Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/JQMEjJ9WFEBATJ0uqh094Os0IsI.roa
File: JQMEjJ9WFEBATJ0uqh094Os0IsI.roa (raw, json)
Hash identifier: RPO/sB6senDQNfK5bKd6ZNqyY60buWjzRNYoGEPE/uE=
Subject key identifier: 25:03:04:8C:9F:56:14:40:40:4C:9D:2E:AA:1D:3D:E0:EB:34:22:C2
Certificate issuer: /CN=6ba26b56cee97f6020941bb17c6a7c6cea0f814a
Certificate serial: 018D6A7A4C00FB278E10730EE8570B0373F0
Authority key identifier: 6B:A2:6B:56:CE:E9:7F:60:20:94:1B:B1:7C:6A:7C:6C:EA:0F:81:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6JrVs7pf2AglBuxfGp8bOoPgUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/JQMEjJ9WFEBATJ0uqh094Os0IsI.roa
Signing time: Fri 02 Feb 2024 15:40:16 +0000
ROA not before: Fri 02 Feb 2024 15:40:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210779
IP address blocks: 176.105.253.0/24 maxlen: 24
176.105.255.0/24 maxlen: 24
217.13.109.0/24 maxlen: 24
2a0d:c740:a::/48 maxlen: 48
2a0d:c740:f::/48 maxlen: 48
2a0d:c740:2c::/48 maxlen: 48
2a0d:c740:3c::/48 maxlen: 48
2a0d:c740:4c::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 02 Feb 2024 22:49:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6a:7a:4c:00:fb:27:8e:10:73:0e:e8:57:0b:03:73:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ba26b56cee97f6020941bb17c6a7c6cea0f814a
Validity
Not Before: Feb 2 15:40:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2503048c9f561440404c9d2eaa1d3de0eb3422c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2a:30:96:c8:02:04:77:da:8e:e8:14:71:92:
c0:dc:37:0e:19:5f:97:00:29:8b:8a:86:d0:f4:ef:
fa:1a:37:75:39:db:7d:e2:89:b4:47:23:4d:59:8f:
92:8c:8c:f1:c5:32:26:af:26:25:50:eb:dc:59:3c:
40:34:9b:23:db:30:6a:27:1d:12:98:80:7b:70:b7:
cb:18:9e:22:61:37:0e:c4:f6:2c:14:b1:26:04:7f:
0d:0e:94:05:b4:c1:21:b1:4b:cb:09:7a:81:10:a2:
36:c9:85:66:87:b8:f4:ab:67:25:01:05:5f:e6:01:
37:5d:83:ae:77:4f:98:83:7d:49:98:68:4f:80:72:
80:77:49:55:1d:fd:2d:9b:cf:15:33:8d:af:2b:b7:
2e:52:b2:fa:de:00:8a:39:0a:72:51:64:20:e1:d8:
39:b0:41:83:f9:24:c5:11:60:1f:89:58:a7:8d:6d:
ca:16:df:fa:31:93:01:4a:74:cc:aa:f5:d9:a2:2c:
50:9b:87:89:b9:50:27:18:36:f0:54:a5:87:59:3b:
d3:a1:4d:97:4b:db:1d:16:36:0a:7a:f9:16:cd:98:
23:73:c7:0a:a0:d2:e2:15:82:c4:f2:3f:4a:83:e7:
4e:4e:72:2c:eb:8a:53:13:f4:cc:a2:1b:e7:bb:2d:
6d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:03:04:8C:9F:56:14:40:40:4C:9D:2E:AA:1D:3D:E0:EB:34:22:C2
X509v3 Authority Key Identifier:
keyid:6B:A2:6B:56:CE:E9:7F:60:20:94:1B:B1:7C:6A:7C:6C:EA:0F:81:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6JrVs7pf2AglBuxfGp8bOoPgUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/JQMEjJ9WFEBATJ0uqh094Os0IsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/a6JrVs7pf2AglBuxfGp8bOoPgUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.253.0/24
176.105.255.0/24
217.13.109.0/24
IPv6:
2a0d:c740:a::/48
2a0d:c740:f::/48
2a0d:c740:2c::/48
2a0d:c740:3c::/48
2a0d:c740:4c::/48
Signature Algorithm: sha256WithRSAEncryption
8b:13:21:a8:8a:a5:c7:4a:c2:7b:25:a6:91:0a:48:0d:20:a6:
f9:98:41:25:84:a8:e4:55:76:a7:69:9c:10:26:85:0b:57:b4:
52:03:de:86:a1:1b:3b:4a:0f:c3:4a:e4:a7:bf:e3:6d:f6:19:
98:82:0a:0d:d8:fe:34:8d:43:1b:60:31:3c:5b:bd:ce:e8:7b:
c6:e4:ec:dd:6e:c7:12:6c:85:19:24:ef:11:45:55:f5:d8:55:
81:7e:7b:0c:81:e4:da:e2:85:23:24:59:79:04:4b:40:71:6e:
71:29:97:85:92:3e:ba:c2:67:18:b0:92:54:00:6e:8c:d0:bb:
5a:fe:d2:c0:d8:6d:0e:8b:ca:e5:52:a2:53:88:0c:be:01:a8:
67:85:49:dd:ea:83:ed:75:58:8a:6b:1d:c0:da:f2:78:68:84:
d2:57:9b:ec:ad:6c:e1:b6:5b:c8:8d:f7:fc:b4:a3:45:6e:e4:
bb:78:97:11:97:f4:ba:a9:34:b6:e8:45:48:af:d8:59:00:c1:
60:b0:16:87:99:52:4b:44:1b:fd:5e:a1:f8:39:3b:5e:bd:0a:
fe:a7:47:bc:e0:35:d1:26:97:7b:a0:09:4f:b2:cf:c0:71:86:
ca:0f:8a:c0:93:71:cc:8f:ea:92:92:94:bf:8e:57:2c:c6:08:
cd:f5:3a:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:07 2024 by rpki-client on console-fra.rpki-client.org