Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/bwIIo4pX3MA7m_4xF9pXc7tZods.roa
File: bwIIo4pX3MA7m_4xF9pXc7tZods.roa (raw, json)
Hash identifier: 2Ey15+DXzchVjQ7mdC/i/E3b+13JI0LozAo64u+hS3w=
Subject key identifier: 6F:02:08:A3:8A:57:DC:C0:3B:9B:FE:31:17:DA:57:73:BB:59:A1:DB
Certificate issuer: /CN=7a8746a76cda8369009d28941ef156239c6a63a1
Certificate serial: 0189979368D73695C1108A73F8F9091424FE
Authority key identifier: 7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/bwIIo4pX3MA7m_4xF9pXc7tZods.roa
Signing time: Thu 27 Jul 2023 13:39:27 +0000
ROA not before: Thu 27 Jul 2023 13:39:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5378
IP address blocks: 84.66.192.0/18 maxlen: 18
84.68.128.0/18 maxlen: 18
84.70.64.0/18 maxlen: 18
84.68.64.0/19 maxlen: 19
84.70.0.0/18 maxlen: 18
84.68.96.0/19 maxlen: 19
84.65.0.0/18 maxlen: 18
84.71.192.0/18 maxlen: 18
84.68.224.0/19 maxlen: 19
84.65.128.0/18 maxlen: 18
84.67.64.0/18 maxlen: 18
84.69.0.0/18 maxlen: 18
84.65.64.0/18 maxlen: 18
84.67.0.0/18 maxlen: 18
84.68.192.0/19 maxlen: 19
84.70.128.0/18 maxlen: 18
84.69.64.0/18 maxlen: 18
84.64.0.0/13 maxlen: 13
84.67.160.0/19 maxlen: 19
84.64.64.0/18 maxlen: 18
84.71.0.0/18 maxlen: 18
84.66.0.0/18 maxlen: 18
84.67.192.0/19 maxlen: 19
84.64.0.0/18 maxlen: 18
84.70.192.0/18 maxlen: 18
84.65.192.0/18 maxlen: 18
84.67.128.0/19 maxlen: 19
84.68.0.0/18 maxlen: 18
84.69.192.0/18 maxlen: 18
84.64.192.0/18 maxlen: 18
84.71.128.0/18 maxlen: 18
84.66.128.0/18 maxlen: 18
84.69.128.0/18 maxlen: 18
84.64.128.0/18 maxlen: 18
84.67.224.0/19 maxlen: 19
84.71.64.0/18 maxlen: 18
84.66.64.0/18 maxlen: 18
Validation: Failed, certificate revoked on Wed 27 Sep 2023 15:57:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:97:93:68:d7:36:95:c1:10:8a:73:f8:f9:09:14:24:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a8746a76cda8369009d28941ef156239c6a63a1
Validity
Not Before: Jul 27 13:39:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f0208a38a57dcc03b9bfe3117da5773bb59a1db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:72:ba:22:8a:34:b8:14:30:06:39:01:aa:d9:
ad:52:e2:ea:ce:a4:ad:67:b7:e5:dd:39:f9:23:69:
3b:47:85:fd:cb:14:ea:c8:34:ff:93:b8:d6:9f:f3:
f1:43:6d:44:d1:44:2d:b3:2f:59:da:c1:e7:7c:a9:
5b:a5:f8:3d:51:49:75:1f:f1:0d:6e:4a:a0:c7:42:
e1:d8:78:9c:16:f7:5c:22:df:17:af:a0:55:e4:7a:
12:24:b8:c5:bc:c6:0e:16:5c:b0:94:f6:eb:c8:1f:
52:fb:f7:2f:52:49:29:a6:ce:19:72:96:41:d1:ab:
19:6a:b2:b7:05:fe:6c:51:51:1d:d1:4d:40:6a:f1:
ad:47:ce:d5:5b:14:49:3d:16:f6:60:f2:a6:b3:c6:
15:00:15:4e:a0:c5:8c:73:fa:fc:d5:c7:53:18:17:
c9:e4:36:3e:c5:6c:bf:bd:09:51:ba:78:69:63:5b:
01:4d:b6:50:4e:d3:4f:f9:ec:9b:42:c8:1a:15:d9:
6b:76:37:db:c0:22:90:c1:26:34:c2:8e:06:1c:73:
ac:19:3b:89:98:5d:56:63:47:2c:12:1d:df:e2:87:
c3:ce:18:f8:b6:7b:e4:8e:f2:5f:70:5a:28:f8:c0:
8b:7b:ee:e9:0b:1a:1e:5f:df:f6:fb:4d:0b:83:ff:
8a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:02:08:A3:8A:57:DC:C0:3B:9B:FE:31:17:DA:57:73:BB:59:A1:DB
X509v3 Authority Key Identifier:
keyid:7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/bwIIo4pX3MA7m_4xF9pXc7tZods.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/eodGp2zag2kAnSiUHvFWI5xqY6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.64.0.0/13
Signature Algorithm: sha256WithRSAEncryption
81:f0:f2:ed:61:e7:9e:cb:83:dd:34:97:90:3a:e5:c3:7b:99:
db:32:3c:a5:a1:cb:75:36:0d:5e:67:b7:f8:75:ee:ba:8d:3c:
40:61:9f:c6:68:35:38:d3:da:cf:3c:6a:6d:f6:8f:41:66:b8:
d0:a9:67:32:d9:42:40:52:4e:fe:9a:70:a6:e3:8f:cb:18:81:
04:5e:b9:1c:1e:78:25:35:85:c9:0a:94:01:2c:de:07:ed:01:
8d:b3:80:6b:34:d5:61:88:1f:5d:7d:ad:7d:f6:3f:d2:8e:8a:
14:39:00:4b:e4:ef:c8:e6:0e:05:56:bd:38:9c:39:1f:f1:11:
c7:60:f9:e8:b1:6b:3c:bc:5b:f5:cf:dc:ff:3f:39:de:64:99:
09:f8:ae:73:4c:5a:69:43:55:c5:8d:25:12:97:0e:24:15:f7:
e6:cb:92:08:59:ab:c7:5c:f2:27:83:bc:3f:58:70:3a:83:72:
e1:97:ca:56:0b:5f:8a:38:02:a1:25:30:ed:03:25:f4:17:52:
94:5a:1c:b0:b3:97:80:80:dc:11:0c:86:79:9e:c1:8f:3a:6c:
9c:e8:b0:39:55:de:c7:4b:01:06:11:48:ab:42:5a:9b:14:79:
f0:60:60:c7:e6:bd:f5:a1:75:5f:12:f2:c4:53:bf:f8:03:d4:
67:43:0e:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:53 2024 by rpki-client on console-fra.rpki-client.org