Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/nPihsKI7eK_w-IbJZydu7RaAuxY.roa
File: nPihsKI7eK_w-IbJZydu7RaAuxY.roa (raw, json)
Hash identifier: +OD/U6woK3VuOknAr1S5OnzcZ4Wud6z9bkPapTCck2s=
Subject key identifier: 9C:F8:A1:B0:A2:3B:78:AF:F0:F8:86:C9:67:27:6E:ED:16:80:BB:16
Certificate issuer: /CN=61b534437503668815add93cd17d0ad3e1b1a877
Certificate serial: 018581A6ACE44AAB2AB02770614AD5CAE017
Authority key identifier: 61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/nPihsKI7eK_w-IbJZydu7RaAuxY.roa
Signing time: Thu 05 Jan 2023 11:17:42 +0000
ROA not before: Thu 05 Jan 2023 11:17:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13127
IP address blocks: 62.166.51.0/24 maxlen: 24
62.166.50.0/24 maxlen: 24
87.215.0.0/16 maxlen: 24
62.166.56.0/24 maxlen: 24
82.173.0.0/16 maxlen: 24
143.176.0.0/16 maxlen: 24
62.166.0.0/17 maxlen: 24
82.173.81.0/24 maxlen: 24
82.175.0.0/16 maxlen: 24
217.149.216.0/24 maxlen: 24
82.172.0.0/16 maxlen: 24
82.173.192.0/19 maxlen: 24
82.173.128.0/18 maxlen: 24
87.214.0.0/15 maxlen: 24
82.172.128.0/17 maxlen: 24
62.250.0.0/17 maxlen: 24
81.58.0.0/16 maxlen: 24
81.58.0.0/15 maxlen: 24
62.58.0.0/15 maxlen: 24
87.213.0.0/16 maxlen: 24
143.179.0.0/16 maxlen: 24
87.211.0.0/16 maxlen: 24
81.59.128.0/17 maxlen: 24
2a01:380::/32 maxlen: 40
2a01:380:6000::/43 maxlen: 43
Validation: Failed, certificate revoked on Thu 07 Sep 2023 10:14:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:81:a6:ac:e4:4a:ab:2a:b0:27:70:61:4a:d5:ca:e0:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b534437503668815add93cd17d0ad3e1b1a877
Validity
Not Before: Jan 5 11:17:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9cf8a1b0a23b78aff0f886c967276eed1680bb16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:49:d0:20:87:0e:18:17:48:3a:8c:de:16:30:
6b:e2:78:cb:69:3c:dc:9e:4e:02:8c:d5:f9:1c:f2:
a6:ee:6d:eb:a1:6c:c8:34:aa:1b:fa:fe:fc:cd:7e:
43:4a:46:bd:bd:be:66:0a:34:15:f7:63:a4:68:32:
b5:62:f4:a2:b5:06:e0:86:71:af:43:64:ca:8e:c6:
52:17:dd:7c:e4:64:37:70:a2:8b:d5:45:0c:3d:c8:
e3:07:6a:a9:ed:6c:27:76:a5:77:cd:bc:bf:1c:76:
6f:48:13:ca:db:c1:d2:10:39:a5:ce:4e:f6:48:12:
aa:70:f1:11:d8:bc:dd:37:50:ed:af:78:08:b9:4c:
97:a8:d0:d8:dd:a7:24:cf:2b:89:48:0b:09:74:9d:
91:6a:d4:69:dc:12:b6:71:8c:e7:79:56:24:fe:b7:
88:a8:f1:ab:95:44:08:24:a4:5a:0f:b4:88:79:25:
08:85:2a:de:95:3b:27:da:bb:52:0c:6d:be:a0:b0:
d2:49:43:40:77:1f:b3:6c:f1:32:dc:40:55:95:cf:
16:39:8a:2c:2d:68:9f:94:eb:e9:cc:2c:36:bf:ca:
24:6b:dc:a2:49:76:f3:8e:aa:22:e9:c5:72:65:93:
37:88:3d:71:96:47:2b:fd:68:da:2e:df:5d:3a:91:
f9:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:F8:A1:B0:A2:3B:78:AF:F0:F8:86:C9:67:27:6E:ED:16:80:BB:16
X509v3 Authority Key Identifier:
keyid:61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/nPihsKI7eK_w-IbJZydu7RaAuxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.58.0.0/15
62.166.0.0/17
62.250.0.0/17
81.58.0.0/15
82.172.0.0/15
82.175.0.0/16
87.211.0.0/16
87.213.0.0-87.215.255.255
143.176.0.0/16
143.179.0.0/16
217.149.216.0/24
IPv6:
2a01:380::/32
Signature Algorithm: sha256WithRSAEncryption
17:1e:41:d3:61:e8:1b:61:9a:f7:95:17:09:4f:1b:c6:77:9b:
93:02:f2:4b:94:3d:e4:2f:7d:82:bb:97:84:fc:7e:a1:9c:eb:
47:70:03:88:39:74:0c:b9:81:a5:e0:6e:d6:70:43:94:b3:a3:
b9:ba:14:09:0e:a9:d9:44:70:d2:eb:82:30:24:8a:27:ab:29:
f5:25:8a:88:d4:bc:fc:91:5a:78:b6:cf:66:41:fe:7e:4a:b6:
1e:10:d8:35:ac:6d:d7:ce:2d:7b:f3:db:a8:38:1d:96:16:5f:
ec:5a:b3:e5:50:ea:8c:80:e7:16:e4:c8:15:70:c8:0b:a3:4f:
f0:2d:c2:34:09:f1:e6:01:55:56:5b:4f:db:e9:7c:69:da:03:
76:93:c1:3c:dc:b7:8c:03:a8:8a:f5:f1:a3:89:7e:b2:52:51:
28:03:3e:18:cf:47:72:1b:41:bc:a1:f6:9f:94:3b:dc:fb:8e:
5a:7c:f4:58:5d:bc:3c:59:64:51:7e:e1:17:83:34:56:63:a7:
11:3d:91:8d:b6:14:db:2f:bc:5d:fe:f6:a8:1c:cf:f8:57:98:
e5:05:57:9e:35:f1:be:f6:ad:81:70:d3:bb:61:20:35:26:69:
0b:44:52:2b:58:4d:ed:25:62:d2:81:32:ff:60:4f:43:c8:ef:
0b:73:4c:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:41 2024 by rpki-client on console-ams.rpki-client.org