Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/60d930-bd46-4517-ab0e-a6ce8355b2e0/1/_urzoJepZX_qnb24Lq_vOOE-BFE.roa
File: _urzoJepZX_qnb24Lq_vOOE-BFE.roa (raw, json)
Hash identifier: mQe9l4zYokcyYEt8xbwnu5dtyNbHKL7lNRjKtzF3Ed0=
Subject key identifier: FE:EA:F3:A0:97:A9:65:7F:EA:9D:BD:B8:2E:AF:EF:38:E1:3E:04:51
Certificate issuer: /CN=6d42cff18334b2ff76b15ad944a8a9135e90568c
Certificate serial: 018817306C2A7D5B9F294ABF00050478FD62
Authority key identifier: 6D:42:CF:F1:83:34:B2:FF:76:B1:5A:D9:44:A8:A9:13:5E:90:56:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bULP8YM0sv92sVrZRKipE16QVow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/60d930-bd46-4517-ab0e-a6ce8355b2e0/1/_urzoJepZX_qnb24Lq_vOOE-BFE.roa
Signing time: Sat 13 May 2023 22:17:09 +0000
ROA not before: Sat 13 May 2023 22:17:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198507
IP address blocks: 45.14.176.0/22 maxlen: 24
45.81.192.0/22 maxlen: 24
37.143.52.0/24 maxlen: 24
37.143.54.0/24 maxlen: 24
37.143.55.0/24 maxlen: 24
37.143.52.0/22 maxlen: 22
37.143.53.0/24 maxlen: 24
185.132.72.0/22 maxlen: 24
185.132.72.0/24 maxlen: 24
185.132.75.0/24 maxlen: 24
185.132.73.0/24 maxlen: 24
185.132.74.0/24 maxlen: 24
45.81.195.0/24 maxlen: 24
45.9.196.0/22 maxlen: 24
2a06:e040:3501::/48 maxlen: 48
2a06:e040:5901::/48 maxlen: 48
2a06:e040:7601::/48 maxlen: 48
2a06:e040:6900::/40 maxlen: 40
2a06:e040::/32 maxlen: 32
2a06:e043::/32 maxlen: 32
2a06:e040:3502::/48 maxlen: 48
2a06:e044:10::/48 maxlen: 48
2a06:e040:7603::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:17:30:6c:2a:7d:5b:9f:29:4a:bf:00:05:04:78:fd:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d42cff18334b2ff76b15ad944a8a9135e90568c
Validity
Not Before: May 13 22:17:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=feeaf3a097a9657fea9dbdb82eafef38e13e0451
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:29:bc:eb:18:b1:1c:16:bd:4b:84:7f:0c:06:
7b:da:c2:d3:f5:7f:99:8e:ad:c7:61:5b:c1:0e:0b:
31:77:65:d7:27:c4:8b:0b:bb:e4:ea:df:95:8b:d5:
b7:24:da:9c:d4:15:65:14:0a:41:3c:22:d5:99:6d:
af:f0:0a:7d:c9:51:4e:b8:cc:8f:95:83:ab:b7:3e:
55:94:9f:03:14:be:f9:27:aa:c7:6f:d4:51:8e:54:
32:fd:c3:f0:ac:dd:d0:a9:4b:e3:60:4f:05:58:2b:
0b:3b:87:e4:31:13:13:c0:25:91:3b:05:4c:5e:a5:
0c:7c:ac:57:da:b8:f3:c3:3d:9a:f1:da:9f:58:37:
7c:ab:f0:50:d0:7c:fd:1f:b6:a9:30:45:05:b3:eb:
bb:15:b1:e2:6f:68:e3:aa:6d:e7:80:fd:8c:ce:3c:
7b:a0:03:b0:23:0d:18:5c:a8:89:a1:b4:b0:a7:5a:
62:ef:2f:c1:fe:01:2f:1f:8e:bf:86:d8:b3:9b:71:
ef:e0:aa:9a:98:82:77:60:51:63:c7:73:c5:99:58:
66:8b:c1:75:e6:c8:2a:50:05:4d:15:bf:6e:56:19:
2f:29:e8:43:d5:3c:e6:4e:0f:b2:6c:28:1d:12:9e:
7c:fb:7f:08:d8:86:16:56:5a:a6:f6:68:04:de:73:
fd:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:EA:F3:A0:97:A9:65:7F:EA:9D:BD:B8:2E:AF:EF:38:E1:3E:04:51
X509v3 Authority Key Identifier:
keyid:6D:42:CF:F1:83:34:B2:FF:76:B1:5A:D9:44:A8:A9:13:5E:90:56:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bULP8YM0sv92sVrZRKipE16QVow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/60d930-bd46-4517-ab0e-a6ce8355b2e0/1/_urzoJepZX_qnb24Lq_vOOE-BFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/60d930-bd46-4517-ab0e-a6ce8355b2e0/1/bULP8YM0sv92sVrZRKipE16QVow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.52.0/22
45.9.196.0/22
45.14.176.0/22
45.81.192.0/22
185.132.72.0/22
IPv6:
2a06:e040::/32
2a06:e043::/32
2a06:e044:10::/48
Signature Algorithm: sha256WithRSAEncryption
33:af:cf:b4:66:fb:1e:4d:41:01:0e:5f:2e:5d:df:b4:2b:da:
15:9a:41:c1:9f:f0:70:97:ca:ca:81:c0:ed:6c:8e:34:a7:c3:
2c:30:fa:af:84:93:22:36:ef:a0:fa:5b:e7:18:9e:6b:93:09:
02:3b:2d:38:f4:1b:4a:64:f6:38:d0:cc:43:02:46:70:23:a6:
76:94:46:67:23:76:14:a2:ff:50:97:37:8a:e6:4e:e8:00:ec:
30:26:1d:72:1b:a7:a1:02:1a:38:16:82:df:e5:f4:77:d9:08:
cf:d3:71:aa:54:ab:8d:5f:89:d7:bb:af:4b:10:8a:dc:80:06:
96:87:a5:4b:9a:13:4f:63:32:30:b3:a3:18:bf:e8:35:3f:88:
20:4e:eb:78:98:ca:4b:fd:0f:b6:46:56:17:1d:5d:b0:f6:68:
ca:5a:22:70:34:fd:70:4b:af:7b:1e:bd:c7:92:e6:49:4b:5f:
85:93:cd:99:39:bf:83:d6:be:1c:b4:24:bb:ef:77:7d:95:f3:
5f:81:7e:c7:bb:dd:89:64:e6:ee:63:7e:c2:b2:4e:49:c6:3d:
df:41:d5:09:d2:6b:27:b6:3b:43:b1:c4:1d:8d:e4:ff:e2:ce:
68:96:ab:ef:72:48:17:fd:22:d8:02:01:f0:d8:1d:c0:e5:35:
2e:07:78:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:40 2024 by rpki-client on console-fra.rpki-client.org