Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/k6Yg4f1vPkJ_1ySrhrsZrrvXdI4.roa
File: k6Yg4f1vPkJ_1ySrhrsZrrvXdI4.roa (raw, json)
Hash identifier: Es+ZKveQqzrZ9CTe8GugrdV1ipL9MY3Q09Bxm04M1PA=
Subject key identifier: 93:A6:20:E1:FD:6F:3E:42:7F:D7:24:AB:86:BB:19:AE:BB:D7:74:8E
Certificate issuer: /CN=1e36de27974727aa0046b3e9c8d0624674541255
Certificate serial: 018A5056DD39F8921115E0E92433472F5FE2
Authority key identifier: 1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/k6Yg4f1vPkJ_1ySrhrsZrrvXdI4.roa
Signing time: Fri 01 Sep 2023 10:43:04 +0000
ROA not before: Fri 01 Sep 2023 10:43:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51032
IP address blocks: 62.122.88.0/21 maxlen: 24
178.216.176.0/21 maxlen: 21
91.123.80.0/20 maxlen: 20
89.23.146.0/24 maxlen: 24
89.23.147.0/24 maxlen: 24
89.23.160.0/19 maxlen: 19
89.23.168.0/21 maxlen: 21
89.23.176.0/21 maxlen: 21
91.202.204.0/22 maxlen: 22
89.23.128.0/19 maxlen: 19
89.23.128.0/21 maxlen: 21
89.23.144.0/20 maxlen: 24
31.128.128.0/19 maxlen: 19
2a13:2c80::/29 maxlen: 32
Validation: Failed, certificate revoked on Fri 01 Sep 2023 10:54:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:50:56:dd:39:f8:92:11:15:e0:e9:24:33:47:2f:5f:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e36de27974727aa0046b3e9c8d0624674541255
Validity
Not Before: Sep 1 10:43:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93a620e1fd6f3e427fd724ab86bb19aebbd7748e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c9:42:29:23:a6:bf:64:73:41:f8:31:8b:d0:
9a:76:e1:e8:b0:54:4e:74:fa:7f:2f:84:0c:65:cf:
02:3e:48:90:ab:e3:67:f2:fd:7f:68:6e:16:d7:52:
2e:b8:3a:ca:32:cf:48:b6:52:64:5f:cd:87:f8:d3:
85:da:e8:06:9f:c6:1e:4d:b2:69:96:8b:63:b5:66:
02:67:f9:dc:96:ca:88:88:bb:ff:9f:eb:05:38:ae:
a9:4e:f7:bf:43:9c:8c:8f:13:a5:da:fa:6e:2c:d7:
a9:92:16:29:37:35:45:9e:5e:71:c0:ee:39:e2:bd:
66:1f:fc:26:73:d6:31:c6:41:d8:33:aa:88:82:9c:
3d:ca:75:1d:2f:72:2c:67:5b:e7:e8:ea:92:c0:8e:
33:5a:46:66:5b:52:da:38:cb:8c:bf:bc:4a:ea:64:
3a:45:b4:67:67:06:d5:58:9d:19:74:02:6d:1f:dc:
40:98:4c:c8:fe:10:5f:5d:a9:e6:7a:bc:c5:45:ed:
f4:15:42:c0:8b:b0:45:0b:ce:3a:8c:fc:a9:68:df:
76:5a:1e:aa:49:6d:34:cb:12:c4:9a:04:bf:43:b0:
1d:7a:b6:43:55:f3:30:b8:6d:14:26:36:11:f6:49:
3f:d8:e6:97:69:46:76:6b:40:9e:d7:ad:a7:40:3c:
87:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:A6:20:E1:FD:6F:3E:42:7F:D7:24:AB:86:BB:19:AE:BB:D7:74:8E
X509v3 Authority Key Identifier:
keyid:1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/k6Yg4f1vPkJ_1ySrhrsZrrvXdI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.128.128.0/19
62.122.88.0/21
89.23.128.0/18
91.123.80.0/20
91.202.204.0/22
178.216.176.0/21
IPv6:
2a13:2c80::/29
Signature Algorithm: sha256WithRSAEncryption
76:cd:0f:e3:ab:8a:4e:ac:d2:2a:a4:4c:0d:84:29:7d:64:39:
a0:9f:3d:74:05:0a:34:d9:aa:f6:79:43:e7:2a:d4:88:f1:21:
45:d2:cd:95:24:70:0a:e2:ef:77:85:1f:50:a7:c2:0c:a0:ec:
8f:fa:9b:f3:68:48:73:c5:72:db:22:7f:75:4a:c6:30:6b:03:
6d:da:42:f8:72:29:9e:02:19:00:55:c9:ea:a7:8e:a6:e0:18:
4e:59:ad:25:6a:a3:20:97:7e:20:3f:f6:54:cd:a3:cc:78:4a:
ef:12:1f:2e:4a:84:b5:3a:1c:6c:b9:04:25:19:30:20:ad:2d:
8f:8a:06:d7:5a:ad:b7:1e:4c:9d:26:71:ce:1f:af:e2:dd:83:
fe:7a:7b:8c:03:0b:70:92:3f:be:04:20:d5:39:a3:65:8c:e3:
e8:db:c0:9c:3e:9c:ac:68:db:d2:3d:7a:76:ae:6b:76:31:21:
a6:6f:2b:6f:9d:07:57:62:a0:9a:73:36:08:1b:a4:4a:a8:b6:
03:df:4e:f1:bf:01:71:6f:66:0e:94:9d:77:ba:2c:87:da:b4:
30:b2:14:57:25:65:29:8d:f9:63:ce:c1:6a:0e:7d:a1:b9:f0:
f2:4d:2c:81:76:86:63:7e:c2:3a:c0:2b:4d:2c:bb:be:64:16:
cf:18:7c:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:21 2024 by rpki-client on console-fra.rpki-client.org