Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/cKYubT2YrH2biJw4BItZSwwZU9M.roa
File: cKYubT2YrH2biJw4BItZSwwZU9M.roa (raw, json)
Hash identifier: FsQFt1SCUkv+dHDrgybMsVtMVlaVtPv25NkFxn1cpJ8=
Subject key identifier: 70:A6:2E:6D:3D:98:AC:7D:9B:88:9C:38:04:8B:59:4B:0C:19:53:D3
Certificate issuer: /CN=fc44297e9271c6edf064915f6180ae12690dda8b
Certificate serial: 018CC56E199C2104ADA39904DC2FFFF0AB22
Authority key identifier: FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/cKYubT2YrH2biJw4BItZSwwZU9M.roa
Signing time: Mon 01 Jan 2024 14:29:36 +0000
ROA not before: Mon 01 Jan 2024 14:29:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5504
IP address blocks: 194.30.136.0/22 maxlen: 22
194.30.135.0/24 maxlen: 24
194.30.134.0/24 maxlen: 24
213.169.128.0/21 maxlen: 24
213.169.128.0/20 maxlen: 20
194.30.140.0/23 maxlen: 23
194.30.144.0/23 maxlen: 23
194.30.143.0/24 maxlen: 24
194.30.146.0/23 maxlen: 23
194.30.148.0/22 maxlen: 22
194.30.152.0/23 maxlen: 23
213.169.136.0/22 maxlen: 24
213.169.140.0/22 maxlen: 22
213.169.144.0/22 maxlen: 22
194.30.154.0/23 maxlen: 23
194.30.156.0/23 maxlen: 23
213.169.152.0/23 maxlen: 23
213.169.158.0/23 maxlen: 23
194.30.132.0/23 maxlen: 23
194.30.131.0/24 maxlen: 24
194.30.130.0/24 maxlen: 24
194.30.128.0/23 maxlen: 23
82.114.32.0/19 maxlen: 22
82.114.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 10:13:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:19:9c:21:04:ad:a3:99:04:dc:2f:ff:f0:ab:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc44297e9271c6edf064915f6180ae12690dda8b
Validity
Not Before: Jan 1 14:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=70a62e6d3d98ac7d9b889c38048b594b0c1953d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:63:77:ff:1e:58:1b:ae:c4:c7:26:f3:c9:52:
ca:a2:84:4f:38:38:d2:a5:59:e6:f2:36:bb:98:3d:
af:72:db:9f:62:8a:49:eb:4b:38:58:79:bd:8c:6e:
e8:79:8b:19:29:ee:cc:73:cd:93:1b:bf:d6:17:d8:
7d:21:b2:d0:8c:4e:ae:8e:a7:98:37:9a:09:67:6a:
d1:f2:71:5f:15:97:83:15:9c:a2:2f:64:d7:39:16:
42:8a:69:77:55:02:ab:ca:9a:0b:31:be:a2:7d:6b:
47:7c:c8:eb:b5:ca:a5:b4:e2:83:57:5d:02:b2:e7:
e3:71:73:df:2b:60:e2:fb:6c:7e:8a:c2:5f:d4:25:
24:0b:c5:1f:e6:79:0d:94:e1:87:c5:92:f9:35:49:
e8:27:a3:8a:f5:da:de:4c:f4:c1:3e:48:a9:70:ed:
ad:84:57:23:fb:3d:52:fc:c7:13:fe:22:4b:f5:4d:
ea:7c:c8:f5:4c:af:4b:cf:99:24:62:33:ab:00:2a:
eb:81:ad:15:51:c6:90:ef:67:3d:6d:a2:8f:56:3e:
67:4a:1b:7a:9d:70:4f:bd:f9:bf:43:9f:e0:9f:67:
11:14:d4:98:ab:0f:bb:07:3b:9c:8a:03:a5:d9:bd:
47:21:77:8d:1e:7f:7f:41:e9:66:60:85:e3:7c:67:
e1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A6:2E:6D:3D:98:AC:7D:9B:88:9C:38:04:8B:59:4B:0C:19:53:D3
X509v3 Authority Key Identifier:
keyid:FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/cKYubT2YrH2biJw4BItZSwwZU9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.114.32.0/19
194.30.128.0-194.30.141.255
194.30.143.0-194.30.157.255
213.169.128.0-213.169.147.255
213.169.152.0/23
213.169.158.0/23
Signature Algorithm: sha256WithRSAEncryption
04:0f:eb:9c:9e:f7:d7:21:51:5b:a6:f8:bd:3c:73:2e:26:18:
67:96:81:24:61:5c:d1:3a:19:68:67:52:ac:80:b2:c3:89:12:
2b:40:74:cd:32:f6:4f:b0:70:c0:46:c9:53:65:0f:2e:7f:47:
bf:00:d6:92:df:09:5e:0a:88:01:ee:d4:0d:37:06:cc:3a:78:
ed:b4:be:3e:82:73:6d:af:b0:a5:40:e0:b9:68:9d:a2:17:02:
7c:ba:29:37:af:42:6a:94:7b:30:dc:34:99:2f:a3:f6:85:9f:
6b:93:ea:c9:32:ea:81:1e:f3:b4:a6:eb:21:56:c3:9f:54:39:
4e:f0:53:47:5a:c7:ba:14:fc:5d:3e:81:2f:6d:e1:a6:bd:ee:
4b:a2:d1:95:f2:ee:15:9e:f2:39:78:35:47:d0:19:4d:29:a0:
1d:e0:0e:b8:71:f6:bc:bc:16:cd:88:36:81:d1:c9:ec:e5:43:
03:80:cb:3d:47:78:b2:71:a0:0d:6a:af:39:78:e3:4d:2b:9c:
af:e6:ce:bf:60:26:6d:a6:38:f4:e5:c5:2e:06:08:1f:fa:e3:
7e:74:70:80:b7:2a:24:85:3f:25:36:9d:a9:d2:b8:88:fd:24:
d3:6f:f1:fe:e5:63:36:41:e0:1b:71:89:8a:b8:db:41:bf:53:
4f:25:8b:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:10 2024 by rpki-client on console-fra.rpki-client.org