Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/c41iQfrvoLnbHPOQX0eEbDxN7JQ.roa
File: c41iQfrvoLnbHPOQX0eEbDxN7JQ.roa (raw, json)
Hash identifier: JoW9fw7X0OP93WVkLz+zWpUPtUFoZAzZG4w0mgJOBwk=
Subject key identifier: 73:8D:62:41:FA:EF:A0:B9:DB:1C:F3:90:5F:47:84:6C:3C:4D:EC:94
Certificate issuer: /CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Certificate serial: 0189B120FF8747E40B6501514B88A2FE9816
Authority key identifier: EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/c41iQfrvoLnbHPOQX0eEbDxN7JQ.roa
Signing time: Tue 01 Aug 2023 12:44:37 +0000
ROA not before: Tue 01 Aug 2023 12:44:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24961
IP address blocks: 185.219.208.0/22 maxlen: 22
78.31.64.0/21 maxlen: 21
93.186.192.0/20 maxlen: 20
83.136.80.0/21 maxlen: 21
46.20.32.0/20 maxlen: 20
85.114.128.0/19 maxlen: 19
5.104.104.0/21 maxlen: 21
85.14.192.0/18 maxlen: 18
85.14.206.0/24 maxlen: 24
62.141.32.0/20 maxlen: 20
37.157.248.0/21 maxlen: 21
46.228.192.0/20 maxlen: 20
194.107.129.0/24 maxlen: 24
81.30.144.0/20 maxlen: 20
80.82.208.0/20 maxlen: 20
91.212.159.0/24 maxlen: 24
91.212.153.0/24 maxlen: 24
89.163.128.0/17 maxlen: 17
146.0.32.0/20 maxlen: 20
91.194.84.0/24 maxlen: 24
213.202.192.0/18 maxlen: 18
5.199.128.0/20 maxlen: 20
185.15.244.0/22 maxlen: 22
217.79.176.0/20 maxlen: 20
193.111.198.0/23 maxlen: 23
2001:4ba4::/32 maxlen: 32
2a01:480::/32 maxlen: 32
2001:4ba1::/32 maxlen: 32
2001:4ba0::/32 maxlen: 32
2001:4ba3::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 02 Aug 2023 14:36:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b1:20:ff:87:47:e4:0b:65:01:51:4b:88:a2:fe:98:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Validity
Not Before: Aug 1 12:44:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=738d6241faefa0b9db1cf3905f47846c3c4dec94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:65:35:ce:ed:f9:ad:fe:df:1c:95:b4:62:24:
d2:12:4a:0a:e7:4e:fd:e5:fb:08:6a:42:6a:c4:a3:
f2:fc:ef:0d:1d:6a:23:b4:a3:46:73:d2:0f:dd:24:
c5:9d:48:6b:4b:ee:ff:ff:8d:24:26:07:3a:3c:b1:
a3:89:00:0d:a2:90:7f:52:dc:6c:c3:de:8c:84:fc:
22:33:55:be:a6:19:c9:65:ce:81:42:a2:f4:ae:80:
3a:8e:f6:9b:c8:1d:9f:ba:f1:5c:2a:2b:48:88:9f:
b6:d5:56:2e:26:3e:4e:b3:f6:68:ff:ae:dd:c1:e9:
1d:ba:a5:d3:26:26:30:c0:51:52:27:f1:7c:45:c9:
2f:47:c1:c8:54:2b:40:98:9e:6e:ea:bd:88:1d:44:
06:f8:75:09:27:13:7c:d0:99:f2:e3:55:2d:e8:56:
89:c8:e2:b0:7d:2a:31:e5:98:2f:86:14:ab:ed:01:
77:81:40:cf:b5:4b:29:56:0c:07:6f:0f:24:3e:04:
82:44:5c:d9:85:79:70:ba:86:b1:54:d9:34:7e:28:
26:44:46:6b:0d:d2:a3:28:31:a5:ce:50:34:9c:fd:
9e:a8:a9:6a:97:df:96:69:dd:b7:49:0a:26:92:3e:
50:38:f1:52:67:71:72:f6:99:4c:0e:d2:33:19:5e:
d0:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:8D:62:41:FA:EF:A0:B9:DB:1C:F3:90:5F:47:84:6C:3C:4D:EC:94
X509v3 Authority Key Identifier:
keyid:EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/c41iQfrvoLnbHPOQX0eEbDxN7JQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/7GtCAhiG2O7brpDZ5qsd5TPFDSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.104.0/21
5.199.128.0/20
37.157.248.0/21
46.20.32.0/20
46.228.192.0/20
62.141.32.0/20
78.31.64.0/21
80.82.208.0/20
81.30.144.0/20
83.136.80.0/21
85.14.192.0/18
85.114.128.0/19
89.163.128.0/17
91.194.84.0/24
91.212.153.0/24
91.212.159.0/24
93.186.192.0/20
146.0.32.0/20
185.15.244.0/22
185.219.208.0/22
193.111.198.0/23
194.107.129.0/24
213.202.192.0/18
217.79.176.0/20
IPv6:
2001:4ba0::/31
2001:4ba3::-2001:4ba4:ffff:ffff:ffff:ffff:ffff:ffff
2a01:480::/32
Signature Algorithm: sha256WithRSAEncryption
03:89:7b:b7:2c:ee:5b:c2:07:7d:7a:26:4e:63:d2:31:bc:71:
80:19:6d:e5:cc:71:8c:ab:29:89:f0:d5:28:07:fb:1b:e3:dc:
67:bb:9c:ca:1a:a1:fe:f8:d1:ac:af:7f:c8:53:66:23:db:0a:
1d:95:40:0c:b3:34:8f:fe:63:9f:df:00:db:74:3c:0a:8a:1a:
87:01:e9:73:82:ce:2e:cd:62:69:db:98:4e:68:60:6e:83:42:
59:68:43:0a:82:a0:5a:06:48:ff:91:62:48:f5:6c:33:62:7c:
84:9a:e5:f3:99:e1:ef:38:e1:c6:27:77:7c:b6:2c:15:85:0d:
d4:46:f5:65:c7:a5:67:4e:d3:21:22:b2:98:f3:61:7d:b2:f3:
91:a2:35:c7:9f:38:10:eb:a7:52:89:3f:a5:80:ce:83:5e:59:
ac:4e:04:10:22:27:c3:f6:ff:1d:35:0b:90:75:2e:96:4b:9b:
ca:78:70:5b:5e:9f:d8:62:dd:ea:8f:b3:5b:db:aa:f1:db:a5:
9d:2a:42:e1:9f:2a:c9:e0:63:af:a2:7c:52:58:37:2e:dd:b4:
51:d3:bf:ea:5a:cb:3f:0a:ec:4d:95:30:9a:dc:28:39:ce:ce:
b9:64:a8:65:7f:f2:32:5b:a3:05:8e:1d:e0:9b:a2:26:29:37:
ee:53:67:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:21 2024 by rpki-client on console-ams.rpki-client.org