Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/EW6BN7xNd3d7wfcOkwnItQBnV4s.roa
File: EW6BN7xNd3d7wfcOkwnItQBnV4s.roa (raw, json)
Hash identifier: L58jf1TxtfJBN2kcYWwA02o98CThvEXsKJ4SwXdeaU8=
Subject key identifier: 11:6E:81:37:BC:4D:77:77:7B:C1:F7:0E:93:09:C8:B5:00:67:57:8B
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 018BE10D3716514B125C2DB0789C46D9A89A
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/EW6BN7xNd3d7wfcOkwnItQBnV4s.roa
Signing time: Sat 18 Nov 2023 06:10:21 +0000
ROA not before: Sat 18 Nov 2023 06:10:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24877
IP address blocks: 213.164.112.0/22 maxlen: 22
88.223.100.0/22 maxlen: 22
84.55.0.0/20 maxlen: 20
84.55.16.0/21 maxlen: 21
88.223.132.0/22 maxlen: 22
84.55.24.0/21 maxlen: 21
88.223.139.0/24 maxlen: 24
88.223.136.0/23 maxlen: 23
88.223.136.0/24 maxlen: 24
88.223.140.0/22 maxlen: 22
88.223.64.0/21 maxlen: 21
88.223.72.0/21 maxlen: 21
84.55.44.0/23 maxlen: 23
84.55.40.0/22 maxlen: 22
84.55.38.0/23 maxlen: 23
88.223.156.0/22 maxlen: 22
84.55.46.0/23 maxlen: 23
88.222.0.0/17 maxlen: 17
88.222.128.0/18 maxlen: 18
217.147.42.0/23 maxlen: 23
217.147.39.0/24 maxlen: 24
88.222.248.0/22 maxlen: 22
88.222.192.0/20 maxlen: 20
88.222.216.0/24 maxlen: 24
88.222.224.0/20 maxlen: 20
217.147.33.0/24 maxlen: 24
217.147.32.0/24 maxlen: 24
2a01:7c80:8000::/33 maxlen: 33
Validation: Failed, certificate revoked on Fri 15 Dec 2023 06:11:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e1:0d:37:16:51:4b:12:5c:2d:b0:78:9c:46:d9:a8:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Nov 18 06:10:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=116e8137bc4d77777bc1f70e9309c8b50067578b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a3:de:93:8a:79:1d:8e:b1:c3:f0:99:9f:fa:
9a:a7:3d:7e:0e:42:45:b1:ac:6e:dc:5f:1d:af:b1:
4e:99:5d:ae:81:03:09:7b:a0:9d:3f:3c:6d:d0:8f:
f0:20:aa:5a:27:3e:25:9c:29:ae:79:40:a6:7a:b3:
62:fb:a3:24:26:3d:00:4e:78:10:29:0c:60:41:e8:
85:3c:26:f5:78:cf:f2:2e:dc:8e:77:84:31:99:52:
81:0a:73:af:a3:2a:98:5c:21:b5:7a:a7:da:15:16:
00:1c:3c:b3:8f:57:4a:e8:1c:b2:90:7f:f9:8b:df:
f9:d1:4f:a8:2a:a1:18:8c:c6:ea:57:08:d9:fd:1d:
07:4d:4f:a7:a3:67:42:86:26:e0:46:cc:8d:ab:4a:
2b:7e:cf:67:e3:cc:bb:f8:ed:9d:5b:7f:a1:9e:68:
20:2f:3e:62:be:e6:23:86:3d:9f:64:02:b2:78:ef:
14:eb:78:4c:66:19:e5:62:65:6d:21:a6:51:75:66:
50:f2:9a:9a:71:ed:80:e7:0c:3b:7e:ff:96:13:94:
f3:df:c3:1e:7e:e3:1d:fc:f2:92:94:a4:c4:b2:07:
9f:b4:56:24:d1:d3:f5:92:61:28:f2:89:8a:13:c2:
a4:74:2d:2d:ae:e3:7a:4e:0e:0e:08:ca:c9:93:b9:
fa:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:6E:81:37:BC:4D:77:77:7B:C1:F7:0E:93:09:C8:B5:00:67:57:8B
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/EW6BN7xNd3d7wfcOkwnItQBnV4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.55.0.0/19
84.55.38.0-84.55.47.255
88.222.0.0-88.222.207.255
88.222.216.0/24
88.222.224.0/20
88.222.248.0/22
88.223.64.0/20
88.223.100.0/22
88.223.132.0-88.223.137.255
88.223.139.0-88.223.143.255
88.223.156.0/22
213.164.112.0/22
217.147.32.0/23
217.147.39.0/24
217.147.42.0/23
IPv6:
2a01:7c80:8000::/33
Signature Algorithm: sha256WithRSAEncryption
89:bd:54:be:e5:ba:5b:00:24:80:e9:f2:28:9d:86:08:cf:a8:
6d:4f:8b:56:82:8f:92:91:4f:bd:d8:c0:50:13:39:f6:f3:37:
87:ee:69:b2:ee:31:41:73:ac:e7:87:2c:ef:3e:32:d5:c6:a6:
c8:64:be:4a:69:f9:f9:4d:c1:17:e8:4b:d6:fb:b3:1e:f0:8c:
9e:3d:0e:ab:9e:e9:62:17:b3:54:23:86:96:54:4d:6c:3e:64:
68:bb:1e:54:c9:28:f8:5b:00:78:72:41:0a:6a:f3:0c:a5:92:
44:a3:c2:f6:e2:f3:f8:18:8d:53:04:d6:a0:62:f2:7e:d9:04:
e2:24:36:d1:b5:fb:07:5a:5e:29:d2:71:51:e2:52:d8:2e:02:
6e:7b:36:f4:46:30:35:fb:37:ae:56:f8:f5:14:d3:47:03:15:
6d:6b:af:a7:f2:e9:23:1e:9a:20:ea:ac:e7:7c:19:12:22:da:
a8:08:01:3d:42:93:ed:db:d3:aa:89:72:9a:50:18:98:55:25:
67:06:89:a6:e8:61:9a:6d:9d:c9:db:7d:6d:19:04:88:5f:10:
83:1c:79:70:61:9e:7c:aa:99:97:39:ba:53:41:ce:17:d7:90:
5b:45:16:04:f3:81:ec:82:de:85:24:a5:54:09:bb:f6:53:19:
9f:15:48:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:15 2024 by rpki-client on console-fra.rpki-client.org