Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/oBS0RxoM9SWc8CccgjWUpPKJvPI.roa
File: oBS0RxoM9SWc8CccgjWUpPKJvPI.roa (raw, json)
Hash identifier: vGLfi6vT7eYcNjTP26tGKVAUMzhTASRhTIUNIFCnYsI=
Subject key identifier: A0:14:B4:47:1A:0C:F5:25:9C:F0:27:1C:82:35:94:A4:F2:89:BC:F2
Certificate issuer: /CN=a4f8436003d37602026b65531755ca8fcd31bed2
Certificate serial: 018CC86F49EC94886B94E509CED965504C64
Authority key identifier: A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/oBS0RxoM9SWc8CccgjWUpPKJvPI.roa
Signing time: Tue 02 Jan 2024 04:29:45 +0000
ROA not before: Tue 02 Jan 2024 04:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31027
IP address blocks: 93.176.64.0/18 maxlen: 18
193.105.149.0/24 maxlen: 24
80.88.128.0/20 maxlen: 20
80.243.112.0/20 maxlen: 20
5.56.144.0/20 maxlen: 20
89.221.160.0/20 maxlen: 20
193.105.116.0/24 maxlen: 24
87.116.0.0/18 maxlen: 18
212.60.120.0/21 maxlen: 21
83.151.128.0/18 maxlen: 18
83.136.88.0/21 maxlen: 21
77.233.224.0/19 maxlen: 19
130.185.128.0/20 maxlen: 20
94.18.211.0/24 maxlen: 24
217.195.176.0/20 maxlen: 20
217.195.178.0/24 maxlen: 24
62.12.32.0/20 maxlen: 20
78.153.160.0/19 maxlen: 19
62.12.48.0/21 maxlen: 21
185.67.128.0/22 maxlen: 22
82.192.160.0/19 maxlen: 19
37.49.128.0/20 maxlen: 20
212.98.96.0/24 maxlen: 24
185.20.240.0/22 maxlen: 22
195.140.132.0/22 maxlen: 22
217.74.208.0/20 maxlen: 20
188.120.80.0/21 maxlen: 21
5.179.80.0/20 maxlen: 20
92.62.192.0/20 maxlen: 20
194.182.96.0/21 maxlen: 21
62.116.192.0/19 maxlen: 19
217.116.208.0/20 maxlen: 20
46.32.156.0/22 maxlen: 22
2a02:188::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 07 May 2024 06:06:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:49:ec:94:88:6b:94:e5:09:ce:d9:65:50:4c:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f8436003d37602026b65531755ca8fcd31bed2
Validity
Not Before: Jan 2 04:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a014b4471a0cf5259cf0271c823594a4f289bcf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:76:ed:28:8c:0c:b1:39:b4:c3:28:d3:2f:51:
87:b8:79:35:30:23:64:d4:6b:55:d6:29:b1:7b:6e:
4a:b7:54:31:30:b7:f0:8e:8b:0d:cb:62:eb:b1:f6:
c2:fd:41:ac:d8:d6:09:59:76:a0:31:e5:63:71:e8:
6b:49:36:01:df:5e:2f:f6:4a:87:36:6a:c4:23:cd:
9c:5c:ae:4f:51:52:4f:2f:8c:dd:2e:bb:a0:83:30:
fd:98:23:ff:82:0f:c0:55:eb:06:2c:98:4b:20:8e:
23:43:cd:02:f8:6a:0e:ec:2c:32:95:34:11:d2:2f:
52:28:c8:54:0f:43:06:86:36:c1:c3:b4:c5:d8:2e:
14:da:97:40:49:97:db:21:ad:6d:6d:2a:20:c7:3d:
16:06:77:18:9c:3a:50:3d:7b:e6:e9:ba:b3:92:38:
4d:fd:e7:ae:7d:6c:b0:9f:fc:7d:0e:3f:99:a7:c0:
3c:2e:1a:f0:d6:63:07:64:3b:d9:d2:c6:e8:99:4a:
bf:45:ce:0f:98:ad:ff:92:64:91:38:7d:84:09:fd:
9b:84:e0:f4:fc:60:3b:86:56:de:12:a9:03:1b:74:
5b:86:01:24:86:c3:f7:aa:98:1b:b1:ec:c3:f4:6b:
ad:08:cf:f9:0f:18:d1:64:3d:54:84:fa:ec:52:b7:
28:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:14:B4:47:1A:0C:F5:25:9C:F0:27:1C:82:35:94:A4:F2:89:BC:F2
X509v3 Authority Key Identifier:
keyid:A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/oBS0RxoM9SWc8CccgjWUpPKJvPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.144.0/20
5.179.80.0/20
37.49.128.0/20
46.32.156.0/22
62.12.32.0-62.12.55.255
62.116.192.0/19
77.233.224.0/19
78.153.160.0/19
80.88.128.0/20
80.243.112.0/20
82.192.160.0/19
83.136.88.0/21
83.151.128.0/18
87.116.0.0/18
89.221.160.0/20
92.62.192.0/20
93.176.64.0/18
94.18.211.0/24
130.185.128.0/20
185.20.240.0/22
185.67.128.0/22
188.120.80.0/21
193.105.116.0/24
193.105.149.0/24
194.182.96.0/21
195.140.132.0/22
212.60.120.0/21
212.98.96.0/24
217.74.208.0/20
217.116.208.0/20
217.195.176.0/20
IPv6:
2a02:188::/29
Signature Algorithm: sha256WithRSAEncryption
05:0f:0f:05:7d:93:f5:cd:2a:62:90:6c:be:9d:29:7f:39:58:
23:59:a6:78:9b:2c:6f:6b:02:f2:41:a7:dc:cf:83:06:ee:c2:
da:62:c8:bf:86:8d:60:fd:dc:98:76:d0:17:f7:12:b9:a3:fd:
14:63:df:99:78:31:b5:d2:7a:97:ee:e4:86:dc:1f:2e:03:8c:
36:1f:2f:29:d8:a4:f2:fb:c9:65:9d:d1:c8:0e:55:00:e1:06:
2d:da:8e:4e:79:3c:1c:d6:c9:ec:8b:5c:66:b6:cf:0c:06:8a:
d5:15:58:9b:b0:75:69:37:8b:ed:8b:b4:05:7a:70:dc:75:6c:
59:73:c3:ce:1d:a1:c8:62:3f:89:08:69:dc:85:22:df:02:2e:
88:e1:f9:fe:43:51:75:fb:e6:3c:4c:c1:54:bf:22:a9:4a:47:
be:e3:00:6c:c5:be:27:a9:04:45:b1:ce:7a:9f:8f:87:d0:e5:
b7:99:04:e7:16:cb:fd:d3:8b:d9:ca:d9:e7:45:73:50:0c:05:
47:65:4f:74:ab:8a:ec:9b:a2:64:fc:cb:e5:52:a3:1d:22:fe:
cd:08:75:6a:25:99:2f:43:35:89:42:91:4c:e0:f6:7b:10:40:
c5:eb:39:e3:15:5d:db:c9:cf:83:19:1a:b0:cb:50:cd:e1:ec:
db:cc:9e:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:25 2024 by rpki-client on console-ams.rpki-client.org