Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cfbcfa-88da-488e-ace1-7967962e7c75/1/Zmpjh--LW_stnFXeq0-f3cIW_xo.roa
File: Zmpjh--LW_stnFXeq0-f3cIW_xo.roa (raw, json)
Hash identifier: T4iw6/SR2+P/Wg58IsrGtxdpF6P8hMfKwrfjXAgZvv0=
Subject key identifier: 66:6A:63:87:EF:8B:5B:FB:2D:9C:55:DE:AB:4F:9F:DD:C2:16:FF:1A
Certificate issuer: /CN=1763214280055a47deb554fe9cb28dc0c1792302
Certificate serial: 01857042A03938995AA7C5EA9D7B893CC93B
Authority key identifier: 17:63:21:42:80:05:5A:47:DE:B5:54:FE:9C:B2:8D:C0:C1:79:23:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F2MhQoAFWkfetVT-nLKNwMF5IwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cfbcfa-88da-488e-ace1-7967962e7c75/1/Zmpjh--LW_stnFXeq0-f3cIW_xo.roa
Signing time: Mon 02 Jan 2023 02:14:52 +0000
ROA not before: Mon 02 Jan 2023 02:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12997
IP address blocks: 212.97.16.0/20 maxlen: 20
37.218.128.0/18 maxlen: 18
37.218.128.0/19 maxlen: 19
212.97.0.0/19 maxlen: 19
212.97.0.0/20 maxlen: 20
185.66.252.0/22 maxlen: 22
185.66.252.0/23 maxlen: 23
185.66.254.0/23 maxlen: 23
37.218.160.0/19 maxlen: 19
212.241.16.0/20 maxlen: 20
85.113.16.0/20 maxlen: 20
80.72.176.0/21 maxlen: 21
80.72.176.0/20 maxlen: 20
89.237.192.0/19 maxlen: 19
89.237.192.0/18 maxlen: 18
80.72.184.0/21 maxlen: 21
31.29.0.0/20 maxlen: 20
31.29.0.0/19 maxlen: 19
89.237.224.0/19 maxlen: 19
212.241.0.0/19 maxlen: 19
85.113.0.0/19 maxlen: 19
212.241.0.0/20 maxlen: 20
85.113.0.0/20 maxlen: 20
213.145.129.0/24 maxlen: 24
213.145.128.0/20 maxlen: 20
213.145.128.0/24 maxlen: 24
213.145.130.0/24 maxlen: 24
213.145.128.0/19 maxlen: 19
213.145.144.0/20 maxlen: 20
213.145.140.0/24 maxlen: 24
31.29.16.0/20 maxlen: 20
195.114.240.0/20 maxlen: 20
195.114.240.0/21 maxlen: 21
195.114.248.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:a0:39:38:99:5a:a7:c5:ea:9d:7b:89:3c:c9:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1763214280055a47deb554fe9cb28dc0c1792302
Validity
Not Before: Jan 2 02:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=666a6387ef8b5bfb2d9c55deab4f9fddc216ff1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f9:48:ed:2d:43:c8:7b:5c:e3:4b:37:31:e5:
56:de:4f:28:c3:df:2e:58:62:64:74:30:f3:f2:34:
57:25:d8:37:2a:af:0e:0b:33:59:b7:c3:1c:88:f5:
09:f8:24:5b:42:a3:8f:a9:f6:34:49:b5:68:5a:58:
67:9e:08:a8:18:c7:21:5c:af:f9:28:a1:9a:3f:fa:
15:91:16:3e:9c:2c:e7:34:7d:71:a0:68:67:7a:a0:
00:9e:0c:ef:f6:91:71:fc:88:cb:d9:63:33:f5:b1:
cb:8b:68:4a:19:ab:a9:1b:82:f5:c0:3d:71:b0:e1:
7d:0d:55:b5:39:30:37:d7:e6:3d:de:54:0b:be:a1:
26:18:7c:34:d8:b7:50:ba:fe:73:6a:2a:74:68:a9:
17:99:d5:a9:1b:b3:49:57:dd:e1:89:66:4e:b8:51:
0c:9f:bc:26:eb:c2:ad:00:bf:ef:34:43:66:05:df:
9f:51:f1:b2:91:4d:4a:83:4c:b5:40:94:cb:24:59:
02:78:e8:2a:86:90:3c:60:7d:19:e9:6f:33:0b:b7:
e8:af:84:da:df:a3:08:44:dd:c8:f1:b6:0c:a1:dc:
96:a4:cb:2e:6f:1f:f5:20:74:b1:39:0e:e0:24:b9:
60:c2:30:e5:41:bc:77:f5:cb:10:46:ab:1e:5e:52:
70:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:6A:63:87:EF:8B:5B:FB:2D:9C:55:DE:AB:4F:9F:DD:C2:16:FF:1A
X509v3 Authority Key Identifier:
keyid:17:63:21:42:80:05:5A:47:DE:B5:54:FE:9C:B2:8D:C0:C1:79:23:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F2MhQoAFWkfetVT-nLKNwMF5IwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cfbcfa-88da-488e-ace1-7967962e7c75/1/Zmpjh--LW_stnFXeq0-f3cIW_xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cfbcfa-88da-488e-ace1-7967962e7c75/1/F2MhQoAFWkfetVT-nLKNwMF5IwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.29.0.0/19
37.218.128.0/18
80.72.176.0/20
85.113.0.0/19
89.237.192.0/18
185.66.252.0/22
195.114.240.0/20
212.97.0.0/19
212.241.0.0/19
213.145.128.0/19
Signature Algorithm: sha256WithRSAEncryption
4b:4c:8e:06:40:23:cc:c4:d1:15:92:ae:42:ba:38:e1:6c:d8:
00:c2:a6:c7:3a:94:3f:12:d0:45:70:fb:f0:6d:13:09:10:e7:
50:5d:cb:a1:70:63:6c:bb:bb:d5:8c:53:a2:ca:1e:72:c3:6a:
77:ad:1a:f4:ff:35:d4:47:0e:97:eb:6a:17:ae:5d:b0:6d:98:
b9:5b:d5:91:fb:8e:42:38:fd:aa:07:fb:3b:f8:8e:60:79:e7:
41:16:db:b4:d5:08:45:86:37:54:eb:25:92:d3:e0:0d:a6:18:
92:1c:48:7b:cb:3d:7c:29:0e:03:bb:46:2f:a1:a1:6c:59:f3:
82:41:6c:cf:dd:de:21:33:b0:92:a1:03:02:5f:76:81:db:7a:
0e:cd:c5:e1:3c:da:a2:99:f4:e7:e7:2f:73:7b:b7:be:5a:66:
9a:ae:dc:8c:21:bf:df:7b:45:20:b6:d3:87:e0:22:91:70:f2:
6b:c8:50:a1:e4:19:48:0b:8f:71:db:80:70:15:df:74:76:94:
44:e6:fc:f0:e4:62:03:31:48:b5:71:a5:85:74:af:db:e3:fa:
5c:39:e1:50:bd:a3:61:a7:49:5c:8c:41:62:d4:e2:34:4c:c2:
d9:6c:a4:f8:28:23:f9:9b:c0:21:65:5b:81:bc:05:4a:cf:5b:
da:3b:1b:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:56 2024 by rpki-client on console-fra.rpki-client.org