Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/o-JpOhEjPi_Euf1AemnwWdCXQao.roa
File: o-JpOhEjPi_Euf1AemnwWdCXQao.roa (raw, json)
Hash identifier: SgRsu7f5I1mO4pVFwCvxDlv4HCPvHoS1+hZm07MFeZU=
Subject key identifier: A3:E2:69:3A:11:23:3E:2F:C4:B9:FD:40:7A:69:F0:59:D0:97:41:AA
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 018E7AAF2F8E41676C525AE754C628644EEC
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/o-JpOhEjPi_Euf1AemnwWdCXQao.roa
Signing time: Tue 26 Mar 2024 12:14:45 +0000
ROA not before: Tue 26 Mar 2024 12:14:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24852
IP address blocks: 79.132.160.0/19 maxlen: 19
84.55.0.0/18 maxlen: 18
84.55.32.0/24 maxlen: 24
84.55.33.0/24 maxlen: 24
84.55.34.0/23 maxlen: 23
84.55.36.0/23 maxlen: 23
84.55.48.0/21 maxlen: 21
84.55.56.0/23 maxlen: 23
84.55.58.0/23 maxlen: 23
84.55.60.0/23 maxlen: 23
84.55.62.0/23 maxlen: 23
88.223.0.0/18 maxlen: 18
88.223.96.0/22 maxlen: 22
88.223.104.0/21 maxlen: 21
88.223.112.0/20 maxlen: 20
88.223.128.0/22 maxlen: 22
88.223.144.0/21 maxlen: 21
88.223.152.0/24 maxlen: 24
88.223.153.0/24 maxlen: 24
88.223.160.0/20 maxlen: 20
88.223.192.0/19 maxlen: 19
95.173.32.0/19 maxlen: 19
185.104.176.0/22 maxlen: 22
213.164.96.0/20 maxlen: 20
213.164.112.0/22 maxlen: 22
213.164.116.0/23 maxlen: 23
213.164.118.0/24 maxlen: 24
217.147.34.0/24 maxlen: 24
217.147.35.0/24 maxlen: 24
217.147.36.0/23 maxlen: 23
217.147.38.0/24 maxlen: 24
217.147.40.0/24 maxlen: 24
217.147.41.0/24 maxlen: 24
217.147.44.0/23 maxlen: 23
217.147.46.0/24 maxlen: 24
217.147.47.0/24 maxlen: 24
2a01:7c80::/33 maxlen: 33
Validation: Failed, certificate revoked on Wed 27 Mar 2024 16:41:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7a:af:2f:8e:41:67:6c:52:5a:e7:54:c6:28:64:4e:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Mar 26 12:14:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3e2693a11233e2fc4b9fd407a69f059d09741aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5e:2b:ab:91:c3:f9:3d:88:9e:b3:70:c3:89:
59:1c:f7:4b:b5:f9:08:4b:66:b5:34:00:f8:36:5e:
97:2b:55:54:61:9e:fc:d3:ff:07:71:a4:3a:e7:22:
51:5b:7e:ca:d8:ea:17:f6:33:af:81:a8:8a:f4:1a:
ad:7f:a4:46:cc:6f:ea:34:ea:e0:3d:99:31:1c:0f:
f9:68:e6:10:8a:6a:7d:ad:70:f4:2b:b4:7f:da:7c:
24:35:6b:3f:b8:2a:ce:36:a4:12:47:b6:45:1c:59:
59:05:8c:a5:f6:16:44:b4:f2:d2:ec:e8:85:7b:f1:
eb:47:f8:d1:0e:4d:ed:ad:13:86:4b:ac:83:b8:e4:
8a:07:ee:6f:88:ab:80:fa:9d:cf:13:ca:8e:0d:b3:
6d:32:37:fa:3c:b6:b6:8e:cd:bd:b7:8d:5c:39:ee:
a4:32:e8:7e:45:16:39:68:db:90:8e:fe:a0:53:e9:
9c:76:43:1a:83:bf:a8:59:ac:24:eb:c9:f6:cd:d4:
51:d6:b2:5b:9e:e4:72:ca:67:6a:3d:9f:3b:b0:1f:
a9:90:9f:5d:39:a3:a5:79:b4:d5:cf:d0:28:64:9e:
d7:7c:d2:a8:dd:3c:84:15:0c:5a:d9:89:40:4f:01:
17:29:0b:28:0c:0c:34:9b:2f:40:e4:c6:97:90:26:
c7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:E2:69:3A:11:23:3E:2F:C4:B9:FD:40:7A:69:F0:59:D0:97:41:AA
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/o-JpOhEjPi_Euf1AemnwWdCXQao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.160.0/19
84.55.0.0/18
88.223.0.0/18
88.223.96.0/22
88.223.104.0-88.223.131.255
88.223.144.0-88.223.153.255
88.223.160.0/20
88.223.192.0/19
95.173.32.0/19
185.104.176.0/22
213.164.96.0-213.164.118.255
217.147.34.0-217.147.38.255
217.147.40.0/23
217.147.44.0/22
IPv6:
2a01:7c80::/33
Signature Algorithm: sha256WithRSAEncryption
4d:0e:12:53:24:45:71:58:43:b5:22:e6:6d:76:7a:2f:ff:78:
56:37:50:0f:78:c8:71:16:22:67:f0:83:94:cb:77:bd:fa:16:
15:7f:ea:59:97:2f:bb:63:10:03:df:c3:67:4e:07:0d:b1:81:
e4:95:ba:db:e0:55:83:09:c1:de:2e:d9:96:6c:55:4b:7e:83:
86:66:a3:79:23:75:29:e6:b7:89:81:da:13:d1:f8:53:98:b7:
dd:cd:f3:6b:5d:44:08:c0:c1:88:49:2c:75:08:d8:31:09:cf:
a7:53:66:3e:be:25:ee:d7:43:f3:20:51:37:2f:87:0c:10:e7:
ad:af:ef:84:99:2d:9a:0a:36:45:68:e6:88:ac:1d:4c:db:53:
cb:45:77:73:b5:06:a5:9b:34:bd:16:25:83:d9:95:e9:f4:cc:
9f:4b:85:a8:96:c0:60:4d:18:ed:c0:38:01:4b:66:97:3b:63:
17:a5:60:a6:a6:ab:95:93:ef:c2:07:7c:ac:e5:53:03:fa:4d:
58:9f:74:9d:f0:34:c1:bb:d0:3d:9a:03:98:5b:34:03:9e:cd:
b2:34:e7:71:e5:99:65:24:35:d8:7c:30:09:e7:29:ac:71:76:
d2:d8:0b:33:14:ca:6b:f0:4e:25:67:a1:2a:71:fa:e8:3c:95:
8a:ba:fc:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:15 2024 by rpki-client on console-fra.rpki-client.org