Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/Z7x6ISsL_i_pv94KM2EYtAECOok.roa
File: Z7x6ISsL_i_pv94KM2EYtAECOok.roa (raw, json)
Hash identifier: blBAgfbSlxT0Z8tD5GRdA+61tBwJUayqqOqhoFpqGaw=
Subject key identifier: 67:BC:7A:21:2B:0B:FE:2F:E9:BF:DE:0A:33:61:18:B4:01:02:3A:89
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0187E530A474B1EC6757137AC8D2D05DFD17
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/Z7x6ISsL_i_pv94KM2EYtAECOok.roa
Signing time: Thu 04 May 2023 05:16:22 +0000
ROA not before: Thu 04 May 2023 05:16:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49199
IP address blocks: 194.226.137.0/24 maxlen: 24
195.208.220.0/23 maxlen: 24
194.226.34.0/23 maxlen: 24
195.19.10.0/23 maxlen: 24
62.76.74.0/23 maxlen: 24
62.76.96.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e5:30:a4:74:b1:ec:67:57:13:7a:c8:d2:d0:5d:fd:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: May 4 05:16:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67bc7a212b0bfe2fe9bfde0a336118b401023a89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:97:5b:84:75:a6:7f:f0:a7:88:2e:f2:a1:0b:
12:c4:f9:47:d7:1c:a1:75:cb:03:12:4c:8f:8c:a7:
b6:1c:aa:5d:87:9c:11:bf:04:b4:ac:59:8b:da:18:
7e:2b:52:8b:4e:a2:68:f9:d8:87:b2:31:de:22:73:
72:9c:4e:4a:c1:18:2f:84:77:d3:e0:27:1f:7f:23:
b9:d7:7e:ef:7b:6c:17:0f:d8:51:7a:d8:f5:07:e1:
30:82:09:6a:ec:17:57:30:a5:73:c1:ea:d0:e2:c1:
6e:a1:b7:41:34:6f:5c:2d:7a:57:1f:b2:f9:aa:6d:
e4:71:97:78:43:93:69:91:54:d0:56:da:ef:93:2b:
9f:7b:3e:67:d3:79:01:2d:8c:95:5a:6f:bc:62:79:
9c:0d:be:be:7c:c0:d5:35:42:6d:ac:66:db:55:5b:
84:ec:26:03:fa:71:63:25:f7:81:da:ef:d0:46:90:
e4:88:e5:7d:73:8d:e3:12:60:57:1d:f2:b4:30:a3:
e9:bb:4a:24:71:56:49:b1:fa:10:2d:87:8d:5c:e4:
a3:34:e2:ae:36:98:66:f2:db:23:c2:b0:90:eb:01:
88:c5:8b:a6:d7:09:00:35:ad:b7:f8:5c:ec:9e:d4:
8a:d0:04:55:00:30:2c:0e:c6:46:83:c3:86:68:e1:
a2:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:BC:7A:21:2B:0B:FE:2F:E9:BF:DE:0A:33:61:18:B4:01:02:3A:89
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/Z7x6ISsL_i_pv94KM2EYtAECOok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.74.0/23
62.76.96.0/23
194.226.34.0/23
194.226.137.0/24
195.19.10.0/23
195.208.220.0/23
Signature Algorithm: sha256WithRSAEncryption
16:84:81:c8:44:58:6c:d5:1b:bd:3a:c0:8a:43:68:ef:ab:8f:
a7:55:e2:27:a6:91:a4:34:c3:65:71:5f:31:c5:50:9d:74:99:
da:2e:68:a0:ea:5b:f2:17:d9:54:8c:80:fd:0e:7c:55:f4:2a:
22:5d:2f:e1:b9:c4:6b:1a:36:a9:e2:aa:d3:b2:c0:94:e2:55:
4a:07:13:ac:bb:70:1f:c8:7f:9f:58:8d:10:18:25:bb:40:50:
ed:5b:74:89:54:0f:3d:c3:ed:51:17:20:f4:5f:22:f8:93:0d:
68:ca:f2:13:7f:a1:1f:17:c6:2d:55:ee:2c:d5:c3:9f:75:7b:
ff:f0:5a:8c:3a:cc:a4:c8:1a:7f:5e:ba:10:30:20:ab:f4:57:
ac:f2:3e:ee:17:7f:e1:31:74:78:dd:43:33:b9:69:00:ec:41:
f4:b3:83:ea:bf:86:ab:53:da:39:bb:4a:69:b2:c2:f5:2a:eb:
c4:73:74:60:3d:46:9c:10:19:06:66:2b:93:62:9f:80:77:92:
e6:02:f3:0a:5a:16:44:2a:14:e6:61:42:7f:92:b1:34:08:b2:
02:4b:31:70:51:de:ff:bf:2e:ad:98:c9:6d:2d:5a:9c:99:2d:
13:4d:d0:78:b7:ec:f0:61:20:ad:86:72:3e:42:1c:c5:81:db:
54:86:cd:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org