Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/b92tFBqNjlaPhDqMYnc0OiS3TcM.roa
File: b92tFBqNjlaPhDqMYnc0OiS3TcM.roa (raw, json)
Hash identifier: /vUI/kABLvZ7ep3Qu1wRefzaZnVvfeRr/SBLnoigGjg=
Subject key identifier: 6F:DD:AD:14:1A:8D:8E:56:8F:84:3A:8C:62:77:34:3A:24:B7:4D:C3
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 01856D0ACDB4EF50987E89825EF4166094AC
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/b92tFBqNjlaPhDqMYnc0OiS3TcM.roa
Signing time: Sun 01 Jan 2023 11:15:02 +0000
ROA not before: Sun 01 Jan 2023 11:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16371
IP address blocks: 81.46.240.0/21 maxlen: 21
81.46.244.0/22 maxlen: 22
195.55.104.0/22 maxlen: 22
195.55.104.0/23 maxlen: 23
195.55.106.0/23 maxlen: 23
81.46.192.0/20 maxlen: 20
81.46.192.0/21 maxlen: 21
81.46.200.0/21 maxlen: 21
81.46.208.0/22 maxlen: 22
81.46.212.0/22 maxlen: 22
81.46.208.0/21 maxlen: 21
81.46.215.0/24 maxlen: 24
81.46.216.0/22 maxlen: 22
81.46.216.0/21 maxlen: 21
81.46.224.0/20 maxlen: 20
81.46.224.0/21 maxlen: 21
81.46.220.0/22 maxlen: 22
81.46.232.0/21 maxlen: 21
81.46.240.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:cd:b4:ef:50:98:7e:89:82:5e:f4:16:60:94:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Jan 1 11:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fddad141a8d8e568f843a8c6277343a24b74dc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d9:99:15:56:cd:64:fb:cd:43:e0:ac:4c:1a:
19:62:66:a4:99:61:28:a1:63:90:5d:a8:f0:17:69:
3d:c4:d9:76:9b:02:9d:fa:6a:b2:64:46:be:12:82:
ee:c4:5f:84:5c:eb:31:39:d4:73:6e:72:1a:12:8a:
f1:ff:2a:1b:56:31:1a:d7:f5:e3:dc:69:cd:ad:85:
63:31:89:88:f0:59:a2:35:01:2f:93:6c:c3:f8:b9:
40:ef:ea:81:67:2d:c0:9f:78:7e:0f:d0:6a:06:6f:
7c:c9:d6:b5:b2:6b:62:1d:ed:24:98:47:cb:c9:0e:
e2:a3:46:55:54:38:9e:4a:66:5f:d7:1e:d9:9b:5d:
bc:9f:67:ce:35:ed:fd:48:3c:f6:37:44:0d:37:7f:
ac:82:86:fc:e0:b2:34:bd:2a:9c:c6:83:2a:44:18:
e5:81:da:72:f6:e5:31:f0:58:f0:aa:90:2b:bb:74:
0c:3d:9e:29:95:52:7c:68:73:fc:d7:5a:f8:35:9b:
37:28:c2:9e:c6:b4:6d:e1:42:31:c6:d8:e5:f1:77:
35:56:f5:d1:dd:96:f3:e7:fa:0e:28:f5:45:2f:bf:
ed:84:96:fc:21:35:28:9d:bd:8c:9c:64:e5:81:f1:
6c:55:ed:0b:d4:0a:24:01:fd:df:cc:ab:4e:ec:73:
a5:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:DD:AD:14:1A:8D:8E:56:8F:84:3A:8C:62:77:34:3A:24:B7:4D:C3
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/b92tFBqNjlaPhDqMYnc0OiS3TcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.46.192.0-81.46.247.255
195.55.104.0/22
Signature Algorithm: sha256WithRSAEncryption
66:b2:50:c1:7c:82:7b:38:8a:ff:41:4e:d0:97:25:cc:af:91:
0c:88:48:a4:2f:0a:b7:5a:20:86:30:d4:20:dd:b1:bd:77:7d:
70:f8:ba:4d:b6:7c:0e:8d:82:25:86:58:b8:e9:39:f4:1e:6b:
41:3c:d3:1b:03:9d:ab:35:e9:e4:a5:27:8e:73:d1:44:3a:6b:
a4:76:7e:d2:d1:7c:dc:13:63:72:5a:60:56:83:b6:e6:18:06:
5a:41:be:82:7e:3e:2e:49:f3:41:ae:47:c6:13:62:b0:61:0b:
5a:23:5f:ca:e9:33:8c:90:33:31:e9:94:b2:f0:fa:25:aa:e4:
ab:21:48:19:e0:5e:d1:f3:41:98:b6:60:4b:ed:52:15:ea:2b:
47:65:36:d8:38:2a:08:61:62:3a:73:4a:db:b6:94:bb:31:9d:
6b:cc:4a:ea:5d:c3:0f:e4:7f:83:c1:36:83:fa:85:35:36:27:
77:52:0d:48:90:d8:9f:12:f9:c6:40:c5:78:2d:1e:b8:a4:e8:
8d:0b:97:ec:c7:14:e4:a8:1b:f9:cd:dd:55:74:d5:92:ce:68:
d9:11:e2:e1:58:38:3c:fe:df:af:1f:eb:e9:9e:50:1c:79:ed:
cd:f7:6e:a3:37:d8:1a:6e:44:e3:89:49:05:f1:27:f7:6d:8d:
c5:84:6c:81
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:05 2024 by rpki-client on console-fra.rpki-client.org