Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/6h2GouyPEc6McKNCpwF6IdyzBZo.roa
File: 6h2GouyPEc6McKNCpwF6IdyzBZo.roa (raw, json)
Hash identifier: rK2Dybnm2DW0u/3BUjVmBUW4GLQYvPcc62mOTSTKL2k=
Subject key identifier: EA:1D:86:A2:EC:8F:11:CE:8C:70:A3:42:A7:01:7A:21:DC:B3:05:9A
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01904DF97F5253B6BEE4435636333CDF65C2
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/6h2GouyPEc6McKNCpwF6IdyzBZo.roa
Signing time: Tue 25 Jun 2024 05:58:34 +0000
ROA not before: Tue 25 Jun 2024 05:58:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207279
IP address blocks: 2.59.253.0/24 maxlen: 24
79.110.51.0/24 maxlen: 24
87.120.166.0/24 maxlen: 24
94.154.162.0/24 maxlen: 24
109.206.239.0/24 maxlen: 24
185.222.161.0/24 maxlen: 24
185.246.223.0/24 maxlen: 24
193.37.40.0/24 maxlen: 24
194.55.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Jul 2024 11:22:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4d:f9:7f:52:53:b6:be:e4:43:56:36:33:3c:df:65:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 25 05:58:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea1d86a2ec8f11ce8c70a342a7017a21dcb3059a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bb:91:2a:99:cf:50:88:10:b1:fa:6f:79:54:
b2:61:15:ce:33:20:29:ef:41:be:66:be:5a:74:c6:
bf:1f:38:1c:2d:0d:e1:44:b4:11:ef:bd:6c:28:06:
27:2f:02:a5:2a:f6:2d:72:54:86:78:61:d0:cb:48:
bc:7a:58:11:31:da:c5:ae:77:f2:8c:06:5e:4a:23:
99:53:9f:b6:c9:b6:b2:11:08:e0:2a:9b:08:8d:2c:
d2:0c:b6:cf:76:f4:cc:1b:f0:ee:37:27:0c:9a:90:
e7:26:8a:53:a4:cc:9a:4a:92:ec:43:11:56:59:fc:
93:17:4f:1a:ec:97:a6:cb:97:0a:3d:8a:57:e5:a7:
47:22:08:94:a5:22:65:ce:38:26:81:a2:30:10:25:
4b:7c:ae:85:54:a7:ec:65:77:0f:ed:f2:50:fb:1f:
30:c1:38:b9:37:ee:57:cb:7b:a8:b4:35:94:55:8d:
5a:30:04:80:d3:5d:e5:3f:7d:de:37:e1:98:78:02:
cf:12:f3:3b:c5:34:91:56:fd:9e:ed:85:17:e7:c5:
10:5b:aa:c1:ec:3d:11:19:fa:64:9d:ea:59:41:85:
ab:2a:f6:97:92:3d:66:3a:9c:14:a3:1a:70:77:2b:
c3:69:ff:30:0c:db:d6:85:fc:9a:3b:d5:68:95:8b:
b2:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:1D:86:A2:EC:8F:11:CE:8C:70:A3:42:A7:01:7A:21:DC:B3:05:9A
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/6h2GouyPEc6McKNCpwF6IdyzBZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.253.0/24
79.110.51.0/24
87.120.166.0/24
94.154.162.0/24
109.206.239.0/24
185.222.161.0/24
185.246.223.0/24
193.37.40.0/24
194.55.225.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:f9:b1:9b:8d:6d:24:63:c6:e0:4c:15:a8:7b:6a:6c:01:dc:
f6:c6:7e:df:24:dc:fc:49:38:cb:c3:98:d3:cb:80:96:ef:6a:
b6:e5:36:f4:f4:7f:e4:6d:68:34:27:96:fe:13:05:8d:3d:3d:
5e:19:5c:47:7d:80:f5:63:65:06:34:f4:42:fe:17:e7:aa:23:
2e:22:8f:74:05:20:ae:0b:4e:96:55:fe:34:52:e9:29:41:16:
3a:b3:63:ec:ad:2d:9f:e1:f3:c2:81:b4:47:b1:85:5a:c5:7b:
ed:41:35:a6:a4:be:2e:7f:3d:b2:81:aa:5e:f9:c0:bf:70:07:
66:54:44:38:e5:8d:0d:6b:22:d9:79:2f:6c:a7:a6:fd:93:58:
a5:94:7e:4c:4d:99:ca:9a:7b:35:b7:52:c5:74:90:d9:17:ce:
63:b7:da:61:74:cb:ee:38:c5:78:ac:be:f5:c5:d3:15:b8:58:
16:4a:93:9e:d7:6a:85:2a:33:60:07:68:45:c7:dc:a6:56:11:
d7:ca:84:44:da:cf:d3:81:98:84:02:25:52:76:eb:9a:27:2e:
7d:9e:84:56:7a:32:8b:ad:11:48:84:05:99:54:88:d3:56:78:
b9:e0:e4:20:93:cb:cc:5d:50:0d:56:1b:6f:59:47:c5:7e:53:
bd:ab:a2:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 4 12:31:58 2024 by rpki-client on console-fra.rpki-client.org