Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/Z_aj267pQ6gTln6AhyLV9aGznFA.roa
File: Z_aj267pQ6gTln6AhyLV9aGznFA.roa (raw, json)
Hash identifier: kXEPvLUDZrmj2jqFo+dwblK9DW+tFM7pBUtFo9/hCBc=
Subject key identifier: 67:F6:A3:DB:AE:E9:43:A8:13:96:7E:80:87:22:D5:F5:A1:B3:9C:50
Certificate issuer: /CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Certificate serial: 0185ED5F23AB60AB7AAC688085FACBF96353
Authority key identifier: A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/Z_aj267pQ6gTln6AhyLV9aGznFA.roa
Signing time: Thu 26 Jan 2023 09:18:33 +0000
ROA not before: Thu 26 Jan 2023 09:18:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48854
IP address blocks: 185.134.28.0/22 maxlen: 22
195.178.14.0/23 maxlen: 23
80.70.0.0/23 maxlen: 23
185.21.40.0/22 maxlen: 22
80.70.7.0/24 maxlen: 24
212.97.132.0/22 maxlen: 22
212.97.140.0/22 maxlen: 22
94.143.8.0/21 maxlen: 21
93.191.152.0/21 maxlen: 21
93.191.152.0/22 maxlen: 22
217.61.236.0/22 maxlen: 22
93.191.156.0/24 maxlen: 24
93.191.158.0/24 maxlen: 24
93.191.157.0/24 maxlen: 24
89.188.72.0/21 maxlen: 21
185.25.141.0/24 maxlen: 24
185.25.143.0/24 maxlen: 24
94.231.96.0/20 maxlen: 20
94.231.103.0/24 maxlen: 24
185.223.24.0/22 maxlen: 22
185.221.36.0/22 maxlen: 22
212.237.248.0/23 maxlen: 23
194.150.112.0/22 maxlen: 22
185.20.204.0/22 maxlen: 22
185.20.205.0/24 maxlen: 24
185.20.206.0/23 maxlen: 23
2a06:eac0::/29 maxlen: 48
2a03:2740::/48 maxlen: 48
2a02:2338::/32 maxlen: 48
2a02:2339:4000::/34 maxlen: 48
Validation: Failed, certificate revoked on Fri 03 Feb 2023 09:43:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ed:5f:23:ab:60:ab:7a:ac:68:80:85:fa:cb:f9:63:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Validity
Not Before: Jan 26 09:18:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67f6a3dbaee943a813967e808722d5f5a1b39c50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e5:df:57:bb:52:3a:92:f1:1a:63:61:2b:61:
47:8b:e5:17:b8:3c:ab:12:96:a1:7d:bf:6b:92:4d:
05:d7:0f:2f:43:40:ca:97:58:7e:e5:55:97:a7:9f:
6e:51:14:4a:09:b7:d0:97:ea:9f:2f:90:b7:74:d2:
e7:f0:8c:00:f6:5d:f9:de:18:17:60:77:de:26:a0:
ba:a7:50:93:8b:1b:94:6a:18:0a:70:fe:6b:12:7a:
47:86:38:dc:d0:fc:f0:9b:1d:e6:9a:28:3c:94:b9:
5f:18:4a:ba:9f:ad:84:2d:78:a4:46:88:c5:2b:07:
eb:7b:d4:4d:2f:ae:b9:ff:bb:7b:24:45:e1:aa:b7:
07:aa:e3:fd:cc:da:14:e9:c1:f1:6c:f7:9b:ae:41:
0f:96:87:92:b0:02:f8:3f:60:b1:ae:b1:3f:d0:96:
99:1e:9b:b4:b1:bf:e8:32:ae:82:0d:44:bf:90:0a:
de:dc:4f:37:8f:3b:9b:41:b6:2f:f5:a1:98:7b:72:
8f:1c:21:e5:11:e9:8b:81:74:ca:b1:58:ac:05:14:
8b:9e:af:a9:16:08:f9:01:ca:19:28:38:76:e0:01:
d5:76:20:c1:38:bb:9b:06:0f:30:81:19:2e:1b:ef:
05:c3:31:60:41:c6:d1:0c:62:96:92:a2:ca:9b:8b:
5e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:F6:A3:DB:AE:E9:43:A8:13:96:7E:80:87:22:D5:F5:A1:B3:9C:50
X509v3 Authority Key Identifier:
keyid:A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/Z_aj267pQ6gTln6AhyLV9aGznFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.70.0.0/23
80.70.7.0/24
89.188.72.0/21
93.191.152.0/21
94.143.8.0/21
94.231.96.0/20
185.20.204.0/22
185.21.40.0/22
185.25.141.0/24
185.25.143.0/24
185.134.28.0/22
185.221.36.0/22
185.223.24.0/22
194.150.112.0/22
195.178.14.0/23
212.97.132.0/22
212.97.140.0/22
212.237.248.0/23
217.61.236.0/22
IPv6:
2a02:2338::/32
2a02:2339:4000::/34
2a03:2740::/48
2a06:eac0::/29
Signature Algorithm: sha256WithRSAEncryption
0d:f7:00:57:8f:39:13:05:23:02:33:68:12:ce:a8:46:48:9d:
aa:f4:30:77:0d:2f:02:91:aa:f4:b6:4e:a4:3f:7a:56:40:4b:
d6:56:78:27:2a:66:6c:e0:d4:56:e4:70:f4:54:7a:76:20:b9:
fd:5c:64:bb:86:f9:8b:6a:39:fe:6a:72:9e:ca:ab:a5:9e:61:
1f:24:34:a9:7c:41:2b:1c:54:91:d0:b0:8c:86:d3:b9:30:e5:
87:e2:4c:10:11:8a:cc:52:78:89:01:6b:af:0a:55:fb:41:83:
2d:69:78:79:0a:93:b3:ca:e1:c3:7d:64:ab:3b:dd:05:2d:3f:
a9:fe:17:4a:d6:57:12:ad:29:bb:94:20:7b:df:bc:34:8e:39:
f0:07:1c:ec:33:ff:fb:b3:c6:25:30:ae:cb:eb:db:36:f9:4d:
dc:42:2f:82:dc:a2:6c:1b:14:d5:c3:14:c3:b2:65:4f:c3:43:
06:ee:40:36:0c:8d:be:31:44:35:28:ed:7e:20:25:f8:43:66:
e6:4b:27:6f:69:47:de:c7:a5:2e:f3:1d:fc:4d:2d:31:d7:bd:
10:a0:4d:cb:57:89:a2:36:50:19:54:e1:5b:8b:4b:5b:10:fc:
27:7d:e1:d3:13:36:f3:53:b8:00:7e:3f:39:01:04:7c:70:10:
64:9e:97:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:51 2024 by rpki-client on console-ams.rpki-client.org