Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/r6IPlJSajhiwBuvIvHAA0SU3kxg.roa
File: r6IPlJSajhiwBuvIvHAA0SU3kxg.roa (raw, json)
Hash identifier: j3+qpJXin0PyjCD9akW9EItdUAIGdOYSb2UY/3Duhhc=
Subject key identifier: AF:A2:0F:94:94:9A:8E:18:B0:06:EB:C8:BC:70:00:D1:25:37:93:18
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0188351EB5D631B2FAC770E742693C8E8F00
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/r6IPlJSajhiwBuvIvHAA0SU3kxg.roa
Signing time: Fri 19 May 2023 17:46:25 +0000
ROA not before: Fri 19 May 2023 17:46:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 195.208.52.0/24 maxlen: 24
195.208.53.0/24 maxlen: 24
195.209.179.0/24 maxlen: 24
195.209.178.0/24 maxlen: 24
194.226.142.0/24 maxlen: 24
194.226.160.0/24 maxlen: 24
195.208.169.0/24 maxlen: 24
195.208.168.0/24 maxlen: 24
212.193.136.0/21 maxlen: 24
195.208.181.0/24 maxlen: 24
195.208.189.0/24 maxlen: 24
195.208.127.0/24 maxlen: 24
195.208.126.0/24 maxlen: 24
193.232.42.0/24 maxlen: 24
193.232.41.0/24 maxlen: 24
193.232.40.0/24 maxlen: 24
212.192.36.0/22 maxlen: 24
195.209.132.0/24 maxlen: 24
195.209.133.0/24 maxlen: 24
212.192.201.0/24 maxlen: 24
212.192.200.0/24 maxlen: 24
195.19.1.0/24 maxlen: 24
195.19.0.0/24 maxlen: 24
195.209.102.0/24 maxlen: 24
195.209.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jul 2023 14:54:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:35:1e:b5:d6:31:b2:fa:c7:70:e7:42:69:3c:8e:8f:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: May 19 17:46:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=afa20f94949a8e18b006ebc8bc7000d125379318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7e:e3:0e:bb:f1:69:21:4e:46:72:b5:f4:30:
33:e7:ac:9c:30:ca:39:9c:db:8e:24:59:0d:25:8f:
bd:16:45:7f:7d:95:d6:d3:9d:be:3d:b9:2c:3f:d0:
d0:ac:2a:c0:c0:d1:ee:f9:c2:55:39:c0:9f:c5:eb:
42:02:00:40:e8:8a:9d:da:22:b4:77:d1:74:58:04:
ef:74:10:d8:4e:55:4c:24:7b:f9:ba:5c:75:00:48:
3d:18:9b:51:68:7c:42:b2:c4:e2:22:98:e0:d9:4c:
7b:f4:2b:6a:ba:bb:9e:5b:ae:a1:f2:70:88:4e:de:
c8:f9:2e:22:d3:65:62:d1:37:3b:ea:e3:06:a6:a5:
0b:1b:61:0b:cb:90:40:e2:d4:43:11:38:23:26:73:
dc:25:a0:05:81:0a:5f:37:00:a6:2d:7a:6e:d5:fc:
9b:a5:c0:2f:3f:b8:ee:ed:7c:b0:a1:7f:32:52:f6:
8b:cd:ce:8a:23:37:aa:dc:01:90:35:c3:3b:ed:7d:
50:45:f3:46:70:2b:cc:f4:ae:f2:f1:36:26:0e:53:
03:9e:ef:93:90:26:fe:0c:02:00:ac:1f:4b:2e:a5:
2f:a8:f0:0f:18:c5:a8:87:78:0e:5b:67:e8:e9:ec:
1a:69:2c:e0:49:74:75:1b:73:48:4a:2d:ae:0c:52:
3b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:A2:0F:94:94:9A:8E:18:B0:06:EB:C8:BC:70:00:D1:25:37:93:18
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/r6IPlJSajhiwBuvIvHAA0SU3kxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.40.0-193.232.42.255
194.226.142.0/24
194.226.160.0/24
195.19.0.0/23
195.208.52.0/23
195.208.126.0/23
195.208.168.0/23
195.208.181.0/24
195.208.189.0/24
195.209.102.0/23
195.209.132.0/23
195.209.178.0/23
212.192.36.0/22
212.192.200.0/23
212.193.136.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:1e:33:0f:7f:a1:b1:64:2a:fc:c5:93:c0:e3:67:f9:01:82:
01:b3:62:fc:f4:25:06:10:00:74:4a:4d:08:a1:e3:7a:2f:15:
58:5a:ff:ee:3f:eb:77:23:7a:c4:4a:18:6b:44:4a:48:92:97:
5d:15:4e:25:29:1b:62:98:b3:e5:fa:96:8a:b7:68:23:ac:eb:
4b:cd:40:b5:f2:35:ea:d4:6a:37:87:68:2c:af:4b:ef:1b:49:
40:46:34:82:6e:1b:9d:f8:72:c3:10:48:ff:ae:5e:f8:16:d8:
02:a6:40:b8:08:6c:ab:83:46:5f:1c:20:52:21:f0:de:4c:de:
c7:1e:60:ac:fa:a2:5f:e1:ca:05:38:6a:43:7b:c8:66:ce:78:
df:d4:95:cb:4b:c6:23:10:88:06:e1:57:b5:82:5e:6e:28:33:
54:3e:b8:3c:c8:64:38:e1:3e:77:fa:ac:4c:73:ad:50:ca:fa:
66:89:ab:2b:18:68:e8:cc:a6:50:6a:2e:22:5f:c8:6e:ec:92:
9e:c8:4d:49:cb:a5:c3:9d:79:2e:02:59:fc:45:2b:bf:3f:ff:
d2:a1:ec:93:ce:56:c4:69:ca:93:e6:ca:76:cd:a5:3c:50:88:
da:c4:87:7e:c8:8b:d9:23:ec:1a:68:4a:6c:6c:d6:c8:bf:23:
b1:a9:e3:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org