Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/YvfYZAmgtJTNXe_sCGSVJj1KLDs.roa
File: YvfYZAmgtJTNXe_sCGSVJj1KLDs.roa (raw, json)
Hash identifier: icreW01LWwWy/pGYPKifBB1xDjEhtbyRZO1vnpo6Tb8=
Subject key identifier: 62:F7:D8:64:09:A0:B4:94:CD:5D:EF:EC:08:64:95:26:3D:4A:2C:3B
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 018E768EB3F20DE91DB897992DB03CE26CC8
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/YvfYZAmgtJTNXe_sCGSVJj1KLDs.roa
Signing time: Mon 25 Mar 2024 17:00:47 +0000
ROA not before: Mon 25 Mar 2024 17:00:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62005
IP address blocks: 45.86.228.0/24 maxlen: 24
45.86.229.0/24 maxlen: 24
45.86.231.0/24 maxlen: 24
45.129.199.0/24 maxlen: 24
77.72.85.0/24 maxlen: 24
91.235.234.0/24 maxlen: 24
146.19.143.0/24 maxlen: 24
146.19.254.0/24 maxlen: 24
176.124.32.0/24 maxlen: 24
176.124.33.0/24 maxlen: 24
185.39.18.0/24 maxlen: 24
185.123.53.0/24 maxlen: 24
193.109.120.0/24 maxlen: 24
193.200.16.0/24 maxlen: 24
193.200.17.0/24 maxlen: 24
194.61.120.0/24 maxlen: 24
194.61.121.0/24 maxlen: 24
195.54.160.0/24 maxlen: 24
213.109.192.0/24 maxlen: 24
2a10:1fc0:1::/48 maxlen: 48
2a10:1fc0:2::/48 maxlen: 48
2a10:1fc0:3::/48 maxlen: 48
2a10:1fc0:4::/48 maxlen: 48
2a10:1fc0:5::/48 maxlen: 48
2a10:1fc0:6::/48 maxlen: 48
2a10:1fc0:8::/48 maxlen: 48
2a10:1fc0:b::/48 maxlen: 48
2a10:1fc0:c::/48 maxlen: 48
2a10:1fc0:d::/48 maxlen: 48
2a10:1fc0:e::/48 maxlen: 48
2a10:1fc0:f::/48 maxlen: 48
2a10:1fc0:10::/48 maxlen: 48
2a10:1fc0:11::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 12 Apr 2024 07:48:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:76:8e:b3:f2:0d:e9:1d:b8:97:99:2d:b0:3c:e2:6c:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Mar 25 17:00:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62f7d86409a0b494cd5defec086495263d4a2c3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:32:2f:7e:f3:a5:14:68:12:b6:1a:cd:49:5b:
b1:3d:55:90:b4:f5:d7:33:2d:43:28:3b:3e:81:ae:
7d:70:ec:4c:7a:ec:a1:9d:1c:b6:32:ed:c1:17:a7:
e6:e2:eb:7a:bf:07:b5:90:10:af:05:42:48:67:54:
66:30:d4:8a:b7:1c:eb:cd:98:61:6d:03:08:3d:2c:
73:d5:c1:98:ad:b1:2f:46:eb:97:33:d6:89:6c:50:
0f:fd:76:07:cb:2e:dc:09:08:43:9e:b8:0b:a6:3b:
e1:a1:bc:d9:33:61:16:7e:7f:1e:da:c2:d7:67:82:
cc:f6:23:4a:8c:dc:64:80:a1:cc:67:e0:13:6d:91:
4d:65:cd:c8:fa:f4:5e:3e:67:c5:76:63:7d:06:d9:
76:a8:9d:97:7d:41:26:7a:a3:69:d1:e6:18:4e:7f:
29:d3:96:9e:ce:3d:71:37:a0:bc:d1:59:e0:1e:28:
df:78:81:6b:c8:1d:79:15:e2:38:4d:68:c0:d9:c7:
13:f0:c1:f9:db:91:c3:2b:a4:89:4e:05:6f:d6:0a:
ea:28:87:4d:f9:7d:81:83:38:71:68:1e:b2:88:0a:
db:8f:0c:d7:89:bd:0f:0e:09:b8:c4:f3:52:47:4d:
4d:ca:65:90:ae:6d:88:42:dc:3e:25:b4:95:ab:39:
b4:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F7:D8:64:09:A0:B4:94:CD:5D:EF:EC:08:64:95:26:3D:4A:2C:3B
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/YvfYZAmgtJTNXe_sCGSVJj1KLDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.228.0/23
45.86.231.0/24
45.129.199.0/24
77.72.85.0/24
91.235.234.0/24
146.19.143.0/24
146.19.254.0/24
176.124.32.0/23
185.39.18.0/24
185.123.53.0/24
193.109.120.0/24
193.200.16.0/23
194.61.120.0/23
195.54.160.0/24
213.109.192.0/24
IPv6:
2a10:1fc0:1::-2a10:1fc0:6:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:8::/48
2a10:1fc0:b::-2a10:1fc0:11:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
61:d2:ea:2f:f6:aa:90:49:4d:14:96:77:25:2d:cf:20:7a:b8:
dc:0e:c0:17:54:7a:e2:4b:6d:c3:c2:36:e6:6a:55:ee:3a:02:
05:6d:a9:dc:3c:cc:3d:29:01:31:49:fa:49:80:78:f9:41:78:
bb:ca:01:ba:aa:05:d0:40:94:93:fe:09:39:ee:e7:40:0c:14:
c6:be:28:7a:35:9d:59:9d:47:6c:98:26:3b:f2:30:60:57:67:
64:48:52:d1:e7:0d:3e:82:c5:5c:cc:5a:6a:14:0e:0f:40:30:
f9:7b:a9:32:e2:50:9b:82:e6:98:10:86:4b:90:5e:35:ad:c8:
e2:a8:36:db:0e:6a:0f:d0:8a:fc:ed:2b:1c:45:e2:47:60:83:
69:a7:3e:b5:c4:17:59:6e:5f:98:27:f7:2c:9d:2d:37:10:a5:
e1:61:19:08:67:e8:db:a2:03:93:cc:31:06:22:10:dd:0e:ef:
8c:f0:b1:2e:9c:14:12:2b:03:9b:0f:10:59:b5:b5:7e:ef:b2:
de:50:17:57:0c:86:58:9e:11:67:6a:9b:97:0e:5e:5c:c4:97:
39:77:a3:9d:24:e2:68:60:e4:64:f9:4a:44:2e:38:44:20:d9:
76:d1:e7:9a:68:1a:8f:5b:f4:6d:71:3c:7c:2b:a5:ff:de:65:
65:58:0b:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 12:38:48 2024 by rpki-client on console-fra.rpki-client.org