Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/stkNNzAm_1IbjDZu5uU7X_ox7SQ.roa
File: stkNNzAm_1IbjDZu5uU7X_ox7SQ.roa (raw, json)
Hash identifier: IZvzYSNK2JUuLVTj3ECFPDZjkGckD4NXcs7WNgYQ4ec=
Subject key identifier: B2:D9:0D:37:30:26:FF:52:1B:8C:36:6E:E6:E5:3B:5F:FA:31:ED:24
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 01867539077DB6E56D6476D611A46444F0FB
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/stkNNzAm_1IbjDZu5uU7X_ox7SQ.roa
Signing time: Tue 21 Feb 2023 18:25:17 +0000
ROA not before: Tue 21 Feb 2023 18:25:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6939
IP address blocks: 62.182.32.0/22 maxlen: 22
193.38.44.0/22 maxlen: 22
139.28.240.0/22 maxlen: 22
5.133.100.0/22 maxlen: 22
85.235.72.0/22 maxlen: 22
31.40.204.0/22 maxlen: 22
139.28.48.0/22 maxlen: 22
84.54.0.0/22 maxlen: 22
194.169.92.0/22 maxlen: 22
212.87.196.0/22 maxlen: 22
139.28.212.0/22 maxlen: 22
37.221.76.0/22 maxlen: 22
193.32.204.0/22 maxlen: 22
77.241.72.0/22 maxlen: 22
176.96.128.0/22 maxlen: 22
176.53.156.0/22 maxlen: 22
194.93.60.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 05 Apr 2023 12:46:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:75:39:07:7d:b6:e5:6d:64:76:d6:11:a4:64:44:f0:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Feb 21 18:25:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2d90d373026ff521b8c366ee6e53b5ffa31ed24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f0:ce:6a:8d:43:03:ee:8f:a5:38:3e:9a:41:
75:dd:01:d0:c3:f4:53:dc:bd:3c:4a:04:2a:52:c1:
40:6d:6a:cb:a0:51:8b:d1:bf:98:c8:fa:fc:c6:d2:
f3:63:9c:34:f9:bf:0c:6e:89:26:34:44:eb:f7:10:
9d:91:ad:82:ca:77:a7:ea:0b:fc:cb:5a:73:92:7e:
49:13:57:f2:5f:3d:3c:8f:25:85:78:bb:ac:21:17:
d1:00:99:a6:3d:72:1d:b8:20:64:01:17:f0:25:07:
e1:dc:34:1a:68:21:ee:5a:40:b9:55:d6:9c:10:2c:
64:45:43:08:66:22:53:c0:30:a0:ac:ca:d7:da:c9:
98:a1:86:98:f6:d1:71:ab:a9:12:e1:41:2a:c0:b6:
c1:1a:bd:c0:0a:36:83:3f:a1:93:63:d5:1a:37:5a:
e4:fe:c5:27:aa:48:a0:64:f0:54:f5:2e:a6:81:0e:
a6:96:61:1f:ac:0f:00:20:6a:09:21:2f:7a:12:ba:
8a:40:eb:f8:3a:ed:ee:3a:70:12:17:24:ef:12:d3:
a3:1e:fa:c6:5e:06:36:c7:65:e7:cf:54:e5:9f:c9:
51:35:ac:81:36:88:d7:33:fd:a1:9a:89:1e:fd:fa:
56:45:62:a0:d2:8b:dd:ed:0d:9a:e3:6d:15:dc:63:
dc:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:D9:0D:37:30:26:FF:52:1B:8C:36:6E:E6:E5:3B:5F:FA:31:ED:24
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/stkNNzAm_1IbjDZu5uU7X_ox7SQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.100.0/22
31.40.204.0/22
37.221.76.0/22
62.182.32.0/22
77.241.72.0/22
84.54.0.0/22
85.235.72.0/22
139.28.48.0/22
139.28.212.0/22
139.28.240.0/22
176.53.156.0/22
176.96.128.0/22
193.32.204.0/22
193.38.44.0/22
194.93.60.0/22
194.169.92.0/22
212.87.196.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:8f:8e:85:b9:8b:86:63:e4:19:3d:67:9d:df:6a:27:46:d8:
b5:5d:76:06:0d:67:54:19:7b:41:cc:de:ac:49:b8:1f:fa:4b:
e3:1e:58:c9:65:c4:a9:39:9a:c8:28:e4:17:f1:01:94:48:c8:
6f:51:ed:04:ee:1e:57:c7:7b:4f:bd:54:f0:46:b7:1f:16:8f:
e8:c5:98:9b:c0:96:69:3c:e0:14:37:19:76:85:c6:ef:2a:c3:
a8:cd:1f:cf:08:63:25:d3:08:2e:ba:6a:80:b9:04:b3:f6:93:
6a:f3:41:ec:f5:d5:e8:6f:9d:eb:8a:1c:2d:a6:29:96:a2:1d:
42:6e:81:86:30:bf:b5:9b:ba:0c:4e:92:9a:32:66:98:d2:6e:
b3:37:73:c9:ac:b1:4b:cf:eb:75:bc:77:ca:59:6f:f3:c1:f4:
b8:9d:5b:c6:f9:ec:d7:da:e6:d3:46:8a:df:cb:0c:e6:70:92:
13:14:bb:e6:54:bd:62:46:51:6e:f2:60:9a:61:86:e2:c1:21:
32:26:a3:6d:c2:51:40:da:ea:bf:59:df:a6:6b:e7:5c:28:c0:
12:79:83:8a:bf:0f:4e:41:3a:88:cb:c3:74:97:f4:92:46:1b:
e2:ee:8a:d5:56:c5:c5:35:f0:30:82:da:4d:95:ab:f9:2d:0c:
bf:20:1a:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:49 2024 by rpki-client on console-ams.rpki-client.org