af:7c:d2:e0:5b:32:
a9:d7:fa:25:31:e8:9e:7b:6f:6d:c4:87:de:67:81:db:f1:89:
3b:6f:97:45:fc:52:a4:ec:d2:ad:33:23:52:0c:75:97:2f:9d:
16:fa:a3:e2:c0:34:5a:63:cf:1d:05:c0:64:22:0a:dc:83:05:
7f:63:03:66:58:58:88:5f:bd:54:35:d8:af:2f:63:7e:92:f6:
e5:8d:fe:cc:a7:e5:a5:3d:6f:8b:61:0f:c4:e1:96:5a:7e:1d:
6f:f5:91:68:7c:ec:e0:79:45:bb:72:5d:d6:75:9a:5a:e3:bb:
a5:41:10:e8:89:4a:20:7a:8e:03:2b:58:23:b8:4e:c1:8e:ff:
74:0d:70:53:80:5e:cc:09:88:ca:cb:73:f0:35:40:f6:ff:e6:
31:87:fb:97:30:0b:ff:91:1f:01:c8:8c:b7:b5:42:ce:ce:f1:
32:55:01:5e:4a:fe:77:f3:6c:f3:f2:8e:d7:5e:b1:f5:91:48:
6e:6b:84:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org