Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/K-50x0Q_YW1bXBCPpK3SdqW362Y.roa
File: K-50x0Q_YW1bXBCPpK3SdqW362Y.roa (raw, json)
Hash identifier: C0Iws+B76RIHrgj6G90Pmok4+AwHHErL3qUB5W8R9a8=
Subject key identifier: 2B:EE:74:C7:44:3F:61:6D:5B:5C:10:8F:A4:AD:D2:76:A5:B7:EB:66
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 018571830687931BD9A604663488FF12F85F
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/K-50x0Q_YW1bXBCPpK3SdqW362Y.roa
Signing time: Mon 02 Jan 2023 08:04:50 +0000
ROA not before: Mon 02 Jan 2023 08:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24877
IP address blocks: 88.223.100.0/22 maxlen: 22
84.55.0.0/20 maxlen: 20
84.55.16.0/21 maxlen: 21
88.223.132.0/22 maxlen: 22
88.223.139.0/24 maxlen: 24
88.223.136.0/23 maxlen: 23
88.223.136.0/24 maxlen: 24
88.223.140.0/22 maxlen: 22
217.147.42.0/23 maxlen: 23
217.147.39.0/24 maxlen: 24
88.222.248.0/22 maxlen: 22
84.55.44.0/23 maxlen: 23
84.55.40.0/22 maxlen: 22
84.55.38.0/23 maxlen: 23
88.223.156.0/22 maxlen: 22
84.55.46.0/23 maxlen: 23
88.222.216.0/24 maxlen: 24
217.147.33.0/24 maxlen: 24
217.147.32.0/24 maxlen: 24
2a01:7c80:8000::/33 maxlen: 33
Validation: Failed, certificate revoked on Wed 20 Sep 2023 05:17:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:06:87:93:1b:d9:a6:04:66:34:88:ff:12:f8:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Jan 2 08:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2bee74c7443f616d5b5c108fa4add276a5b7eb66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b8:17:43:44:5e:c9:ff:eb:9e:49:bc:ed:19:
9e:f8:39:71:c1:d9:f3:66:b9:a6:1e:27:a1:5b:76:
6b:22:ed:b8:9e:f9:1e:dd:72:04:7d:ae:b2:a2:8c:
2b:02:77:cc:2a:35:f4:f9:e5:7d:b1:0e:3d:f3:70:
79:39:90:95:3d:31:33:7c:84:8e:97:c9:a9:f6:96:
ea:af:d5:f1:27:f5:0e:2b:dd:9b:bc:30:35:ef:2d:
97:4b:a9:67:70:11:e9:0b:74:34:36:6c:8a:8f:c9:
98:e1:27:90:da:02:2f:1c:33:49:3d:e8:ab:54:4a:
8c:f7:ab:70:9b:28:2c:d8:d2:33:62:60:48:32:75:
57:17:34:4d:3f:aa:fa:66:1f:65:8b:f4:a4:6a:f2:
04:a4:6a:30:96:6a:ab:77:53:5f:0c:aa:6d:9e:65:
4e:b2:6c:de:ae:95:75:c1:48:8d:25:ca:de:bd:30:
58:53:2e:1b:5e:9f:1f:63:36:29:c9:a4:6c:d4:98:
83:fa:30:47:08:c3:5c:c4:f4:bd:2a:a1:a2:78:1d:
ac:c5:81:5e:51:55:9b:ed:a5:9c:e9:95:34:dc:4f:
5e:ec:72:ab:f6:68:38:55:b5:ac:f1:04:b9:ca:a9:
b7:e6:bf:a9:21:2a:f7:22:8c:c9:c2:4f:c2:59:f4:
8d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:EE:74:C7:44:3F:61:6D:5B:5C:10:8F:A4:AD:D2:76:A5:B7:EB:66
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/K-50x0Q_YW1bXBCPpK3SdqW362Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.55.0.0-84.55.23.255
84.55.38.0-84.55.47.255
88.222.216.0/24
88.222.248.0/22
88.223.100.0/22
88.223.132.0-88.223.137.255
88.223.139.0-88.223.143.255
88.223.156.0/22
217.147.32.0/23
217.147.39.0/24
217.147.42.0/23
IPv6:
2a01:7c80:8000::/33
Signature Algorithm: sha256WithRSAEncryption
47:74:be:5e:94:de:79:92:15:13:54:ea:72:e1:e2:07:3c:35:
68:1d:66:e9:a0:5e:38:42:76:b5:17:cc:bc:94:9c:3c:2d:d7:
83:3a:b7:8c:7e:56:e4:f6:86:48:0e:96:99:ee:24:75:a1:60:
7d:53:2a:08:57:fd:6c:a4:37:28:be:53:75:b9:69:0d:b2:a0:
94:a8:ca:76:42:88:33:e1:83:bd:2e:a6:c4:9d:7e:14:cd:14:
9d:de:24:33:6a:de:3b:5b:54:a0:ee:e6:40:8d:00:68:a0:c2:
12:6e:42:7a:02:8a:c5:38:9e:eb:68:eb:02:70:7f:7c:02:f0:
0a:bb:4f:f5:d3:34:45:5c:c2:2b:b2:9a:a9:8e:c8:52:b2:44:
cb:3d:57:bb:9d:96:4c:33:5b:c4:fa:8c:02:f2:4e:ea:ae:fa:
f3:5a:ed:e4:69:1b:a6:66:48:fd:60:70:3e:66:a7:b1:67:cc:
4b:fe:6f:9d:25:2a:89:4f:2b:bf:fd:d6:89:8b:8b:0e:6e:17:
81:f6:f4:b7:ac:08:00:2b:a8:75:9b:9f:12:53:10:68:c2:3b:
d3:22:b6:30:a1:1c:62:75:bf:91:b0:5c:7d:7f:0a:9e:13:35:
f0:16:3f:d1:10:d8:8e:0a:ae:6e:dd:91:0c:4d:3d:df:3f:12:
d0:56:63:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:15 2024 by rpki-client on console-fra.rpki-client.org