Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/bc15ec-6b0d-4734-a088-d00526b91605/1/xzgipPQLlxHemroRRWIeF1V84rw.roa
File: xzgipPQLlxHemroRRWIeF1V84rw.roa (raw, json)
Hash identifier: qMvVBu6qOla0MiGRY0D6McUjcrIhczQVQ1S6/dEa6jk=
Subject key identifier: C7:38:22:A4:F4:0B:97:11:DE:9A:BA:11:45:62:1E:17:55:7C:E2:BC
Certificate issuer: /CN=25a89539520004270d34253bdc16d87784156e1a
Certificate serial: 018A1D9A34DFF044357BB334E95307FFFA75
Authority key identifier: 25:A8:95:39:52:00:04:27:0D:34:25:3B:DC:16:D8:77:84:15:6E:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JaiVOVIABCcNNCU73BbYd4QVbho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/bc15ec-6b0d-4734-a088-d00526b91605/1/xzgipPQLlxHemroRRWIeF1V84rw.roa
Signing time: Tue 22 Aug 2023 14:15:59 +0000
ROA not before: Tue 22 Aug 2023 14:15:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208058
IP address blocks: 212.48.98.0/24 maxlen: 24
212.48.99.0/24 maxlen: 24
212.53.174.0/24 maxlen: 24
212.53.195.0/24 maxlen: 24
212.53.196.0/24 maxlen: 24
212.53.194.0/24 maxlen: 24
212.53.204.0/24 maxlen: 24
212.48.106.0/24 maxlen: 24
212.53.139.0/24 maxlen: 24
212.53.143.0/24 maxlen: 24
212.53.141.0/24 maxlen: 24
212.53.152.0/24 maxlen: 24
212.53.146.0/24 maxlen: 24
212.53.154.0/24 maxlen: 24
212.53.164.0/24 maxlen: 24
212.53.162.0/24 maxlen: 24
212.53.163.0/24 maxlen: 24
212.53.161.0/24 maxlen: 24
212.53.172.0/24 maxlen: 24
212.72.172.0/24 maxlen: 24
212.72.174.0/24 maxlen: 24
212.72.179.0/24 maxlen: 24
212.72.190.0/24 maxlen: 24
212.72.191.0/24 maxlen: 24
2a00:1f78:f001::/48 maxlen: 48
2a00:1f78:fffd::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1d:9a:34:df:f0:44:35:7b:b3:34:e9:53:07:ff:fa:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25a89539520004270d34253bdc16d87784156e1a
Validity
Not Before: Aug 22 14:15:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c73822a4f40b9711de9aba1145621e17557ce2bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:99:ad:f1:9f:81:7a:e2:ce:1b:01:2b:4e:ac:
9c:d9:33:1a:43:ad:8e:4d:0d:79:a0:dc:99:24:cd:
38:03:95:ef:37:9b:aa:5a:06:49:65:9b:86:b2:e9:
26:27:60:0a:ed:0c:a3:40:09:62:3e:84:ae:e8:bb:
ad:5d:e4:55:0d:57:15:31:d1:e5:3d:0e:0f:f7:a6:
d4:46:06:19:6a:3a:41:50:4f:9c:e0:73:74:b7:2a:
7a:e4:6f:60:bc:d1:a0:30:84:bc:b2:d7:5d:85:2a:
04:ab:d6:87:03:8f:5e:0b:ec:8f:ed:a9:f7:30:81:
da:06:8b:fc:51:13:05:6b:ab:66:1d:e8:4b:6c:6e:
e4:c4:af:4f:a3:b4:7b:48:4a:5e:b1:5a:4a:ba:01:
4d:72:11:90:8c:c9:f5:8e:9a:1b:2c:6a:ae:24:1b:
7d:a0:fd:c1:10:76:e9:85:a9:3e:f6:79:a7:b2:25:
01:2e:92:b9:ff:a8:f5:ba:b0:92:51:e8:78:4d:70:
0c:d9:5e:a0:97:5d:4c:4e:41:42:cc:ce:00:3b:70:
5f:e4:fb:8b:5e:7f:92:08:fe:f3:44:53:f3:2d:b6:
d5:c5:f8:69:f6:a9:57:c6:50:e2:90:15:9f:c2:b5:
4f:39:a8:ee:f9:1c:06:0d:a3:5d:79:50:f7:c8:84:
94:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:38:22:A4:F4:0B:97:11:DE:9A:BA:11:45:62:1E:17:55:7C:E2:BC
X509v3 Authority Key Identifier:
keyid:25:A8:95:39:52:00:04:27:0D:34:25:3B:DC:16:D8:77:84:15:6E:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JaiVOVIABCcNNCU73BbYd4QVbho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/bc15ec-6b0d-4734-a088-d00526b91605/1/xzgipPQLlxHemroRRWIeF1V84rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/bc15ec-6b0d-4734-a088-d00526b91605/1/JaiVOVIABCcNNCU73BbYd4QVbho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.48.98.0/23
212.48.106.0/24
212.53.139.0/24
212.53.141.0/24
212.53.143.0/24
212.53.146.0/24
212.53.152.0/24
212.53.154.0/24
212.53.161.0-212.53.164.255
212.53.172.0/24
212.53.174.0/24
212.53.194.0-212.53.196.255
212.53.204.0/24
212.72.172.0/24
212.72.174.0/24
212.72.179.0/24
212.72.190.0/23
IPv6:
2a00:1f78:f001::/48
2a00:1f78:fffd::/48
Signature Algorithm: sha256WithRSAEncryption
3a:d6:36:35:3d:c7:63:eb:ff:6f:9c:ba:cc:f4:7d:b5:32:31:
72:09:97:69:e8:e3:0b:70:81:f9:e4:d9:5c:1c:49:16:7d:33:
60:67:58:bb:89:c6:d3:b9:0b:10:c7:e8:37:f7:b1:6a:a6:34:
f6:5e:59:ef:bf:a8:29:3e:23:a2:aa:70:0b:b0:cd:17:b4:72:
68:4f:c2:04:c9:00:0a:73:f9:ac:39:4f:64:87:84:7c:df:ea:
ad:f3:6e:be:1b:16:ed:77:12:f3:09:eb:59:ed:d8:e1:25:57:
99:3f:22:61:32:b1:8c:e8:c2:12:ce:01:56:ea:d5:15:a8:fa:
6b:bc:f0:49:d5:ab:6a:51:ff:36:ae:af:66:b9:61:45:2d:b2:
5d:5c:c1:85:1a:9a:46:6f:6b:b8:63:b0:14:9b:66:b3:75:e9:
07:0e:5a:25:f6:78:7d:7e:5f:1b:94:3a:74:e5:7e:90:53:9d:
ca:b6:fd:08:56:aa:27:90:b2:b5:45:0a:21:f6:34:da:5b:fb:
14:b6:b8:82:3b:12:95:64:fb:b1:28:d4:ec:e0:1e:37:8a:1f:
a1:d8:88:bc:dc:c9:bf:2a:67:cb:b3:26:72:72:61:c4:9d:09:
a7:f3:4c:6f:16:17:10:b2:a1:d6:b0:88:b1:f9:74:28:a5:ce:
4b:5a:57:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:30 2024 by rpki-client on console-ams.rpki-client.org