Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/s20xrZrca3xNN_IqvQw2bsPM0sE.roa
File: s20xrZrca3xNN_IqvQw2bsPM0sE.roa (raw, json)
Hash identifier: wyk53rB4skruoy995B7yBmqK0RwTkLPzybB5PdKlpdE=
Subject key identifier: B3:6D:31:AD:9A:DC:6B:7C:4D:37:F2:2A:BD:0C:36:6E:C3:CC:D2:C1
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 0189D513496861AC10A6ED40638D464D6D5E
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/s20xrZrca3xNN_IqvQw2bsPM0sE.roa
Signing time: Tue 08 Aug 2023 12:15:58 +0000
ROA not before: Tue 08 Aug 2023 12:15:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49902
IP address blocks: 213.223.138.0/24 maxlen: 24
213.223.46.0/23 maxlen: 24
213.223.45.0/24 maxlen: 24
78.120.128.0/21 maxlen: 21
195.115.116.0/22 maxlen: 22
86.77.160.0/21 maxlen: 21
77.143.0.0/16 maxlen: 16
77.143.17.0/24 maxlen: 24
195.98.112.0/20 maxlen: 20
213.222.64.0/18 maxlen: 18
88.141.232.0/21 maxlen: 21
84.97.80.0/21 maxlen: 21
79.83.224.0/21 maxlen: 21
88.142.0.0/20 maxlen: 20
109.9.208.0/20 maxlen: 20
88.137.216.0/21 maxlen: 21
77.137.224.0/19 maxlen: 19
88.140.104.0/21 maxlen: 21
Validation: Failed, certificate revoked on Thu 05 Oct 2023 16:22:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d5:13:49:68:61:ac:10:a6:ed:40:63:8d:46:4d:6d:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Aug 8 12:15:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b36d31ad9adc6b7c4d37f22abd0c366ec3ccd2c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c8:54:8f:23:3e:b7:1b:ec:93:48:da:d8:90:
e5:33:8c:8d:6e:b3:cf:7b:92:8c:dc:eb:dc:3d:7c:
93:2f:b3:2d:08:8d:8e:a7:38:51:2d:a9:21:e1:fc:
0f:de:22:fd:51:ac:85:83:97:c0:0a:69:14:af:12:
b1:47:f5:50:76:36:06:be:db:5a:b9:c6:a0:b3:31:
d6:3c:42:de:67:08:7c:2a:90:a2:96:b5:30:b4:d4:
57:2d:29:d8:1f:ea:2c:26:fa:06:c8:ee:dd:9f:04:
75:39:f9:12:ef:55:d8:be:b5:80:f5:5a:f7:6a:d9:
53:e6:1f:b4:ae:ea:19:34:6b:c5:92:44:1d:55:e0:
32:3e:46:7a:60:2a:f8:92:a9:91:5b:d3:54:5c:96:
df:92:8a:f2:5c:29:c4:7e:c1:03:cd:a0:51:39:fe:
ff:c5:45:ff:9d:dd:aa:8e:f8:f6:99:76:03:31:1c:
f4:07:32:96:53:62:3a:40:2e:02:ee:72:1c:73:a1:
7b:0d:cf:cd:e1:97:bd:85:d2:80:89:97:fd:5d:45:
64:61:5d:e3:f0:7f:b1:e2:e2:57:36:3f:ff:e0:b5:
54:69:01:03:f8:60:13:2e:a0:e9:a6:60:49:d5:4e:
49:a3:8c:46:b4:65:9e:30:83:30:62:a9:b4:3d:44:
42:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:6D:31:AD:9A:DC:6B:7C:4D:37:F2:2A:BD:0C:36:6E:C3:CC:D2:C1
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/s20xrZrca3xNN_IqvQw2bsPM0sE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.137.224.0/19
77.143.0.0/16
78.120.128.0/21
79.83.224.0/21
84.97.80.0/21
86.77.160.0/21
88.137.216.0/21
88.140.104.0/21
88.141.232.0/21
88.142.0.0/20
109.9.208.0/20
195.98.112.0/20
195.115.116.0/22
213.222.64.0/18
213.223.45.0-213.223.47.255
213.223.138.0/24
Signature Algorithm: sha256WithRSAEncryption
14:3f:37:4a:24:92:22:c4:60:d4:b6:fe:0c:02:52:a1:c2:1a:
fd:69:0d:38:81:4b:17:5c:89:4d:6d:fc:64:ad:7b:f7:ec:00:
4a:00:09:00:83:ee:62:b7:f6:30:4d:5b:6c:88:90:bd:49:b0:
f8:9a:18:68:4f:3d:be:1e:8c:f0:7e:36:9f:1e:23:bf:d8:67:
bf:91:a9:b4:24:e3:16:f0:07:83:5d:89:a4:bf:39:38:76:1f:
6c:f6:e7:22:91:21:4f:d2:a3:69:d2:72:57:c8:c7:d1:b7:e7:
b7:06:3a:e7:16:bc:39:02:55:aa:06:6b:35:2e:c0:ed:87:54:
d8:10:ca:67:4a:b0:92:ed:21:ee:0c:40:b7:81:0d:a7:50:02:
c5:35:ac:42:05:f0:40:4a:97:77:b4:61:51:8a:07:b7:42:ed:
30:21:d6:33:1b:1d:8c:8c:a6:9b:b5:bc:bb:f7:20:d6:e4:9a:
af:77:ff:02:b3:41:c1:a9:4a:9d:30:7c:7c:56:e3:7a:f5:9d:
d2:b6:6b:eb:0c:6d:7b:86:0b:cd:6f:bb:0a:bf:e4:28:9d:86:
32:6b:29:b2:34:68:5c:40:85:15:58:38:a2:b1:ce:98:7e:12:
14:7b:d5:84:b5:e6:3f:ec:0b:2a:6d:85:09:93:de:84:86:b9:
ef:b0:15:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:51 2024 by rpki-client on console-ams.rpki-client.org