Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/SS63h8VevjS7hilahMBviUBqrzk.roa
File: SS63h8VevjS7hilahMBviUBqrzk.roa (raw, json)
Hash identifier: TGATEjfVb9pkTcDXAm9pIN03F62jriTbYNRD3cjjCX4=
Subject key identifier: 49:2E:B7:87:C5:5E:BE:34:BB:86:29:5A:84:C0:6F:89:40:6A:AF:39
Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd
Certificate serial: 018AB7184B911D138DDDA3720F319B840049
Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/SS63h8VevjS7hilahMBviUBqrzk.roa
Signing time: Thu 21 Sep 2023 09:35:37 +0000
ROA not before: Thu 21 Sep 2023 09:35:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36454
IP address blocks: 65.181.112.0/24 maxlen: 24
65.181.116.0/24 maxlen: 24
65.181.113.0/24 maxlen: 24
192.243.98.0/24 maxlen: 24
192.243.97.0/24 maxlen: 24
192.243.96.0/24 maxlen: 24
162.208.9.0/24 maxlen: 24
162.208.11.0/24 maxlen: 24
162.208.10.0/24 maxlen: 24
162.208.8.0/24 maxlen: 24
192.243.105.0/24 maxlen: 24
192.243.102.0/24 maxlen: 24
192.243.101.0/24 maxlen: 24
192.243.104.0/24 maxlen: 24
192.243.99.0/24 maxlen: 24
192.243.100.0/24 maxlen: 24
192.243.103.0/24 maxlen: 24
192.243.109.0/24 maxlen: 24
192.243.108.0/24 maxlen: 24
192.243.111.0/24 maxlen: 24
192.243.106.0/24 maxlen: 24
192.243.107.0/24 maxlen: 24
192.250.224.0/20 maxlen: 20
192.250.236.0/24 maxlen: 24
65.181.125.0/24 maxlen: 24
65.181.124.0/24 maxlen: 24
65.181.123.0/24 maxlen: 24
199.175.51.0/24 maxlen: 24
199.175.48.0/24 maxlen: 24
199.175.50.0/24 maxlen: 24
199.175.49.0/24 maxlen: 24
199.175.55.0/24 maxlen: 24
199.175.54.0/24 maxlen: 24
199.175.52.0/24 maxlen: 24
199.175.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Sep 2023 11:07:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b7:18:4b:91:1d:13:8d:dd:a3:72:0f:31:9b:84:00:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd
Validity
Not Before: Sep 21 09:35:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=492eb787c55ebe34bb86295a84c06f89406aaf39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:6f:9c:dc:a3:a3:2b:87:ca:95:06:6c:17:33:
08:2b:23:37:ab:97:29:b9:b4:84:dc:71:f0:c8:7e:
f4:f9:12:b2:4a:8c:a3:52:52:79:b0:95:72:a8:e5:
7f:2d:1c:cb:1a:f6:0a:5b:35:5a:38:ce:75:19:a7:
60:c0:f4:26:a0:44:c6:be:d6:d6:c2:5b:58:e8:61:
0c:0c:d9:85:be:86:d7:ba:9e:0b:49:18:e5:e0:92:
df:d5:23:11:cf:1f:a5:29:5d:2a:48:6c:e2:36:f1:
29:71:cf:c3:8c:1d:d0:bf:c6:03:79:da:dc:13:45:
1d:3e:e0:89:24:50:64:df:9c:b6:7e:24:d5:42:3e:
a6:b9:ae:82:23:59:5f:3d:7b:64:f9:86:a1:61:e1:
79:c8:0c:57:f7:f4:9f:0e:2b:f0:04:b1:fe:92:3c:
f3:27:33:b7:13:bd:12:a6:8a:41:a6:3a:3d:a1:3b:
95:12:3f:66:dd:93:4a:bb:f5:e8:6a:84:89:c2:a1:
84:16:d4:71:15:bc:0f:17:d1:41:10:1f:77:08:e0:
af:e9:30:23:40:b5:9f:7c:39:20:54:06:fe:ab:28:
4c:43:0e:61:7e:99:e0:b6:31:d7:76:83:9e:25:0a:
28:26:f3:ca:43:4d:a4:5f:b3:e9:e6:d3:38:f6:f9:
fe:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:2E:B7:87:C5:5E:BE:34:BB:86:29:5A:84:C0:6F:89:40:6A:AF:39
X509v3 Authority Key Identifier:
keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/SS63h8VevjS7hilahMBviUBqrzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
65.181.112.0/23
65.181.116.0/24
65.181.123.0-65.181.125.255
162.208.8.0/22
192.243.96.0-192.243.109.255
192.243.111.0/24
192.250.224.0/20
199.175.48.0/21
Signature Algorithm: sha256WithRSAEncryption
8a:c6:2f:1d:51:71:13:49:a7:f8:67:d2:91:11:9e:ef:e3:e2:
30:8f:5b:3f:ad:84:cc:e1:2c:04:39:26:67:53:0c:88:54:56:
fe:bf:c4:f3:12:db:3e:0f:6f:49:39:1c:33:41:5c:d5:75:00:
ae:f4:41:cb:84:78:ee:06:71:35:c0:14:30:ba:20:38:50:b8:
2f:1e:d9:ac:4e:14:30:82:c5:d5:59:cd:fd:62:40:6c:0a:93:
c4:dd:8e:df:9e:7d:4d:c9:42:e7:77:d8:cb:fb:04:da:70:f2:
37:cd:a0:50:18:83:a4:49:cf:60:51:01:1d:8b:20:a9:4f:67:
8a:68:c9:e4:7f:e5:39:cc:52:ac:45:a1:b6:43:33:98:41:21:
0e:dd:15:b0:e3:09:71:2e:97:43:13:98:cb:39:75:3e:5f:73:
01:40:cd:26:15:23:78:0a:27:9e:20:c8:0c:3b:a3:50:30:5d:
08:e3:e1:f3:80:c4:81:95:e4:3a:a3:92:80:d1:4f:5d:c5:60:
dc:6f:df:b0:c0:e2:b1:97:00:55:46:f0:87:1c:28:45:45:e4:
01:0c:dd:da:cb:a0:be:ce:c0:6f:84:fd:9e:4e:68:5d:aa:8c:
e1:eb:80:03:c7:9e:a7:9b:89:88:11:ef:73:29:25:fd:59:1f:
2f:32:93:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:49 2024 by rpki-client on console-fra.rpki-client.org