Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/o5Q9pxR2XShFi1m02Jo7XAEEJN0.roa
File: o5Q9pxR2XShFi1m02Jo7XAEEJN0.roa (raw, json)
Hash identifier: i3Xp2KXXZJCfYXa/r5vLQgvZSkhj6+vVuICQI3gowjY=
Subject key identifier: A3:94:3D:A7:14:76:5D:28:45:8B:59:B4:D8:9A:3B:5C:01:04:24:DD
Certificate issuer: /CN=7a8746a76cda8369009d28941ef156239c6a63a1
Certificate serial: 018BDE05E4E78EB1ECAA986602FA9E0BE2A9
Authority key identifier: 7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/o5Q9pxR2XShFi1m02Jo7XAEEJN0.roa
Signing time: Fri 17 Nov 2023 16:03:30 +0000
ROA not before: Fri 17 Nov 2023 16:03:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1273
IP address blocks: 195.92.0.0/16 maxlen: 16
195.80.64.0/19 maxlen: 19
194.112.64.0/18 maxlen: 18
194.6.64.0/19 maxlen: 19
194.205.0.0/16 maxlen: 16
62.208.0.0/16 maxlen: 16
213.216.128.0/18 maxlen: 18
194.6.0.0/18 maxlen: 18
213.38.0.0/16 maxlen: 16
217.134.0.0/15 maxlen: 15
217.161.0.0/16 maxlen: 16
141.1.0.0/16 maxlen: 16
195.89.13.0/24 maxlen: 24
195.10.0.0/18 maxlen: 18
212.165.0.0/19 maxlen: 19
193.164.160.0/19 maxlen: 19
194.176.128.0/19 maxlen: 19
195.144.128.0/19 maxlen: 19
212.158.0.0/17 maxlen: 17
195.89.0.0/16 maxlen: 16
185.204.4.0/22 maxlen: 22
213.12.0.0/16 maxlen: 16
195.44.0.0/16 maxlen: 16
217.135.0.0/16 maxlen: 16
195.2.0.0/19 maxlen: 19
62.221.0.0/19 maxlen: 19
194.221.0.0/16 maxlen: 16
62.25.64.0/18 maxlen: 18
195.59.0.0/16 maxlen: 16
195.27.0.0/16 maxlen: 16
194.152.64.0/19 maxlen: 19
194.177.160.0/19 maxlen: 19
213.185.192.0/19 maxlen: 19
212.137.0.0/16 maxlen: 16
2001:5000::/21 maxlen: 21
Validation: Failed, certificate revoked on Fri 17 Nov 2023 16:16:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:de:05:e4:e7:8e:b1:ec:aa:98:66:02:fa:9e:0b:e2:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a8746a76cda8369009d28941ef156239c6a63a1
Validity
Not Before: Nov 17 16:03:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3943da714765d28458b59b4d89a3b5c010424dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:36:52:95:1f:2e:e8:14:86:95:e6:7d:ed:ce:
59:85:a7:fa:b2:50:b2:0a:bb:04:9b:e7:b7:13:ff:
77:7a:bf:d9:5d:e3:d1:60:02:ff:5e:8e:02:e3:29:
cb:50:43:86:08:ba:cb:d7:61:2b:52:d8:a4:55:66:
d9:6e:02:dc:a1:d2:a2:0a:33:85:8f:f3:71:c7:10:
ac:d0:1d:a4:40:8a:46:63:78:09:7d:20:fe:97:bf:
0e:a2:d1:c2:53:0b:2f:72:fb:0f:05:c0:cc:5a:df:
14:f3:d8:d0:5b:9c:8e:e2:e2:b4:fe:0f:27:9e:af:
25:82:47:e1:89:cd:c9:2d:06:2d:fb:0a:b3:7b:5e:
b5:9b:9d:0a:a6:0b:08:5e:7c:ca:bf:ea:7d:21:51:
72:6e:e4:3f:fc:5c:74:05:01:3a:99:3b:d6:f1:f4:
f4:c8:91:ed:9c:58:cd:1e:c3:ad:49:5b:2a:85:8f:
97:31:93:85:83:1e:b2:b2:7a:a6:ed:65:33:fd:79:
4f:70:cd:90:69:87:b3:8e:66:83:3b:d7:e0:3d:c0:
ce:6b:d4:e4:1f:54:db:fc:70:24:29:83:0c:a1:8c:
45:c1:d2:25:bb:71:cf:b8:79:21:5d:e5:e6:6a:a3:
6f:e9:68:6a:2b:16:5e:3c:71:73:a1:51:23:8c:9f:
13:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:94:3D:A7:14:76:5D:28:45:8B:59:B4:D8:9A:3B:5C:01:04:24:DD
X509v3 Authority Key Identifier:
keyid:7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/o5Q9pxR2XShFi1m02Jo7XAEEJN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/eodGp2zag2kAnSiUHvFWI5xqY6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.25.64.0/18
62.208.0.0/16
62.221.0.0/19
141.1.0.0/16
185.204.4.0/22
193.164.160.0/19
194.6.0.0-194.6.95.255
194.112.64.0/18
194.152.64.0/19
194.176.128.0/19
194.177.160.0/19
194.205.0.0/16
194.221.0.0/16
195.2.0.0/19
195.10.0.0/18
195.27.0.0/16
195.44.0.0/16
195.59.0.0/16
195.80.64.0/19
195.89.0.0/16
195.92.0.0/16
195.144.128.0/19
212.137.0.0/16
212.158.0.0/17
212.165.0.0/19
213.12.0.0/16
213.38.0.0/16
213.185.192.0/19
213.216.128.0/18
217.134.0.0/15
217.161.0.0/16
IPv6:
2001:5000::/21
Signature Algorithm: sha256WithRSAEncryption
a4:0c:95:08:6f:e9:00:27:4e:92:92:ee:b6:f0:82:39:e9:71:
be:f5:86:3c:4c:7d:c6:85:4b:70:c5:d6:a1:59:0e:a1:a7:c5:
d3:d7:78:25:d7:2e:64:c0:8b:7e:c0:91:99:7e:a6:ab:94:85:
95:e2:88:41:4c:b3:1d:d0:78:2d:ba:95:8f:d7:5e:ce:66:11:
3e:89:a6:93:eb:41:a9:0c:9f:fd:0b:a4:d7:9f:39:d5:5d:65:
10:0c:19:b6:dd:e0:22:d0:b8:d2:a1:ae:ec:9c:c5:af:07:e1:
56:6e:28:3d:de:34:2e:16:66:52:2c:e9:95:c8:16:08:60:6d:
cc:db:93:d9:18:78:a4:32:49:f2:2b:49:95:20:63:53:f3:b0:
d9:11:93:00:06:6d:e4:76:cc:59:a3:c5:e5:1c:38:f2:bd:b8:
9c:1b:5c:8a:cf:34:94:7f:56:ec:a7:99:85:23:78:b3:51:7b:
e4:93:0f:44:1c:da:85:7d:ad:67:d5:df:3f:63:2d:ff:dd:74:
e4:4e:e8:9d:a1:f4:a0:6a:3a:71:27:66:64:74:0c:45:fa:d6:
b3:b4:c1:46:d5:17:a2:b4:22:4f:df:c3:68:9b:34:c5:32:53:
ce:b8:6f:2a:d9:47:07:66:d9:69:40:cd:d3:eb:f2:84:61:99:
3e:ed:0e:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:22 2024 by rpki-client on console-ams.rpki-client.org