Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/l0iBJg-BLF440_nnAg3YKcYNVpg.roa
File: l0iBJg-BLF440_nnAg3YKcYNVpg.roa (raw, json)
Hash identifier: iCBIR3cVvGWjZkNG4GJHw2MC4nYQwRbpvUSz3x6YacM=
Subject key identifier: 97:48:81:26:0F:81:2C:5E:38:D3:F9:E7:02:0D:D8:29:C6:0D:56:98
Certificate issuer: /CN=7a8746a76cda8369009d28941ef156239c6a63a1
Certificate serial: 018AF60EDD0F90DCC152E2B034A478B5E4C0
Authority key identifier: 7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/l0iBJg-BLF440_nnAg3YKcYNVpg.roa
Signing time: Tue 03 Oct 2023 15:01:23 +0000
ROA not before: Tue 03 Oct 2023 15:01:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5378
IP address blocks: 84.70.32.0/19 maxlen: 19
84.66.192.0/18 maxlen: 18
90.252.0.0/15 maxlen: 15
90.252.0.0/14 maxlen: 14
90.255.128.0/18 maxlen: 18
84.70.64.0/18 maxlen: 18
84.70.0.0/19 maxlen: 19
90.255.224.0/20 maxlen: 20
84.67.64.0/18 maxlen: 18
90.255.240.0/21 maxlen: 21
90.255.248.0/22 maxlen: 22
90.255.252.0/23 maxlen: 23
84.67.0.0/18 maxlen: 18
90.255.192.0/19 maxlen: 19
84.70.128.0/18 maxlen: 18
84.69.64.0/18 maxlen: 18
81.76.0.0/14 maxlen: 14
84.66.0.0/18 maxlen: 18
84.65.192.0/18 maxlen: 18
90.255.0.0/17 maxlen: 17
84.69.192.0/18 maxlen: 18
84.66.128.0/18 maxlen: 18
84.69.128.0/18 maxlen: 18
90.248.0.0/14 maxlen: 14
84.66.64.0/18 maxlen: 18
84.68.128.0/18 maxlen: 18
84.68.64.0/19 maxlen: 19
90.240.0.0/14 maxlen: 14
84.68.96.0/19 maxlen: 19
84.65.0.0/18 maxlen: 18
84.71.192.0/18 maxlen: 18
84.68.224.0/19 maxlen: 19
84.65.128.0/18 maxlen: 18
90.244.0.0/14 maxlen: 14
84.69.0.0/18 maxlen: 18
84.65.64.0/18 maxlen: 18
84.68.192.0/19 maxlen: 19
90.254.0.0/16 maxlen: 16
84.64.0.0/13 maxlen: 13
84.67.160.0/19 maxlen: 19
84.64.64.0/18 maxlen: 18
84.71.0.0/18 maxlen: 18
84.67.192.0/19 maxlen: 19
90.255.254.0/24 maxlen: 24
90.255.255.0/24 maxlen: 24
84.64.0.0/18 maxlen: 18
84.70.192.0/18 maxlen: 18
84.67.128.0/19 maxlen: 19
84.68.0.0/18 maxlen: 18
84.64.192.0/18 maxlen: 18
84.71.128.0/18 maxlen: 18
84.64.128.0/18 maxlen: 18
84.67.224.0/19 maxlen: 19
84.71.64.0/18 maxlen: 18
Validation: Failed, certificate revoked on Tue 03 Oct 2023 15:05:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f6:0e:dd:0f:90:dc:c1:52:e2:b0:34:a4:78:b5:e4:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a8746a76cda8369009d28941ef156239c6a63a1
Validity
Not Before: Oct 3 15:01:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=974881260f812c5e38d3f9e7020dd829c60d5698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c6:03:43:7a:71:1f:5c:7f:28:02:05:f7:85:
1f:34:59:b0:13:fd:94:f4:74:ce:c6:bd:7a:97:6c:
e6:f8:ae:1c:b4:ed:12:d7:c8:ad:88:e0:95:87:54:
a2:69:bf:e2:d7:65:b4:69:30:1b:39:9b:55:b4:b1:
eb:8c:f3:ee:cc:eb:2c:dd:4a:93:63:e3:f5:11:09:
ff:46:c3:05:bd:5e:a3:1a:3c:0b:17:70:7c:32:92:
40:89:c3:42:4d:df:5c:5e:f3:0f:89:3c:f7:d0:79:
43:88:c5:27:23:17:b9:d4:61:66:8b:f8:ff:6a:c0:
6c:04:bb:13:81:31:7d:b1:f1:90:57:2d:b2:d7:bd:
e9:cc:48:42:8b:8d:b2:c8:78:1d:4e:10:33:de:48:
1e:83:5e:23:5e:ff:b8:93:df:e0:48:a6:ef:3f:4e:
55:b9:99:c5:cc:59:cb:eb:ae:80:20:5c:da:b7:8d:
55:fd:8e:73:54:05:d9:5c:37:40:34:5b:b9:76:b4:
62:ab:6f:ca:e5:21:f5:2d:1b:71:c7:f2:9e:f2:ad:
e3:c7:9e:34:dd:69:71:d0:8c:f1:83:f9:82:55:e8:
23:cf:60:78:38:99:78:62:bc:03:6c:4d:ba:c8:40:
77:15:5b:a7:40:c2:22:e2:9c:d9:5e:82:55:9c:0c:
6d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:48:81:26:0F:81:2C:5E:38:D3:F9:E7:02:0D:D8:29:C6:0D:56:98
X509v3 Authority Key Identifier:
keyid:7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/l0iBJg-BLF440_nnAg3YKcYNVpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/eodGp2zag2kAnSiUHvFWI5xqY6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.76.0.0/14
84.64.0.0/13
90.240.0.0/12
Signature Algorithm: sha256WithRSAEncryption
49:b5:8f:88:87:3a:fe:10:f9:d8:21:5e:27:b6:4e:fe:da:63:
aa:37:7a:1a:a7:23:c7:f2:ae:8b:1a:2b:01:c3:4d:fd:34:5b:
ae:ff:29:88:d6:a5:b0:39:9f:bb:34:93:a4:55:23:fe:c1:19:
c9:e2:14:97:23:6b:cc:b1:cd:f4:ae:58:73:10:f3:86:89:78:
33:97:f0:1a:fc:bd:f6:43:64:89:da:98:15:35:4b:3f:99:08:
26:f3:59:33:2d:95:7c:cd:e4:ac:95:0a:ad:91:04:3b:a5:85:
a5:c2:c3:8a:29:48:2d:40:55:4b:21:68:fa:cb:22:32:45:25:
c8:1c:b7:a1:73:a0:26:5e:58:db:89:0e:ac:1b:ba:ea:bf:32:
30:4f:e8:66:07:b0:ed:76:02:8f:34:b7:6a:c6:62:cd:e0:1e:
d7:81:ef:33:35:fb:17:5e:e5:f9:9e:71:fe:26:2e:a4:39:8f:
d5:62:3b:51:3c:79:f4:f8:81:c8:08:12:8c:f5:22:9f:f6:8f:
44:22:e4:8b:4f:7a:ad:cb:34:a1:a4:06:c8:8e:bf:fc:8c:3a:
41:ad:ed:ca:e0:a4:e3:b9:7a:96:49:14:59:6e:bf:aa:af:42:
0f:df:53:cd:1a:67:4c:8c:7e:3f:92:31:0d:53:d5:45:69:3f:
ea:6f:41:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:53 2024 by rpki-client on console-fra.rpki-client.org