Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/Ahgp_1h3S6ezvIblhwCwKjdyqHM.roa
File: Ahgp_1h3S6ezvIblhwCwKjdyqHM.roa (raw, json)
Hash identifier: 7KWPW69J79owYMeYyTh6FPbzeQxjs0c52aStElprsks=
Subject key identifier: 02:18:29:FF:58:77:4B:A7:B3:BC:86:E5:87:00:B0:2A:37:72:A8:73
Certificate issuer: /CN=c7c24de99101fafdf74bca293fd6d95060d50a63
Certificate serial: 018BA8A9194F0D8F4E45D8C796035759DE6A
Authority key identifier: C7:C2:4D:E9:91:01:FA:FD:F7:4B:CA:29:3F:D6:D9:50:60:D5:0A:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x8JN6ZEB-v33S8opP9bZUGDVCmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/Ahgp_1h3S6ezvIblhwCwKjdyqHM.roa
Signing time: Tue 07 Nov 2023 07:22:16 +0000
ROA not before: Tue 07 Nov 2023 07:22:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5410
IP address blocks: 31.32.0.0/13 maxlen: 24
213.44.0.0/16 maxlen: 24
62.201.128.0/19 maxlen: 24
80.214.248.0/21 maxlen: 24
195.36.128.0/17 maxlen: 24
80.215.0.0/16 maxlen: 24
62.34.0.0/15 maxlen: 24
212.194.0.0/15 maxlen: 24
176.128.0.0/10 maxlen: 24
80.214.192.0/19 maxlen: 24
194.158.96.0/19 maxlen: 24
5.48.0.0/14 maxlen: 24
80.214.0.0/17 maxlen: 24
164.177.0.0/17 maxlen: 24
194.117.192.0/20 maxlen: 24
89.80.0.0/12 maxlen: 24
87.88.0.0/14 maxlen: 24
128.78.0.0/15 maxlen: 24
94.238.0.0/15 maxlen: 24
80.214.128.0/18 maxlen: 24
2001:860::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 14 Nov 2023 09:18:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a8:a9:19:4f:0d:8f:4e:45:d8:c7:96:03:57:59:de:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7c24de99101fafdf74bca293fd6d95060d50a63
Validity
Not Before: Nov 7 07:22:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=021829ff58774ba7b3bc86e58700b02a3772a873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fb:8e:25:c9:74:32:d9:84:4a:70:22:1b:4c:
ac:ff:66:68:a4:ad:2b:47:69:68:51:91:a0:8c:a7:
b3:7c:50:96:c6:91:f8:22:88:7f:ca:1b:2f:1b:42:
3a:59:25:d6:a7:3e:a3:fb:02:b2:78:49:9c:d6:6d:
11:88:64:fb:db:75:ab:b5:19:15:13:73:15:90:68:
b0:93:cd:b2:f9:f4:f0:fb:fe:8c:e2:ef:a5:34:a2:
b3:9d:44:d9:7d:fc:07:2d:27:d5:6b:76:6d:18:ac:
1b:37:a6:5f:30:81:41:19:30:a3:84:40:b0:63:3c:
09:1b:81:72:71:25:db:18:71:58:0e:c6:4a:53:54:
37:6a:8e:ae:29:03:f8:4e:a9:51:53:86:79:dd:72:
44:96:72:4e:99:be:15:8a:7b:23:b0:41:f7:80:be:
79:1a:cb:fc:42:34:91:73:30:ab:93:6c:2c:8e:e2:
62:61:bf:3a:84:0f:b8:be:53:e6:3c:0a:4f:94:96:
e4:50:d1:c2:47:f9:8b:75:5b:f8:5f:6e:d9:a2:44:
ed:88:0e:db:22:ed:ef:98:2c:4a:be:eb:0f:92:24:
61:50:9d:cd:ee:19:d5:5b:34:5b:89:5b:bc:e2:74:
31:b3:83:d8:c8:70:37:9b:87:17:59:00:ca:6a:04:
1c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:18:29:FF:58:77:4B:A7:B3:BC:86:E5:87:00:B0:2A:37:72:A8:73
X509v3 Authority Key Identifier:
keyid:C7:C2:4D:E9:91:01:FA:FD:F7:4B:CA:29:3F:D6:D9:50:60:D5:0A:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x8JN6ZEB-v33S8opP9bZUGDVCmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/Ahgp_1h3S6ezvIblhwCwKjdyqHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/x8JN6ZEB-v33S8opP9bZUGDVCmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.48.0.0/14
31.32.0.0/13
62.34.0.0/15
62.201.128.0/19
80.214.0.0-80.214.223.255
80.214.248.0-80.215.255.255
87.88.0.0/14
89.80.0.0/12
94.238.0.0/15
128.78.0.0/15
164.177.0.0/17
176.128.0.0/10
194.117.192.0/20
194.158.96.0/19
195.36.128.0/17
212.194.0.0/15
213.44.0.0/16
IPv6:
2001:860::/29
Signature Algorithm: sha256WithRSAEncryption
75:c2:fb:cb:c5:da:f4:d5:85:7a:59:c9:b6:25:10:1b:11:a6:
08:e5:2b:82:2c:a3:fe:1b:a5:44:83:f4:94:0c:d3:8d:ea:e5:
87:39:76:f9:4f:08:31:55:cf:5e:df:88:e0:fc:b4:b8:22:37:
20:c3:52:b3:69:cb:65:35:2e:ea:7b:5e:56:16:8a:a7:bf:6c:
37:b0:1a:7e:df:f5:35:2d:ad:68:26:0c:48:d8:0f:71:06:cc:
dd:52:9a:42:aa:bb:39:3f:b5:8b:52:47:de:2d:34:18:a2:fb:
ba:35:34:85:0c:ad:e0:58:cc:d9:4d:ef:82:d0:f8:93:66:83:
2d:46:a5:a1:94:87:fb:99:ab:08:31:e6:f8:5c:7a:87:42:de:
3a:60:af:c5:5a:80:c3:31:cf:61:58:32:19:3c:60:24:94:8a:
aa:eb:7b:66:f6:c3:59:48:67:36:a3:9a:aa:d2:a4:ec:7a:ee:
00:89:25:42:2c:59:8e:5a:29:9b:12:9a:56:b1:1c:5b:e5:10:
49:80:9e:c3:8c:29:c9:ac:88:21:44:03:e0:07:99:5f:e5:71:
1b:13:4d:3e:d2:23:95:fb:b8:9a:a9:ac:58:40:80:2c:99:e1:
56:97:4c:c6:cf:f9:fe:40:16:df:4c:ff:a6:0b:ed:7c:c3:18:
07:7c:37:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:38 2024 by rpki-client on console-fra.rpki-client.org