Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/v1xiuQbf-kt10y_9SE6mdkQ1Tdg.roa
File: v1xiuQbf-kt10y_9SE6mdkQ1Tdg.roa (raw, json)
Hash identifier: Ir0006BhbNyL2risFlHqEwsA4FDln197eyB6RhCXf4Q=
Subject key identifier: BF:5C:62:B9:06:DF:FA:4B:75:D3:2F:FD:48:4E:A6:76:44:35:4D:D8
Certificate issuer: /CN=37af48131ecd9dca3def2b2de788f15060627755
Certificate serial: 01856F390305AD00EC8F0741D266118E06B0
Authority key identifier: 37:AF:48:13:1E:CD:9D:CA:3D:EF:2B:2D:E7:88:F1:50:60:62:77:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N69IEx7Nnco97yst54jxUGBid1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/v1xiuQbf-kt10y_9SE6mdkQ1Tdg.roa
Signing time: Sun 01 Jan 2023 21:24:45 +0000
ROA not before: Sun 01 Jan 2023 21:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 109.255.128.0/17 maxlen: 17
188.141.0.0/17 maxlen: 17
188.141.0.0/18 maxlen: 18
185.54.226.0/23 maxlen: 23
185.54.224.0/22 maxlen: 22
185.54.224.0/23 maxlen: 23
79.97.0.0/17 maxlen: 17
79.97.0.0/16 maxlen: 16
188.141.64.0/18 maxlen: 18
79.97.128.0/17 maxlen: 17
37.228.224.0/19 maxlen: 19
89.101.0.0/16 maxlen: 16
46.255.152.0/21 maxlen: 21
46.255.152.0/22 maxlen: 22
46.255.156.0/22 maxlen: 22
37.228.192.0/19 maxlen: 19
37.228.192.0/18 maxlen: 18
46.7.0.0/17 maxlen: 17
46.7.0.0/16 maxlen: 16
176.61.0.0/17 maxlen: 17
176.61.0.0/18 maxlen: 18
176.61.64.0/18 maxlen: 18
89.100.0.0/16 maxlen: 16
5.179.48.0/20 maxlen: 20
109.255.0.0/17 maxlen: 17
89.100.0.0/15 maxlen: 15
109.255.0.0/16 maxlen: 16
5.179.64.0/21 maxlen: 21
5.179.64.0/22 maxlen: 22
5.179.68.0/22 maxlen: 22
46.7.128.0/17 maxlen: 17
78.24.16.0/21 maxlen: 21
78.24.16.0/22 maxlen: 22
78.24.20.0/22 maxlen: 22
5.179.32.0/20 maxlen: 20
5.179.32.0/19 maxlen: 19
2a02:8080::/30 maxlen: 30
2a02:8080::/29 maxlen: 29
2a02:8084::/30 maxlen: 30
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:03:05:ad:00:ec:8f:07:41:d2:66:11:8e:06:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37af48131ecd9dca3def2b2de788f15060627755
Validity
Not Before: Jan 1 21:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf5c62b906dffa4b75d32ffd484ea67644354dd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:cb:92:83:e7:01:17:4f:00:3b:0e:b1:bb:8a:
42:2a:39:ea:5d:7f:a8:f7:9d:66:36:2c:a2:66:40:
6c:f4:bf:29:e2:8a:da:5e:34:06:ed:1a:7b:63:d8:
cc:d3:d0:85:a7:7e:34:9c:27:ec:04:d0:99:0d:ff:
49:f7:12:e8:bf:a2:32:19:a4:fa:e9:9c:2f:79:fe:
e5:ba:2d:2c:f6:28:e7:06:ec:8b:a4:a0:aa:04:fa:
8a:91:98:19:ed:ae:16:4d:06:73:36:0d:39:4a:65:
fa:ed:65:25:a3:ca:63:e9:e9:da:bc:1d:e6:cc:25:
8e:5a:c6:81:0d:8c:04:e3:39:dc:f3:5b:b4:b1:89:
95:2f:8a:30:dd:55:5d:44:c5:b6:30:31:c8:03:75:
a8:6a:d6:0e:6e:a0:4f:cc:ce:50:c1:cb:c6:f2:3c:
bd:12:26:09:c8:51:7a:ec:3b:e7:86:5c:ae:89:44:
89:ee:c6:c7:98:01:7f:0c:29:28:13:9c:3c:6d:58:
6a:52:a3:c7:7e:2f:75:c2:a8:17:1a:34:76:44:1b:
3d:7f:7e:ba:92:b5:22:ff:dd:3e:12:0d:b9:cf:bb:
44:21:e3:05:a5:fc:15:23:a0:8f:27:f3:54:d3:37:
f3:e2:fe:63:7b:e8:09:0d:8f:04:35:89:c2:1f:64:
e7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:5C:62:B9:06:DF:FA:4B:75:D3:2F:FD:48:4E:A6:76:44:35:4D:D8
X509v3 Authority Key Identifier:
keyid:37:AF:48:13:1E:CD:9D:CA:3D:EF:2B:2D:E7:88:F1:50:60:62:77:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N69IEx7Nnco97yst54jxUGBid1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/v1xiuQbf-kt10y_9SE6mdkQ1Tdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/35faed-c2d7-4cb9-97f5-df6f20dcb94b/1/N69IEx7Nnco97yst54jxUGBid1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.179.32.0-5.179.71.255
37.228.192.0/18
46.7.0.0/16
46.255.152.0/21
78.24.16.0/21
79.97.0.0/16
89.100.0.0/15
109.255.0.0/16
176.61.0.0/17
185.54.224.0/22
188.141.0.0/17
IPv6:
2a02:8080::/29
Signature Algorithm: sha256WithRSAEncryption
61:48:af:7a:e6:49:14:c3:43:d8:8d:44:b1:3c:fc:27:6b:db:
60:d5:88:03:6c:99:e8:fd:75:4e:3d:38:03:0f:24:34:66:90:
fa:8d:b5:88:e0:c8:e4:8d:f3:36:69:72:f9:dc:ff:30:be:a4:
d5:e0:cd:9e:96:77:0c:36:cb:01:6b:ce:9c:0c:9e:06:33:65:
a1:f4:e0:cd:04:c6:65:35:20:b9:b6:cd:ff:7c:3c:67:47:6a:
3f:71:7d:7a:11:eb:83:f4:76:f3:08:29:15:58:b4:bd:e7:bd:
3f:8a:68:8f:f3:80:a7:5e:bd:fa:09:b6:70:1c:2c:98:a6:d6:
b6:7b:a0:33:f8:ce:8a:ec:fa:a6:d6:4e:f5:92:fb:79:68:c3:
ca:aa:95:cd:93:3b:30:79:b3:c2:39:25:fa:43:8b:33:0c:32:
79:03:f5:84:92:75:a1:09:89:f0:64:ed:9a:f2:2c:09:a3:26:
a6:a5:b9:5b:6b:aa:f5:5d:4d:ab:d1:2c:a6:8c:6a:84:ce:ea:
2a:59:22:a0:b3:e3:ba:86:4e:cf:1f:44:29:99:05:57:1f:45:
b0:90:97:dc:bf:a5:04:81:ac:75:ee:fd:54:17:70:8a:92:8e:
95:2d:5b:ff:4b:92:e8:1f:25:20:92:92:9c:d6:7b:41:22:0b:
34:2a:be:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:23 2024 by rpki-client on console-ams.rpki-client.org