Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/dI3x9WGF5VuaXWJG1Tp6KnrJ7WI.roa
File: dI3x9WGF5VuaXWJG1Tp6KnrJ7WI.roa (raw, json)
Hash identifier: 0VmF4E9sruOqK/pOQCDqe9eoUzpSaua58VaICByncNY=
Subject key identifier: 74:8D:F1:F5:61:85:E5:5B:9A:5D:62:46:D5:3A:7A:2A:7A:C9:ED:62
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0185B66DD04AC4E3C5801B800653BF189C5D
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/dI3x9WGF5VuaXWJG1Tp6KnrJ7WI.roa
Signing time: Sun 15 Jan 2023 17:15:28 +0000
ROA not before: Sun 15 Jan 2023 17:15:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62206
IP address blocks: 5.181.87.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
195.211.190.0/24 maxlen: 24
2.56.108.0/22 maxlen: 22
45.88.139.0/24 maxlen: 24
45.88.136.0/24 maxlen: 24
185.200.63.0/24 maxlen: 24
185.200.62.0/24 maxlen: 24
194.242.96.0/22 maxlen: 22
194.242.97.0/24 maxlen: 24
193.57.43.0/24 maxlen: 24
45.144.212.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
45.132.181.0/24 maxlen: 24
195.62.24.0/24 maxlen: 24
194.15.52.0/24 maxlen: 24
185.43.248.0/24 maxlen: 24
185.43.251.0/24 maxlen: 24
185.43.249.0/24 maxlen: 24
193.30.243.0/24 maxlen: 24
193.30.242.0/24 maxlen: 24
85.209.120.0/22 maxlen: 24
85.209.120.0/23 maxlen: 24
85.209.123.0/24 maxlen: 24
85.209.122.0/24 maxlen: 24
193.30.241.0/24 maxlen: 24
45.9.29.0/24 maxlen: 24
195.177.92.0/24 maxlen: 24
195.177.95.0/24 maxlen: 24
195.177.94.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
45.81.112.0/22 maxlen: 24
77.83.38.0/24 maxlen: 24
193.30.240.0/24 maxlen: 24
2a10:dfc0::/29 maxlen: 29
2a07:9200::/29 maxlen: 29
2a11:580::/29 maxlen: 29
2a0c:a580::/29 maxlen: 29
2a01:7120::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 17 Jan 2023 17:10:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b6:6d:d0:4a:c4:e3:c5:80:1b:80:06:53:bf:18:9c:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 15 17:15:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=748df1f56185e55b9a5d6246d53a7a2a7ac9ed62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2c:d2:ff:09:9a:05:3f:2e:db:17:3b:9b:60:
a7:e5:ae:ca:08:67:c5:d2:c1:27:7c:ab:69:04:7f:
2f:bc:61:1e:b5:0f:1c:3d:55:40:80:a6:6c:ab:85:
bb:fc:e5:21:f0:5b:0f:6b:38:84:1a:95:8a:87:d2:
9f:db:9e:48:1e:8d:c1:5e:8a:26:90:5f:3f:e4:3c:
39:0e:41:77:1d:e1:8d:96:0a:bf:f1:cb:e7:60:0c:
63:13:b6:c5:7f:0b:98:4f:3f:69:f1:30:89:86:eb:
e5:24:25:4f:de:08:9f:28:77:e2:7f:f8:83:f0:9a:
0c:09:12:d9:77:68:99:97:80:61:a1:4e:66:78:66:
91:2c:4d:90:a4:aa:b1:1c:0e:17:a1:a6:d2:cf:b0:
70:fc:7e:3f:b2:9d:36:75:fd:87:ce:1e:e1:7d:63:
e3:53:34:8c:e7:8e:a0:87:21:36:c4:36:e8:6f:d3:
15:54:57:6b:f6:8e:bd:c4:65:ce:09:06:36:31:a6:
be:a8:1d:f2:12:f3:84:e4:41:a9:98:be:15:aa:7c:
af:a2:a0:94:cb:86:5f:8b:58:5c:b1:79:72:fb:2e:
7f:33:0a:39:85:40:b7:01:82:90:50:97:f9:6a:4a:
3d:70:91:2b:77:f2:7c:01:b2:89:69:41:9a:e2:31:
f6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8D:F1:F5:61:85:E5:5B:9A:5D:62:46:D5:3A:7A:2A:7A:C9:ED:62
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/dI3x9WGF5VuaXWJG1Tp6KnrJ7WI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.108.0/22
5.181.87.0/24
45.9.29.0/24
45.81.112.0/22
45.88.136.0/24
45.88.139.0/24
45.132.181.0-45.132.183.255
45.144.212.0/24
77.83.38.0/24
85.209.120.0/22
185.43.248.0/23
185.43.251.0/24
185.200.62.0/23
193.30.240.0/22
193.57.43.0/24
194.15.52.0/24
194.242.96.0/22
195.62.24.0/24
195.177.92.0/22
195.211.188.0/22
IPv6:
2a01:7120::/32
2a07:9200::/29
2a0c:a580::/29
2a10:dfc0::/29
2a11:580::/29
Signature Algorithm: sha256WithRSAEncryption
bc:ae:9f:11:39:a7:12:8d:1c:50:dc:c0:57:e5:8a:2b:18:6a:
11:6a:8e:ca:2f:02:af:68:e7:0d:b4:02:7f:21:35:5f:2f:b5:
66:be:ff:5d:49:dc:24:81:53:22:96:65:b7:31:47:93:59:27:
cc:7e:01:25:79:f2:c6:95:ee:07:a1:b1:13:71:a5:fc:08:64:
8a:37:17:bb:2b:1e:62:49:90:c0:29:78:de:8d:44:9e:47:1d:
5e:03:54:b5:c5:a0:3c:86:fe:b8:4b:a1:1c:3e:3c:00:62:2c:
71:49:4d:89:13:a7:d2:48:dc:cb:c4:23:2f:0f:e1:ad:51:f7:
f2:83:ab:d9:d7:3b:1f:69:0c:c5:86:e8:59:86:41:b5:ff:e4:
97:09:17:75:d1:3a:ec:35:3c:ff:74:cf:59:92:5b:b3:de:1c:
a6:de:86:19:fb:52:3f:1f:81:58:e1:2e:67:26:39:57:47:e3:
ef:21:73:b3:de:ee:6c:cc:26:45:6d:59:33:40:ee:82:b0:60:
f1:5d:9b:69:0c:47:01:3f:77:8e:5f:a3:31:b0:87:d0:c1:9c:
6a:ff:fc:4c:04:8b:1e:b3:7d:05:3f:de:91:47:bd:63:b6:2f:
ef:bf:e7:66:98:b8:b3:8d:c8:a0:96:50:2b:ea:1a:c5:7c:91:
7f:ef:1d:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org