Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/Br9YjJ8Lq8c4oMzaHJU_GgsV39U.roa
File: Br9YjJ8Lq8c4oMzaHJU_GgsV39U.roa (raw, json)
Hash identifier: 9HwpSo5r+38Vcu4Nu0Gl0+3G+UQBi2Zz3Lla5FJhwZ0=
Subject key identifier: 06:BF:58:8C:9F:0B:AB:C7:38:A0:CC:DA:1C:95:3F:1A:0B:15:DF:D5
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 01856C53F095FD38162C73EC1068499F31E0
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/Br9YjJ8Lq8c4oMzaHJU_GgsV39U.roa
Signing time: Sun 01 Jan 2023 07:55:18 +0000
ROA not before: Sun 01 Jan 2023 07:55:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15785
IP address blocks: 194.146.199.0/24 maxlen: 24
188.0.71.0/24 maxlen: 24
188.0.69.0/24 maxlen: 24
188.0.70.0/24 maxlen: 24
188.0.68.0/24 maxlen: 24
31.128.65.0/24 maxlen: 24
188.0.74.0/24 maxlen: 24
188.0.72.0/24 maxlen: 24
194.110.79.0/24 maxlen: 24
5.1.3.0/24 maxlen: 24
5.1.2.0/24 maxlen: 24
2a01:758:8306::/48 maxlen: 48
2a01:758:8301::/48 maxlen: 48
2a01:758:8305::/48 maxlen: 48
2a01:758::/48 maxlen: 48
2a01:758:8300::/48 maxlen: 48
2a01:758:8303::/48 maxlen: 48
2a01:758:8304::/48 maxlen: 48
2a01:758:8307::/48 maxlen: 48
2a01:758:8302::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 30 May 2023 18:59:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:f0:95:fd:38:16:2c:73:ec:10:68:49:9f:31:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: Jan 1 07:55:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06bf588c9f0babc738a0ccda1c953f1a0b15dfd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:49:5d:cf:45:fe:ff:30:17:14:50:8e:59:29:
b1:0f:01:fe:27:a1:e5:ca:ec:c7:2d:49:53:6b:4e:
f4:ed:ac:44:d9:f8:d9:fc:15:c9:2c:ec:14:c4:41:
2c:c9:28:ec:3e:c2:39:9c:26:6e:22:d6:20:65:80:
f5:be:f5:03:85:ee:38:60:48:7b:20:cf:fd:42:ad:
76:14:e7:4b:eb:ca:51:8f:86:75:8c:42:9b:23:c7:
36:f4:1f:7f:27:95:06:85:15:cf:25:d2:f5:28:da:
78:ff:04:b3:43:fd:b6:00:e3:d6:06:c4:ca:c9:2a:
39:28:f0:c0:de:81:6d:a1:cc:08:f6:83:9a:5c:81:
76:35:46:6a:85:dc:08:36:6a:d7:f9:fb:ef:ba:a1:
a2:28:65:a9:7d:a1:45:d2:38:5a:38:ef:6c:a9:e8:
17:88:bd:98:a2:6b:42:dc:0d:8f:e8:33:e7:a9:da:
c5:45:3b:67:f6:ea:76:e9:87:c6:1b:03:69:3e:94:
d2:68:89:50:9d:bc:50:20:58:66:8b:c9:5c:bc:1e:
76:90:91:3d:97:a8:7d:ee:a4:3e:ea:e9:65:64:15:
78:d0:48:5f:e0:e4:a9:85:12:5c:23:b3:b1:c0:49:
07:a7:77:63:f8:6a:55:80:e9:70:b1:9e:30:bd:d9:
74:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:BF:58:8C:9F:0B:AB:C7:38:A0:CC:DA:1C:95:3F:1A:0B:15:DF:D5
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/Br9YjJ8Lq8c4oMzaHJU_GgsV39U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.2.0/23
31.128.65.0/24
188.0.68.0-188.0.72.255
188.0.74.0/24
194.110.79.0/24
194.146.199.0/24
IPv6:
2a01:758::/48
2a01:758:8300::/45
Signature Algorithm: sha256WithRSAEncryption
71:ff:f9:a8:36:c0:8f:6e:c2:91:e1:ab:6a:0a:d3:b3:4f:16:
6c:1c:92:7e:aa:53:95:c2:37:b0:df:8a:40:c3:6d:b6:30:de:
04:73:c3:41:a9:de:63:b2:37:45:b7:18:2e:3e:f1:a2:4d:53:
c2:05:e2:b2:2a:0c:13:8c:54:24:69:ea:0f:b5:a5:05:dc:c4:
9b:b4:ce:ba:d0:5a:20:eb:d2:80:39:ef:d7:94:e4:71:68:bd:
f7:a7:1e:ac:58:3f:1e:06:f1:d0:19:46:b5:4b:73:37:b6:78:
9c:54:88:5e:d9:fb:ad:5d:74:da:2d:2a:8c:19:ee:76:58:a8:
62:36:3a:91:81:b0:51:fb:a1:5f:7e:65:7c:a7:15:61:85:1f:
f3:69:4d:11:44:21:0e:f4:a0:38:1b:9a:00:f8:5e:77:00:96:
4d:06:1b:58:85:ef:99:b4:77:b7:58:0a:5c:74:19:b8:9e:63:
59:b2:19:58:80:fc:7f:bf:e3:d0:cf:6c:cf:b8:1d:2b:4f:b5:
1b:f0:34:a0:67:b9:21:70:05:26:7f:7a:9b:52:df:90:f4:64:
43:25:94:b9:a3:f8:03:29:21:85:01:41:ec:ae:b4:31:12:8a:
d4:7c:c9:c3:22:12:8a:4d:c5:44:16:06:1e:d7:da:61:1d:0e:
28:f5:23:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:32 2024 by rpki-client on console-fra.rpki-client.org