Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/DIkoPqGpwdd-7ehbV_eTltn-_JU.roa
File: DIkoPqGpwdd-7ehbV_eTltn-_JU.roa (raw, json)
Hash identifier: TdqCmLvY/5MAshkJx4UZRtNjq0XPNdyn4f/+oJP06wQ=
Subject key identifier: 0C:89:28:3E:A1:A9:C1:D7:7E:ED:E8:5B:57:F7:93:96:D9:FE:FC:95
Certificate issuer: /CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Certificate serial: 018B6BA374069451D340579D485CFCBA43A3
Authority key identifier: 35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/DIkoPqGpwdd-7ehbV_eTltn-_JU.roa
Signing time: Thu 26 Oct 2023 10:59:16 +0000
ROA not before: Thu 26 Oct 2023 10:59:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47223
IP address blocks: 94.240.63.0/24 maxlen: 24
94.240.62.0/23 maxlen: 23
91.106.26.0/23 maxlen: 23
91.106.30.0/23 maxlen: 23
94.240.1.0/24 maxlen: 24
94.240.0.0/24 maxlen: 24
94.240.3.0/24 maxlen: 24
94.240.7.0/24 maxlen: 24
94.240.23.0/24 maxlen: 24
185.139.16.0/22 maxlen: 22
94.240.32.0/21 maxlen: 21
94.240.40.0/24 maxlen: 24
94.240.42.0/24 maxlen: 24
94.240.44.0/22 maxlen: 22
94.240.46.0/24 maxlen: 24
94.240.48.0/22 maxlen: 22
94.240.48.0/24 maxlen: 24
91.106.24.0/23 maxlen: 23
194.152.46.0/23 maxlen: 23
2a01:6e80::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6b:a3:74:06:94:51:d3:40:57:9d:48:5c:fc:ba:43:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Validity
Not Before: Oct 26 10:59:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c89283ea1a9c1d77eede85b57f79396d9fefc95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:dd:9d:66:e9:7c:3b:93:59:5a:1b:cb:14:3c:
8a:eb:11:5a:21:a6:4a:f4:7a:cb:39:69:c6:8d:fc:
e6:20:4d:42:db:f7:fa:3a:5f:59:c3:70:a3:98:52:
08:43:56:21:99:bd:32:38:95:39:4f:e8:85:a9:18:
47:ec:bf:9d:88:d4:a9:76:a3:b4:3c:79:23:62:df:
32:84:53:86:4f:38:8f:12:b0:b1:d0:34:a5:ad:93:
76:3b:af:32:bb:b3:54:e6:df:d1:a2:78:1b:f3:78:
8d:ca:01:3b:ec:e1:6d:ab:b4:1b:21:6b:b7:30:5e:
6a:48:16:e5:c1:e2:d8:48:28:a7:85:c9:90:d7:cc:
e0:5a:73:5f:79:37:46:84:2b:36:b7:07:5e:a9:e5:
77:62:fb:a7:fc:ab:de:01:da:56:54:7a:9d:fa:32:
b1:74:9e:11:fe:fc:0d:20:5c:16:bb:bc:4b:86:bc:
ac:4c:f0:99:bb:d9:d6:ef:ef:e2:80:a6:06:3e:ed:
f3:48:e2:b2:70:d6:4b:cd:ab:71:0f:5e:2d:d4:72:
6d:ba:fa:f6:6e:f7:a1:d3:22:fe:52:d6:55:90:98:
1a:a0:5d:29:06:ef:85:da:9c:09:db:54:f0:da:da:
7c:df:52:dc:07:b8:99:fa:d6:9c:b4:f7:37:27:c0:
f3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:89:28:3E:A1:A9:C1:D7:7E:ED:E8:5B:57:F7:93:96:D9:FE:FC:95
X509v3 Authority Key Identifier:
keyid:35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/DIkoPqGpwdd-7ehbV_eTltn-_JU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.106.24.0/22
91.106.30.0/23
94.240.0.0/23
94.240.3.0/24
94.240.7.0/24
94.240.23.0/24
94.240.32.0-94.240.40.255
94.240.42.0/24
94.240.44.0-94.240.51.255
94.240.62.0/23
185.139.16.0/22
194.152.46.0/23
IPv6:
2a01:6e80::/32
Signature Algorithm: sha256WithRSAEncryption
6f:b8:66:7c:0c:94:56:59:53:9a:5c:fa:d3:bd:31:c5:39:e1:
e2:96:cc:37:38:4a:5a:9e:8a:07:fd:88:5a:9f:b3:fb:66:3f:
49:66:6f:f4:48:70:10:19:b2:b4:9a:3a:05:e3:0f:d2:b4:db:
82:0d:f3:96:a8:55:a5:8d:91:37:6e:7a:86:fd:56:d9:5e:33:
37:d0:d8:b2:57:8e:d7:d7:7d:86:b8:e8:cc:db:56:25:c4:e9:
96:46:3f:36:9b:7b:a3:14:b8:9a:6f:e6:a9:1c:b9:02:89:5f:
f0:ab:32:55:18:3c:21:79:94:a8:6f:7d:4d:64:5a:7c:36:17:
81:c1:0d:50:be:a9:c4:7d:a8:b9:a3:df:d9:ac:2f:0f:32:5b:
3a:59:40:eb:b3:53:f1:ee:0e:89:46:74:42:0d:0b:c1:38:0f:
9f:6e:79:6f:26:e2:cd:4d:31:d8:a6:1e:6e:64:fe:99:f3:fc:
3d:6b:75:c8:26:c3:3f:a4:7d:4e:66:8e:e7:6f:f5:7e:a1:cb:
33:13:7d:43:d0:3b:fa:96:39:08:a9:33:82:9c:0a:90:77:4e:
a4:6b:55:35:dd:dd:0c:a4:3a:ba:83:0e:ca:d4:6d:b4:2c:b6:
67:db:7e:2c:c7:b2:df:bb:56:ac:4e:1e:6d:ed:68:70:a6:a6:
ce:eb:dc:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:18 2024 by rpki-client on console-fra.rpki-client.org