Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d41df7-941d-47ae-b15c-37fe6b65f68f/1/k6JeDls_IULZFv3crGuYsGGCD48.roa
File: k6JeDls_IULZFv3crGuYsGGCD48.roa (raw, json)
Hash identifier: gvQ3aGGw49uNW+SAIphnTTTNl8JqBJ+mVSrbokdHJS8=
Subject key identifier: 93:A2:5E:0E:5B:3F:21:42:D9:16:FD:DC:AC:6B:98:B0:61:82:0F:8F
Certificate issuer: /CN=eacb96413ac8f2c16b94795689174d7a72201ef5
Certificate serial: 01856E0AE2E6BAA4FC5AF18CB335793C9D11
Authority key identifier: EA:CB:96:41:3A:C8:F2:C1:6B:94:79:56:89:17:4D:7A:72:20:1E:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6suWQTrI8sFrlHlWiRdNenIgHvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d41df7-941d-47ae-b15c-37fe6b65f68f/1/k6JeDls_IULZFv3crGuYsGGCD48.roa
Signing time: Sun 01 Jan 2023 15:54:45 +0000
ROA not before: Sun 01 Jan 2023 15:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20634
IP address blocks: 80.248.192.0/20 maxlen: 20
80.66.224.0/20 maxlen: 20
80.66.226.0/23 maxlen: 23
80.66.224.0/23 maxlen: 23
80.66.228.0/23 maxlen: 23
80.66.232.0/23 maxlen: 23
80.66.230.0/23 maxlen: 23
80.66.236.0/23 maxlen: 23
80.66.234.0/23 maxlen: 23
217.173.224.0/20 maxlen: 20
217.173.226.0/23 maxlen: 23
217.173.224.0/23 maxlen: 23
80.66.238.0/23 maxlen: 23
89.248.144.0/20 maxlen: 20
185.112.48.0/22 maxlen: 22
217.173.230.0/23 maxlen: 23
217.173.228.0/23 maxlen: 23
217.173.232.0/23 maxlen: 23
217.173.236.0/23 maxlen: 23
217.173.234.0/23 maxlen: 23
217.173.238.0/23 maxlen: 23
80.72.48.0/20 maxlen: 20
2a00:ec0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0a:e2:e6:ba:a4:fc:5a:f1:8c:b3:35:79:3c:9d:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eacb96413ac8f2c16b94795689174d7a72201ef5
Validity
Not Before: Jan 1 15:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93a25e0e5b3f2142d916fddcac6b98b061820f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e8:56:a1:83:fb:de:5e:d1:3e:30:c2:21:02:
83:6f:c4:05:de:15:52:cc:02:fe:d9:40:ae:ba:25:
87:9d:f9:4d:fb:3b:31:ef:66:27:84:f0:4a:62:99:
bf:8a:23:84:4d:e5:6e:4e:0e:2c:15:d5:bd:d5:34:
b4:35:f9:36:c8:2d:64:54:b9:10:6a:36:ab:d7:ff:
c1:6c:e9:45:42:b5:94:9f:73:94:cf:f3:d7:6a:f1:
f2:8c:13:59:be:ff:a7:97:8b:06:9c:ef:09:c9:8c:
93:e4:bd:cd:28:a9:05:b2:ed:c7:57:40:67:99:6c:
64:fe:29:ee:0b:d1:0a:0c:fd:38:38:8f:fe:27:22:
85:b0:f3:64:3f:aa:12:cb:9b:40:51:84:55:2a:4d:
1d:7b:c4:f9:0a:84:31:05:c1:7c:29:af:b9:14:81:
53:62:35:46:07:f9:2b:1b:22:a1:28:46:dc:39:bf:
3e:10:22:0b:c3:79:b8:90:10:ce:2a:a9:b5:0d:e8:
8b:11:0b:02:1f:4e:59:cd:16:de:98:70:ed:ab:f6:
fa:39:a1:74:f4:a1:4e:7b:37:f6:a6:9c:c5:93:ab:
54:87:a0:84:4f:71:82:85:99:3d:ba:3f:a7:a5:bb:
45:cc:5c:1c:36:cf:61:2b:f1:80:a6:da:fe:a7:a5:
be:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:A2:5E:0E:5B:3F:21:42:D9:16:FD:DC:AC:6B:98:B0:61:82:0F:8F
X509v3 Authority Key Identifier:
keyid:EA:CB:96:41:3A:C8:F2:C1:6B:94:79:56:89:17:4D:7A:72:20:1E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6suWQTrI8sFrlHlWiRdNenIgHvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d41df7-941d-47ae-b15c-37fe6b65f68f/1/k6JeDls_IULZFv3crGuYsGGCD48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d41df7-941d-47ae-b15c-37fe6b65f68f/1/6suWQTrI8sFrlHlWiRdNenIgHvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.224.0/20
80.72.48.0/20
80.248.192.0/20
89.248.144.0/20
185.112.48.0/22
217.173.224.0/20
IPv6:
2a00:ec0::/32
Signature Algorithm: sha256WithRSAEncryption
c1:52:e4:6d:02:40:e6:02:98:74:09:3a:6f:91:81:c8:5e:14:
40:c7:c0:ea:8c:46:6b:64:26:16:e0:d9:1e:eb:17:3d:d4:bf:
95:c1:cc:76:f1:12:33:4b:e7:d3:36:1d:22:12:ad:ed:59:84:
45:7e:31:8c:a3:64:7c:8d:f6:6a:a4:4f:81:57:98:5c:8d:ee:
e6:e1:20:76:5d:bd:7f:39:fb:e9:d7:e0:e6:ed:bc:8f:39:2d:
ee:72:86:67:ab:63:10:64:b9:e9:8d:0d:78:bb:2d:a5:f5:9a:
cc:59:c9:5d:7f:a1:dd:c4:1e:a7:d2:f7:96:b8:b2:74:05:77:
29:fa:e8:b1:2b:73:e7:c4:98:82:36:77:f2:5c:0a:6e:16:f6:
7d:bf:56:fb:f8:ef:7c:db:65:cb:77:13:98:36:f2:87:82:b5:
50:7e:59:c7:30:ea:74:2c:53:f4:87:3d:e1:d8:4f:51:20:8b:
e5:fe:b6:3b:70:f6:4b:b6:3b:86:f5:87:d7:8c:8f:c9:5a:59:
38:f7:01:2e:bb:f5:98:e8:24:ec:81:e7:46:f8:66:4f:38:af:
a4:ee:ac:50:36:d8:e2:9d:a7:31:e0:e7:ea:6f:96:fd:ce:d0:
fb:e9:9d:c1:62:a2:a7:76:a6:ab:29:16:22:c7:5c:ea:05:5c:
c3:34:b1:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:07 2024 by rpki-client on console-ams.rpki-client.org